summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorEric W. Biederman <ebiederm@xmission.com>2017-07-24 22:28:56 +0200
committerEric W. Biederman <ebiederm@xmission.com>2018-01-12 21:21:06 +0100
commit8c5dbf2ae00bb8667f61c5edc6521c1fa2bbe4d7 (patch)
tree6808128af3a23da8842a3490742000d804a8d49e
parentsignal: Reduce copy_siginfo to just a memcpy (diff)
downloadlinux-8c5dbf2ae00bb8667f61c5edc6521c1fa2bbe4d7.tar.xz
linux-8c5dbf2ae00bb8667f61c5edc6521c1fa2bbe4d7.zip
signal: Introduce clear_siginfo
Unfortunately struct siginfo has holes both in the common part of the structure, in the union members, and in the lack of padding of the union members. The result of those wholes is that the C standard does not guarantee those bits will be initialized. As struct siginfo is for communication between the kernel and userspace that is a problem. Add the helper function clear_siginfo that is guaranteed to clear all of the bits in struct siginfo so when the structure is copied there is no danger of copying old kernel data and causing a leak of information from kernel space to userspace. Signed-off-by: "Eric W. Biederman" <ebiederm@xmission.com>
-rw-r--r--include/linux/signal.h5
1 files changed, 5 insertions, 0 deletions
diff --git a/include/linux/signal.h b/include/linux/signal.h
index 8037b503ce91..87abf0c29ed7 100644
--- a/include/linux/signal.h
+++ b/include/linux/signal.h
@@ -16,6 +16,11 @@ static inline void copy_siginfo(struct siginfo *to, const struct siginfo *from)
memcpy(to, from, sizeof(*to));
}
+static inline void clear_siginfo(struct siginfo *info)
+{
+ memset(info, 0, sizeof(*info));
+}
+
int copy_siginfo_to_user(struct siginfo __user *to, const struct siginfo *from);
enum siginfo_layout {