SELinux: clear parent death signal on SID transitions

commit 4ac212ad4e8fafc22fa147fc255ff5fa5435cf33 upstream. Clear parent death signal on SID transitions to prevent unauthorized signaling between SIDs. Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> Acked-by: Eric Paris <eparis@parisplace.org> Signed-off-by: James Morris <jmorris@localhost.localdomain> Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
author: Stephen Smalley <sds@tycho.nsa.gov> 2007-08-29 08:51:50 -0400
committer: Greg Kroah-Hartman <gregkh@suse.de> 2007-10-10 10:50:16 -0700
commit: 880da58fc49a4e021d49b4aeae3b2c6b51e211fa (patch)
tree: 8839985fc26a8f52bbf83843f72eb7c7eac7754f
parent: ceda57cf82ec93444e7d86755e6d43ab11c1b50d (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/security/selinux/hooks.c b/security/selinux/hooks.c
index ad8dd4e8657e..1ee7ca9ed575 100644
--- a/security/selinux/hooks.c
+++ b/security/selinux/hooks.c
@@ -1906,6 +1906,9 @@ static void selinux_bprm_post_apply_creds(struct linux_binprm *bprm)
 		spin_unlock_irq(&current->sighand->siglock);
 	}
 
+	/* Always clear parent death signal on SID transitions. */
+	current->pdeath_signal = 0;
+
 	/* Check whether the new SID can inherit resource limits
 	   from the old SID.  If not, reset all soft limits to
 	   the lower of the current task's hard limit and the init
author	Stephen Smalley <sds@tycho.nsa.gov>	2007-08-29 08:51:50 -0400
committer	Greg Kroah-Hartman <gregkh@suse.de>	2007-10-10 10:50:16 -0700
commit	880da58fc49a4e021d49b4aeae3b2c6b51e211fa (patch)
tree	8839985fc26a8f52bbf83843f72eb7c7eac7754f
parent	ceda57cf82ec93444e7d86755e6d43ab11c1b50d (diff)