signal/bpfilter: Fix bpfilter_kernl to use send_sig not force_sig

Linux kernel mirror (for testing) git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git

kernel os linux

The locking in force_sig_info is not prepared to deal with
a task that exits or execs (as sighand may change). As force_sig
is only built to handle synchronous exceptions.

Further the function force_sig_info changes the signal state if the
signal is ignored, or blocked or if SIGNAL_UNKILLABLE will prevent the
delivery of the signal. The signal SIGKILL can not be ignored and can
not be blocked and SIGNAL_UNKILLABLE won't prevent it from being
delivered.

So using force_sig rather than send_sig for SIGKILL is pointless.

Because it won't impact the sending of the signal and and because
using force_sig is wrong, replace force_sig with send_sig.

Cc: Alexei Starovoitov <ast@kernel.org>
Cc: David S. Miller <davem@davemloft.net>
Fixes: d2ba09c17a06 ("net: add skeleton of bpfilter kernel module")
Signed-off-by: "Eric W. Biederman" <ebiederm@xmission.com>

Eric W. Biederman 6 years ago 1dfd1711 fee10990

+1 -1

1 changed file

expand all

net

bpfilter

bpfilter_kern.c

+1 -1

net/bpfilter/bpfilter_kern.c

··· 22 22 23 23 tsk = get_pid_task(find_vpid(bpfilter_ops.info.pid), PIDTYPE_PID); 24 24 if (tsk) { 25 - force_sig(SIGKILL, tsk); 25 + send_sig(SIGKILL, tsk, 1); 26 26 put_task_struct(tsk); 27 27 } 28 28 }