Re: [PATCH 2/7] exec: Make unlocking exec_update_mutex explict

From: Kees Cook
Date: Tue May 05 2020 - 16:47:00 EST

Next message: Al Viro: "Re: remove set_fs calls from the coredump code v6"
Previous message: Kees Cook: "Re: [PATCH 1/7] binfmt: Move install_exec_creds after setup_new_exec to match binfmt_elf"
In reply to: Eric W. Biederman: "[PATCH 2/7] exec: Make unlocking exec_update_mutex explict"
Next in thread: Eric W. Biederman: "[PATCH 3/7] exec: Rename the flag called_exec_mmap point_of_no_return"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, May 05, 2020 at 02:41:47PM -0500, Eric W. Biederman wrote:
>
> With install_exec_creds updated to follow immediately after
> setup_new_exec, the failure of unshare_sighand is the only
> code path where exec_update_mutex is held but not explicitly
> unlocked.
>
> Update that code path to explicitly unlock exec_update_mutex.
>
> Remove the unlocking of exec_update_mutex from free_bprm.
>
> Signed-off-by: "Eric W. Biederman" <ebiederm@xxxxxxxxxxxx>

Reviewed-by: Kees Cook <keescook@xxxxxxxxxxxx>

--
Kees Cook

Next message: Al Viro: "Re: remove set_fs calls from the coredump code v6"
Previous message: Kees Cook: "Re: [PATCH 1/7] binfmt: Move install_exec_creds after setup_new_exec to match binfmt_elf"
In reply to: Eric W. Biederman: "[PATCH 2/7] exec: Make unlocking exec_update_mutex explict"
Next in thread: Eric W. Biederman: "[PATCH 3/7] exec: Rename the flag called_exec_mmap point_of_no_return"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]