Merge tag 'v4.19.59-rt24' into toradex_4.19.y-rttoradex_4.19.y-rt

Linux 4.19.59-rt24
author: Stefan Agner <stefan.agner@toradex.com> 2019-08-16 16:40:08 +0200
committer: Stefan Agner <stefan.agner@toradex.com> 2019-08-16 16:40:08 +0200
commit: 3758b8bd81966b63dc93093a323e9bdd734545fd (patch)
tree: 229bda2abe1a31d59da4b48e71aeefde934fe1d0 /kernel/cred.c
parent: d15d0b7a9f89cf5a905ad6802eb23100c8063939 (diff)
parent: dd209b062b86dd951cf1da93f20aa497fe99d52d (diff)
1 files changed, 9 insertions, 0 deletions
diff --git a/kernel/cred.c b/kernel/cred.c
index ecf03657e71c..efd04b2ec84c 100644
--- a/kernel/cred.c
+++ b/kernel/cred.c
@@ -448,6 +448,15 @@ int commit_creds(struct cred *new)
 		if (task->mm)
 			set_dumpable(task->mm, suid_dumpable);
 		task->pdeath_signal = 0;
+		/*
+		 * If a task drops privileges and becomes nondumpable,
+		 * the dumpability change must become visible before
+		 * the credential change; otherwise, a __ptrace_may_access()
+		 * racing with this change may be able to attach to a task it
+		 * shouldn't be able to attach to (as if the task had dropped
+		 * privileges without becoming nondumpable).
+		 * Pairs with a read barrier in __ptrace_may_access().
+		 */
 		smp_wmb();
 	}
author	Stefan Agner <stefan.agner@toradex.com>	2019-08-16 16:40:08 +0200
committer	Stefan Agner <stefan.agner@toradex.com>	2019-08-16 16:40:08 +0200
commit	3758b8bd81966b63dc93093a323e9bdd734545fd (patch)
tree	229bda2abe1a31d59da4b48e71aeefde934fe1d0 /kernel/cred.c
parent	d15d0b7a9f89cf5a905ad6802eb23100c8063939 (diff)
parent	dd209b062b86dd951cf1da93f20aa497fe99d52d (diff)