Yama: Check for pid death before checking ancestry
authorKees Cook <keescook@chromium.org>
Wed, 16 Jan 2019 18:31:09 +0000 (10:31 -0800)
committerJames Morris <james.morris@microsoft.com>
Wed, 16 Jan 2019 20:00:56 +0000 (12:00 -0800)
commit9474f4e7cd71a633fa1ef93b7daefd44bbdfd482
tree3484380352e826bd5415a27323d4752d7b1c053a
parenta811dc61559e0c8003f1086c2a4dc8e4d5ae4cb8
Yama: Check for pid death before checking ancestry

It's possible that a pid has died before we take the rcu lock, in which
case we can't walk the ancestry list as it may be detached. Instead, check
for death first before doing the walk.

Reported-by: syzbot+a9ac39bf55329e206219@syzkaller.appspotmail.com
Fixes: 2d514487faf1 ("security: Yama LSM")
Cc: stable@vger.kernel.org
Suggested-by: Oleg Nesterov <oleg@redhat.com>
Signed-off-by: Kees Cook <keescook@chromium.org>
Signed-off-by: James Morris <james.morris@microsoft.com>
security/yama/yama_lsm.c