git.kernel.dk Git - linux-2.6-block.git/commit

author	Thomas Gleixner <tglx@linutronix.de>
	Thu, 21 Oct 2021 22:55:06 +0000 (15:55 -0700)
committer	Borislav Petkov <bp@suse.de>
	Tue, 26 Oct 2021 08:18:09 +0000 (10:18 +0200)
commit	3aac3ebea08f2d342364f827c8979ab0e1dd591e
tree	66cfbec408ebb30544063cde4b49094da02c6d66	tree \| snapshot
parent	1bdda24c4af64cd2d65dec5192ab624c5fee7ca0	commit \| diff

x86/signal: Implement sigaltstack size validation

For historical reasons MINSIGSTKSZ is a constant which became already too
small with AVX512 support.

Add a mechanism to enforce strict checking of the sigaltstack size against
the real size of the FPU frame.

The strict check can be enabled via a config option and can also be
controlled via the kernel command line option 'strict_sas_size' independent
of the config switch.

Enabling it might break existing applications which allocate a too small
sigaltstack but 'work' because they never get a signal delivered. Though it
can be handy to filter out binaries which are not yet aware of
AT_MINSIGSTKSZ.

Also the upcoming support for dynamically enabled FPU features requires a
strict sanity check to ensure that:

   - Enabling of a dynamic feature, which changes the sigframe size fits
     into an enabled sigaltstack

   - Installing a too small sigaltstack after a dynamic feature has been
     added is not possible.

Implement the base check which is controlled by config and command line
options.

Signed-off-by: Thomas Gleixner <tglx@linutronix.de>
Signed-off-by: Chang S. Bae <chang.seok.bae@intel.com>
Signed-off-by: Borislav Petkov <bp@suse.de>
Link: https://lkml.kernel.org/r/20211021225527.10184-3-chang.seok.bae@intel.com

Documentation/admin-guide/kernel-parameters.txt		diff \| blob \| blame \| history
arch/x86/Kconfig		diff \| blob \| blame \| history
arch/x86/kernel/signal.c		diff \| blob \| blame \| history