From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <arseny@altlinux.org>
X-Spam-Checker-Version: SpamAssassin 3.4.1 (2015-04-28) on
 sa.local.altlinux.org
X-Spam-Level: 
X-Spam-Status: No, score=-1.8 required=5.0 tests=BAYES_00,DKIM_SIGNED,
 T_DKIM_INVALID autolearn=no autolearn_force=no version=3.4.1
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed;
 d=altlinux.org; s=dkim; h=Subject:Content-Transfer-Encoding:MIME-Version:
 References:In-Reply-To:Message-Id:Date:Cc:To:From:Sender:Reply-To:
 Content-Type:Content-ID:Content-Description:Resent-Date:Resent-From:
 Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:List-Id:List-Help:
 List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive;
 bh=IqO1VE8xtwQ76hbPeWecrnq9BOJJcI1RhSdrujVoG2M=; b=d/QHW9T1zyMf8wH4wGOqvFtdfJ
 XQemhtO/obTHjOX9bSdgs09UAh6xjy9nj5A041RyV/7z8BeVZoYMPMYBkZyzwGDQvkHrJukzZd7dL
 AXg53qqQDbRPFxqK9gBNLZDt6vSEzhsuq5GwHpoU7gCWs2gZ4HgBZxezfnc2cJp4J3iJ8F1A9uYaW
 NbNNMTQBDPb1b8Fg5o6pTKrhCNRQ9TIEP2WC4XobWIYoG9NzUDUg5ELBjpm/KOg+JfTYOTqTtjjaQ
 Q3ZZP+H12Sbm6dBb93ghoyoEFC7ovgmzTq+QXBeuuJumYlL/qyML7GyK0jKN85VOdmfb23URtBJdf
 wrO1gFfQ==;
From: Arseny Maslennikov <arseny@altlinux.org>
To: devel@lists.altlinux.org
Date: Tue, 24 Aug 2021 11:24:32 +0300
Message-Id: <20210824082436.1555890-4-arseny@altlinux.org>
X-Mailer: git-send-email 2.32.0
In-Reply-To: <20210824082436.1555890-1-arseny@altlinux.org>
References: <20210824082436.1555890-1-arseny@altlinux.org>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-SA-Exim-Connect-IP: 10.15.13.28
X-SA-Exim-Mail-From: arseny@altlinux.org
X-SA-Exim-Version: 4.2.1
X-SA-Exim-Scanned: No (on mail.cs.msu.ru); Unknown failure
Cc: Arseny Maslennikov <arseny@altlinux.org>
Subject: [devel] [PATCH hasher-priv v3 3/7] chrootuid: explicitly reset
	signal mask before forking off payload
X-BeenThere: devel@lists.altlinux.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: ALT Linux Team development discussions <devel@lists.altlinux.org>
List-Id: ALT Linux Team development discussions <devel.lists.altlinux.org>
List-Unsubscribe: <https://lists.altlinux.org/mailman/options/devel>,
 <mailto:devel-request@lists.altlinux.org?subject=unsubscribe>
List-Archive: <http://lists.altlinux.org/pipermail/devel>
List-Post: <mailto:devel@lists.altlinux.org>
List-Help: <mailto:devel-request@lists.altlinux.org?subject=help>
List-Subscribe: <https://lists.altlinux.org/mailman/listinfo/devel>,
 <mailto:devel-request@lists.altlinux.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Aug 2021 08:25:06 -0000
Archived-At: <http://lore.altlinux.org/devel/20210824082436.1555890-4-arseny@altlinux.org/>
List-Archive: <http://lore.altlinux.org/devel/>
List-Post: <mailto:devel@altlinux.org>

Signed-off-by: Arseny Maslennikov <arseny@altlinux.org>
---
 hasher-priv/chrootuid.c | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/hasher-priv/chrootuid.c b/hasher-priv/chrootuid.c
index 89c112e..357d3ef 100644
--- a/hasher-priv/chrootuid.c
+++ b/hasher-priv/chrootuid.c
@@ -134,6 +134,11 @@ chrootuid(uid_t uid, gid_t gid, const char *ehome,
 	/* Set close-on-exec flag on all non-standard descriptors. */
 	cloexec_fds();
 
+	sigset_t sigmask;
+
+	sigemptyset(&sigmask);
+	sigprocmask(SIG_SETMASK, &sigmask, NULL);
+
 	block_signal_handler(SIGCHLD, SIG_BLOCK);
 
 	if ((pid = fork()) < 0)
-- 
2.32.0