diff options
author | Andrey A. Chernov <ache@FreeBSD.org> | 1997-03-09 20:03:51 +0000 |
---|---|---|
committer | Andrey A. Chernov <ache@FreeBSD.org> | 1997-03-09 20:03:51 +0000 |
commit | bbea88d05df828af1b84cde61e73a57f456eef37 (patch) | |
tree | e223f59b2f2a019e265fb958fdccbe9c753aa4ff /usr.sbin/ppp/sig.c | |
parent | d025bca11220eec22b48f9b5daafd49ff9b28d3b (diff) | |
download | src-bbea88d05df828af1b84cde61e73a57f456eef37.tar.gz src-bbea88d05df828af1b84cde61e73a57f456eef37.zip |
I remove pending signals completely, they are not useless, they are
dangerous! Signal handlers themself must be fixed to not call malloc,
but no pended handlers, it will be correct fix. In finite case each signal
handler can set some variable which will be analized later, but calling
handler functions manually is too dangerous (f.e. signals not blocked while
the handler or handlers switch executed in this case). Of course this
code can be fixed instead of removing, but it not worth fixing in any case.
Should go into 2.2
In addition sig.c code shows following dangerous fragments (there can be more,
but I stop after two):
This fragment
if (fn == SIG_DFL || fn == SIG_IGN) {
handler[sig-1] = (sig_type)0;
<------------- here
signal(sig,fn);
} else {
cause NULL pointer reference when signal comes
"here", but more worse fragment is below:
void handle_signals() {
int sig;
if (caused)
for (sig=0; sig<__MAXSIG; sig++, caused>>=1)
if (caused&1)
(*handler[sig])(sig+1);
}
caused is bitmask which set corresponding bit on each signal coming.
And now imagine, what happens when some signal comes (bit sets) while loop
is executed (see caused>>=1 !!!)
In this light carrier drop situation was (as gdb shows)
1. SIGSEGV in handle_signals because some junk called as *handler reference.
2. Since SIGSEGV was pended too (== never happens),
it can cause various range of disasters.
Notes
Notes:
svn path=/head/; revision=23584
Diffstat (limited to 'usr.sbin/ppp/sig.c')
-rw-r--r-- | usr.sbin/ppp/sig.c | 91 |
1 files changed, 0 insertions, 91 deletions
diff --git a/usr.sbin/ppp/sig.c b/usr.sbin/ppp/sig.c deleted file mode 100644 index 9763dab5718c..000000000000 --- a/usr.sbin/ppp/sig.c +++ /dev/null @@ -1,91 +0,0 @@ -/*- - * Copyright (c) 1997 - * Brian Somers <brian@awfulhak.demon.co.uk>. All rights reserved. - * - * Redistribution and use in source and binary forms, with or without - * modification, are permitted provided that the following conditions - * are met: - * 1. Redistributions of source code must retain the above copyright - * notice, this list of conditions and the following disclaimer. - * 2. Redistributions in binary form must reproduce the above copyright - * notice, this list of conditions and the following disclaimer in the - * documentation and/or other materials provided with the distribution. - * 3. Neither the name of the University nor the names of its contributors - * may be used to endorse or promote products derived from this software - * without specific prior written permission. - * - * THIS SOFTWARE IS PROVIDED ``AS IS'' AND - * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE - * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE - * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE - * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL - * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS - * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) - * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT - * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY - * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF - * SUCH DAMAGE. - * - * $Id: sig.c,v 1.3 1997/02/23 20:01:19 brian Exp $ - * - * TODO: - * - */ - -#include <sys/cdefs.h> -#include "sig.h" -#include <sys/types.h> -#include <signal.h> -#include "mbuf.h" -#include "log.h" - -#define __MAXSIG (32) /* Sizeof u_long: Make life convenient.... */ -static u_long caused; /* A mask of pending signals */ -static sig_type handler[ __MAXSIG ]; /* all start at SIG_DFL */ - - -/* Record a signal in the "caused" mask */ - -static void signal_recorder(int sig) { - if (sig > 0 && sig <= __MAXSIG) - caused |= (1<<(sig-1)); -} - - -/* - set up signal_recorder, and record handler as the function to ultimately - call in handle_signal() -*/ - -sig_type pending_signal(int sig,sig_type fn) { - sig_type Result; - - if (sig <= 0 || sig > __MAXSIG) { - /* Oops - we must be a bit out of date (too many sigs ?) */ - logprintf("Eeek! %s:%s: I must be out of date!\n",__FILE__,__LINE__); - return signal(sig,fn); - } - - Result = handler[sig-1]; - if (fn == SIG_DFL || fn == SIG_IGN) { - handler[sig-1] = (sig_type)0; - signal(sig,fn); - } else { - handler[sig-1] = fn; - signal(sig,signal_recorder); - } - caused &= ~(1<<(sig-1)); - return Result; -} - - -/* Call the handlers for any pending signals */ - -void handle_signals() { - int sig; - - if (caused) - for (sig=0; sig<__MAXSIG; sig++, caused>>=1) - if (caused&1) - (*handler[sig])(sig+1); -} |