fix obscure problem involving ptrace of init
This commit is contained in:
tls
parent
5d8adb683d
commit
3052b5a949
@ -1,4 +1,4 @@
|
|||||||
/* $NetBSD: sys_process.c,v 1.54 1996/02/09 19:00:14 christos Exp $ */
|
/* $NetBSD: sys_process.c,v 1.55 1996/05/15 06:17:47 tls Exp $ */
|
||||||
|
|
||||||
/*-
|
/*-
|
||||||
* Copyright (c) 1994 Christopher G. Demetriou. All rights reserved.
|
* Copyright (c) 1994 Christopher G. Demetriou. All rights reserved.
|
||||||
@ -96,6 +96,7 @@ sys_ptrace(p, v, retval)
|
|||||||
if (SCARG(uap, req) == PT_TRACE_ME)
|
if (SCARG(uap, req) == PT_TRACE_ME)
|
||||||
t = p;
|
t = p;
|
||||||
else {
|
else {
|
||||||
|
|
||||||
/* Find the process we're supposed to be operating on. */
|
/* Find the process we're supposed to be operating on. */
|
||||||
if ((t = pfind(SCARG(uap, pid))) == NULL)
|
if ((t = pfind(SCARG(uap, pid))) == NULL)
|
||||||
return (ESRCH);
|
return (ESRCH);
|
||||||
@ -123,12 +124,21 @@ sys_ptrace(p, v, retval)
|
|||||||
|
|
||||||
/*
|
/*
|
||||||
* (3) it's not owned by you, or is set-id on exec
|
* (3) it's not owned by you, or is set-id on exec
|
||||||
* (unless you're root).
|
* (unless you're root), or...
|
||||||
*/
|
*/
|
||||||
if ((t->p_cred->p_ruid != p->p_cred->p_ruid ||
|
if ((t->p_cred->p_ruid != p->p_cred->p_ruid ||
|
||||||
ISSET(t->p_flag, P_SUGID)) &&
|
ISSET(t->p_flag, P_SUGID)) &&
|
||||||
(error = suser(p->p_ucred, &p->p_acflag)) != 0)
|
(error = suser(p->p_ucred, &p->p_acflag)) != 0)
|
||||||
return (error);
|
return (error);
|
||||||
|
|
||||||
|
/*
|
||||||
|
* (4) ...it's init, which controls the security level
|
||||||
|
* of the entire system, and the system was not
|
||||||
|
* compiled with permanently insecure mode turned
|
||||||
|
* on.
|
||||||
|
*/
|
||||||
|
if ((t->p_pid == 1) && (securelevel > -1))
|
||||||
|
return (EPERM);
|
||||||
break;
|
break;
|
||||||
|
|
||||||
case PT_READ_I:
|
case PT_READ_I:
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user