Re: 2.4+ptrace exploit fix breaks root's ability to strace

From: Arjan van de Ven (arjanv@redhat.com)
Date: Sat Mar 22 2003 - 12:28:54 EST

Next message: Wichert Akkerman: "Re: 2.5.65 Oopses on scsi initialisation"
Previous message: John Kim: "[PATCH 2.5.65-bk3] compile fix for drivers/media/dvb/dvb-core/dvbdev.c"
In reply to: Russell King: "Re: 2.4+ptrace exploit fix breaks root's ability to strace"
Next in thread: Alan Cox: "Re: 2.4+ptrace exploit fix breaks root's ability to strace"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sat, Mar 22, 2003 at 05:13:12PM +0000, Russell King wrote:
>
> int ptrace_check_attach(struct task_struct *child, int kill)
> {
> ...
> + if (!is_dumpable(child))
> + return -EPERM;
> }
>
> So, we went from being able to ptrace daemons as root, to being able to
> attach daemons and then being unable to do anything with them, even if
> you're root (or have the CAP_SYS_PTRACE capability). I think this
> behaviour is getting on for being described as "insane" 8) and is
> clearly wrong.

ok it seems this check is too strong. It *has* to check
child->task_dumpable and return -EPERM, but child->mm->dumpable is not
needed.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Wichert Akkerman: "Re: 2.5.65 Oopses on scsi initialisation"
Previous message: John Kim: "[PATCH 2.5.65-bk3] compile fix for drivers/media/dvb/dvb-core/dvbdev.c"
In reply to: Russell King: "Re: 2.4+ptrace exploit fix breaks root's ability to strace"
Next in thread: Alan Cox: "Re: 2.4+ptrace exploit fix breaks root's ability to strace"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Sun Mar 23 2003 - 22:00:41 EST