[PATCH] security: reinstate extra ptrace security check in pagemap_read

Please review. If it's ok, it should probably go into 2.6.26. --- From: James Morris <jmorris@namei.org> Date: Tue, 8 Jul 2008 10:10:47 +0900 Subject: [PATCH] security: reinstate extra ptrace security check in pagemap_read Recent changes to the pagemap_read code removed a call to ptrace_may_attach(), which is required to handle the case where a different process acquires the mmap_sem semaphore after the first check. Signed-off-by: James Morris <jmorris@namei.org> --- fs/proc/task_mmu.c | 6 ++++++ 1 files changed, 6 insertions(+), 0 deletions(-) diff --git a/fs/proc/task_mmu.c b/fs/proc/task_mmu.c index c492449..57cd6fa 100644 --- a/fs/proc/task_mmu.c +++ b/fs/proc/task_mmu.c @@ -685,6 +685,12 @@ static ssize_t pagemap_read(struct file *file, char __user *buf, goto out_pages; }
+ /* Need to re-check in case someone else acquired semaphore */
+ if (!ptrace_may_attach(task)) {
+ ret = -EIO;
+ goto out_pages;
+ }
+
pm.out = (u64 *)buf; pm.end = (u64 *)(buf + count); -- 1.5.5.1 -- To unsubscribe from this list: send the line "unsubscribe linux-security-module" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html

• This message: [ Message body ]
• Next message: James Morris: "Re: [PATCH] security: reinstate extra ptrace security check in pagemap_read"
• Previous message: Serge E. Hallyn: "Re: [rfc patch 2/2] security: remove dummy module"
• Next in thread: James Morris: "Re: [PATCH] security: reinstate extra ptrace security check in pagemap_read"
• Reply: James Morris: "Re: [PATCH] security: reinstate extra ptrace security check in pagemap_read"

• Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]