Skip to content
Commit 9d8dad74 authored by Kees Cook's avatar Kees Cook Committed by James Morris
Browse files

Yama: higher restrictions should block PTRACE_TRACEME



The higher ptrace restriction levels should be blocking even
PTRACE_TRACEME requests. The comments in the LSM documentation are
misleading about when the checks happen (the parent does not go through
security_ptrace_access_check() on a PTRACE_TRACEME call).

Signed-off-by: default avatarKees Cook <keescook@chromium.org>
Cc: stable@vger.kernel.org # 3.5.x and later
Signed-off-by: default avatarJames Morris <james.l.morris@oracle.com>
parent f4ba394c
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment