Author: avg
Date: Sat Oct  6 19:23:44 2012
New Revision: 241281
URL: http://svn.freebsd.org/changeset/base/241281

Log:
  ktrace/kern_exec: check p_tracecred instead of p_cred
  
  .. when deciding whether to continue tracing across suid/sgid exec.
  Otherwise if root ktrace-d an unprivileged process and the processed
  exec-ed a suid program, then tracing didn't continue across exec.
  
  Reviewed by:  bde, kib
  MFC after:    22 days

Modified:
  head/sys/kern/kern_exec.c

Modified: head/sys/kern/kern_exec.c
==============================================================================
--- head/sys/kern/kern_exec.c   Sat Oct  6 19:19:32 2012        (r241280)
+++ head/sys/kern/kern_exec.c   Sat Oct  6 19:23:44 2012        (r241281)
@@ -691,7 +691,8 @@ interpret:
                setsugid(p);
 
 #ifdef KTRACE
-               if (priv_check_cred(oldcred, PRIV_DEBUG_DIFFCRED, 0))
+               if (p->p_tracecred != NULL &&
+                   priv_check_cred(p->p_tracecred, PRIV_DEBUG_DIFFCRED, 0))
                        ktrprocexec(p, &tracecred, &tracevp);
 #endif
                /*
_______________________________________________
svn-src-head@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/svn-src-head
To unsubscribe, send any mail to "svn-src-head-unsubscr...@freebsd.org"

Reply via email to