[suspend] [patch 3/3] attach-fail-reasons: SELinux deny_ptrace
Jan Kratochvil
jan.kratochvil@redhat.com
Thu Mar 8 16:46:00 GMT 2012
On Thu, 08 Mar 2012 17:43:35 +0100, Tom Tromey wrote:
> I wonder whether ptrace-hardening approaches other than SELinux still
> have restrictions on PTRACE_TRACEME. If so then you may want a similar
> patch anyhow.
There is a note that YAMA does not restrict PTRACE_TRACEME, like I recommended
for SELinux 'deny_ptrace':
https://bugzilla.redhat.com/show_bug.cgi?id=786878#c17
While it is good to handle errors from system calls I am not sure it is worth
to complicate GDB this way for a case which does not happen in real world.
Regards,
Jan
More information about the Gdb-patches
mailing list