[sudo-commits] sudo changeset 14127:5e7b1828dbb0
Todd C. Miller
Todd.Miller at sudo.ws
Fri Jul 29 16:30:15 MDT 2022
changeset: 14127:5e7b1828dbb0 in /raid/repos/sudo
details: https://www.sudo.ws/repos/sudo/rev/5e7b1828dbb0
user: Todd C. Miller <Todd.Miller at sudo.ws>
date: Fri Jul 29 15:22:26 2022 -0600
Log Message:
Use PTRACE_EVENT_EXEC to stop execution before return from execve(2).
We can now verify that the arguments match what we accepted before
the command actually runs. If there is a mismatch, the process is
killed. Shell scripts must be handled specially since the path
executed will be the interpreter, not the script name.
Linux allows interpreters to be nested up to 4 deep.
diffstat:
src/exec_ptrace.c | 381 +++++++++++++++++++++++++++++++++++++++++++++++++----
1 files changed, 351 insertions(+), 30 deletions(-)
More information about the sudo-commits
mailing list