do not permit ptrace attach to immutable executable

1 files changed, 10 insertions, 1 deletions

diff --git a/sys/kern/sys_process.c b/sys/kern/sys_process.c
index fa31c1247c4..daa5a16b115 100644
--- a/sys/kern/sys_process.c
+++ b/sys/kern/sys_process.c
@@ -1,4 +1,4 @@
-/*	$OpenBSD: sys_process.c,v 1.4 1996/07/29 14:51:41 deraadt Exp $	*/
+/*	$OpenBSD: sys_process.c,v 1.5 1998/06/09 18:13:45 deraadt Exp $	*/
 /*	$NetBSD: sys_process.c,v 1.55 1996/05/15 06:17:47 tls Exp $	*/
 
 /*-
@@ -59,6 +59,8 @@
 #include <sys/errno.h>
 #include <sys/ptrace.h>
 #include <sys/uio.h>
+#include <sys/vnode.h>
+#include <sys/stat.h>
 #include <sys/user.h>
 
 #include <sys/mount.h>
@@ -91,6 +93,7 @@ sys_ptrace(p, v, retval)
 	struct proc *t;				/* target process */
 	struct uio uio;
 	struct iovec iov;
+	struct vattr va;
 	int error, write;
 
 	/* "A foolish consistency..." XXX */
@@ -147,6 +150,12 @@ sys_ptrace(p, v, retval)
 		 */
 		if ((t->p_pid == 1) && (securelevel > -1))
 			return (EPERM);
+
+		error = VOP_GETATTR(t->p_textvp, &va, p->p_ucred, p);
+		if (error)
+			return (error);
+		if (va.va_flags & IMMUTABLE)
+			return (EPERM);
 		break;
 
 	case  PT_READ_I: