Disallow a debugger on 64bit system to set fs/gs bases of the 32bit

process beyond the end of the process address space. Such setting is not dangerous to the kernel integrity, but it causes confusing application misbehaviour. Sponsored by: The FreeBSD Foundation MFC after: 12 days
2015-07-01 16:37:03 +00:00 · 2015-07-01 16:37:03 +00:00 · 3ce8c94f29
commit 3ce8c94f29
parent 02e9fc7858
1 changed files with 1 additions and 1 deletions
--- a/sys/amd64/amd64/ptrace_machdep.c
+++ b/sys/amd64/amd64/ptrace_machdep.c
@ -231,7 +231,7 @@ cpu_ptrace(struct thread *td, int req, void *addr, int data)
 		error = copyin(addr, &rv, sizeof(rv));
 		if (error != 0)
 			break;
-		if (rv >= VM_MAXUSER_ADDRESS) {
+		if (rv >= td->td_proc->p_sysent->sv_maxuser) {
 			error = EINVAL;
 			break;
 		}