system: activate-ptrace-attach: Handle kernels without YAMA support.

* gnu/build/activation.scm (activate-ptrace-attach): Check for the existence
  of /proc/sys/kernel/yama/ptrace_scope before trying to write to it.
This commit is contained in:
Mark H Weaver 2015-05-09 12:57:36 -04:00
parent 57e95b261b
commit 15f0de0581
1 changed files with 5 additions and 3 deletions

View File

@ -369,9 +369,11 @@ found in Linux 3.4 onward that prevents users from attaching to their own
processes--see Yama.txt in the Linux source tree for the rationale. This
sounds like an unacceptable restriction for little or no security
improvement."
(call-with-output-file "/proc/sys/kernel/yama/ptrace_scope"
(let ((file "/proc/sys/kernel/yama/ptrace_scope"))
(when (file-exists? file)
(call-with-output-file file
(lambda (port)
(display 0 port))))
(display 0 port))))))
(define %current-system