DragonFlyBSD Kernel Audit
← dashboard
DF-0126

TIOCCONS privilege check skipped when a_cred is NULL

Summary

TIOCCONS handler(:486-495) only runs caps_priv_check when a_cred!=NULL. If NULL, check skipped, constty cleared. Userspace ioctl always sets a_cred. Only destructive in clear-constty direction (redirect to physical console). Defense-in-depth.