safe_exec exits the child process directly on execve failure

stevegrubb · stevegrubb · commit fd40e02f84e4 · 2025-08-02T23:12:57.000-04:00
The child side of safe_exec calls exit(1) after a failed execve, which
can run atexit handlers and flush shared stdio buffers. The comment
notes this should “error instead of exit.”

Updated safe_exec in the audit daemon to terminate failing child
processes with _exit(EXIT_FAILURE) rather than exit(1), preventing
execution of atexit handlers and aligning shutdown behavior with
POSIX recommendations.
diff --git a/src/auditd-event.c b/src/auditd-event.c
@@ -1483,7 +1483,7 @@ static pid_t safe_exec(const char *exe)
 	argv[1] = NULL;
 	execve(exe, argv, NULL);
 	audit_msg(LOG_ALERT, "Audit daemon failed to exec %s", exe);
-	exit(1); /* FIXME: Maybe this should error instead of exit */
+	_exit(EXIT_FAILURE); // Avoid running the atexit handlers
 }
 
 static void reconfigure(struct auditd_event *e)

Original file line number	Diff line number	Diff line change
`@@ -1483,7 +1483,7 @@ static pid_t safe_exec(const char *exe)`
`1483`	`1483`	`argv[1] = NULL;`
`1484`	`1484`	`execve(exe, argv, NULL);`
`1485`	`1485`	`audit_msg(LOG_ALERT, "Audit daemon failed to exec %s", exe);`
`1486`		`- exit(1); /* FIXME: Maybe this should error instead of exit */`
	`1486`	`+ _exit(EXIT_FAILURE); // Avoid running the atexit handlers`
`1487`	`1487`	`}`
`1488`	`1488`
`1489`	`1489`	`static void reconfigure(struct auditd_event *e)`