Bug 1528633
| Summary: | ptrace behavior with setuid programs busted | ||||||
|---|---|---|---|---|---|---|---|
| Product: | [Fedora] Fedora | Reporter: | Tom Horsley <horsley1953> | ||||
| Component: | kernel | Assignee: | Kernel Maintainer List <kernel-maint> | ||||
| Status: | CLOSED INSUFFICIENT_DATA | QA Contact: | Fedora Extras Quality Assurance <extras-qa> | ||||
| Severity: | unspecified | Docs Contact: | |||||
| Priority: | unspecified | ||||||
| Version: | 27 | CC: | airlied, ajax, bskeggs, ewk, hdegoede, horsley1953, ichavero, itamar, jarodwilson, jglisse, john.j5live, jonathan, josef, kernel-maint, linville, mchehab, mjg59, steved | ||||
| Target Milestone: | --- | ||||||
| Target Release: | --- | ||||||
| Hardware: | Unspecified | ||||||
| OS: | Unspecified | ||||||
| Whiteboard: | |||||||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |||||
| Doc Text: | Story Points: | --- | |||||
| Clone Of: | Environment: | ||||||
| Last Closed: | 2018-03-23 16:48:28 UTC | Type: | Bug | ||||
| Regression: | --- | Mount Type: | --- | ||||
| Documentation: | --- | CRM: | |||||
| Verified Versions: | Category: | --- | |||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||
| Embargoed: | |||||||
| Attachments: |
|
||||||
|
Description
Tom Horsley
2017-12-22 13:15:14 UTC
Created attachment 1371263 [details]
gzipped tarball of ptest test directory
Don't extract this to some place like /tmp which is mounted with nosuid because the results will be very confusing.
In case anyone wonders why I need this: If you need to debug something buried down in a complicated startup script, it is much simpler to do that if you can just run the script under the debugger, follow all process creation and really debug once it starts the program of interest. Sometimes these scripts have side effects setting things up down a fork that runs a setuid program. Since the script wouldn't work right if the setuid program lost privileges, I arrange to notice I just execed one, patch code into it to make it re-exec itself, then detach from it, thus allowing things to proceed exactly as they would have if not under the debugger. I'd be more than happy to simplify this if someone added an PTRACE_SETOPTIONS flag that did something like: "rip process away from debugger and detach to let it run with its normal privileges" since that's basically what I do with the much more complicated patch/detach/re-exec sequence. (I guess there would need to be something that let's the debugger know this just happened as well). More info may accumulate in this lkml thread: http://lkml.iu.edu/hypermail/linux/kernel/1712.2/04964.html There is already one reply pointing at a possible culprit. I see a patch has now appeared in this thread: http://lkml.iu.edu/hypermail/linux/kernel/1801.0/01341.html We apologize for the inconvenience. There is a large number of bugs to go through and several of them have gone stale. As kernel maintainers, we try to keep up with bugzilla but due the rate at which the upstream kernel project moves, bugs may be fixed without any indication to us. Due to this, we are doing a mass bug update across all of the Fedora 27 kernel bugs. Fedora 27 has now been rebased to 4.15.3-300.f27. Please test this kernel update (or newer) and let us know if you issue has been resolved or if it is still present with the newer kernel. If you experience different issues, please open a new bug report for those. *********** MASS BUG UPDATE ************** This bug is being closed with INSUFFICIENT_DATA as there has not been a response in 4 weeks. If you did actually update, we apologize for the inconvenience (there are a lot of bugs). If you are still experiencing this issue, please reopen and attach the relevant data from the latest kernel you are running and any data that might have been requested previously. The needinfo request[s] on this closed bug have been removed as they have been unresolved for 1000 days |