Bug 91722

Summary: cannot ptrace process which has setuid()
Product: Red Hat Enterprise Linux 2.1 Reporter: Joe Orton <jorton>
Component: kernelAssignee: Larry Woodman <lwoodman>
Status: CLOSED WONTFIX QA Contact: Brian Brock <bbrock>
Severity: medium Docs Contact:
Priority: medium    
Version: 2.1   
Target Milestone: ---   
Target Release: ---   
Hardware: i686   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2012-06-20 13:20:03 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 106715    

Description Joe Orton 2003-05-27 16:12:30 UTC 
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.2.1) Gecko/20030225

Description of problem:
The ptrace security fixes were discovered to be buggy: they prevent ptrace()ing
a process which has called setuid().

This makes it very difficult, for instance, to debug an Apache httpd server.

Version-Release number of selected component (if applicable):
kernel-2.4.9-e.16

How reproducible:
Always

Steps to Reproduce:
1. service httpd start
2. ps axf # and find an httpd child
3. strace -p <thepid>
    
Actual Results:  attach: ptrace(PTRACE_ATTACH, ...): Operation not permitted

Expected Results:  normal strace output.

Additional info:

This was fixed in some of the kernel updates for RHL, e.g. kernel-2.4.20-13.9
works correctly.
Comment 2 Jason Baron 2003-11-20 19:07:16 UTC 
fixed for U3
Comment 3 Jiri Pallich 2012-06-20 13:20:03 UTC 
Thank you for submitting this issue for consideration in Red Hat Enterprise Linux. The release for which you requested us to review is now End of Life. 
Please See https://access.redhat.com/support/policy/updates/errata/

If you would like Red Hat to re-consider your feature request for an active release, please re-open the request via appropriate support channels and provide additional supporting details about the importance of this issue.