Re: [PLUG] /proc files owned by root for non-root user

K.S. Bhaskar via plug on 29 May 2020 15:21:33 -0700

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] /proc files owned by root for non-root user

From: "K.S. Bhaskar via plug" <plug@lists.phillylinux.org>
To: "Philadelphia Linux User's Group Discussion List" <plug@lists.phillylinux.org>
Subject: Re: [PLUG] /proc files owned by root for non-root user
Date: Fri, 29 May 2020 18:21:16 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=CDK/r99dUOyFw4t8MGqcvbNoYKD2546uVq6Duyw3bZc=; b=R/qTyo/vs6JTd6HnVML5o7JjLxRt/Jsay/EL6ZUnPDK39GE7T4QMw4iArHtcBqv3wi TkIf5bqxgJ+wrDBHSRlXOWK08FOxkfBR1mLobSnOBsMb/A1rcxuIaf4f8q4Sw67nPGTY 8SZUQj9FS+2I18i3grLRD4/WJpik5EyBYPVYWo99sjNuL/oGvLzJu1+oRT68T/s3AP/T ssLrCOR+d5QmS1+e9YITYrRr83MZti1AcYaL/GNmti17J4d9IH9XmK8CTgb8QLsVzxe7 UV8of0k3N46p/rDHMG/ToPna/vm1zUbF2I4XfI0USbxIYn4L4kQzUfFgsoeLj91h5Gx0 7gvg==
Reply-to: "K.S. Bhaskar" <ksbhaskar@gmail.com>
Sender: "plug" <plug-bounces@lists.phillylinux.org>

It seems to have something to do with setcap cap_ipc_lock, which is needed to use hugepages. But that still does not explain why some processes have a problem and others don't.

– Bhaskar

On Fri, May 29, 2020 at 5:37 PM K.S. Bhaskar <ksbhaskar@gmail.com> wrote:

The normal value of /proc/<pid>/coredump_filter is 0x33, but we set it on process startup to 0x73 as we want to include shared memory mapped by hugepages in coredumps. Writing 0x73 to that file has always worked for us and is indeed the appropriate mechanism to configure core dumps.

A customer has come up with a head-scratcher. A few of their processes (which run a utility program) end up with files under /proc owned by root for non-root processes, which means that writing 0x73 to /proc/<pid>/coredump_filter fails with a permissions error. The majority of processes have /proc files owned by the non-root users running the processes, and so writing to the file works as it should.

Any ideas on how /proc files for a non-root user process can end up getting owned by root? Something to do with SELinux maybe? All ideas welcome. Thank you in advance.

Regards
– Bhaskar

___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

Follow-Ups:
- Re: [PLUG] /proc files owned by root for non-root user
  - From: Steve Litt via plug <plug@lists.phillylinux.org>

References:
- [PLUG] /proc files owned by root for non-root user
  - From: "K.S. Bhaskar via plug" <plug@lists.phillylinux.org>

Prev by Date: Re: [PLUG] /proc files owned by root for non-root user
Next by Date: Re: [PLUG] /proc files owned by root for non-root user
Previous by thread: Re: [PLUG] /proc files owned by root for non-root user
Next by thread: Re: [PLUG] /proc files owned by root for non-root user
Index(es):
- Date
- Thread