From: Albert Cahalan <albert@users.sf.net>
To: linux-kernel <linux-kernel@vger.kernel.org>, lkml@tlinx.org
Subject: Re: reading links in proc - permission denied
Date: Thu, 05 Jun 2003 22:03:49 -0400 [thread overview]
Message-ID: <1054865029.22103.6995.camel@cube> (raw)
> I'm misunderstanding something about links in proc.
>
> I thought 'ps', 'top' et al used /proc to display
> processes, command lines, etc.
>
> Since neither ps nor top are suid root, they are
> running with my uid permissions.
>
> However, if I do "ls -l" on /proc/<number>/exe, I get a
>
> "ls: cannot read symbolic link /proc/16714/exe: Permission denied"
>
> message.
All true, but you're assuming /proc/*/exe is used.
Nope. There is a parser for /proc/*/status and
/proc/*/stat, plus /proc/*/cmdline for args.
Please don't try this yourself. I can spot bugs
in almost any parser for these files. Consider
processes with names like these:
"\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n"
":-) 1 2 3 4 5 6"
"foo Pid: 42"
"x State: Z (z)"
> Now the process is owned by 'named', but the entries in
> diriectory are owned by root (is that right/logical?), thus:
It makes sense in general. An app running on behalf
of a user (with a non-root UID) may still contain
secret data gained via the prior UID.
It would be nice if the app could declare itself
free of this problem.
The restricted permission on /proc/*/exe is kind of
dumb though, considering that /proc/*/maps is wide open.
Ability to follow the link might need to be restricted,
since the link is (was?) magic. It acts somewhat like
a hard link, bypassing permissions along the path.
> Purely from a 'cleanliness' standpoint, is the
> environment owned by the user-id, or is it a common
> piece of public, kernel (root) owned data?
It's swappable. The process can muck with it.
> So why can't I follow the link of 'exe' to see what image the
> process is executing? Programs like 'ps' and 'top' seem to not
> have this difficulty.
I wish.
> Thanks for any insights...I'm trying to write a simple script
> looking for a running process (by looking at what 'exe' is
> pointing to). I would find it kludgey to achieve the objective
> by running 'ps' and doing appropriate filtering.
There's nothing wrong with parsing ps output. Be sure to split
on whitespace, and not by character position. You can also use
pgrep or pidof. For example:
ps -C foo -opid=
pgrep -u root sshd
pidof something
next reply other threads:[~2003-06-06 1:55 UTC|newest]
Thread overview: 7+ messages / expand[flat|nested] mbox.gz Atom feed top
2003-06-06 2:03 Albert Cahalan [this message]
2003-06-06 5:45 ` reading links in proc - permission denied linda w.
[not found] <200306141905.h5EJ57mE024740@leija.fmi.fi>
2003-06-14 20:55 ` linda w.
2003-06-14 21:10 ` Ray Olszewski
2003-06-14 22:09 ` root
-- strict thread matches above, loose matches on Subject: below --
2003-06-05 3:12 linda w.
2003-06-04 18:59 linda w.
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1054865029.22103.6995.camel@cube \
--to=albert@users.sf.net \
--cc=linux-kernel@vger.kernel.org \
--cc=lkml@tlinx.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).