[systemd-bugs] [Bug 65575] CONFIG_GRKERNSEC_PROC prevents systemd's active users to have enough permission

bugzilla-daemon at freedesktop.org bugzilla-daemon at freedesktop.org
Mon Aug 18 07:10:25 PDT 2014


https://bugs.freedesktop.org/show_bug.cgi?id=65575

--- Comment #10 from Lennart Poettering <lennart at poettering.net> ---
(In reply to comment #9)
> Please reopen. This could be replicated on vanilla kernel by ”mount /proc
> -oremount,hidepid=1”

Well, this sounds useful, but I don't see how we can support this, we need
access to the PID directory of the sender of messages, to collect metadata,
there's really no way around it.

This also needed by policykit and similar software. I think the current concept
of hidepid=1 is really not compatible with how operating systems work these
days.

Unfortunately hidepid=1 is implemented as a global boolean setting, instead of
a per-/proc-instance setting. If it was the latter would neatly support it in
systemd, by simply enabling it for specific services, by placing them in a
mount namespace of their own and then mounting a /proc instance with the flag
set into them. But, unfortunately, hidepid=1 applies to all /proc instances the
same way currently, so we cannot do that. (This is fixable though in the
kernel, but nobody has done that yet).

-- 
You are receiving this mail because:
You are the QA Contact for the bug.
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freedesktop.org/archives/systemd-bugs/attachments/20140818/fd55108e/attachment.html>


More information about the systemd-bugs mailing list