|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
strace can lie
Subject: strace can lie
From: Misha Dankov (Misha_Dankov
F9.N5037.Z2.FIDONET.ORG)
Date: Tue Dec 28 1999 - 03:51:32 CST
- Next message: Alan Cox: "Re: BUG? Non-root user can configure traffic shaper (2.2.13) (fwd)"
- Previous message: Thillmann, Rolf: "Re: HP Secure Web Console"
- Next in thread: der Mouse: "Re: strace can lie"
- Maybe reply: Misha Dankov: "strace can lie"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hello, all!
>> Any ideas how to get rid of this problem? It is nasty. It is
>> very nasty and makes strace unusable for anything
>> security-sensitive.
dM> Unfortunately, as long as the information is fetched from
dM> userland by userland via ptrace, with an opportunity for it to
dM> change before the kernel uses it, there is no hope for
dM> eliminating the race.
dM> If you really feel ambitious, you could try to make Linux support
dM> ktrace. :-)
I beleive there is a workaround: one can assign RealTime Scheduler to
debugger process (sched_setscheduler (strace_pid, SCHED_FIFO, p)) so it will
preempt any of processess being debugged. Of course, scheduling priority of
strace should be higher than one of process if process works under RT
scheduler too.
SY, Misha. [Linux Unregistered User]
- Next message: Alan Cox: "Re: BUG? Non-root user can configure traffic shaper (2.2.13) (fwd)"
- Previous message: Thillmann, Rolf: "Re: HP Secure Web Console"
- Next in thread: der Mouse: "Re: strace can lie"
- Maybe reply: Misha Dankov: "strace can lie"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
This archive was generated by hypermail 2b27 : Tue Dec 28 1999 - 10:06:50 CST