git.ipfire.org Git - thirdparty/elfutils.git/commit

author	Mark Wielaard <mjw@redhat.com>
	Tue, 4 Aug 2015 10:20:20 +0000 (12:20 +0200)
committer	Mark Wielaard <mjw@redhat.com>
	Tue, 4 Aug 2015 13:29:58 +0000 (15:29 +0200)
commit	d950fcd511c79193ff1ed9a994826d6bb61e77c1
tree	f455f4f98792916f869134e4ab3c7ea84250513e	tree
parent	f9fc50c3eced243c0648fb0fbfe2c9877c25e1e4	commit \| diff

spec: Provide default-yama-scope.

When yama is enabled in the kernel it might be used to filter any user
space access which requires PTRACE_MODE_ATTACH like ptrace attach, access
to /proc/PID/{mem,personality,stack,syscall}, and the syscalls
process_vm_readv and process_vm_writev which are used for interprocess
services, communication and introspection (like synchronisation, signaling,
debugging, tracing and profiling) of processes.

These are precisely the things that libdw dwfl and ebl backends rely on.
So make sure they don't mysteriously fail in such cases by providing the
default yama scope sysctl value.

This is implemented as a separate subpackage that just provides this
functionality so other packages that don't directly rely on elfutils-libs
can also just Requires: default-yama-scope to function properly.
https://bugzilla.redhat.com/show_bug.cgi?id=1209492#c69

Signed-off-by: Mark Wielaard <mjw@redhat.com>

config/10-default-yama-scope.conf	[new file with mode: 0644]	blob
config/ChangeLog		diff \| blob \| blame \| history
config/Makefile.am		diff \| blob \| blame \| history
config/elfutils.spec.in		diff \| blob \| blame \| history