Skip to content

Commit

Permalink
internal: detect if /proc/self/auxv is not readable due to file caps
Browse files Browse the repository at this point in the history 
As reported by Daniel Xu, setting capabilities on an executable file
will prevent reading /proc/self/auxv since the file is owned by root.
The work arounds to this have various trade offs, so the best we can
do is tell the user why we failed and hope they check out our
discussion or create an issue.

See #823
  • Loading branch information
@lmb @ti-mo
lmb authored and ti-mo committed Oct 26, 2022
1 parent 2fd2902 commit d88b1b8
Showing 1 changed file with 3 additions and 0 deletions.
3 changes: 3 additions & 0 deletions internal/vdso.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,6 +23,9 @@ func vdsoVersion() (uint32, error) {
// to the process. Go does not expose that data, so we must read it from procfs.
// https://man7.org/linux/man-pages/man3/getauxval.3.html
av, err := os.Open("/proc/self/auxv")
if errors.Is(err, unix.EACCES) {
return 0, fmt.Errorf("opening auxv: %w (process may not be dumpable due to file capabilities)", err)
}
if err != nil {
return 0, fmt.Errorf("opening auxv: %w", err)
}
Expand Down

0 comments on commit d88b1b8

Please sign in to comment.