git-server-git.apps.pok.os.sepia.ceph.com Git

author	Patrick Donnelly <pdonnell@redhat.com>
	Wed, 19 Oct 2016 23:10:14 +0000 (19:10 -0400)
committer	Patrick Donnelly <pdonnell@redhat.com>
	Thu, 20 Oct 2016 18:19:06 +0000 (14:19 -0400)
commit	ff0e521434acb8c57c65ce3d2a2b9af4cfe914f1
tree	f382b4fa326f486856a28c39bf062e8d995dccb0	tree \| snapshot
parent	60c008d4df1b9eb5307dc8336a0d9bb0562aabd2	commit \| diff

core: set dumpable flag after setuid

When ceph-* drops drops privileges via setuid, core dumps are no longer
generated because its DUMPABLE flag is cleared. We have to manually
turn that back on.

From prctl(2):

      Normally, this flag is set to 1.  However, it is reset to the current value contained in the file /proc/sys/fs/suid_dumpable (which by default has the value 0), in the fol‐
      lowing circumstances:

      *  The process's effective user or group ID is changed.

      *  The process's filesystem user or group ID is changed (see credentials(7)).

      *  The process executes (execve(2)) a set-user-ID or set-group-ID program, or a program that has capabilities (see capabilities(7)).

Fixes: http://tracker.ceph.com/issues/17650
Signed-off-by: Patrick Donnelly <pdonnell@redhat.com>