- Jun 13, 2024
-
-
Giuseppe Avolio authored
Temporary variables are referenced beyond their lifetime See merge request atlas-tdaq-software/ProcessManager!10
-
Reiner Hauser authored
Promoting them to top level scope in main() solves this. This is only happening on the 'sudo' code path,
-
- Apr 30, 2024
-
-
Giuseppe Avolio authored
-
- Nov 06, 2023
-
-
Giuseppe Avolio authored
(ADTCC-330)
-
- Oct 29, 2023
-
-
Reiner Hauser authored
Somewhere between EOS upgrades the directory for credentials changed from /var/run/eosd/credentials to /var/run/eos/credentials On CC7 machines there seem to be both (e.g. lxplus7), but only the latter is used.
-
- Oct 28, 2023
-
-
Reiner Hauser authored
We want to check if the content of $KRB5CCNAME (a string) is the same as the value of the EOS credential symlink. We call filesystem::read_symlink() to get the value of the link, but that returns a filesystem::path. When a path is implicitly converted to a string, it has a leading and trailing quote character. The result is that the comparison we do always fails, leading to the repeated execution of eosfusebind. Converting the path explicitly to a std::string avoids this.
-
- Oct 23, 2023
-
-
Giuseppe Avolio authored
-
- Aug 28, 2023
-
-
Giuseppe Avolio authored
-
- Aug 24, 2023
-
-
Giuseppe Avolio authored
-
- Jan 10, 2023
-
-
Giuseppe Avolio authored
-
- Mar 02, 2022
-
-
Giuseppe Avolio authored
Hack for keyutils.h on CentOS 9 See merge request atlas-tdaq-software/ProcessManager!9
-
- Mar 01, 2022
-
-
Reiner Hauser authored
They changed one the parameter names for a function to 'private'...
-
- Feb 28, 2022
-
-
Giuseppe Avolio authored
Fix execution in sudo path See merge request atlas-tdaq-software/ProcessManager!8
-
- Feb 26, 2022
-
-
Reiner Hauser authored
The LD_LIBRARY_PATH variable has to be explicitly passed on the sudo command line, since sudo is itself a suid executable. The final execvp() call has to take the program from the argument list, since it depends on if we wrap it into sudo or not. Since we construct the path we can use execv() and don't do a search in PATH.
-
- Feb 25, 2022
-
-
Giuseppe Avolio authored
sudo based PMGLauncher See merge request atlas-tdaq-software/ProcessManager!2
-
- Jan 14, 2022
-
-
Giuseppe Avolio authored
-
- Dec 14, 2021
-
-
Reiner Hauser authored
If TDAQ_PMG_USE_SUDO=1 the PMGLauncher will rely on sudo to change uid/gids rather than on being a SUID executable. Note that this has highest priority and will fail if sudo does not allow the transition. Otherwise it falls back to old behaviour: - if it is suid, change uid/gid for new process - else execute as current uid
-
- Dec 09, 2021
-
-
Giuseppe Avolio authored
Next round of ProcessManager patches See merge request atlas-tdaq-software/ProcessManager!7
-
Reiner Hauser authored
This way it is already set in the pmglauncher process and will be used by EOS to check access permissions in case an executable is on a protected EOS area.
-
- Dec 06, 2021
-
-
Reiner Hauser authored
Otherwise we do random stuff with random data.
-
Reiner Hauser authored
Use find_library() instead, otherwise the compiler will just add a -lkeyutils which fails in a cross-compilation scenario.
-
- Nov 16, 2021
-
-
Giuseppe Avolio authored
-
Giuseppe Avolio authored
-
- Oct 11, 2021
-
-
Giuseppe Avolio authored
First version of using keyutils in launcher. See merge request atlas-tdaq-software/ProcessManager!6
-
- Oct 08, 2021
-
-
Reiner Hauser authored
-
Reiner Hauser authored
Use std::ifstream and std::filesystem instead of low-level Posix open/read/close.
-
- Oct 07, 2021
-
-
Reiner Hauser authored
-
Reiner Hauser authored
We basically check if the binding for current uid/session already exists, and if it agrees with $KRBCCNAME we do nothing. This avoids starting a shell script for every process which may block on a lockfile just to do the same thing as every other process with the same uid started at this time. The downside is the pretty ugly code as the credential file name contains the uid (easy), session id (easy) and the start time of the session leader (must use /proc/${sid}/stats).
-
- Oct 06, 2021
-
-
Reiner Hauser authored
-
Giuseppe Avolio authored
-
- Oct 05, 2021
-
-
Giuseppe Avolio authored
Fix credential check if tokens are not enabled. See merge request atlas-tdaq-software/ProcessManager!5
-
- Oct 04, 2021
-
-
Reiner Hauser authored
-
- May 04, 2021
-
-
Giuseppe Avolio authored
-
- Mar 02, 2021
-
-
Giuseppe Avolio authored
-
- Mar 01, 2021
-
-
Giuseppe Avolio authored
-
- Feb 23, 2021
-
-
Reiner Hauser authored
-
- Feb 18, 2021
-
-
Giuseppe Avolio authored
-
- Feb 09, 2021
-
-
Giuseppe Avolio authored
-
Giuseppe Avolio authored
-
Giuseppe Avolio authored
-