Strange strace and setuid behaviour: permission denied under strace, but not running normally.

Posted by Autopulated on Super User See other posts from Super User or by Autopulated
Published on 2011-02-19T18:44:54Z Indexed on 2011/02/20 15:27 UTC
Read the original article Hit count: 420

Filed under:

shell-script

|

strace

|

setuid

This is related to this question.

I have a script (fix-permissions.sh) that fixes some file permissions:

#! /bin/bash 
sudo chown -R person:group /path/
sudo chmod -R g+rw /path/

And a small c program to run this, which is setuided:

#include "sys/types.h"
#include "unistd.h"
int main(){
    setuid(geteuid());
    return system("/path/fix-permissions.sh");
}

Directory:

-rwsr-xr-x  1 root  root  7228 Feb 19 17:33 fix-permissions
-rwx--x--x  1 root  root   112 Feb 19 13:38 fix-permissions.sh

If I do this, everything seems fine, and the permissions do get correctly fixed:

       james $ sudo su someone-else
someone-else $ ./fix-permissions

but if I use strace, I get:

someone-else $ strace ./fix-permissions
/bin/bash: /path/fix-permissions.sh: Permission denied

It's interesting to note that I get the same permission denied error with an identical setup (permissions, c program), but a different script, even when not using strace. Is this some kind of heureustic magic behaviour in setuid that I'm uncovering?

How should I figure out what's going on?

System is Ubuntu 10.04.2 LTS, Linux 2.6.32.26-kvm-i386-20101122 #1 SMP

© Super User or respective owner

Related posts about shell-script

How to Use USER_DEFINED Activity in OWB Process Flow

as seen on Oracle Blogs - Search for 'Oracle Blogs'
Process Flow is a very important component of Oracle Warehouse Builder. With Process Flow, we can create and control the ETL process by setting all kinds of activities in a well-constructed flow. In Oracle Warehouse Builder 11gR2, there are 28 kinds of activities, which fall into three categories:… >>> More
How To Run A Shell Script Again And Again Having X Interval Of Time?

as seen on Ask Ubuntu - Search for 'Ask Ubuntu'
I have a shell script in my Ubuntu Server 14.04 LTS at ./ShellScript.sh. I setup /etc/rc.local to run the shell script after boot but before login using below code. Run this: sudo nano /etc/rc.local then add following and save. #!/bin/sh -e # # rc.local # # This script is executed at the end of… >>> More
Getting output of a shell script in Cocoa

as seen on Stack Overflow - Search for 'Stack Overflow'
Is there a way that lets me run a shell script, and display the output in an NSTextView? I do not want any input from the user to the shell script at all, since is is just called to compile a buch of files. The shell script part works fine so far, but I just can't figure out how to run it and show… >>> More
How to process Perl array element in Shell script

as seen on Stack Overflow - Search for 'Stack Overflow'
For ex : in PERL @array = (1,2,3); system ("/tmp/a.sh @array" ); In shell script how to handle this array in shell script how to handle the shell script to receive as arguments? and how to use that array variable in shell script >>> More
Unix shell script with Iseries command

as seen on Stack Overflow - Search for 'Stack Overflow'
I am trying to ftp a file from unix to as400 and executing iseries command in the script. ftp is working fine,I am getting an error in jobd command as HOST=KCBNSXDD.svr.us.bank.net USER=test PASS=1234 #This is the password for the FTP user. ftp -env $HOST << EOF… >>> More

Related posts about strace

Why do strace/truss sometimes 'fix' stuck processes?

as seen on Super User - Search for 'Super User'
Sometimes you have a stuck process that's been stuck for a while, and as soon as you go to poke at it with strace/truss just to see what's going on, it gets magically unstuck and continues to run! So from merely 'observing' these programs have some impact in the running of the stuck programs .. … >>> More
how do i use strace to know about system calls in my C program

as seen on Stack Overflow - Search for 'Stack Overflow'
Hi all, I wanted to know how can i use strace function to trace system calls in my C program and also use it for debugging my code. regs adi >>> More
using strace with mpiexec

as seen on Stack Overflow - Search for 'Stack Overflow'
Hello How to strace all processes of mpi parallel job, started with mpiexec (mpich2, linux)? -o will mess outputs from different processes >>> More
How do I silence strace's message "[ Process PID=15733 runs in 64 bit mode. ]" ?

as seen on Super User - Search for 'Super User'
I'm using memoize.py, but strace keeps injecting the following into the program output each time a process is executed: [ Process PID=15733 runs in 64 bit mode. ] or [ Process PID=16503 runs in 32 bit mode. ] How can I silence strace such that it doesn't inject these statements into the log… >>> More
How would you simplify this command?

as seen on Server Fault - Search for 'Server Fault'
I'm quite new to strace / netstat / etc. I'm using this command to get a trace of the apache process handling my request (telnet), is there a way to simplify it a bit? sudo strace -o /tmp/strace -f -s4096 -r -p $(netstat -antlp | \ grep $(lsof -p `pidof telnet` | grep TCP | \ perl -n -e'/localhost:(\d+)/… >>> More