[LU-11850] Relocating /proc/fs/lustre/ost to /sys/kernel/debug/lustre/ost prevents non-root access - Whamcloud Community JIRA

Details

Type: Bug
Resolution: Unresolved
Priority: Minor
Fix Version/s: Upstream
Affects Version/s: Lustre 2.12.0
Labels:
- llnl

Severity:
3
Rank (Obsolete):
9223372036854775807

Description

For security reasons /sys/kernel/debug is restrict to root only so by relocating /proc/fs/lustre/ost & mdt to /sys/kenrnel/debug/lustre breaks many tools such as 'performance co pilot" that run as non-privilege users. We rely on such tools to collect lustre metric.

We could change the permissions on /sys/kernel/debug but that is not good security practice. Can there be a build option to selected the location?

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

log_stats.txt
25 kB
24/Mar/24 10:27 AM

Issue Links

is duplicated by

LU-11988 Some lctl *_param values only readable by root

Resolved

is related to

LU-11988 Some lctl *_param values only readable by root

Resolved

LU-12244 lfs check subcommand no longer works as non-root user

Resolved

LU-12513 Address YAML limitations

Resolved

LU-17471 Add symlink /proc/fs/lustre/osd-*/*/brw_stats to /sys/kernel/debug/lustre/osd-*/*/brw_stats

Resolved

LU-18709 High frequency performance counters accessible to non-root users

Open

LU-12841 Add ability for lctl get_param to get subfield of YAML output

Open

LU-16164 Check params and make them valid YAML if they are designed to be

Open

LU-17472 Create programming wrappers (python, go) for liblustreapi Netlink stats API

Open

is related to

LU-8066 Move lustre procfs handling to sysfs and debugfs.

Open

LU-9680 Improve the user land to kernel space interface for lustre

In Progress

(4 is related to, 2 is related to )

Activity

[LU-11850] Relocating /proc/fs/lustre/ost to /sys/kernel/debug/lustre/ost prevents non-root access

James A Simmons added a comment - 24/Jan/24 1:02 AM

I updated patch 34256. Not perfect but is mostly works now. Give it a try. Note you will need the latest Lustre to make this work.

James A Simmons added a comment - 24/Jan/24 1:02 AM I updated patch 34256. Not perfect but is mostly works now. Give it a try. Note you will need the latest Lustre to make this work.

James A Simmons added a comment - 23/Jan/24 8:15 PM

Hello. Since you brought this up I do have a patch - https://review.whamcloud.com/c/fs/lustre-release/+/34256. After reading this I tracked down the crash I was seeing which was due to a really large message. Stats can be really huge amount of data. I need to adjust the skb. I do need to do more testing for what global_match() can handle.

James A Simmons added a comment - 23/Jan/24 8:15 PM Hello. Since you brought this up I do have a patch - https://review.whamcloud.com/c/fs/lustre-release/+/34256. After reading this I tracked down the crash I was seeing which was due to a really large message. Stats can be really huge amount of data. I need to adjust the skb. I do need to do more testing for what global_match() can handle.

Andreas Dilger added a comment - 23/Jan/24 4:28 PM

JT, the change of /sys/kernel/debug to root-only happened in the upstream kernel after Lustre started using it, so it would need a kernel patch on all clients (AFAIK), that I don't think anyone wants.

I haven't if there is an easy way to restructure the code back to using /proc/fs/lustre to make these stats available again, but that would probably be the least disruptive code change. The other option would be to add a dedicated "lparamfs" to hold all the Lustre stats so we don't have to deal with the kernel restrictions at all.

Andreas Dilger added a comment - 23/Jan/24 4:28 PM JT, the change of /sys/kernel/debug to root-only happened in the upstream kernel after Lustre started using it, so it would need a kernel patch on all clients (AFAIK), that I don't think anyone wants. I haven't if there is an easy way to restructure the code back to using /proc/fs/lustre to make these stats available again, but that would probably be the least disruptive code change. The other option would be to add a dedicated " lparamfs " to hold all the Lustre stats so we don't have to deal with the kernel restrictions at all.

Jean-Thomas Acquaviva added a comment - 23/Jan/24 3:57 PM

We would need to provide access to the statistics on the client side from non-root accesses. Such access is mandatory for many performance tools running in user space.

Probably the patch is of modest size, is it possible to have a hot-fix?

Jean-Thomas Acquaviva added a comment - 23/Jan/24 3:57 PM We would need to provide access to the statistics on the client side from non-root accesses. Such access is mandatory for many performance tools running in user space. Probably the patch is of modest size, is it possible to have a hot-fix?

Gerrit Updater added a comment - 16/Aug/23 1:44 PM

"James Simmons <jsimmons@infradead.org>" uploaded a new patch: https://review.whamcloud.com/c/fs/lustre-release/+/51959
Subject: LU-11850 lov: migrate completely to lu_tgt_descs API
Project: fs/lustre-release
Branch: master
Current Patch Set: 1
Commit: 8e49bf0a866c9214ac72bb85e2c49557615a3dd4

Gerrit Updater added a comment - 16/Aug/23 1:44 PM "James Simmons <jsimmons@infradead.org>" uploaded a new patch: https://review.whamcloud.com/c/fs/lustre-release/+/51959 Subject: LU-11850 lov: migrate completely to lu_tgt_descs API Project: fs/lustre-release Branch: master Current Patch Set: 1 Commit: 8e49bf0a866c9214ac72bb85e2c49557615a3dd4

James A Simmons added a comment - 14/Oct/21 4:17 PM

So I have been doing research into the different stat collectors out their. From what I see you can configure them to collect the data from the lustre utilities instead of attempting to read from the debugfs files directly. For example for collectd you would use:

Exec "myuser:mygroup" "myprog"

Exec "otheruser" "/path/to/another/binary" "arg0" "arg1"

NotificationExec "user" "/usr/lib/collectd/exec/handle_notification"

</Plugin>

Looking at LMT and performance co pilot it looks to be the same case. If we can get are utilities to work without root access we should be in good shape.

James A Simmons added a comment - 14/Oct/21 4:17 PM So I have been doing research into the different stat collectors out their. From what I see you can configure them to collect the data from the lustre utilities instead of attempting to read from the debugfs files directly. For example for collectd you would use: <Plugin exec> Exec "myuser:mygroup" "myprog" Exec "otheruser" "/path/to/another/binary" "arg0" "arg1" NotificationExec "user" "/usr/lib/collectd/exec/handle_notification" </Plugin> Looking at LMT and performance co pilot it looks to be the same case. If we can get are utilities to work without root access we should be in good shape.

James A Simmons added a comment - 14/Feb/19 3:11 PM

Just pushed a prototype patch which I'm going to use to discsuss Netlink API with other developers. It does sort of work with just md_stats but more is needed.

James A Simmons added a comment - 14/Feb/19 3:11 PM Just pushed a prototype patch which I'm going to use to discsuss Netlink API with other developers. It does sort of work with just md_stats but more is needed.

Gerrit Updater added a comment - 14/Feb/19 3:07 PM

James Simmons (uja.ornl@yahoo.com) uploaded a new patch: https://review.whamcloud.com/34256
Subject: LU-11850 obd: use netlink to get lustre stats
Project: fs/lustre-release
Branch: master
Current Patch Set: 1
Commit: 6c74e4ed15ad654b4a20925bd36b8cc0e014d34c

Gerrit Updater added a comment - 14/Feb/19 3:07 PM James Simmons (uja.ornl@yahoo.com) uploaded a new patch: https://review.whamcloud.com/34256 Subject: LU-11850 obd: use netlink to get lustre stats Project: fs/lustre-release Branch: master Current Patch Set: 1 Commit: 6c74e4ed15ad654b4a20925bd36b8cc0e014d34c

James A Simmons added a comment - 30/Jan/19 12:32 AM

I managed to get the basics working using netlink with obd stats. Just need to figure out how to link into the ptlrpc service.

James A Simmons added a comment - 30/Jan/19 12:32 AM I managed to get the basics working using netlink with obd stats. Just need to figure out how to link into the ptlrpc service.

James A Simmons added a comment - 15/Jan/19 9:52 PM - edited

The kernel has rules about what can be in sysfs. An excellent article covering these rules is here:

https://lwn.net/Articles/378884

Since Lustre has complex data files they are not allowed in sysfs. So the quick fix done for the linux client was moving it to debugfs . The point of this policy was due to proc becoming a dumpster. Now the dumpster is debugfs Note I have been avoiding the move of several files like stats to debugfs for the OpenSFS tree.

No fear netlink will resolve these issues. I have a prototypes partially working. I just need to work out the nesting of data. I see its the ptlrpc service stats.

James A Simmons added a comment - 15/Jan/19 9:52 PM - edited The kernel has rules about what can be in sysfs. An excellent article covering these rules is here: https://lwn.net/Articles/378884 Since Lustre has complex data files they are not allowed in sysfs. So the quick fix done for the linux client was moving it to debugfs . The point of this policy was due to proc becoming a dumpster. Now the dumpster is debugfs Note I have been avoiding the move of several files like stats to debugfs for the OpenSFS tree. No fear netlink will resolve these issues. I have a prototypes partially working. I just need to work out the nesting of data. I see its the ptlrpc service stats.

Mahmoud Hanafi added a comment - 15/Jan/19 9:37 PM

But why are we considering /sys/kenrel/debug/lustre/ost/... part of "debugging"

Mahmoud Hanafi added a comment - 15/Jan/19 9:37 PM But why are we considering /sys/kenrel/debug/lustre/ost/... part of "debugging"

People

Assignee:: James A Simmons

Reporter:: Mahmoud Hanafi

Votes:: 1 Vote for this issue

Watchers:: 17 Start watching this issue

Dates

Created:: 10/Jan/19 5:19 PM

Updated:: 21/Mar/25 7:06 PM