Commit bf587677 authored by John Johansen's avatar John Johansen

Merge branch 'cboltz-dovecot-dumpable' into 'master'

dovecot: allow reading /proc/sys/fs/suid_dumpable

This is needed if a dovecot child process segfaults - in this case, dovecot provides a helpful error message like

dovecot[6179]: auth-worker: Fatal: master: service(auth-worker): child 8103 killed with signal 11 (core not dumped - https://dovecot.or /bugreport.html#coredumps - set /proc/sys/fs/suid_dumpable to 2)

which involves reading the current value in suid_dumpable.

I propose this fix for 2.10..master.

PR: !286Acked-by: 's avatarJohn Johansen <>
parents dedf977d 2202a8a2
Pipeline #39413084 passed with stages
in 10 minutes and 35 seconds
...@@ -38,6 +38,7 @@ profile dovecot /usr/{bin,sbin}/dovecot flags=(attach_disconnected) { ...@@ -38,6 +38,7 @@ profile dovecot /usr/{bin,sbin}/dovecot flags=(attach_disconnected) {
/etc/lsb-release r, /etc/lsb-release r,
/etc/SuSE-release r, /etc/SuSE-release r,
@{PROC}/@{pid}/mounts r, @{PROC}/@{pid}/mounts r,
@{PROC}/sys/fs/suid_dumpable r,
/usr/bin/doveconf rix, /usr/bin/doveconf rix,
/usr/lib/dovecot/anvil mrPx, /usr/lib/dovecot/anvil mrPx,
/usr/lib/dovecot/auth mrPx, /usr/lib/dovecot/auth mrPx,
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment