I was originally going to check if length == newlength but then couldn't see a reason to...

Can you use a const_cast here with a comment reassuring us that the name argument won't be modified based on some manpage or whatever?

Yessir!

They should be identical for normal programs run by the user, so whichever one is set to the nixbld user for a setuid program, right?

👍

It is possible that between listing the processes and the SIGSTOP, the process dies and the PID is reused by another user. After the SIGSTOP, we can take a look to see if the PID is owned by the build user we're wanting to kill. If it is our builder, SIGKILL it. If not, SIGCONT it.

@dezgeg was kind enough to point out SIGCONT to a SIGSTOP'd process, which was SIGSTOP'd before we got to it is rude... which is true, but jeeze, that means the processes exited, the pid recycled, started, and SIGSTOP'd within such a brief period of time. Still rude, but we tried (?)

Maybe we should do the kill's as the nixbld user instead?

Then if it fails due to EPERM, we just continue on our way

🔥

@copumpkin Probably this whole loop should just be done as the nixbld user (excluding the current process, of course)

It'd be really helpful if we could SIGKILL -1 and only kill things we own.

Sounds good, I'll run as subprocess again

But actually, if I run as subprocess, we need to start worrying about our siblings killing us again...

But if our siblings kill us we know there's a rogue

We don't check that it hasn't changed later, right?

Yeah I don't. Should I? My first thought was that I'd need to, but then I thought some more and convinced myself I wouldn't.

Nah, shouldn't be necessary, just need to update the comment

A brief description of why this helps inline would be nice.

Does this work for you @copumpkin ?

Trying this little program is giving really big length values:

#include <sys/sysctl.h>
#include <stdio.h>
#include <string.h>

#define UID 30001

int main() {
        size_t length = 0;
        int errno = 0;
        static const int name[4] = { CTL_KERN, KERN_PROC, KERN_PROC_UID, UID };
        errno = sysctl((int *)name, 4, NULL, &length, NULL, 0);
        printf("uid:%i length:%zu err:%s\n", UID, length, strerror(errno));
}

Maybe I screwed it up! I haven't actually run this yet 😄

Haha that's fine. I'll go through it and see whats works. Before now I had hoped apple would just fix the issue but 10.13.1 still has the issue. Google has the same line here though so maybe my c program is what's wrong:

https://chromium.googlesource.com/chromium/src/base/+/master/process/process_iterator_mac.cc#27

Well each process entry is actually a struct so that might be fairly large. How big are the values you're seeing? Also, now that I think about it, my vector might be too big, since I should probably divide it by the size of the struct.

Yep that looks more like it (ceacd3e):

Although it looks like it's the same regardless of the user:

euid:501 uid:501 length:344 err:Undefined error: 0
euid:501 uid:30001 length:344 err:Undefined error: 0

Weird, maybe we'll just need to filter by hand based on the struct?

Or maybe try KERN_PROC_RUID