Search
Search

Permission denied on perf_event_open, is there another way than to use sudo or changing the perf_event_paranoid file?

debugcn Published at Dev
11
930404JP

The only information I could find about the topic is this link:perf_event_open always returns -1, which propose to configure with CONFIG_HW_PERF_EVENTS from what I understood, but I still get the same problem.

I'm implementing a program inspired by the man page of perf_event_open:

static long
       perf_event_open(struct perf_event_attr *hw_event, pid_t pid,
                       int cpu, int group_fd, unsigned long flags)
       {
           int ret;

           ret= syscall(__NR_perf_event_open, hw_event, pid, cpu,
                          group_fd, flags);
           return ret;
       }
struct perf_event_attr pe;

int pid = fork();

if (pid > 0 ) {

memset(&pe, 0, sizeof(pe));
           pe.type = PERF_TYPE_HARDWARE;
           pe.size = sizeof(pe);
           pe.config = PERF_COUNT_HW_CPU_CYCLES;
           pe.disabled = 0;
           pe.exclude_kernel = 0;
           pe.exclude_hv = 0;   
            
           fd = perf_event_open(&pe, pid, -1, -1, 0);
if (fd == -1) {
               perror(0);
              exit(EXIT_FAILURE);
           }
}

I always get a -1 return for fd and perror indicates that permission is denied.

Of course I can work around the problem using sudo, but is there another way to allow permission to execute perf_event_open?

PS: I don't want to change the perf_event_paranoid file, which makes the program work when set at -1; I assume it will be at 2.

Andrew Henle

The RETURN VALUE section of the Linux perf_event_open() system call states in part:

   ...

   EACCES Returned when the requested event requires CAP_PERFMON
          (since Linux 5.8) or CAP_SYS_ADMIN permissions (or a more
          permissive perf_event paranoid setting).  Some common
          cases where an unprivileged process may encounter this
          error: attaching to a process owned by a different user;
          monitoring all processes on a given CPU (i.e., specifying
          the pid argument as -1); and not setting exclude_kernel
          when the paranoid setting requires it.

   ...

   EPERM  Returned on many (but not all) architectures when an
          unsupported exclude_hv, exclude_idle, exclude_user, or
          exclude_kernel setting is specified.

          It can also happen, as with EACCES, when the requested
          event requires CAP_PERFMON (since Linux 5.8) or
          CAP_SYS_ADMIN permissions (or a more permissive perf_event
          paranoid setting).  This includes setting a breakpoint on
          a kernel address, and (since Linux 3.13) setting a kernel
          function-trace tracepoint.

From the example code posted, the values pe.exclude_kernel = 0; or pe.exclude_hv = 0; are likely causing permission issues given your statement about the paranoid setting.

Collected from the Internet

Please contact [email protected] to delete if infringement.

edited at
0

Comments

0 comments
Login to comment

Related

From Dev

Security implications of changing “perf_event_paranoid”

From Dev

perf_event_open always returns -1

From Dev

Retrieve Callchain Using perf_event_open()

From Dev

Linux - Reading File from Sudo - "Permission Denied"

From Dev

Emulate `perf record -g` with `perf_event_open`

From Dev

sudo error permission denied

From Dev

terminator: permission denied for sudo

From Dev

Cannot open lock file /var/lib/dpkg/lock permission denied--even using sudo

From Dev

Cannot open lock file /var/lib/dpkg/lock permission denied--even using sudo

From Dev

The easiest way to bypass "Permission Denied" by file

From Dev

Fabric get( ) permission denied with use_sudo=True

From Dev

Sudo chmod +x leads to "cannot access [file] permission denied"

From Dev

Permission denied for transmission daemon event

From Dev

sudo open -e ~/.bash_profile Permission denied mac

From Dev

sudo: can't open /etc/sudoers: Permission denied

From Dev

Permission denied for all sudo comands

From Dev

Permission denied for all sudo comands

From Dev

Permission denied on Chromebook even with sudo

From Dev

sudo as user permission denied on command

From Dev

imagejpeg - Unable to open file for writing: Permission denied

From Dev

Cannot open output file: Permission denied

From Dev

Can't open output file: permission denied

From Dev

Cannot open output file: Permission denied

From Dev

Elasticsearch cannot open log file: Permission denied

From Dev

sudo permission denied but su grants permission

From Dev

Permission denied when changing swappiness

From Dev

Changing libvirt emulator: Permission denied

From Dev

Yet another `rm: cannot remove 'file': Permission denied`

From Dev

reading a file: permission denied

Related Related

  1. 1

    Security implications of changing “perf_event_paranoid”

  2. 2

    perf_event_open always returns -1

  3. 3

    Retrieve Callchain Using perf_event_open()

  4. 4

    Linux - Reading File from Sudo - "Permission Denied"

  5. 5

    Emulate `perf record -g` with `perf_event_open`

  6. 6

    sudo error permission denied

  7. 7

    terminator: permission denied for sudo

  8. 8

    Cannot open lock file /var/lib/dpkg/lock permission denied--even using sudo

  9. 9

    Cannot open lock file /var/lib/dpkg/lock permission denied--even using sudo

  10. 10

    The easiest way to bypass "Permission Denied" by file

  11. 11

    Fabric get( ) permission denied with use_sudo=True

  12. 12

    Sudo chmod +x leads to "cannot access [file] permission denied"

  13. 13

    Permission denied for transmission daemon event

  14. 14

    sudo open -e ~/.bash_profile Permission denied mac

  15. 15

    sudo: can't open /etc/sudoers: Permission denied

  16. 16

    Permission denied for all sudo comands

  17. 17

    Permission denied for all sudo comands

  18. 18

    Permission denied on Chromebook even with sudo

  19. 19

    sudo as user permission denied on command

  20. 20

    imagejpeg - Unable to open file for writing: Permission denied

  21. 21

    Cannot open output file: Permission denied

  22. 22

    Can't open output file: permission denied

  23. 23

    Cannot open output file: Permission denied

  24. 24

    Elasticsearch cannot open log file: Permission denied

  25. 25

    sudo permission denied but su grants permission

  26. 26

    Permission denied when changing swappiness

  27. 27

    Changing libvirt emulator: Permission denied

  28. 28

    Yet another `rm: cannot remove 'file': Permission denied`

  29. 29

    reading a file: permission denied

HotTag

Archive