Bug#887671: usbguard: USBGuard daemon seems to leak filehandles

Thu, 18 Jan 2018 15:21:33 -0800 

Package: usbguard
Version: 0.7.0+ds1-2+b1
Severity: important
Tags: upstream

Dear Maintainer,

After uptime of 15 days of my desktop Debian testing system, I ran into the
problem that usbguard commandline utility was refusing to connect to the
daemon. From "journalctl | grep usbguard" I saw the following:

Jan 16 13:38:39 nmos6502 usbguard-daemon[603]: [1516102719.737] (W) USB Device
Exception: SysFSDevice: uevent: Too many open files
Jan 16 13:38:39 nmos6502 usbguard-daemon[603]: [1516102719.737] (W)
SysFSDevice: uevent: Too many open files

.. repeating many times. After restarting usbguard daemon via "systemctl
restart usbguard" things returned to normal, but I decided to examine further.
Turns out that each USB device attach/reattach sequence causes usbguard-daemon
to leave 8 new file descriptors open:

[root@nmos6502 ~]# pidof usbguard-daemon
14319
[root@nmos6502 ~]# ls /proc/14319/fd | wc -l
192
[root@nmos6502 ~]# ls /proc/14319/fd | wc -l
201

This can be easily reproduced on my system by attaching and removing any USB
device repeatedly.



-- System Information:
Debian Release: buster/sid
  APT prefers testing-debug
  APT policy: (500, 'testing-debug'), (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.74-grsec-qcmm-hgf6bee2cb0a0d (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages usbguard depends on:
ii  dbus              1.12.2-1
ii  libc6             2.26-2
ii  libcap-ng0        0.7.7-3.1+b1
ii  libdbus-1-3       1.12.2-1
ii  libdbus-glib-1-2  0.108-3
ii  libgcc1           1:7.2.0-19
ii  libglib2.0-0      2.54.3-1
ii  libseccomp2       2.3.1-2.1
ii  libstdc++6        7.2.0-19
ii  libusbguard0      0.7.0+ds1-2+b1

usbguard recommends no packages.

usbguard suggests no packages.

-- Configuration Files:
/etc/usbguard/usbguard-daemon.conf changed:
RuleFile=/etc/usbguard/rules.conf
ImplicitPolicyTarget=block
PresentDevicePolicy=apply-policy
PresentControllerPolicy=apply-policy
InsertedDevicePolicy=apply-policy
RestoreControllerDeviceState=false
DeviceManagerBackend=uevent
IPCAllowedUsers=root
IPCAllowedGroups=root
IPCAccessControlFiles=/etc/usbguard/IPCAccessControl.d/
DeviceRulesWithPort=false
AuditFilePath=/var/log/usbguard/usbguard-audit.log


-- no debconf information

Reply via email to