Detect readable /proc/self/mem

[ngc92]

Check if /proc/self/mem is accessible. If so, error unless this behaviour has been explicitly opted in.

[Copilot]

Pull request overview

Adds a security preflight to detect when the benchmark process can open /proc/self/mem (commonly possible when running as root) and fails the benchmark unless explicitly opted in via a new allow_root flag. This tightens the isolation guarantees around the benchmark runner and updates the exploit test harness to expose the new option.

Changes:

• Plumb a new allow_root option through the Python API into the native runner/manager.
• Validate /proc/self/mem accessibility during seccomp setup and error by default if it’s readable.
• Improve exploits/run_all.py usability with argparse and forward sandbox options (including --allow-root).

Reviewed changes

Copilot reviewed 6 out of 6 changed files in this pull request and generated 4 comments.

Show a summary per file

File	Description
python/pygpubench/init.py	Adds allow_root to do_bench_isolated / _do_bench_impl and forwards it into _pygpubench.do_bench.
exploits/run_all.py	Adds CLI argument parsing and forwards sandbox/runner kwargs (including --allow-root).
csrc/manager.h	Extends make_benchmark_manager/constructor signatures and stores mAllowRoot.
csrc/manager.cpp	Wires mAllowRoot into install_seccomp_filter(mAllowRoot).
csrc/landlock.cpp	Implements /proc/self/mem readability validation and gates it on allow_root.
csrc/binding.cpp	Updates nanobind do_bench signature to accept supervisor_sock_fd earlier and add allow_root.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.