diff for duplicates of <8760oh8tbp.fsf@xmission.com> diff --git a/a/1.txt b/N1/1.txt index e62ceb7..786d34e 100644 --- a/a/1.txt +++ b/N1/1.txt @@ -2,7 +2,7 @@ Adding the containers list because that is the general place for these kinds of discussions. -Cyrill Gorcunov <gorcunov-Re5JQEeQqe8AvxtiuMwx3w@public.gmane.org> writes: +Cyrill Gorcunov <gorcunov@gmail.com> writes: > Hi Eric! A few days ago we've noticed that our zombie00 test case started > failing: https://ci.openvz.org/job/CRIU/view/All/job/CRIU-linux-next/406/console @@ -20,7 +20,7 @@ Cyrill Gorcunov <gorcunov-Re5JQEeQqe8AvxtiuMwx3w@public.gmane.org> writes: > I've narrowed problem down to commit > > | From ce99dd5fd5f600f9f4f0d37bb8847c1cb7c6e4fc Mon Sep 17 00:00:00 2001 -> | From: "Eric W. Biederman" <ebiederm-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org> +> | From: "Eric W. Biederman" <ebiederm@xmission.com> > | Date: Thu, 13 Oct 2016 21:23:16 -0500 > | Subject: [PATCH] mm: Add a user_ns owner to mm_struct and fix > | ptrace_may_access @@ -72,7 +72,7 @@ I see a couple of relevant commits. The commit that added the exit code check: commit f83ce3e6b02d5e48b3a43b001390e2b58820389d -Author: Jake Edge <jake-T1hC0tSOHrs@public.gmane.org> +Author: Jake Edge <jake@lwn.net> Date: Mon May 4 12:51:14 2009 -0600 proc: avoid information leaks to non-privileged processes @@ -89,18 +89,18 @@ Date: Mon May 4 12:51:14 2009 -0600 also noted as possibly usable information leaks as well. The start_stack address also leaks potentially useful information. - Cc: Stable Team <stable-DgEjT+Ai2ygdnm+yROfE0A@public.gmane.org> - Signed-off-by: Jake Edge <jake-T1hC0tSOHrs@public.gmane.org> - Acked-by: Arjan van de Ven <arjan-VuQAYsv1563Yd54FQh9/CA@public.gmane.org> - Acked-by: "Eric W. Biederman" <ebiederm-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org> - Signed-off-by: Linus Torvalds <torvalds-de/tnXTf+JLsfHDXvbKv3WD2FQJk+8+b@public.gmane.org> + Cc: Stable Team <stable@kernel.org> + Signed-off-by: Jake Edge <jake@lwn.net> + Acked-by: Arjan van de Ven <arjan@linux.intel.com> + Acked-by: "Eric W. Biederman" <ebiederm@xmission.com> + Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org> The change that started protecting start_code/end_code and generally using these permissions to protect this class of information: commit 5883f57ca0008ffc93e09cbb9847a1928e50c6f3 -Author: Kees Cook <kees.cook-Z7WLFzj8eWMS+FvcfC7Uqw@public.gmane.org> +Author: Kees Cook <kees.cook@canonical.com> Date: Wed Mar 23 16:42:53 2011 -0700 proc: protect mm start_code/end_code in /proc/pid/stat @@ -117,21 +117,21 @@ Date: Wed Mar 23 16:42:53 2011 -0700 Addresses CVE-2011-0726 - Signed-off-by: Kees Cook <kees.cook-Z7WLFzj8eWMS+FvcfC7Uqw@public.gmane.org> - Cc: <stable-DgEjT+Ai2ygdnm+yROfE0A@public.gmane.org> - Cc: Alexey Dobriyan <adobriyan-Re5JQEeQqe8AvxtiuMwx3w@public.gmane.org> - Cc: David Howells <dhowells-H+wXaHxf7aLQT0dZR+AlfA@public.gmane.org> - Cc: Eugene Teo <eugeneteo-X4ZF2iejbADYtjvyW6yDsg@public.gmane.org> - Cc: Martin Schwidefsky <schwidefsky-tA70FqPdS9bQT0dZR+AlfA@public.gmane.org> - Cc: Brad Spengler <spender-JNS0hek0TMl4qEwOxq4T+Q@public.gmane.org> - Signed-off-by: Andrew Morton <akpm-de/tnXTf+JLsfHDXvbKv3WD2FQJk+8+b@public.gmane.org> - Signed-off-by: Linus Torvalds <torvalds-de/tnXTf+JLsfHDXvbKv3WD2FQJk+8+b@public.gmane.org> + Signed-off-by: Kees Cook <kees.cook@canonical.com> + Cc: <stable@kernel.org> + Cc: Alexey Dobriyan <adobriyan@gmail.com> + Cc: David Howells <dhowells@redhat.com> + Cc: Eugene Teo <eugeneteo@kernel.sg> + Cc: Martin Schwidefsky <schwidefsky@de.ibm.com> + Cc: Brad Spengler <spender@grsecurity.net> + Signed-off-by: Andrew Morton <akpm@linux-foundation.org> + Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org> The commit that added task->exit_code: commit 5b172087f99189416d5f47fd7ab5e6fb762a9ba3 -Author: Cyrill Gorcunov <gorcunov-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org> +Author: Cyrill Gorcunov <gorcunov@openvz.org> Date: Thu May 31 16:26:44 2012 -0700 c/r: procfs: add arg_start/end, env_start/end and exit_code members to /proc/$pid/stat @@ -141,19 +141,19 @@ Date: Thu May 31 16:26:44 2012 -0700 Thus we put these values into /proc/$pid/stat. The exit_code is needed to restore zombie tasks. - Signed-off-by: Cyrill Gorcunov <gorcunov-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org> - Acked-by: Kees Cook <keescook-F7+t8E8rja9g9hUCZPvPmw@public.gmane.org> - Cc: Pavel Emelyanov <xemul-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> - Cc: Serge Hallyn <serge.hallyn-Z7WLFzj8eWMS+FvcfC7Uqw@public.gmane.org> - Cc: KAMEZAWA Hiroyuki <kamezawa.hiroyu-+CUm20s59erQFUHtdCDX3A@public.gmane.org> - Cc: Alexey Dobriyan <adobriyan-Re5JQEeQqe8AvxtiuMwx3w@public.gmane.org> - Cc: Tejun Heo <tj-DgEjT+Ai2ygdnm+yROfE0A@public.gmane.org> - Cc: Andrew Vagin <avagin-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org> - Cc: Vasiliy Kulikov <segoon-cxoSlKxDwOJWk0Htik3J/w@public.gmane.org> - Cc: Alexey Dobriyan <adobriyan-Re5JQEeQqe8AvxtiuMwx3w@public.gmane.org> - Cc: "Eric W. Biederman" <ebiederm-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org> - Signed-off-by: Andrew Morton <akpm-de/tnXTf+JLsfHDXvbKv3WD2FQJk+8+b@public.gmane.org> - Signed-off-by: Linus Torvalds <torvalds-de/tnXTf+JLsfHDXvbKv3WD2FQJk+8+b@public.gmane.org> + Signed-off-by: Cyrill Gorcunov <gorcunov@openvz.org> + Acked-by: Kees Cook <keescook@chromium.org> + Cc: Pavel Emelyanov <xemul@parallels.com> + Cc: Serge Hallyn <serge.hallyn@canonical.com> + Cc: KAMEZAWA Hiroyuki <kamezawa.hiroyu@jp.fujitsu.com> + Cc: Alexey Dobriyan <adobriyan@gmail.com> + Cc: Tejun Heo <tj@kernel.org> + Cc: Andrew Vagin <avagin@openvz.org> + Cc: Vasiliy Kulikov <segoon@openwall.com> + Cc: Alexey Dobriyan <adobriyan@gmail.com> + Cc: "Eric W. Biederman" <ebiederm@xmission.com> + Signed-off-by: Andrew Morton <akpm@linux-foundation.org> + Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org> Looking at do_task_stat everything else that requires permitted diff --git a/a/content_digest b/N1/content_digest index 6f63ae1..72e869f 100644 --- a/a/content_digest +++ b/N1/content_digest @@ -1,20 +1,19 @@ "ref\020161024105959.GQ1847@uranus.lan\0" - "ref\020161024105959.GQ1847-ZmlpmtaulQd+urZeOPWqwQ@public.gmane.org\0" - "From\0ebiederm-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org (Eric W. Biederman)\0" + "From\0ebiederm@xmission.com (Eric W. Biederman)\0" "Subject\0Re: [ISSUE] mm: Add a user_ns owner to mm_struct and fix ptrace_may_access\0" "Date\0Mon, 24 Oct 2016 14:01:30 -0500\0" - "To\0Cyrill Gorcunov <gorcunov-Re5JQEeQqe8AvxtiuMwx3w@public.gmane.org>\0" - "Cc\0Linux Containers <containers-cunTk1MwBs9QetFLy7KEm3xJsTq8ys+cHZ5vskTnxNA@public.gmane.org>" - Pavel Emelyanov <xemul-5HdwGun5lf+gSpxsJD1C4w@public.gmane.org> - Andrey Vagin <avagin-5HdwGun5lf+gSpxsJD1C4w@public.gmane.org> - " LKML <linux-kernel-u79uwXL29TY76Z2rM5mHXA@public.gmane.org>\0" + "To\0Cyrill Gorcunov <gorcunov@gmail.com>\0" + "Cc\0Andrey Vagin <avagin@virtuozzo.com>" + LKML <linux-kernel@vger.kernel.org> + Pavel Emelyanov <xemul@virtuozzo.com> + " Linux Containers <containers@lists.linux-foundation.org>\0" "\00:1\0" "b\0" "\n" "Adding the containers list because that is the general place for these\n" "kinds of discussions.\n" "\n" - "Cyrill Gorcunov <gorcunov-Re5JQEeQqe8AvxtiuMwx3w@public.gmane.org> writes:\n" + "Cyrill Gorcunov <gorcunov@gmail.com> writes:\n" "\n" "> Hi Eric! A few days ago we've noticed that our zombie00 test case started\n" "> failing: https://ci.openvz.org/job/CRIU/view/All/job/CRIU-linux-next/406/console\n" @@ -32,7 +31,7 @@ "> I've narrowed problem down to commit\n" ">\n" "> | From ce99dd5fd5f600f9f4f0d37bb8847c1cb7c6e4fc Mon Sep 17 00:00:00 2001\n" - "> | From: \"Eric W. Biederman\" <ebiederm-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org>\n" + "> | From: \"Eric W. Biederman\" <ebiederm@xmission.com>\n" "> | Date: Thu, 13 Oct 2016 21:23:16 -0500\n" "> | Subject: [PATCH] mm: Add a user_ns owner to mm_struct and fix\n" "> | ptrace_may_access\n" @@ -84,7 +83,7 @@ "The commit that added the exit code check:\n" "\n" "commit f83ce3e6b02d5e48b3a43b001390e2b58820389d\n" - "Author: Jake Edge <jake-T1hC0tSOHrs@public.gmane.org>\n" + "Author: Jake Edge <jake@lwn.net>\n" "Date: Mon May 4 12:51:14 2009 -0600\n" "\n" " proc: avoid information leaks to non-privileged processes\n" @@ -101,18 +100,18 @@ " also noted as possibly usable information leaks as well. The\n" " start_stack address also leaks potentially useful information.\n" " \n" - " Cc: Stable Team <stable-DgEjT+Ai2ygdnm+yROfE0A@public.gmane.org>\n" - " Signed-off-by: Jake Edge <jake-T1hC0tSOHrs@public.gmane.org>\n" - " Acked-by: Arjan van de Ven <arjan-VuQAYsv1563Yd54FQh9/CA@public.gmane.org>\n" - " Acked-by: \"Eric W. Biederman\" <ebiederm-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org>\n" - " Signed-off-by: Linus Torvalds <torvalds-de/tnXTf+JLsfHDXvbKv3WD2FQJk+8+b@public.gmane.org>\n" + " Cc: Stable Team <stable@kernel.org>\n" + " Signed-off-by: Jake Edge <jake@lwn.net>\n" + " Acked-by: Arjan van de Ven <arjan@linux.intel.com>\n" + " Acked-by: \"Eric W. Biederman\" <ebiederm@xmission.com>\n" + " Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>\n" "\n" "\n" "The change that started protecting start_code/end_code and\n" "generally using these permissions to protect this class of information:\n" "\n" "commit 5883f57ca0008ffc93e09cbb9847a1928e50c6f3\n" - "Author: Kees Cook <kees.cook-Z7WLFzj8eWMS+FvcfC7Uqw@public.gmane.org>\n" + "Author: Kees Cook <kees.cook@canonical.com>\n" "Date: Wed Mar 23 16:42:53 2011 -0700\n" "\n" " proc: protect mm start_code/end_code in /proc/pid/stat\n" @@ -129,21 +128,21 @@ " \n" " Addresses CVE-2011-0726\n" " \n" - " Signed-off-by: Kees Cook <kees.cook-Z7WLFzj8eWMS+FvcfC7Uqw@public.gmane.org>\n" - " Cc: <stable-DgEjT+Ai2ygdnm+yROfE0A@public.gmane.org>\n" - " Cc: Alexey Dobriyan <adobriyan-Re5JQEeQqe8AvxtiuMwx3w@public.gmane.org>\n" - " Cc: David Howells <dhowells-H+wXaHxf7aLQT0dZR+AlfA@public.gmane.org>\n" - " Cc: Eugene Teo <eugeneteo-X4ZF2iejbADYtjvyW6yDsg@public.gmane.org>\n" - " Cc: Martin Schwidefsky <schwidefsky-tA70FqPdS9bQT0dZR+AlfA@public.gmane.org>\n" - " Cc: Brad Spengler <spender-JNS0hek0TMl4qEwOxq4T+Q@public.gmane.org>\n" - " Signed-off-by: Andrew Morton <akpm-de/tnXTf+JLsfHDXvbKv3WD2FQJk+8+b@public.gmane.org>\n" - " Signed-off-by: Linus Torvalds <torvalds-de/tnXTf+JLsfHDXvbKv3WD2FQJk+8+b@public.gmane.org>\n" + " Signed-off-by: Kees Cook <kees.cook@canonical.com>\n" + " Cc: <stable@kernel.org>\n" + " Cc: Alexey Dobriyan <adobriyan@gmail.com>\n" + " Cc: David Howells <dhowells@redhat.com>\n" + " Cc: Eugene Teo <eugeneteo@kernel.sg>\n" + " Cc: Martin Schwidefsky <schwidefsky@de.ibm.com>\n" + " Cc: Brad Spengler <spender@grsecurity.net>\n" + " Signed-off-by: Andrew Morton <akpm@linux-foundation.org>\n" + " Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>\n" "\n" "\n" "The commit that added task->exit_code:\n" "\n" "commit 5b172087f99189416d5f47fd7ab5e6fb762a9ba3\n" - "Author: Cyrill Gorcunov <gorcunov-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org>\n" + "Author: Cyrill Gorcunov <gorcunov@openvz.org>\n" "Date: Thu May 31 16:26:44 2012 -0700\n" "\n" " c/r: procfs: add arg_start/end, env_start/end and exit_code members to /proc/$pid/stat\n" @@ -153,19 +152,19 @@ " Thus we put these values into /proc/$pid/stat. The exit_code is needed to\n" " restore zombie tasks.\n" " \n" - " Signed-off-by: Cyrill Gorcunov <gorcunov-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org>\n" - " Acked-by: Kees Cook <keescook-F7+t8E8rja9g9hUCZPvPmw@public.gmane.org>\n" - " Cc: Pavel Emelyanov <xemul-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org>\n" - " Cc: Serge Hallyn <serge.hallyn-Z7WLFzj8eWMS+FvcfC7Uqw@public.gmane.org>\n" - " Cc: KAMEZAWA Hiroyuki <kamezawa.hiroyu-+CUm20s59erQFUHtdCDX3A@public.gmane.org>\n" - " Cc: Alexey Dobriyan <adobriyan-Re5JQEeQqe8AvxtiuMwx3w@public.gmane.org>\n" - " Cc: Tejun Heo <tj-DgEjT+Ai2ygdnm+yROfE0A@public.gmane.org>\n" - " Cc: Andrew Vagin <avagin-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org>\n" - " Cc: Vasiliy Kulikov <segoon-cxoSlKxDwOJWk0Htik3J/w@public.gmane.org>\n" - " Cc: Alexey Dobriyan <adobriyan-Re5JQEeQqe8AvxtiuMwx3w@public.gmane.org>\n" - " Cc: \"Eric W. Biederman\" <ebiederm-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org>\n" - " Signed-off-by: Andrew Morton <akpm-de/tnXTf+JLsfHDXvbKv3WD2FQJk+8+b@public.gmane.org>\n" - " Signed-off-by: Linus Torvalds <torvalds-de/tnXTf+JLsfHDXvbKv3WD2FQJk+8+b@public.gmane.org>\n" + " Signed-off-by: Cyrill Gorcunov <gorcunov@openvz.org>\n" + " Acked-by: Kees Cook <keescook@chromium.org>\n" + " Cc: Pavel Emelyanov <xemul@parallels.com>\n" + " Cc: Serge Hallyn <serge.hallyn@canonical.com>\n" + " Cc: KAMEZAWA Hiroyuki <kamezawa.hiroyu@jp.fujitsu.com>\n" + " Cc: Alexey Dobriyan <adobriyan@gmail.com>\n" + " Cc: Tejun Heo <tj@kernel.org>\n" + " Cc: Andrew Vagin <avagin@openvz.org>\n" + " Cc: Vasiliy Kulikov <segoon@openwall.com>\n" + " Cc: Alexey Dobriyan <adobriyan@gmail.com>\n" + " Cc: \"Eric W. Biederman\" <ebiederm@xmission.com>\n" + " Signed-off-by: Andrew Morton <akpm@linux-foundation.org>\n" + " Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>\n" "\n" "\n" "Looking at do_task_stat everything else that requires permitted\n" @@ -185,4 +184,4 @@ "\n" Eric -b7169d12614e8d9bded14c34af46f1863b80342d810296f613521c5f3d1567b9 +ab366ced8ff085403699dc4065dcd26bccf4f1eb389a734b018c1368a900017a
This is an external index of several public inboxes, see mirroring instructions on how to clone and mirror all data and code used by this external index.