From: ebiederm@xmission.com (Eric W. Biederman)
To: Russell King - ARM Linux <linux@armlinux.org.uk>
Cc: Mathieu Poirier <mathieu.poirier@linaro.org>,
Kim Phillips <kim.phillips@arm.com>,
Alexander Shishkin <alexander.shishkin@linux.intel.com>,
Alex Williamson <alex.williamson@redhat.com>,
Andrew Morton <akpm@linux-foundation.org>,
David Howells <dhowells@redhat.com>,
Eric Auger <eric.auger@redhat.com>,
Gargi Sharma <gs051095@gmail.com>,
Geert Uytterhoeven <geert+renesas@glider.be>,
Greg Kroah-Hartman <gregkh@linuxfoundation.org>,
Kefeng Wang <wangkefeng.wang@huawei.com>,
Kirill Tkhai <ktkhai@virtuozzo.com>,
Mike Rapoport <rppt@linux.vnet.ibm.com>,
Oleg Nesterov <oleg@redhat.com>,
Pavel Tatashin <pasha.tatashin@oracle.com>,
Rik van Riel <riel@redhat.com>,
Robin Murphy <robin.murphy@arm.com>,
Thierry Reding <treding@nvidia.com>,
Todd Kjos <tkjos@google.com>,
linux-arm-kernel <linux-arm-kernel@lists.infradead.org>,
linux-kernel@vger.kernel.org
Subject: Re: [PATCH 2/4] pid: Export find_task_by_vpid for use in external modules
Date: Thu, 17 May 2018 00:39:37 -0500 [thread overview]
Message-ID: <87k1s2j0x2.fsf@xmission.com> (raw)
In-Reply-To: <20180510194422.GX16141@n2100.armlinux.org.uk> (Russell King's message of "Thu, 10 May 2018 20:44:22 +0100")
Russell King - ARM Linux <linux@armlinux.org.uk> writes:
> On Thu, May 10, 2018 at 01:39:18PM -0600, Mathieu Poirier wrote:
>> Hi Russell,
>>
>> On 10 May 2018 at 02:40, Russell King - ARM Linux <linux@armlinux.org.uk> wrote:
>> > This does not leak information from other namespaces because of the
>> > uniqueness of the global PID. However, what it does leak is the value
>> > of the global PID which is meaningless in the namespace. So, before
>> > the event stream is delivered to userspace, this value needs to be
>> > re-written to the namespace's PID value.
>>
>> Unfortunately that can't be done. The trace stream is compressed and
>> needs to be decompressed using an external library. I think the only
>> option is to return an error if a user is trying to use this feature
>> from a namespace.
>
> That sounds like a sensible approach, and that should get rid of the
> vpid stuff too.
>
> Eric, would this solve all your concerns?
It does, and I have given my ack to the respin.
I am moderately concerned about using the global pid with hardware. But
pids are a core abstraction that aren't going anywhere. As long as
hardware does not impose constraints on pids that software already does
not we should be fine.
Eric
prev parent reply other threads:[~2018-05-17 5:39 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-05-08 19:06 [PATCH 2/4] pid: Export find_task_by_vpid for use in external modules Kim Phillips
2018-05-09 1:23 ` Eric W. Biederman
2018-05-09 4:59 ` Eric W. Biederman
2018-05-09 11:17 ` Robin Murphy
2018-05-09 15:25 ` Mathieu Poirier
2018-05-10 2:35 ` Eric W. Biederman
2018-05-10 8:40 ` Russell King - ARM Linux
2018-05-10 19:39 ` Mathieu Poirier
2018-05-10 19:44 ` Russell King - ARM Linux
2018-05-17 5:39 ` Eric W. Biederman [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=87k1s2j0x2.fsf@xmission.com \
--to=ebiederm@xmission.com \
--cc=akpm@linux-foundation.org \
--cc=alex.williamson@redhat.com \
--cc=alexander.shishkin@linux.intel.com \
--cc=dhowells@redhat.com \
--cc=eric.auger@redhat.com \
--cc=geert+renesas@glider.be \
--cc=gregkh@linuxfoundation.org \
--cc=gs051095@gmail.com \
--cc=kim.phillips@arm.com \
--cc=ktkhai@virtuozzo.com \
--cc=linux-arm-kernel@lists.infradead.org \
--cc=linux-kernel@vger.kernel.org \
--cc=linux@armlinux.org.uk \
--cc=mathieu.poirier@linaro.org \
--cc=oleg@redhat.com \
--cc=pasha.tatashin@oracle.com \
--cc=riel@redhat.com \
--cc=robin.murphy@arm.com \
--cc=rppt@linux.vnet.ibm.com \
--cc=tkjos@google.com \
--cc=treding@nvidia.com \
--cc=wangkefeng.wang@huawei.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox