From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <SRS0=O4yr=L3=kvack.org=owner-linux-mm@kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
X-Spam-Level: 
X-Spam-Status: No, score=-5.8 required=3.0 tests=BAYES_00,DKIM_SIGNED,
	DKIM_VALID,DKIM_VALID_AU,HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI,
	SPF_HELO_NONE,SPF_PASS autolearn=no autolearn_force=no version=3.4.0
Received: from mail.kernel.org (mail.kernel.org [198.145.29.99])
	by smtp.lore.kernel.org (Postfix) with ESMTP id 41879C07E95
	for <linux-mm@archiver.kernel.org>; Sat,  3 Jul 2021 00:16:04 +0000 (UTC)
Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17])
	by mail.kernel.org (Postfix) with ESMTP id BB9DA613E0
	for <linux-mm@archiver.kernel.org>; Sat,  3 Jul 2021 00:16:03 +0000 (UTC)
DMARC-Filter: OpenDMARC Filter v1.3.2 mail.kernel.org BB9DA613E0
Authentication-Results: mail.kernel.org; dmarc=none (p=none dis=none) header.from=linux-foundation.org
Authentication-Results: mail.kernel.org; spf=pass smtp.mailfrom=owner-linux-mm@kvack.org
Received: by kanga.kvack.org (Postfix)
	id E857B6B0011; Fri,  2 Jul 2021 20:16:02 -0400 (EDT)
Received: by kanga.kvack.org (Postfix, from userid 40)
	id E350D6B0036; Fri,  2 Jul 2021 20:16:02 -0400 (EDT)
X-Delivered-To: int-list-linux-mm@kvack.org
Received: by kanga.kvack.org (Postfix, from userid 63042)
	id CAE406B005D; Fri,  2 Jul 2021 20:16:02 -0400 (EDT)
X-Delivered-To: linux-mm@kvack.org
Received: from forelay.hostedemail.com (smtprelay0187.hostedemail.com [216.40.44.187])
	by kanga.kvack.org (Postfix) with ESMTP id 9FC0B6B0011
	for <linux-mm@kvack.org>; Fri,  2 Jul 2021 20:16:02 -0400 (EDT)
Received: from smtpin16.hostedemail.com (10.5.19.251.rfc1918.com [10.5.19.251])
	by forelay04.hostedemail.com (Postfix) with ESMTP id 4215522ACE
	for <linux-mm@kvack.org>; Sat,  3 Jul 2021 00:16:02 +0000 (UTC)
X-FDA: 78319358964.16.615CBC7
Received: from mail-lf1-f45.google.com (mail-lf1-f45.google.com [209.85.167.45])
	by imf29.hostedemail.com (Postfix) with ESMTP id E0CF99000094
	for <linux-mm@kvack.org>; Sat,  3 Jul 2021 00:16:01 +0000 (UTC)
Received: by mail-lf1-f45.google.com with SMTP id d16so21078185lfn.3
        for <linux-mm@kvack.org>; Fri, 02 Jul 2021 17:16:01 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=linux-foundation.org; s=google;
        h=mime-version:references:in-reply-to:from:date:message-id:subject:to
         :cc;
        bh=ypia1paC7/e079c6nL0ylVkOMwmDg83pa8q/R7dq2Ew=;
        b=cVhJPMc73/8yFbDGuuTQughSRD0S1HGVxBPmDEIVv7fIg06KE6tum4Ml2e6bomB9lf
         TorRWlavkLnFE1uBLDpbK3Wl33hb+h3w2ZK7exoAUXWmZCILXtNzl+yV4u2R6fSFZX4q
         z+iwi+/UsfnCHdwCxNcKE+1A4JO8kPUQGRoMc=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:references:in-reply-to:from:date
         :message-id:subject:to:cc;
        bh=ypia1paC7/e079c6nL0ylVkOMwmDg83pa8q/R7dq2Ew=;
        b=ay44HKtq4e7PAkj+lRXz1EzxckXXlVUzLWdWjdxcCiOao1e8mAS0OXj79iM7WACLvi
         l3Z4aDx7g2+UKD20UUnPb/uEKvdFX6Yj3rIvA8eQb4CjlZKpd1ilvfZX0O9M8YkTIbwb
         OLKSCB5OgRYHddy9meQCv0VMtT4mG4AQdr/iaoiAsa2C+TfGUhT+AQOPAQNVaRhzZ8IR
         GSUOCfznsLa6b9hTORwHtx0+gdt+41FX2UkAMklZTl5rJhk4nG8KX20BnTX0+q07c8t5
         cZn9RsE/mS7CPz2odNJ/kscg5M2ICxujh34bUI0LjqZ7b5YjJf0WZTzfPl5bFoBrfcDS
         hMBw==
X-Gm-Message-State: AOAM532YWRdzP2NCG6qhihu4GlfDo/dEYaXoM6XrI6pNV1rwE8aGeSg5
	1VXr5YSwrwXaUUGpOrMnFDsZVekzR+BFLPgDmrE=
X-Google-Smtp-Source: ABdhPJzbNy3FibylCH/eLA28GZrunUUw7ISMyMdD19NP/XSunyFY+/5YbxRiKqmcZE/LYuTN/m5GDw==
X-Received: by 2002:a05:6512:b9e:: with SMTP id b30mr1549774lfv.3.1625271359843;
        Fri, 02 Jul 2021 17:15:59 -0700 (PDT)
Received: from mail-lf1-f43.google.com (mail-lf1-f43.google.com. [209.85.167.43])
        by smtp.gmail.com with ESMTPSA id h13sm404349lfc.198.2021.07.02.17.15.58
        for <linux-mm@kvack.org>
        (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128);
        Fri, 02 Jul 2021 17:15:59 -0700 (PDT)
Received: by mail-lf1-f43.google.com with SMTP id n14so21090648lfu.8
        for <linux-mm@kvack.org>; Fri, 02 Jul 2021 17:15:58 -0700 (PDT)
X-Received: by 2002:a19:7d04:: with SMTP id y4mr1557652lfc.201.1625271358691;
 Fri, 02 Jul 2021 17:15:58 -0700 (PDT)
MIME-Version: 1.0
References: <20210630184624.9ca1937310b0dd5ce66b30e7@linux-foundation.org>
 <20210701015444.ZOZaFPX0b%akpm@linux-foundation.org> <202107021047.CC57ED634@keescook>
 <CAHk-=wiGcrds=Q7+utqPE7irvcsGfEY_qvp1+T7x67xdHbuSEA@mail.gmail.com>
 <87pmw0ih4e.fsf@disp2133> <202107021626.913478E@keescook>
In-Reply-To: <202107021626.913478E@keescook>
From: Linus Torvalds <torvalds@linux-foundation.org>
Date: Fri, 2 Jul 2021 17:15:42 -0700
X-Gmail-Original-Message-ID: <CAHk-=wi+-7LiS_seHErerr-J_MmTv6uY07kOoYkgHwGnPNdbqQ@mail.gmail.com>
Message-ID: <CAHk-=wi+-7LiS_seHErerr-J_MmTv6uY07kOoYkgHwGnPNdbqQ@mail.gmail.com>
Subject: Re: [patch 142/192] procfs: allow reading fdinfo with PTRACE_MODE_READ
To: Kees Cook <keescook@chromium.org>
Cc: "Eric W. Biederman" <ebiederm@xmission.com>, Andrew Morton <akpm@linux-foundation.org>, 
	Alexey Dobriyan <adobriyan@gmail.com>, Andrei Vagin <avagin@gmail.com>, 
	Bernd Edlinger <bernd.edlinger@hotmail.de>, 
	Christian Brauner <christian.brauner@ubuntu.com>, Christian Koenig <christian.koenig@amd.com>, 
	Jonathan Corbet <corbet@lwn.net>, Helge Deller <deller@gmx.de>, 
	Alexey Gladkov <gladkov.alexey@gmail.com>, Hridya Valsaraju <hridya@google.com>, 
	jamorris@linux.microsoft.com, Jann Horn <jannh@google.com>, 
	Jeff Vander Stoep <jeffv@google.com>, Kalesh Singh <kaleshsingh@google.com>, Linux-MM <linux-mm@kvack.org>, 
	Mauro Carvalho Chehab <mchehab+huawei@kernel.org>, Michal Hocko <mhocko@suse.com>, 
	Minchan Kim <minchan@kernel.org>, mm-commits@vger.kernel.org, 
	Randy Dunlap <rdunlap@infradead.org>, Suren Baghdasaryan <surenb@google.com>, 
	Szabolcs Nagy <szabolcs.nagy@arm.com>, Al Viro <viro@zeniv.linux.org.uk>, 
	Michel Lespinasse <walken@google.com>, Matthew Wilcox <willy@infradead.org>
Content-Type: text/plain; charset="UTF-8"
X-Rspamd-Server: rspam01
X-Rspamd-Queue-Id: E0CF99000094
Authentication-Results: imf29.hostedemail.com;
	dkim=pass header.d=linux-foundation.org header.s=google header.b=cVhJPMc7;
	spf=pass (imf29.hostedemail.com: domain of torvalds@linuxfoundation.org designates 209.85.167.45 as permitted sender) smtp.mailfrom=torvalds@linuxfoundation.org;
	dmarc=none
X-Stat-Signature: rpmzg4wygj16gpm8iz36adrutudyc8wm
X-HE-Tag: 1625271361-346660
X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4
Sender: owner-linux-mm@kvack.org
Precedence: bulk
X-Loop: owner-majordomo@kvack.org
List-ID: <linux-mm.kvack.org>

On Fri, Jul 2, 2021 at 4:31 PM Kees Cook <keescook@chromium.org> wrote:
>
> Right -- the info leak would be snooping on what a privileged process
> was doing with a given fd? Similar stuff has been used to do typing
> pattern analysis with login passwords, but that's a stretch here, I
> think. Hmm.

So I think you'd see the directory list, but generally that's just the
file descriptor numbers.

Which is information you shouldn't have access to, but it's probably
not very *interesting* information.

I think it would be worth fixing but possibly not a very high priority.

             Linus