From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17]) by smtp.lore.kernel.org (Postfix) with ESMTP id 1A205ECAAD3 for ; Sun, 11 Sep 2022 22:51:55 +0000 (UTC) Received: by kanga.kvack.org (Postfix) id 198F980017; Sun, 11 Sep 2022 18:51:55 -0400 (EDT) Received: by kanga.kvack.org (Postfix, from userid 40) id 1493280008; Sun, 11 Sep 2022 18:51:55 -0400 (EDT) X-Delivered-To: int-list-linux-mm@kvack.org Received: by kanga.kvack.org (Postfix, from userid 63042) id 010B880017; Sun, 11 Sep 2022 18:51:54 -0400 (EDT) X-Delivered-To: linux-mm@kvack.org Received: from relay.hostedemail.com (smtprelay0014.hostedemail.com [216.40.44.14]) by kanga.kvack.org (Postfix) with ESMTP id E6EAF80008 for ; Sun, 11 Sep 2022 18:51:54 -0400 (EDT) Received: from smtpin17.hostedemail.com (a10.router.float.18 [10.200.18.1]) by unirelay04.hostedemail.com (Postfix) with ESMTP id B55CD1A06CF for ; Sun, 11 Sep 2022 22:51:54 +0000 (UTC) X-FDA: 79901303748.17.3341C52 Received: from mail-lj1-f170.google.com (mail-lj1-f170.google.com [209.85.208.170]) by imf10.hostedemail.com (Postfix) with ESMTP id 818E4C0080 for ; Sun, 11 Sep 2022 22:51:54 +0000 (UTC) Received: by mail-lj1-f170.google.com with SMTP id y18so8573323ljh.12 for ; Sun, 11 Sep 2022 15:51:54 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date; bh=yM7pyJPLpZr6W6HgiirCcLKrLf3hCJUXHi6htit82Vw=; b=F4gwHKGWrQRu6pQJx8cBbxgt54jl4czoZk8Z4XVyTLguTxfbTzp6sMpZu8nIopJM2r k3lLw7PnronxpJ83KSkAOswSbH5NguzrQ0aJ52dMv2/tgC7w6PtqBbJmP7e+eIzYJNjT OK4AlelOQbbd0CRd1YsxqERBq/nE1HX0r5lYzhvNDmjof/ooxKnjMBkKo9XYv6k1NQbZ h0ScnWs/6eZVeInjjf2LfRO0PClybPgCLZtW630AqifEb2u7Em2Z9xZvkKQ9qXSaSRNt YBxlTwZezBGCrDaV5nV4tOauakGCrfS+TiblC5MYYeHeJ6SwKmVGXfiqz/2BI6Tu3EJ0 rVrg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date; bh=yM7pyJPLpZr6W6HgiirCcLKrLf3hCJUXHi6htit82Vw=; b=afb9EygqG3urmjehrwqIbOQKlisdklKCbaCcW0/Z4RMZ6CYR3uYrN24K2EZg6Mgz78 6XS3jtJMH+0GAstXfFeag0SPd7TNbtTTzt0UgVUOBT879UJMF/OheOiyeFy5GDW5j9QY S1eQnYKaSZeqnpZkkQ5YsndevkcQVD85ONrde8p0gnH3fotQJa/nGfvT0XZ91SelxQzu 8sGTJnaSqunpy33uym9FZicPz6YQ4zC5W5perALJsBSp7rBoZ0hYVtkerUvbMuq+TUSy V2xNyFkL4LXDDxS/fcv95aPih20Rl6Xuppig2lF8ztlwncxWMFaZQ5Z63z2QSfxYMNqK xiiw== X-Gm-Message-State: ACgBeo0dE1Y0OEkOtvv8MPdnyy6noVHEz0Ag3gBAtQql0F2aSsa5SNC6 Su35zpaxpy24mI5eCEozeECImT448nyrWNJy7lw= X-Google-Smtp-Source: AA6agR5FE2L8IC9yEVhYpJMTOZNPsrCj5VjsOUZA2VTB44ysrpFgzMSgWY/3NJH2N0zA6jcgT0doiinOz5DhHasfwHY= X-Received: by 2002:a2e:98ce:0:b0:26b:e763:27d1 with SMTP id s14-20020a2e98ce000000b0026be76327d1mr3464714ljj.306.1662936712597; Sun, 11 Sep 2022 15:51:52 -0700 (PDT) MIME-Version: 1.0 References: <87czcfhsme.fsf@email.froward.int.ebiederm.org> <874jxkcfoa.fsf@email.froward.int.ebiederm.org> <20220908081003.sjuerd5wiyge4jos@wittgenstein> <87v8pxa51n.fsf@email.froward.int.ebiederm.org> <20220909075158.ed4linrpwwabxabl@wittgenstein> <202209110810.F7352A26@keescook> In-Reply-To: <202209110810.F7352A26@keescook> From: Andrei Vagin Date: Sun, 11 Sep 2022 15:51:41 -0700 Message-ID: Subject: Re: Potentially undesirable interactions between vfork() and time namespaces To: Kees Cook Cc: Christian Brauner , "Eric W. Biederman" , Alexey Izbyshev , Florian Weimer , Dmitry Safonov <0x7f454c46@gmail.com>, linux-kernel@vger.kernel.org, linux-mm@kvack.org Content-Type: text/plain; charset="UTF-8" ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=hostedemail.com; s=arc-20220608; t=1662936714; h=from:from:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:cc:mime-version:mime-version: content-type:content-type:content-transfer-encoding: in-reply-to:in-reply-to:references:references:dkim-signature; bh=yM7pyJPLpZr6W6HgiirCcLKrLf3hCJUXHi6htit82Vw=; b=bDStt9fVW8T+SjjaXcUDni1tXh89s2bvt++kKbKA3W4tf8cSbMkzCsKh7XRk9wWoPD0YvL 4VdAIM4MjHAUMuHrEx4fmR44QQSQcE6oc058PrluNXYtDu5U31qlqEYRkMUzFX5zivvuSo fCa3s5Spo493LGTpqSAWU2aqb+X2K1o= ARC-Authentication-Results: i=1; imf10.hostedemail.com; dkim=pass header.d=gmail.com header.s=20210112 header.b=F4gwHKGW; spf=pass (imf10.hostedemail.com: domain of avagin@gmail.com designates 209.85.208.170 as permitted sender) smtp.mailfrom=avagin@gmail.com; dmarc=pass (policy=none) header.from=gmail.com ARC-Seal: i=1; s=arc-20220608; d=hostedemail.com; t=1662936714; a=rsa-sha256; cv=none; b=W0OPBXHpOrWNvFqs06b5DkNAYI6G+zUwcF9eSAA/FGGnr5LAoaO2xJVHCg+2O5y8TC5aa3 eq+IOFehQ77MjUJoQJvwn9rVf59R0KIXpoOFmmb2SE0siB0hbwq4aH3d+W6J73bFW03tMk IF4fRYQ/t+ZksiHMHAaEUy3Rnrx8Su4= X-Rspam-User: Authentication-Results: imf10.hostedemail.com; dkim=pass header.d=gmail.com header.s=20210112 header.b=F4gwHKGW; spf=pass (imf10.hostedemail.com: domain of avagin@gmail.com designates 209.85.208.170 as permitted sender) smtp.mailfrom=avagin@gmail.com; dmarc=pass (policy=none) header.from=gmail.com X-Rspamd-Server: rspam06 X-Stat-Signature: tiurc53wae7cgicw7f3py9qs9f4ph3w1 X-Rspamd-Queue-Id: 818E4C0080 X-HE-Tag: 1662936714-887111 X-Bogosity: Ham, tests=bogofilter, spamicity=0.000015, version=1.2.4 Sender: owner-linux-mm@kvack.org Precedence: bulk X-Loop: owner-majordomo@kvack.org List-ID: On Sun, Sep 11, 2022 at 8:12 AM Kees Cook wrote: > > On Fri, Sep 09, 2022 at 09:51:58AM +0200, Christian Brauner wrote: > > As stated above the proposed exec behavior we currently clearly emulate > > in userspace. So that part is fine. > > It's not clear to me yet what the right solution is from this thread so > far... what's needed for v6.0 release (since we're quickly running out > of release candidates)? Kees, I think we reached a consensus to go with Eric's idea. We will send the patch shortly. Thanks, Andrei