Re: [patch] PID namespace design bug, workaround

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

To: Andrew Morton <akpm@...>

Cc: Pavel Emelyanov <xemul@...>, Ulrich Drepper <drepper@...>, Ingo Molnar <mingo@...>, Linus Torvalds <torvalds@...>, <linux-kernel@...>, Dinakar Guniguntala [imap] <dino@...>, Sripathi Kodi <sripathik@...>

Subject: Re: [patch] PID namespace design bug, workaround

Date: Friday, November 2, 2007 - 1:30 pm

On Fri, 2007-11-02 at 01:04 -0700, Andrew Morton wrote:
quoted text> > > That is the "fix" you were referring to?  I was hoping you have a sketch
> > > for a real solution.  If nobody can think of a way to fix this PID
> > 
> > Looks like we misunderstood each other. Can you please elaborate on 
> > what exactly is broken in pid namespaces?
> 
> Isn't it this?
> 
> http://lkml.org/lkml/2007/11/1/141

I think we're still a bit murky on exactly what the issues are.  Ingo,
Ulrich, is this the right track?  The kind of issues that you're
concerned about?

There are certainly more of these, but here is one In the futex
userspace address, we install the current pid's vnr into a userspace
address.  

static int futex_lock_pi(u32 __user *uaddr, struct rw_semaphore *fshared,
                         int detect, ktime_t *time, int trylock)
{
...
        newval = task_pid_vnr(current);
        curval = cmpxchg_futex_value_locked(uaddr, 0, newval);

We obviously don't have any restrictions on who else might be mapping
that address, so that pid can theoretically leak out to any other task.
In another pid namespace, the pid at that userspace address is certainly
nonsensical.

-- Dave

-
unsubscribe noticeTo unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

[patch] PID namespace design bug, workaround, Ingo Molnar, (Thu Nov 1, 10:43 am)

Re: [patch] PID namespace design bug, workaround, Pavel Emelyanov, (Thu Nov 1, 11:02 am)

Re: [patch] PID namespace design bug, workaround, Ulrich Drepper, (Thu Nov 1, 10:53 am)

Re: [patch] PID namespace design bug, workaround, Ingo Molnar, (Thu Nov 1, 11:05 am)

Re: [patch] PID namespace design bug, workaround, Theodore Tso, (Thu Nov 1, 2:57 pm)

Re: [patch] PID namespace design bug, workaround, Ingo Molnar, (Thu Nov 1, 3:53 pm)

Re: [patch] PID namespace design bug, workaround, Ulrich Drepper, (Thu Nov 1, 8:23 pm)

Re: [patch] PID namespace design bug, workaround, Pavel Emelyanov, (Thu Nov 1, 10:51 am)

Re: [patch] PID namespace design bug, workaround, Ulrich Drepper, (Thu Nov 1, 10:56 am)

Re: [patch] PID namespace design bug, workaround, Dave Hansen, (Thu Nov 1, 12:12 pm)

Re: [patch] PID namespace design bug, workaround, Pavel Emelyanov, (Thu Nov 1, 11:05 am)

Re: [patch] PID namespace design bug, workaround, Ulrich Drepper, (Thu Nov 1, 8:21 pm)

Re: [patch] PID namespace design bug, workaround, Pavel Emelyanov, (Fri Nov 2, 3:55 am)

Re: [patch] PID namespace design bug, workaround, Andrew Morton, (Fri Nov 2, 4:04 am)

Re: [patch] PID namespace design bug, workaround, Dave Hansen, (Fri Nov 2, 1:30 pm)

Re: [patch] PID namespace design bug, workaround, Linus Torvalds, (Fri Nov 2, 1:39 pm)

Re: [patch] PID namespace design bug, workaround, Ingo Molnar, (Sat Nov 3, 4:12 pm)

Futexes and network filesystems., Er ic W. Biederman, (Tue Nov 20, 6:53 pm)

Re: Futexes and network filesystems., Kyle Moffett, (Wed Nov 21, 2:16 am)

Re: Futexes and network filesystems., Eric W. Biederman, (Wed Nov 21, 2:30 am)

Re: [patch] PID namespace design bug, workaround, Linus Torvalds, (Sat Nov 3, 6:40 pm)

Re: [patch] PID namespaces, Ingo Molnar, (Sun Nov 4, 6:38 am)

Re: [patch] PID namespaces, Denys Vlasenko, (Mon Nov 5, 10:47 am)

Re: [patch] PID namespaces, Dave Hansen, (Sun Nov 4, 4:12 pm)

Re: [patch] PID namespace design bug, workaround, Arjan van de Ven, (Sat Nov 3, 7:55 pm)

Re: [patch] PID namespace design bug, workaround, , (Sat Nov 3, 8:21 pm)

Re: [patch] PID namespace design bug, workaround, Nicholas Miell, (Sat Nov 3, 12:02 am)

Re: [patch] PID namespace design bug, workaround, Pavel Emelyanov, (Fri Nov 2, 4:14 am)

Re: [patch] PID namespace design bug, workaround, Ulrich Drepper, (Fri Nov 2, 10:05 am)

Re: [patch] PID namespace design bug, workaround, Pavel Emelyanov, (Fri Nov 2, 10:21 am)

Re: [patch] PID namespace design bug, workaround, , (Sat Nov 3, 4:01 pm)

Re: [patch] PID namespace design bug, workaround, Eric W. Biederman, (Sun Nov 4, 3:17 am)

Re: [patch] PID namespace design bug, workaround, Ulrich Drepper, (Fri Nov 2, 11:34 am)

Re: [patch] PID namespace design bug, workaround, Pavel Emelyanov, (Fri Nov 2, 11:58 am)

Re: [patch] PID namespace design bug, workaround, Ulrich Drepper, (Sat Nov 3, 12:34 am)

Re: [patch] PID namespace design bug, workaround, Pavel Emelyanov, (Tue Nov 6, 3:49 am)

Re: [patch] PID namespace design bug, workaround, Theodore Tso, (Fri Nov 2, 5:39 pm)

Re: [patch] PID namespace design bug, workaround, Peter Zijlstra, (Thu Nov 1, 10:56 am)

Re: [patch] PID namespace design bug, workaround, Pavel Emelyanov, (Thu Nov 1, 11:06 am)

Re: [patch] PID namespace design bug, workaround, Ingo Molnar, (Thu Nov 1, 11:17 am)

Re: [patch] PID namespace design bug, workaround, Pavel Emelyanov, (Thu Nov 1, 11:30 am)


linux-kernel:
Jens Axboe	Re: [BUG] New Kernel Bugs
KAMEZAWA Hiroyuki	Re: 2.6.24-rc3-mm1
Tarkan Erimer	Re: Dual-Licensing Linux Kernel with GPL V2 and GPL V3
Greg KH	[GIT PATCH] driver core patches against 2.6.24
git:

linux-netdev:
Gerrit Renker	[PATCH 0/37] dccp: Feature negotiation - last call for comments
Jarek Poplawski	[PATCH] pkt_sched: Destroy gen estimators under rtnl_lock().
Jarek Poplawski	Re: [BUG #12364] Re: HTB - very bad precision? HFSC works fine! 2.6.28
Alexey Dobriyan	Re: [GIT]: Networking
openbsd-misc:

Re: [patch] PID namespace design bug, workaround

Online users