Re: [patch] PID namespace design bug, workaround

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

To: Arjan van de Ven <arjan@...>

Cc: Linus Torvalds <torvalds@...>, Ingo Molnar <mingo@...>, Dave Hansen <haveblue@...>, Andrew Morton <akpm@...>, Pavel Emelyanov <xemul@...>, Ulrich Drepper <drepper@...>, <linux-kernel@...>, Dinakar Guniguntala [imap] <dino@...>, Sripathi Kodi <sripathik@...>

Subject: Re: [patch] PID namespace design bug, workaround

Date: Saturday, November 3, 2007 - 8:21 pm

On Sat, 3 Nov 2007, Arjan van de Ven wrote:

quoted text> On Sat, 3 Nov 2007 15:40:48 -0700 (PDT)
> Linus Torvalds <torvalds@linux-foundation.org> wrote:
>
>> I don't understand how you can call this a "PID namespace design
>> bug", when it clearly has nothing what-so-ever to do with pid
>> namespaces, and everything to do with the *futexes* that blithely
>> assume that pid's are unique and that made it part of the
>> user-visible interface.
>>
>> OF COURSE any pid namespace design will always break such
>> assumptions, but that's not because of any PID namespace bugs. It's
>> what the whole *point* of PID namespaces are. If you use pid's
>> (instead of some opaque cookies), you will not be able to use such
>> things across pid-separation.
>
> well... kind of.
> THere are 2 things around pid namespaces: which pids you can see/touch
> (in proc or signals or otherwise), and the non-uniqueness.
>
> For containers you clearly want the first part... but... is there a
> strong reason to not just *not* create duplicate pids even across
> namespaces? there's no rule in posix or anything similar to fd's afaik
> concerning which pids we can hand out... so we could just make then
> unique globally but just with limited visibility....

two problems that I can think of

1. the container people would like to eventually have the ability to 
migrate containers from one system to another (or to suspend a container) 
in this sort of case trying to fit the allocated PIDs from the container 
into a running system is a problem if PIDs are not allowed to overlap.

2. it seems to me that there is porobably a latent security issue in 
having a global PID namespace with just limited visability. the types of 
bugs that may let you affect a process seem easier to make if the only 
protection is visability rather then complete seperation.

David Lang
-
unsubscribe noticeTo unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

[patch] PID namespace design bug, workaround, Ingo Molnar, (Thu Nov 1, 10:43 am)

Re: [patch] PID namespace design bug, workaround, Pavel Emelyanov, (Thu Nov 1, 11:02 am)

Re: [patch] PID namespace design bug, workaround, Ulrich Drepper, (Thu Nov 1, 10:53 am)

Re: [patch] PID namespace design bug, workaround, Ingo Molnar, (Thu Nov 1, 11:05 am)

Re: [patch] PID namespace design bug, workaround, Theodore Tso, (Thu Nov 1, 2:57 pm)

Re: [patch] PID namespace design bug, workaround, Ingo Molnar, (Thu Nov 1, 3:53 pm)

Re: [patch] PID namespace design bug, workaround, Ulrich Drepper, (Thu Nov 1, 8:23 pm)

Re: [patch] PID namespace design bug, workaround, Pavel Emelyanov, (Thu Nov 1, 10:51 am)

Re: [patch] PID namespace design bug, workaround, Ulrich Drepper, (Thu Nov 1, 10:56 am)

Re: [patch] PID namespace design bug, workaround, Dave Hansen, (Thu Nov 1, 12:12 pm)

Re: [patch] PID namespace design bug, workaround, Pavel Emelyanov, (Thu Nov 1, 11:05 am)

Re: [patch] PID namespace design bug, workaround, Ulrich Drepper, (Thu Nov 1, 8:21 pm)

Re: [patch] PID namespace design bug, workaround, Pavel Emelyanov, (Fri Nov 2, 3:55 am)

Re: [patch] PID namespace design bug, workaround, Andrew Morton, (Fri Nov 2, 4:04 am)

Re: [patch] PID namespace design bug, workaround, Dave Hansen, (Fri Nov 2, 1:30 pm)

Re: [patch] PID namespace design bug, workaround, Linus Torvalds, (Fri Nov 2, 1:39 pm)

Re: [patch] PID namespace design bug, workaround, Ingo Molnar, (Sat Nov 3, 4:12 pm)

Futexes and network filesystems., Er ic W. Biederman, (Tue Nov 20, 6:53 pm)

Re: Futexes and network filesystems., Kyle Moffett, (Wed Nov 21, 2:16 am)

Re: Futexes and network filesystems., Eric W. Biederman, (Wed Nov 21, 2:30 am)

Re: [patch] PID namespace design bug, workaround, Linus Torvalds, (Sat Nov 3, 6:40 pm)

Re: [patch] PID namespaces, Ingo Molnar, (Sun Nov 4, 6:38 am)

Re: [patch] PID namespaces, Denys Vlasenko, (Mon Nov 5, 10:47 am)

Re: [patch] PID namespaces, Dave Hansen, (Sun Nov 4, 4:12 pm)

Re: [patch] PID namespace design bug, workaround, Arjan van de Ven, (Sat Nov 3, 7:55 pm)

Re: [patch] PID namespace design bug, workaround, , (Sat Nov 3, 8:21 pm)

Re: [patch] PID namespace design bug, workaround, Nicholas Miell, (Sat Nov 3, 12:02 am)

Re: [patch] PID namespace design bug, workaround, Pavel Emelyanov, (Fri Nov 2, 4:14 am)

Re: [patch] PID namespace design bug, workaround, Ulrich Drepper, (Fri Nov 2, 10:05 am)

Re: [patch] PID namespace design bug, workaround, Pavel Emelyanov, (Fri Nov 2, 10:21 am)

Re: [patch] PID namespace design bug, workaround, , (Sat Nov 3, 4:01 pm)

Re: [patch] PID namespace design bug, workaround, Eric W. Biederman, (Sun Nov 4, 3:17 am)

Re: [patch] PID namespace design bug, workaround, Ulrich Drepper, (Fri Nov 2, 11:34 am)

Re: [patch] PID namespace design bug, workaround, Pavel Emelyanov, (Fri Nov 2, 11:58 am)

Re: [patch] PID namespace design bug, workaround, Ulrich Drepper, (Sat Nov 3, 12:34 am)

Re: [patch] PID namespace design bug, workaround, Pavel Emelyanov, (Tue Nov 6, 3:49 am)

Re: [patch] PID namespace design bug, workaround, Theodore Tso, (Fri Nov 2, 5:39 pm)

Re: [patch] PID namespace design bug, workaround, Peter Zijlstra, (Thu Nov 1, 10:56 am)

Re: [patch] PID namespace design bug, workaround, Pavel Emelyanov, (Thu Nov 1, 11:06 am)

Re: [patch] PID namespace design bug, workaround, Ingo Molnar, (Thu Nov 1, 11:17 am)

Re: [patch] PID namespace design bug, workaround, Pavel Emelyanov, (Thu Nov 1, 11:30 am)


linux-kernel:
Greg KH	[GIT PATCH] driver core patches against 2.6.24
david	Re: Dual-Licensing Linux Kernel with GPL V2 and GPL V3

Rob Landley	What still uses the block layer?
git:

linux-netdev:
Antonio Almeida	HTB accuracy for high speed
Alexey Dobriyan	Re: [GIT]: Networking
Jarek Poplawski	[PATCH] pkt_sched: Destroy gen estimators under rtnl_lock().
Gerrit Renker	[PATCH 27/37] dccp: Integration of dynamic feature activation - part 2 (server side)
openbsd-misc:

Re: [patch] PID namespace design bug, workaround

Online users