Re: mprotect abuse in slim

From: Christoph Hellwig
Date: Tue Jan 09 2007 - 04:50:14 EST

Next message: Christoph Hellwig: "Re: [PATCH 01/24] Unionfs: Documentation"
Previous message: Ingo Molnar: "Re: [PATCH] flush_cpu_workqueue: don't flush an empty ->worklist"
In reply to: Arjan van de Ven: "Re: mprotect abuse in slim"
Next in thread: Chris Wright: "Re: mprotect abuse in slim"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Jan 08, 2007 at 07:07:25PM -0800, Arjan van de Ven wrote:
>
> > Starting with the fdtable, would it help if we move the
> > fdtable tweaking out of slim itself and into helpers? Or
> > can you recommend another way to implement this functionality.
>
> Hi,
>
> maybe this is a silly question, but do you revoke not only the current
> fd entries, but also the ones that are pending in UNIX domain sockets
> and that are already being sent to the process? If not.. then you might
> as well not bother ;)

Exactly. What these folks want is revoke (maybe more fine grained, but
that's not the point). And guess what folks, revoke is not trivial,
otherwise we'd have it. If you want to volunteer to implement a full-blown
revoke that's fine, but

a) it belongs into core code
b) needs to be done right

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Christoph Hellwig: "Re: [PATCH 01/24] Unionfs: Documentation"
Previous message: Ingo Molnar: "Re: [PATCH] flush_cpu_workqueue: don't flush an empty ->worklist"
In reply to: Arjan van de Ven: "Re: mprotect abuse in slim"
Next in thread: Chris Wright: "Re: mprotect abuse in slim"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]