Re: [PATCH] pidfd: Stop taking cred_guard_mutex

From: Kees Cook
Date: Wed Mar 11 2020 - 14:50:01 EST

Next message: Evan Green: "Re: [RFT PATCH 2/9] drivers: qcom: rpmh-rsc: Document the register layout better"
Previous message: Paolo Bonzini: "Re: [Patch v1] KVM: x86: Initializing all kvm_lapic_irq fields"
In reply to: Christian Brauner: "Re: [PATCH] pidfd: Stop taking cred_guard_mutex"
Next in thread: Bernd Edlinger: "[PATCH] pidfd: Use new infrastructure to fix deadlocks in execve"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Mar 10, 2020 at 03:57:35PM -0500, Eric W. Biederman wrote:
> So ptrace_attach and seccomp use the cred_guard_mutex to guarantee
> a deadlock.

Well, that's the result, but seccomp uses it because it wants to
be certain that credentials and no_new_privs are changed together
"atomically".

--
Kees Cook

Next message: Evan Green: "Re: [RFT PATCH 2/9] drivers: qcom: rpmh-rsc: Document the register layout better"
Previous message: Paolo Bonzini: "Re: [Patch v1] KVM: x86: Initializing all kvm_lapic_irq fields"
In reply to: Christian Brauner: "Re: [PATCH] pidfd: Stop taking cred_guard_mutex"
Next in thread: Bernd Edlinger: "[PATCH] pidfd: Use new infrastructure to fix deadlocks in execve"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]