Re: RFC: on adding new CLONE_* flags [WAS Re: [PATCH 0/4] clone: add CLONE_PIDFD]

From: Enrico Weigelt, metux IT consult
Date: Tue Apr 16 2019 - 14:38:16 EST

Next message: Christian KÃnig: "[PATCH 01/12] dma-buf: add dynamic caching of sg_table"
Previous message: Sergei Shtylyov: "Re: [PATCH v10 2/3] spi: Add Renesas R-Car Gen3 RPC-IF SPI controller driver"
In reply to: Enrico Weigelt, metux IT consult: "Re: RFC: on adding new CLONE_* flags [WAS Re: [PATCH 0/4] clone: add CLONE_PIDFD]"
Next in thread: Enrico Weigelt, metux IT consult: "Re: RFC: on adding new CLONE_* flags [WAS Re: [PATCH 0/4] clone: add CLONE_PIDFD]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 15.04.19 21:59, Aleksa Sarai wrote:

> Just spit-balling -- is no_new_privs not sufficient for this usecase?> Not granting privileges such as setuid during execve(2) is the main>
point of that flag.
Oh, I wasn't aware of that. Thanks.

--mtx

--
Enrico Weigelt, metux IT consult
Free software and Linux embedded engineering
info@xxxxxxxxx -- +49-151-27565287

Next message: Christian KÃnig: "[PATCH 01/12] dma-buf: add dynamic caching of sg_table"
Previous message: Sergei Shtylyov: "Re: [PATCH v10 2/3] spi: Add Renesas R-Car Gen3 RPC-IF SPI controller driver"
In reply to: Enrico Weigelt, metux IT consult: "Re: RFC: on adding new CLONE_* flags [WAS Re: [PATCH 0/4] clone: add CLONE_PIDFD]"
Next in thread: Enrico Weigelt, metux IT consult: "Re: RFC: on adding new CLONE_* flags [WAS Re: [PATCH 0/4] clone: add CLONE_PIDFD]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]