Re: [PATCH RFC v3 2/4] pidfd: add CLONE_PIDFD_AUTOKILL

Next message: Phillip Lougher: "[PATCH] Squashfs: check xz dictionary size isn't zero"
Previous message: Viacheslav Dubeyko: "RE: [PATCH v4] hfsplus: fix uninit-value by validating catalog record size"
In reply to: Christian Brauner: "[PATCH RFC v3 2/4] pidfd: add CLONE_PIDFD_AUTOKILL"
Next in thread: Jann Horn: "Re: [PATCH RFC v3 2/4] pidfd: add CLONE_PIDFD_AUTOKILL"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Linus Torvalds

Date: Tue Feb 17 2026 - 18:18:25 EST

On Tue, 17 Feb 2026 at 14:36, Christian Brauner <brauner@xxxxxxxxxx> wrote:
>
> Add a new clone3() flag CLONE_PIDFD_AUTOKILL that ties a child's
> lifetime to the pidfd returned from clone3(). When the last reference to
> the struct file created by clone3() is closed the kernel sends SIGKILL
> to the child.

Did I read this right? You can now basically kill suid binaries that
you started but don't have rights to kill any other way.

If I'm right, this is completely broken. Please explain.

Linus