From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1755785AbdKJCy0 (ORCPT ); Thu, 9 Nov 2017 21:54:26 -0500 Received: from aserp1040.oracle.com ([141.146.126.69]:51267 "EHLO aserp1040.oracle.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1755460AbdKJCyY (ORCPT ); Thu, 9 Nov 2017 21:54:24 -0500 Date: Fri, 10 Nov 2017 13:53:25 +1100 (AEDT) From: James Morris X-X-Sender: james.l.morris@localhost To: Djalal Harouni cc: Kees Cook , Alexey Gladkov , Andy Lutomirski , Andrew Morton , linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, kernel-hardening@lists.openwall.com, linux-security-module@vger.kernel.org, linux-api@vger.kernel.org, Greg Kroah-Hartman , Alexander Viro , Akinobu Mita , me@tobin.cc, Oleg Nesterov , Jeff Layton , Ingo Molnar , Alexey Dobriyan , ebiederm@xmission.com, Linus Torvalds , Daniel Micay , Jonathan Corbet , bfields@fieldses.org, Stephen Rothwell , solar@openwall.com Subject: Re: [PATCH RFC v3 4/7] proc: support mounting private procfs instances inside same pid namespace In-Reply-To: <1510244046-3256-5-git-send-email-tixxdz@gmail.com> Message-ID: References: <1510244046-3256-1-git-send-email-tixxdz@gmail.com> <1510244046-3256-5-git-send-email-tixxdz@gmail.com> User-Agent: Alpine 2.20 (LFD 67 2015-01-07) MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII X-Source-IP: aserv0021.oracle.com [141.146.126.233] Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Thu, 9 Nov 2017, Djalal Harouni wrote: > This should allow later after real testing to have a smooth transition > to a procfs with default private instances. > > [1] https://lists.linuxfoundation.org/pipermail/ksummit-discuss/2017-January/004215.html > [2] http://www.openwall.com/lists/kernel-hardening/2017/10/05/5 > [3] https://lwn.net/Articles/689539/ > [4] http://lxr.free-electrons.com/source/Documentation/filesystems/devpts.txt?v=3.14 > [5] https://lkml.org/lkml/2017/5/2/407 > [6] https://lkml.org/lkml/2017/5/3/357 > > Cc: Kees Cook > Cc: Greg Kroah-Hartman > Suggested-by: Andy Lutomirski > Signed-off-by: Alexey Gladkov > Signed-off-by: Djalal Harouni Reviewed-by: James Morris -- James Morris From mboxrd@z Thu Jan 1 00:00:00 1970 From: James Morris Subject: Re: [PATCH RFC v3 4/7] proc: support mounting private procfs instances inside same pid namespace Date: Fri, 10 Nov 2017 13:53:25 +1100 (AEDT) Message-ID: References: <1510244046-3256-1-git-send-email-tixxdz@gmail.com> <1510244046-3256-5-git-send-email-tixxdz@gmail.com> Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Return-path: In-Reply-To: <1510244046-3256-5-git-send-email-tixxdz-Re5JQEeQqe8AvxtiuMwx3w@public.gmane.org> Sender: linux-api-owner-u79uwXL29TY76Z2rM5mHXA@public.gmane.org To: Djalal Harouni Cc: Kees Cook , Alexey Gladkov , Andy Lutomirski , Andrew Morton , linux-fsdevel-u79uwXL29TY76Z2rM5mHXA@public.gmane.org, linux-kernel-u79uwXL29TY76Z2rM5mHXA@public.gmane.org, kernel-hardening-ZwoEplunGu1jrUoiu81ncdBPR1lH4CV8@public.gmane.org, linux-security-module-u79uwXL29TY76Z2rM5mHXA@public.gmane.org, linux-api-u79uwXL29TY76Z2rM5mHXA@public.gmane.org, Greg Kroah-Hartman , Alexander Viro , Akinobu Mita , me-xzjC0nNlxno@public.gmane.org, Oleg Nesterov , Jeff Layton , Ingo Molnar , Alexey Dobriyan , ebiederm-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org, Linus Torvalds , Daniel Micay , Jonathan Corbet , bfields-uC3wQj2KruMpug/h7KTFAQ@public.gmane.org List-Id: linux-api@vger.kernel.org On Thu, 9 Nov 2017, Djalal Harouni wrote: > This should allow later after real testing to have a smooth transition > to a procfs with default private instances. > > [1] https://lists.linuxfoundation.org/pipermail/ksummit-discuss/2017-January/004215.html > [2] http://www.openwall.com/lists/kernel-hardening/2017/10/05/5 > [3] https://lwn.net/Articles/689539/ > [4] http://lxr.free-electrons.com/source/Documentation/filesystems/devpts.txt?v=3.14 > [5] https://lkml.org/lkml/2017/5/2/407 > [6] https://lkml.org/lkml/2017/5/3/357 > > Cc: Kees Cook > Cc: Greg Kroah-Hartman > Suggested-by: Andy Lutomirski > Signed-off-by: Alexey Gladkov > Signed-off-by: Djalal Harouni Reviewed-by: James Morris -- James Morris From mboxrd@z Thu Jan 1 00:00:00 1970 From: james.l.morris@oracle.com (James Morris) Date: Fri, 10 Nov 2017 13:53:25 +1100 (AEDT) Subject: [PATCH RFC v3 4/7] proc: support mounting private procfs instances inside same pid namespace In-Reply-To: <1510244046-3256-5-git-send-email-tixxdz@gmail.com> References: <1510244046-3256-1-git-send-email-tixxdz@gmail.com> <1510244046-3256-5-git-send-email-tixxdz@gmail.com> Message-ID: To: linux-security-module@vger.kernel.org List-Id: linux-security-module.vger.kernel.org On Thu, 9 Nov 2017, Djalal Harouni wrote: > This should allow later after real testing to have a smooth transition > to a procfs with default private instances. > > [1] https://lists.linuxfoundation.org/pipermail/ksummit-discuss/2017-January/004215.html > [2] http://www.openwall.com/lists/kernel-hardening/2017/10/05/5 > [3] https://lwn.net/Articles/689539/ > [4] http://lxr.free-electrons.com/source/Documentation/filesystems/devpts.txt?v=3.14 > [5] https://lkml.org/lkml/2017/5/2/407 > [6] https://lkml.org/lkml/2017/5/3/357 > > Cc: Kees Cook > Cc: Greg Kroah-Hartman > Suggested-by: Andy Lutomirski > Signed-off-by: Alexey Gladkov > Signed-off-by: Djalal Harouni Reviewed-by: James Morris -- James Morris -- To unsubscribe from this list: send the line "unsubscribe linux-security-module" in the body of a message to majordomo at vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html From mboxrd@z Thu Jan 1 00:00:00 1970 Date: Fri, 10 Nov 2017 13:53:25 +1100 (AEDT) From: James Morris In-Reply-To: <1510244046-3256-5-git-send-email-tixxdz@gmail.com> Message-ID: References: <1510244046-3256-1-git-send-email-tixxdz@gmail.com> <1510244046-3256-5-git-send-email-tixxdz@gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Subject: [kernel-hardening] Re: [PATCH RFC v3 4/7] proc: support mounting private procfs instances inside same pid namespace To: Djalal Harouni Cc: Kees Cook , Alexey Gladkov , Andy Lutomirski , Andrew Morton , linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, kernel-hardening@lists.openwall.com, linux-security-module@vger.kernel.org, linux-api@vger.kernel.org, Greg Kroah-Hartman , Alexander Viro , Akinobu Mita , me@tobin.cc, Oleg Nesterov , Jeff Layton , Ingo Molnar , Alexey Dobriyan , ebiederm@xmission.com, Linus Torvalds , Daniel Micay , Jonathan Corbet , bfields@fieldses.org, Stephen Rothwell , solar@openwall.com List-ID: On Thu, 9 Nov 2017, Djalal Harouni wrote: > This should allow later after real testing to have a smooth transition > to a procfs with default private instances. > > [1] https://lists.linuxfoundation.org/pipermail/ksummit-discuss/2017-January/004215.html > [2] http://www.openwall.com/lists/kernel-hardening/2017/10/05/5 > [3] https://lwn.net/Articles/689539/ > [4] http://lxr.free-electrons.com/source/Documentation/filesystems/devpts.txt?v=3.14 > [5] https://lkml.org/lkml/2017/5/2/407 > [6] https://lkml.org/lkml/2017/5/3/357 > > Cc: Kees Cook > Cc: Greg Kroah-Hartman > Suggested-by: Andy Lutomirski > Signed-off-by: Alexey Gladkov > Signed-off-by: Djalal Harouni Reviewed-by: James Morris -- James Morris