Received: by 10.213.65.68 with SMTP id h4csp1826621imn; Thu, 29 Mar 2018 11:45:53 -0700 (PDT) X-Google-Smtp-Source: AIpwx49hCD49ppS54GRG9nQ9UrtQ1K7g+VvawIvzMXLQp5973l1POdw6xeBFMWuSt+5gN6foyRDd X-Received: by 10.99.95.135 with SMTP id t129mr6309801pgb.268.1522349153928; Thu, 29 Mar 2018 11:45:53 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1522349153; cv=none; d=google.com; s=arc-20160816; b=ZOVEBKExAyaf8rnjqWcRr43JNH+CSQXB3ckOuDiSQP1paXuI4frJGmg/863AgMwVgU x6j8cEjV/DWV+SjXLTSsyT0JztVRIWy9wKNuG5hdjgmA9WdPFEmfigLynqLo5SvT2iMv vbTaQyrGcSx8oHq8ilrZF6We/EhfDlSmcm8vPcWxPzXrGgdNNW2fPo29S3tTnduaYwmE 4wg58+Y3M2EClIxFS7vuMSjaU5a+tuIzZAqUJXDXsjPCO+aVSthyyJdwXD1XgKYTHKk0 WH4SnBk3LRrNv/QLfxJgVMq3Qmx/nHo58pUsLxUnYla883qt85xl7ceyJsCZtc80EKZY szrQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:subject:mime-version:user-agent :message-id:in-reply-to:date:references:cc:to:from :arc-authentication-results; bh=radAVjbxc7BhkcotdmbyWc/9yF4i/gs3OU1lf3WA47Y=; b=qIrpvqAGnU7vsvc/Dtb2clP30Vk4D9ZG3fdeBQKejBGaho8th/atdzAAUyvfrqK4Hg uSBULeeFU0t9Nzxgbv1mxnFHXDy95FRQtaCA9Ifu1KnLNORvYdoZupkM4On6YfwZrn/t SbzXqRwCcvzIlvMaafSgdmjCidt/iraANOYmLRQ9yRbCyj/ucW5vZhDgYaxNqs7qddX7 9pR0f1kK/ulg5YtOjzaDpbBIPE1VdUhPws3/UH22SLbX/ps05ajL2SGQQp/w+WuBPEcS nGTTrLkwB4aJMXS109ZF8/I11GwToEVe83wOnFwbghqLN+NNloJKosD3TYal0ePUC3dP 3qIA== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id m8si4305430pgp.369.2018.03.29.11.45.39; Thu, 29 Mar 2018 11:45:53 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1752299AbeC2SnY (ORCPT + 99 others); Thu, 29 Mar 2018 14:43:24 -0400 Received: from out01.mta.xmission.com ([166.70.13.231]:41298 "EHLO out01.mta.xmission.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1751216AbeC2SnV (ORCPT ); Thu, 29 Mar 2018 14:43:21 -0400 Received: from in01.mta.xmission.com ([166.70.13.51]) by out01.mta.xmission.com with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.87) (envelope-from ) id 1f1cW6-0006zu-QD; Thu, 29 Mar 2018 12:43:18 -0600 Received: from 67-3-145-25.omah.qwest.net ([67.3.145.25] helo=x220.xmission.com) by in01.mta.xmission.com with esmtpsa (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.87) (envelope-from ) id 1f1cVr-0004Vs-7m; Thu, 29 Mar 2018 12:43:18 -0600 From: ebiederm@xmission.com (Eric W. Biederman) To: Davidlohr Bueso Cc: Linux Containers , linux-kernel@vger.kernel.org, linux-api@vger.kernel.org, khlebnikov@yandex-team.ru, prakash.sangappa@oracle.com, luto@kernel.org, akpm@linux-foundation.org, oleg@redhat.com, serge.hallyn@ubuntu.com, esyr@redhat.com, jannh@google.com, linux-security-module@vger.kernel.org, Pavel Emelyanov , Nagarathnam Muthusamy References: <1520875093-18174-1-git-send-email-nagarathnam.muthusamy@oracle.com> <87vadzqqq6.fsf@xmission.com> <990e88fa-ab50-9645-b031-14e1afbf7ccc@oracle.com> <877eqejowd.fsf@xmission.com> <3a46a03d-e4dd-59b6-e25f-0020be1b1dc9@oracle.com> <87a7v2z2qa.fsf@xmission.com> <87vadmobdw.fsf_-_@xmission.com> <20180329011241.v5kgiwbbayz425hk@linux-n805> Date: Thu, 29 Mar 2018 13:42:00 -0500 In-Reply-To: <20180329011241.v5kgiwbbayz425hk@linux-n805> (Davidlohr Bueso's message of "Wed, 28 Mar 2018 18:12:41 -0700") Message-ID: <874lky911j.fsf@xmission.com> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/25.1 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain X-XM-SPF: eid=1f1cVr-0004Vs-7m;;;mid=<874lky911j.fsf@xmission.com>;;;hst=in01.mta.xmission.com;;;ip=67.3.145.25;;;frm=ebiederm@xmission.com;;;spf=neutral X-XM-AID: U2FsdGVkX1+J/gEpgA+xzEzZOOpmdQVFV4WC277Vu9U= X-SA-Exim-Connect-IP: 67.3.145.25 X-SA-Exim-Mail-From: ebiederm@xmission.com X-Spam-Checker-Version: SpamAssassin 3.4.1 (2015-04-28) on sa07.xmission.com X-Spam-Level: *** X-Spam-Status: No, score=3.5 required=8.0 tests=ALL_TRUSTED,BAYES_50, DCC_CHECK_NEGATIVE,TR_Symld_Words,TVD_RCVD_IP,T_TM2_M_HEADER_IN_MSG, XMNoVowels,XMSubLong autolearn=disabled version=3.4.1 X-Spam-Report: * -1.0 ALL_TRUSTED Passed through trusted hosts only via SMTP * 0.0 TVD_RCVD_IP Message was received from an IP address * 1.5 XMNoVowels Alpha-numberic number with no vowels * 1.5 TR_Symld_Words too many words that have symbols inside * 0.7 XMSubLong Long Subject * 0.0 T_TM2_M_HEADER_IN_MSG BODY: No description available. * 0.8 BAYES_50 BODY: Bayes spam probability is 40 to 60% * [score: 0.5000] * -0.0 DCC_CHECK_NEGATIVE Not listed in DCC * [sa07 1397; Body=1 Fuz1=1 Fuz2=1] X-Spam-DCC: XMission; sa07 1397; Body=1 Fuz1=1 Fuz2=1 X-Spam-Combo: ***;Davidlohr Bueso X-Spam-Relay-Country: X-Spam-Timing: total 15026 ms - load_scoreonly_sql: 0.06 (0.0%), signal_user_changed: 3.2 (0.0%), b_tie_ro: 2.2 (0.0%), parse: 1.18 (0.0%), extract_message_metadata: 13 (0.1%), get_uri_detail_list: 1.73 (0.0%), tests_pri_-1000: 3.3 (0.0%), tests_pri_-950: 1.27 (0.0%), tests_pri_-900: 1.04 (0.0%), tests_pri_-400: 21 (0.1%), check_bayes: 20 (0.1%), b_tokenize: 6 (0.0%), b_tok_get_all: 7 (0.0%), b_comp_prob: 2.3 (0.0%), b_tok_touch_all: 2.7 (0.0%), b_finish: 0.65 (0.0%), tests_pri_0: 175 (1.2%), check_dkim_signature: 0.54 (0.0%), check_dkim_adsp: 3.3 (0.0%), tests_pri_500: 14804 (98.5%), poll_dns_idle: 14794 (98.5%), rewrite_mail: 0.00 (0.0%) Subject: Re: [REVIEW][PATCH 00/11] ipc: Fixing the pid namespace support X-Spam-Flag: No X-SA-Exim-Version: 4.2.1 (built Thu, 05 May 2016 13:38:54 -0600) X-SA-Exim-Scanned: Yes (on in01.mta.xmission.com) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Davidlohr Bueso writes: > On Fri, 23 Mar 2018, Eric W. Biederman wrote: > >>Still I would like to see this fixed and I plan on merging this code. The code is merged into my for-next tree now. > Yes, it needs fixed, but 1) there are pending issues (such as the > extra atomics) Concerns not issues. I documented them but I don't see any serious reason to be concerned. The data structures are sufficiently different from AF_UNIX as well as the usage patterns that I have no reasonable expectation that there will be problems. There is no reasonable alternate implementation for correcting this bug. Because of my concerns I looked at several other possibilities and they all showed incorrect behavior, in different circumstances. The implementations are simple enough there are no deep subtle issues. I have tested the code. If a regression happens the code is carefully split up so things can be bisected easily and reverted if necessary. > and 2) its late in the -rc cycle. Plus this issue has existed for 11 years without > the world ending, so I'm sure we can hold on until at least one more > release. People really are starting to seriously look at accessing a single ipc namespace from multiple pid namespaces. The work arounds I saw posted for the current brokenness were too nasty to live. Better to fix things before there is code that actually starts depending on the current brokenness. I am the namespace maintianer and this is my area of responsibility. The code is ready and I see no reason or benefit in delay. Eric