Received: by 2002:a25:4158:0:0:0:0:0 with SMTP id o85csp439228yba; Mon, 1 Apr 2019 09:19:02 -0700 (PDT) X-Google-Smtp-Source: APXvYqxf4AYURypuKHCyWr27L4fu4ITmNKcpElvFn0ndE+Ej7qjF93h7FZYl/BfYJPqDOd5+Mzy4 X-Received: by 2002:a62:7590:: with SMTP id q138mr20627688pfc.74.1554135542498; Mon, 01 Apr 2019 09:19:02 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1554135542; cv=none; d=google.com; s=arc-20160816; b=gZwzntgCBUDOF5vNflfL7ywk0Nw1sgQvG3nacpc/JiEL70UGLCQa5Ki9dMSPm2SVA8 1vfcw1mL/TERuWiKdcmvqgIkcPbXqrIuxVsfs9AuwfG8cFhnmSJwq9h5/77uCaapC4sQ 6/j7ZU/VHk8RUynFu345dtHQUOenZpCi/cTWNw4aHmrB5HB3wDcD08jQoKnHF5R/KBUR uOA9bCdAiyjw3Y1X0ou3gPeobp+ZQb5wqsT3d+j8V8vP69Pgdlxt2JYYcCRHOLVDocvI LHvjNccwHEw92bKRx0Ehx2ujiehlYgqzh7Vwrm7GmS/ktAexbcI4f8aBwoLjgBc5sDuN fW3Q== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:to:in-reply-to:cc:references:message-id :date:subject:mime-version:from:content-transfer-encoding :dkim-signature; bh=l9oqIRAU2UPrMiXtPjkYTdSg/WVLOxnn2O41sRz69XE=; b=oVF/J/Q15bIQ/VbmIdHwMoH5rpFE+PkdW/RzN7nePrlgMHQAfCwfAN6y9m/Lq6jii8 Xruax3/dF9DYnOwfvsPpwGseo39o/IR0V7wIyL1xm7iuL5Kiv5T8PdQnKrFIpll2YbFt e9nHA3g5SCXXoPC5o/gG57gnpwPxIopVkYCIeITMhI9+Uq4qP7vcHQfN2HVbb+1qVVUY xD6SPe50im4rVBsnbWYWZBMZ51iOqRWDUm3KLC698gxM3cylmPX7GM2HA8i72NBpXwAo wRMvQFmIzekKfQS2BnVI1/JmDZuPMhQs6xeu6Ogkd1VKXOsi/zeBVKHtvXOv9VcHv8qF QP1A== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@amacapital-net.20150623.gappssmtp.com header.s=20150623 header.b=VSoL4p01; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id i11si9430620plb.177.2019.04.01.09.18.47; Mon, 01 Apr 2019 09:19:02 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@amacapital-net.20150623.gappssmtp.com header.s=20150623 header.b=VSoL4p01; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1728650AbfDAQQl (ORCPT + 99 others); Mon, 1 Apr 2019 12:16:41 -0400 Received: from mail-pl1-f193.google.com ([209.85.214.193]:43247 "EHLO mail-pl1-f193.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1728587AbfDAQQk (ORCPT ); Mon, 1 Apr 2019 12:16:40 -0400 Received: by mail-pl1-f193.google.com with SMTP id m10so4722402plt.10 for ; Mon, 01 Apr 2019 09:16:40 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=amacapital-net.20150623.gappssmtp.com; s=20150623; h=content-transfer-encoding:from:mime-version:subject:date:message-id :references:cc:in-reply-to:to; bh=l9oqIRAU2UPrMiXtPjkYTdSg/WVLOxnn2O41sRz69XE=; b=VSoL4p017CZ6RMrEZA3phIoOPqFD4TL520E8rkIUQWnXNsmkQw6BKkSjYGb99BMvLV ocpsTKbW/t8XeRQap3NNGljZ5KUexaPcRi5eNbeK7PZgMhswl/iO1or/siU2dfL8Ds5m b5fhAyAYue7EfiSITyzF0tgu/U7lIzTGCbg7N/ke5D6Aem5MPFk2xHiu4C311eJn72Zl 6rill0AgPrRE2QPBe0lqX05msxcqBe2Fy9dBFlmH5n3zK1tQ6c0KLl9SK2/+sOAsaRVD mIB85KxjAWJpqNBJV77UkdUZmS+iiObkmdleeLMn91H8KE7tU5J6aMhj0lQeim8ofMU6 g4tg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:content-transfer-encoding:from:mime-version :subject:date:message-id:references:cc:in-reply-to:to; bh=l9oqIRAU2UPrMiXtPjkYTdSg/WVLOxnn2O41sRz69XE=; b=WrVgVIOh/6Nyv329mNhTTgEs9qb8bUBHI2W3GSBYUTAu623Rw53n25OFhV1vSk1PcC fZ5fKFQPrj+Ffj0pL6zS3uKexEGq8/yvWXino0YVbSsm7pjW1KfL/tvH71WlJquL09Na 7w4mhqdQVkAv+2W3ol4kBh4hrba3Yzd3TQU515DtmIFPKetLlwHkvXC1+lMGQkvmxKi+ yikLBDBtTSfQBZBiDsJ6UsKmHpP7N7m2NNwJOVTWltNqe6mCRUFKPFT5ZIscfz0lAZF0 Pdr6zB4XTfrFG5tvLgfp/84lBGl+4wqiJoCS1M3jpN9rP/y5mFk+8WQMdkebZ7LbDqmu 449w== X-Gm-Message-State: APjAAAVvxpAWJk7lR/q041cidu7K/bzoAY573kdFUu8iZlab9f7TGqwz fQp1oYlc30i3goorlDyR9UbhlQ== X-Received: by 2002:a17:902:a704:: with SMTP id w4mr7290502plq.51.1554135400122; Mon, 01 Apr 2019 09:16:40 -0700 (PDT) Received: from ?IPv6:2600:100e:b13e:a3af:389b:29a:6d03:f8bf? ([2600:100e:b13e:a3af:389b:29a:6d03:f8bf]) by smtp.gmail.com with ESMTPSA id s16sm15502667pgo.69.2019.04.01.09.16.38 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 01 Apr 2019 09:16:39 -0700 (PDT) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable From: Andy Lutomirski Mime-Version: 1.0 (1.0) Subject: Re: [PATCH v2 0/5] pid: add pidfd_open() Date: Mon, 1 Apr 2019 10:10:01 -0600 Message-Id: <190D1581-ADD6-4E8B-93A3-5F3C6B1D8154@amacapital.net> References: <20190330171215.3yrfxwodstmgzmxy@brauner.io> <132107F4-F56B-4D6E-9E00-A6F7C092E6BD@amacapital.net> <20190331211041.vht7dnqg4e4bilr2@brauner.io> <18C7FCB9-2CBA-4237-94BB-9C4395A2106B@amacapital.net> <20190401114059.7gdsvcqyoz2o5bbz@yavin> Cc: Aleksa Sarai , Christian Brauner , Daniel Colascione , Jann Horn , Andrew Lutomirski , David Howells , "Serge E. Hallyn" , Linux API , Linux List Kernel Mailing , Arnd Bergmann , "Eric W. Biederman" , Konstantin Khlebnikov , Kees Cook , Alexey Dobriyan , Thomas Gleixner , Michael Kerrisk-manpages , Jonathan Kowalski , "Dmitry V. Levin" , Andrew Morton , Oleg Nesterov , Nagarathnam Muthusamy , Al Viro , Joel Fernandes In-Reply-To: To: Linus Torvalds X-Mailer: iPhone Mail (16D57) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org > On Apr 1, 2019, at 9:36 AM, Linus Torvalds = wrote: >=20 >> On Mon, Apr 1, 2019 at 4:41 AM Aleksa Sarai wrote: >>=20 >> Eric pitched a procfs2 which would *just* be the PIDs some time ago (in >> an attempt to make it possible one day to mount /proc inside a container >> without adding a bunch of masked paths), though it was just an idea and >> I don't know if he ever had a patch for it. >=20 > I wonder if we really want a fill procfs2, or maybe we could just make > the pidfd readable (yes, it's a directory file descriptor, but we > could allow reading). There were patches to make procfs mount options work sensibly, and I think t= hey got merged. So we could probably avoid a whole procfs2 by instead having= it be procfs plus a special (maybe purely internal) mount option to restric= t it.