Received: by 2002:a05:6358:d09b:b0:dc:cd0c:909e with SMTP id jc27csp811269rwb; Wed, 9 Nov 2022 08:54:54 -0800 (PST) X-Google-Smtp-Source: AMsMyM6K84j7gxjmpz2HPd8PVd0n//vRMMaeh1rEcE4MJudz10xKgydVW7ilN6A7MHN2Tl5eNP1M X-Received: by 2002:a17:907:5c2:b0:77e:def7:65d8 with SMTP id wg2-20020a17090705c200b0077edef765d8mr58662776ejb.487.1668012893944; Wed, 09 Nov 2022 08:54:53 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1668012893; cv=none; d=google.com; s=arc-20160816; b=AmAYnniqu45AvH3r9Hj6xWn8vRqPaNMax5S1Hl2jWD7b+zA8spT3un9sjEukHgMBKN yDF357Hz8YvufxUx8fXuyyZeUBWjVEwRmYNF1iNKpjtsvnPPhnYzLpy4g12Snxb57snR JAQMQ7FTnJG8BnA1jLiKAMvDlUawxYjYUW8WmkD8tZyt+1NNC0+h3Au5+Rkd4Bp3/MT+ bAdV74dxy52wtqaicvDG85+YeBDaQ3fx4eU4aQYsHFby/fefrQJYf+SZRNuWOlKJ2WB+ bUVshXg7/Uqo0+XCcb4s754/NBlWnPAjFocrxnrzy8rqugVIHLOd0oIQ9KbCeTlk9J1+ XfpA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:cc:to:subject:message-id:date:from:in-reply-to :references:mime-version:dkim-signature; bh=kMpz0htQ7/MGd5vuDayKM00Lvv56YDt4hT+zhs8g2Ss=; b=JhuVj6eTTFVUFnw3rVFeUpc2PSm3JqtTw0dOisvUZkTF0JWtR9luoZ2eecpvXBiyTK ysQgW2rc84YgFixoS/QDQh1E/kMDwsIn6o85PYGJvJnoyPLzKqPHmrSFPrb/6Yd5CrAn 6/qMdti5TB7c6mkJfn1sWHQ9q/O3Aav544fnD9r8zx9VxuhogTn1I3Kfx+AgZri0srEN RphtKTBpz+Zat9nMQ1ShEPpTCU0A8/Tam4M+KIdFNorpvFnLkGFgl26osZUu3jTcmHRu uaGpdRmqz0pp4P4BWJ/1Y/3Eo2c0fBBAwME6ICTcZa3fnCVQ4KU7ywcaVZwZIjqZp2WK xj9w== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@google.com header.s=20210112 header.b=DxPii1rw; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id jv10-20020a170907768a00b007ae286f26b1si11477473ejc.620.2022.11.09.08.54.31; Wed, 09 Nov 2022 08:54:53 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@google.com header.s=20210112 header.b=DxPii1rw; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S231124AbiKIP73 (ORCPT + 92 others); Wed, 9 Nov 2022 10:59:29 -0500 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:48208 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S230519AbiKIP7Y (ORCPT ); Wed, 9 Nov 2022 10:59:24 -0500 Received: from mail-ej1-x634.google.com (mail-ej1-x634.google.com [IPv6:2a00:1450:4864:20::634]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id D6CC31AF0F for ; Wed, 9 Nov 2022 07:59:20 -0800 (PST) Received: by mail-ej1-x634.google.com with SMTP id kt23so47843259ejc.7 for ; Wed, 09 Nov 2022 07:59:20 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=kMpz0htQ7/MGd5vuDayKM00Lvv56YDt4hT+zhs8g2Ss=; b=DxPii1rwpWX2KNM5w6aU83V4P3pvCEWJ+OmIRRU67Ed9ghnzy/dQxWPypq6nc8KYq2 7z7ReF/5u/9goEHI9sjm6aqEfwD3Dm0+URnSHRERstVHqeWod2vS+lnqtEkfyWsAZKtk RbTK7hh0N0Re5P+xD3+fdpgA9OnxaGC2bHWncjxstBmqbtuEI1xxQ2WvdJ9Nde5cdEed OBTx0QZTjNsnnXcrsODJBHWQn5QAwF32qdWc5/k9Garax/RG6gxVZ/Irrcj3nPj4nBFR aUy7nvaFnOg+YVvqk+UtIGsHLPWWKo4Fup4GJZ7ULRJOzKiMKf68sAaaeC+jplrU44PQ LKRQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=kMpz0htQ7/MGd5vuDayKM00Lvv56YDt4hT+zhs8g2Ss=; b=jzYhNzyhcKQmSXtBohpPrA8TnuSDlTqLlmLaAVgKJMyGKC015d5QtMFjUHGY4qd3wj iJ676Keq6B8c/awaXaleF0kqEeDJYuHn96WjnwywDZMYlUgdj1NDXWDkEbP8i7bQgsv1 QCSp45gZl31HDcjgIbLhxlVfYYBz5IV5wkGuBw+1aTknJVAu5htMG9qchc9xtP6t+6A8 vcnvg0kgtbfrkIc0DMlimPEBVvAfWsuw57drzmEBM86Hy40e2E+84Y9fpx9bIVQWh5QY obceySUxtp6R7yhLAorQwi+5ZEIf+15tCoLzfmFgJkU5sy8FLMtZm1VtWh7tICGLMeTs FnRg== X-Gm-Message-State: ACrzQf0xjGoG2KRL0grgKAWqbysuomKIL2puz8Fr+G0L75B68Hj9WLA8 Rc0yKma0026mowXBoD0HPksk+KDaVH9YuAxgnBmUFA== X-Received: by 2002:a17:906:7048:b0:7ae:db2:f10a with SMTP id r8-20020a170906704800b007ae0db2f10amr1136400ejj.709.1668009558671; Wed, 09 Nov 2022 07:59:18 -0800 (PST) MIME-Version: 1.0 References: <20221107201317.324457-1-jannh@google.com> <3e2f7e2cb4f6451a9ef5d0fb9e1f6080@AcuMS.aculab.com> In-Reply-To: From: Seth Jenkins Date: Wed, 9 Nov 2022 10:59:07 -0500 Message-ID: Subject: Re: [PATCH] exit: Put an upper limit on how often we can oops To: Jann Horn Cc: David Laight , Kees Cook , "linux-hardening@vger.kernel.org" , "kernel-hardening@lists.openwall.com" , Greg KH , Linus Torvalds , "Eric W . Biederman" , Andy Lutomirski , "linux-kernel@vger.kernel.org" Content-Type: text/plain; charset="UTF-8" X-Spam-Status: No, score=-17.6 required=5.0 tests=BAYES_00,DKIMWL_WL_MED, DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF, ENV_AND_HDR_SPF_MATCH,RCVD_IN_DNSWL_NONE,SPF_HELO_NONE,SPF_PASS, USER_IN_DEF_DKIM_WL,USER_IN_DEF_SPF_WL autolearn=unavailable autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org I'll add to this by noting that it is highly oops dependent. Depending on what locks and refcounts you had taken at the moment you oops'd, it may not be possible to clean up the process e.g. if you're holding your own mmap lock at the moment you oops you're liable to deadlock in __mmput. But there are certainly empirical cases (not all too isolated ones) where the kernel really *is* able to clean up the entire process.