Re: [PATCH 2/2] ptrace: do not use task_lock() for attach

From: Roland McGrath
Date: Mon May 04 2009 - 15:11:18 EST

Next message: Cyrill Gorcunov: "Re: [PATCH -tip] mm: introduce __GFP_PANIC modifier"
Previous message: Linus Torvalds: "Re: [Security] [PATCH] proc: avoid information leaks to non-privilegedprocesses"
In reply to: Oleg Nesterov: "Re: [PATCH 2/2] ptrace: do not use task_lock() for attach"
Next in thread: Oleg Nesterov: "Re: [PATCH 2/2] ptrace: do not use task_lock() for attach"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This looks good to me overall. It might be worth slicing it into two or
more patches, just for bisect paranoia. (e.g. PF_KTHREAD; task_lock in
ptrace_attach; task_lock in ptrace_traceme.)

I think it merits a comment that the PF_KTHREAD check does not need any
interlock because daemonize() will detach ptrace via reparent_to_kthreadd()
after it sets PF_KTHREAD. (vs the old ->mm check under task_lock.)

It is worth noting that this changes the security_ptrace_traceme() call so
it's no longer under task_lock(). I can't see any way the LSM hooks care,
but it is a change.

You also didn't mention the s/|=/=/ changes. Those are correct, we've
already agreed, but the commit log should mention that this subtle change
was intentional.

Thanks,
Roland
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Cyrill Gorcunov: "Re: [PATCH -tip] mm: introduce __GFP_PANIC modifier"
Previous message: Linus Torvalds: "Re: [Security] [PATCH] proc: avoid information leaks to non-privilegedprocesses"
In reply to: Oleg Nesterov: "Re: [PATCH 2/2] ptrace: do not use task_lock() for attach"
Next in thread: Oleg Nesterov: "Re: [PATCH 2/2] ptrace: do not use task_lock() for attach"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]