On Tue, Jun 19, 2018 at 8:24 PM Eric W. Biederman <ebiederm@xxxxxxxxxxxx> wrote:
>
> I stared at this code for quite a while and I finally concluded that the
> best course forward is to simply things and remove the internal kernel
> mount of proc. The internal mount of proc is directly responsible for
> this regression and it has been the source of pain over the years.
This is not the kind of patch that I'm willing to take outside the
merge window. This is *way* too subtle, and making sysctl do a
kern_mount()/kern_umount() seems odd. The pid->count test also looks
potentially racy to me.
And even if we want to do all this, it damn well shouldn't be done in
one commit. The sysctl change could and should be done imdependently,
of the other ones, for example. That "remove kernel mount" commit
simply does too much in one go considering how subtle this is. If
there are problems, I want it to bisect to "oh, sysctl broke", not to
"that thing that removed the kernel mount broke something".
The "it's been broken two years" definitely argues for doing this
slowly and carefully, not this way.
Linus
