Re: [PATCH 2/2] exec: Add a exec_update_mutex to replace cred_guard_mutex

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: "Eric W. Biederman" <ebiederm@xxxxxxxxxxxx>
Subject: Re: [PATCH 2/2] exec: Add a exec_update_mutex to replace cred_guard_mutex
From: Bernd Edlinger <bernd.edlinger@xxxxxxxxxx>
Date: Fri, 6 Mar 2020 19:16:08 +0000
Accept-language: en-US, en-GB, de-DE
Cc: Christian Brauner <christian.brauner@xxxxxxxxxx>, Kees Cook <keescook@xxxxxxxxxxxx>, Jann Horn <jannh@xxxxxxxxxx>, Jonathan Corbet <corbet@xxxxxxx>, Alexander Viro <viro@xxxxxxxxxxxxxxxxxx>, Andrew Morton <akpm@xxxxxxxxxxxxxxxxxxxx>, Alexey Dobriyan <adobriyan@xxxxxxxxx>, Thomas Gleixner <tglx@xxxxxxxxxxxxx>, Oleg Nesterov <oleg@xxxxxxxxxx>, Frederic Weisbecker <frederic@xxxxxxxxxx>, Andrei Vagin <avagin@xxxxxxxxx>, Ingo Molnar <mingo@xxxxxxxxxx>, "Peter Zijlstra (Intel)" <peterz@xxxxxxxxxxxxx>, Yuyang Du <duyuyang@xxxxxxxxx>, David Hildenbrand <david@xxxxxxxxxx>, Sebastian Andrzej Siewior <bigeasy@xxxxxxxxxxxxx>, Anshuman Khandual <anshuman.khandual@xxxxxxx>, David Howells <dhowells@xxxxxxxxxx>, James Morris <jamorris@xxxxxxxxxxxxxxxxxxx>, Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>, Shakeel Butt <shakeelb@xxxxxxxxxx>, Jason Gunthorpe <jgg@xxxxxxxx>, Christian Kellner <christian@xxxxxxxxxx>, Andrea Arcangeli <aarcange@xxxxxxxxxx>, Aleksa Sarai <cyphar@xxxxxxxxxx>, "Dmitry V. Levin" <ldv@xxxxxxxxxxxx>, "linux-doc@xxxxxxxxxxxxxxx" <linux-doc@xxxxxxxxxxxxxxx>, "linux-kernel@xxxxxxxxxxxxxxx" <linux-kernel@xxxxxxxxxxxxxxx>, "linux-fsdevel@xxxxxxxxxxxxxxx" <linux-fsdevel@xxxxxxxxxxxxxxx>, "linux-mm@xxxxxxxxx" <linux-mm@xxxxxxxxx>, "stable@xxxxxxxxxxxxxxx" <stable@xxxxxxxxxxxxxxx>, "linux-api@xxxxxxxxxxxxxxx" <linux-api@xxxxxxxxxxxxxxx>
In-reply-to: <87k13yawpp.fsf@x220.int.ebiederm.org>
Thread-index: AQHV8zOjiaOX92PFsUy1cOGGFJ5V7ag6ihsAgAB9KjCAAOmyAA==
Thread-topic: [PATCH 2/2] exec: Add a exec_update_mutex to replace cred_guard_mutex

On 3/6/20 6:17 AM, Eric W. Biederman wrote:
> Bernd Edlinger <bernd.edlinger@xxxxxxxxxx> writes:
> 
>> On 3/5/20 10:16 PM, Eric W. Biederman wrote:
>>>
>>> The cred_guard_mutex is problematic.  The cred_guard_mutex is held
>>> over the userspace accesses as the arguments from userspace are read.
>>> The cred_guard_mutex is held of PTRACE_EVENT_EXIT as the the other
>>> threads are killed.  The cred_guard_mutex is held over
>>> "put_user(0, tsk->clear_child_tid)" in exit_mm().
>>>

I am all for this patch, and the direction it is heading, Eric.

I just wanted to add a note that I think it is
possible that exec_mm_release can also invoke put_user(0, tsk->clear_child_tid),
under the new exec_update_mutex, since vm_access increments the
mm->mm_users, under the cred_update_mutex, but releases the mutex,
and the caller can hold the reference for a while and then exec_mmap is not
releasing the last reference.

Bernd.

Follow-Ups:
- Re: [PATCH 2/2] exec: Add a exec_update_mutex to replace cred_guard_mutex
  - From: Eric W. Biederman

References:
- [PATCHv2] exec: Fix a deadlock in ptrace
  - From: Bernd Edlinger
- [PATCHv4] exec: Fix a deadlock in ptrace
  - From: Bernd Edlinger
- Re: [PATCHv4] exec: Fix a deadlock in ptrace
  - From: Kees Cook
- Re: [PATCHv4] exec: Fix a deadlock in ptrace
  - From: Christian Brauner
- [PATCHv5] exec: Fix a deadlock in ptrace
  - From: Bernd Edlinger
- Re: [PATCHv5] exec: Fix a deadlock in ptrace
  - From: Eric W. Biederman
- Re: [PATCHv5] exec: Fix a deadlock in ptrace
  - From: Bernd Edlinger
- Re: [PATCHv5] exec: Fix a deadlock in ptrace
  - From: Eric W. Biederman
- Re: [PATCHv5] exec: Fix a deadlock in ptrace
  - From: Bernd Edlinger
- Re: [PATCHv5] exec: Fix a deadlock in ptrace
  - From: Eric W. Biederman
- [PATCHv6] exec: Fix a deadlock in ptrace
  - From: Bernd Edlinger
- Re: [PATCHv6] exec: Fix a deadlock in ptrace
  - From: Bernd Edlinger
- [PATCH 0/2] Infrastructure to allow fixing exec deadlocks
  - From: Eric W. Biederman
- [PATCH 2/2] exec: Add a exec_update_mutex to replace cred_guard_mutex
  - From: Eric W. Biederman
- Re: [PATCH 2/2] exec: Add a exec_update_mutex to replace cred_guard_mutex
  - From: Bernd Edlinger
- Re: [PATCH 2/2] exec: Add a exec_update_mutex to replace cred_guard_mutex
  - From: Eric W. Biederman

Prev by Date: Re: [LSFMMBPF TOPIC] Killing LSFMMBPF
Next by Date: Re: [PATCH][next] aio: Replace zero-length array with flexible-array member
Previous by thread: Re: [PATCH 2/2] exec: Add a exec_update_mutex to replace cred_guard_mutex
Next by thread: Re: [PATCH 2/2] exec: Add a exec_update_mutex to replace cred_guard_mutex
Index(es):
- Date
- Thread

[Index of Archives] [Linux Ext4 Filesystem] [Union Filesystem] [Filesystem Testing] [Ceph Users] [Ecryptfs] [AutoFS] [Kernel Newbies] [Share Photos] [Security] [Netfilter] [Bugtraq] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux Cachefs] [Reiser Filesystem] [Linux RAID] [Samba] [Device Mapper] [CEPH Development]