On Mon, Jul 15, 2013 at 08:25:14PM -0700, Linus Torvalds wrote: > The "pipe -> cred_guard_mutex" lock chain is pretty direct, and can be > clearly attributed to splicing into /proc. Now, whether that is a > *good* idea or not is clearly debatable, and I do think that maybe we > should just not splice to/from proc files, but that doesn't seem to be > new, and I don't think it's necessarily *broken* per se, it's just > that splicing into /proc seems somewhat unnecessary, and various proc > files do end up taking locks that can be "interesting". FWIW, we might attack that one - after all, we could have ->splice_write() for that guy that would grab cred_guard_mutex, then call splice_from_pipe() with actor that would map/do security_setprocattr/unmap... Said that, considering what it does on write, it really does *not* want to deal with partial writes, so... _______________________________________________ xfs mailing list xfs@xxxxxxxxxxx http://oss.sgi.com/mailman/listinfo/xfs
