subject:"\[PATCH\] sched\: debug\: use task_pid

Re: [PATCH] sched: debug: use task_pid_vnr in /proc/$pid/sched

2017-08-05 Thread Eric W. Biederman

Aleksa Sarai writes: > On 2017-08-06 02:52, Aleksa Sarai wrote: >> It appears as though the addition of the PID namespace did not update >> the output code for /proc/$pid/sched, which made it trivial to figure >> out whether a process was inside _pid_ns from userspace (making >>

Re: [PATCH] sched: debug: use task_pid_vnr in /proc/$pid/sched

2017-08-05 Thread Eric W. Biederman

Aleksa Sarai writes: > On 2017-08-06 02:52, Aleksa Sarai wrote: >> It appears as though the addition of the PID namespace did not update >> the output code for /proc/$pid/sched, which made it trivial to figure >> out whether a process was inside _pid_ns from userspace (making >> container

Re: [PATCH] sched: debug: use task_pid_vnr in /proc/$pid/sched

2017-08-05 Thread Aleksa Sarai

On 2017-08-06 02:52, Aleksa Sarai wrote: It appears as though the addition of the PID namespace did not update the output code for /proc/$pid/sched, which made it trivial to figure out whether a process was inside _pid_ns from userspace (making container detection trivial[1]). This lead to

Re: [PATCH] sched: debug: use task_pid_vnr in /proc/$pid/sched

2017-08-05 Thread Aleksa Sarai

On 2017-08-06 02:52, Aleksa Sarai wrote: It appears as though the addition of the PID namespace did not update the output code for /proc/$pid/sched, which made it trivial to figure out whether a process was inside _pid_ns from userspace (making container detection trivial[1]). This lead to

[PATCH] sched: debug: use task_pid_vnr in /proc/$pid/sched

2017-08-05 Thread Aleksa Sarai

It appears as though the addition of the PID namespace did not update the output code for /proc/$pid/sched, which made it trivial to figure out whether a process was inside _pid_ns from userspace (making container detection trivial[1]). This lead to situations such as: % unshare -pf head -n1

[PATCH] sched: debug: use task_pid_vnr in /proc/$pid/sched

2017-08-05 Thread Aleksa Sarai

It appears as though the addition of the PID namespace did not update the output code for /proc/$pid/sched, which made it trivial to figure out whether a process was inside _pid_ns from userspace (making container detection trivial[1]). This lead to situations such as: % unshare -pf head -n1

Re: [PATCH] sched: debug: use task_pid_vnr in /proc/$pid/sched

Re: [PATCH] sched: debug: use task_pid_vnr in /proc/$pid/sched

Re: [PATCH] sched: debug: use task_pid_vnr in /proc/$pid/sched

Re: [PATCH] sched: debug: use task_pid_vnr in /proc/$pid/sched

[PATCH] sched: debug: use task_pid_vnr in /proc/$pid/sched

[PATCH] sched: debug: use task_pid_vnr in /proc/$pid/sched

6 matches

Site Navigation

Mail list logo

Footer information