| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 20 Apr 2010 18:30:10 +0200 From: Miklos Szeredi <miklos@...redi.hu> To: Valerie Aurora <vaurora@...hat.com> CC: viro@...iv.linux.org.uk, linux-kernel@...r.kernel.org, linux-fsdevel@...r.kernel.org, vaurora@...hat.com Subject: Re: [PATCH 16/35] union-mount: Writable overlays/union mounts documentation On Thu, 15 Apr 2010, Valerie Aurora wrote: > +VFS implementation > +================== > + > +Writable overlays are implemented as an integral part of the VFS, > +rather than as a VFS client file system (i.e., a stacked file system > +like unionfs or ecryptfs). Implementing writable overlays inside the > +VFS eliminates the need for duplicate copies of VFS data structures, > +unnecessary indirection, and code duplication, but requires very > +maintainable, low-to-zero overhead code. Writable overlays require no > +change to file systems serving as the read-only layer, and requires > +some minor support from file systems serving as the read-write layer. > +File systems that want to be the writable layer must implement the new > +->whiteout() and ->fallthru() inode operations, which create special > +dummy directory entries. Maybe this should have been discussed earlier, but looking at all the places where copyup and whiteout logic needs to be added (and the current code is still unfinished, as you state) makes me wonder, does all that really belong in the VFS? What exactly are the areas where a VFS implementation eliminates duplication and unnecessary indirection? Well, it turns out that in the current implementation there's only one place, and that's non-directory nodes. Which begs the question: why do all the other things (union lookup, directory merging and copyup, file copyup) need to be in the VFS? Especially since I can imagine other union implementations wanting to do these differently (e.g. not copying up directories in readdir). What really needs to be in the VFS is the ability to: - allow a filesystem to "redirect" a lookup to a different fs, - if the operation happens to modify the file, then *not* redirect the lookup And there is already one example for the above: LAST_BIND lookups in /proc. So basically it's mostly there and just needs to be implemented in a filesystem. Have I missed something fundamental? Are there other reasons why a filesystem based implementation would be inferior? Thanks, Miklos -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists