| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 03 Sep 2010 14:31:23 +0200 From: Miklos Szeredi <miklos@...redi.hu> To: Valerie Aurora <vaurora@...hat.com> CC: miklos@...redi.hu, linux-fsdevel@...r.kernel.org, linux-kernel@...r.kernel.org, neilb@...e.de, viro@...iv.linux.org.uk, jblunck@...e.de, hch@...radead.org Subject: Re: [PATCH 5/5] union: hybrid union filesystem prototype On Thu, 2 Sep 2010, Valerie Aurora wrote: > > Missing: > > > > - upgrade credentials for copy-up > > - ensure that filesystems part of the union are not modified outside > > the union > > Just a note that the infrastructure I wrote to do this last bullet > point for union mounts (hard read-only count plus mount checks) is > completely compatible with hybrid union fs. Thanks. I've used some infrastructure (like parts of the copy up code) from union mounts. One way to generalize the read-only counts infrastructure is not to require MS_RDONLY on the superblock, but count the number of read-write mounts of the sb. If it's zero then that's equivalent to MS_RDONLY. For the writable layer the same can be used, except the overlay filesystem can get a single private read-write mount. This means that the upper layer can also be mounted multiple times, but cannot be part of other unions and cannot be mounted read write to userspace. Thanks, Miklos -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists