| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 19 Aug 2010 10:34:59 +0900 From: "J. R. Okajima" <hooanon05@...oo.co.jp> To: Valerie Aurora <vaurora@...hat.com> Cc: Neil Brown <neilb@...e.de>, Alexander Viro <viro@...iv.linux.org.uk>, Miklos Szeredi <miklos@...redi.hu>, Jan Blunck <jblunck@...e.de>, Christoph Hellwig <hch@...radead.org>, linux-kernel@...r.kernel.org, linux-fsdevel@...r.kernel.org Subject: Re: [PATCH 14/39] union-mount: Union mounts documentation Valerie Aurora: > According Al Viro, unionfs has some fundamental architectural problems > that prevents it from being correct and leads to crashes: > > http://lkml.indiana.edu/hypermail/linux/kernel/0802.0/0839.html > > The main question for me is whether aufs has fixed these problems. If > it hasn't, then it can't be bug-free. Although I don't understand fully your question, aufs actually verifies the parent-child relationship after lock_rename() on the writable layer. Such verification is done in other operations too. And aufs provides three options to specify the level of verification. When the highest (most strict) level is given, aufs_rename lookup again after lock_rename() and compares the got parent and the given (cached) parent. Does this answer your question correctly? > Think about the case of two different RPM package database files. One > contains the info from newly installed packages on the top layer file > system. The lower layer contains info from packages newly installed > on the lower file system. You don't want either file; you want the > merged packaged database showing the info for all packages installed > on both layers. Any practical file system based system is only going > to be able to pick one file or the other, and it's going to be wrong > in some cases. Let me make sure. Do you mean something like this? - a user makes a union - fileA exists on the lower layer but upper - modify fileA in the union --> the file is copied-up and updated on the upper layer. - modify fileA on the lower layer directly (by-passing union) --> the file on the lower is updated. - and the user will not see the uptodate fileA in the union, lack of the modification made on the lower directly. Then I'd say it is an expected behaviour. Simply the upper file hides the lower. While UnionMount takes a block device as a parameter of making a union operaion, aufs takes a directory. # mount /dev/sda /u # mount -o union /dev/sdb /u # mount /dev/sda /ro # mount /dev/sdb /rw # mount -t aufs -o br:/rw:/ro none /u It means sda is hidden in UnionMount (generally) and users cannot access it directly. But in aufs, it is possible via /ro. For those who wants to hide /ro and stop accessing it directly, aufs document suggests mounting another thing onto /ro. It can be an empty directly if you use "mount -o bind". J. R. Okajima -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists