| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <CALzav=d+XgS1bUs-v7+ws5nYU9y=4uc1c8oVLHrJ16qLpnUi9Q@mail.gmail.com> Date: Wed, 25 Jun 2025 09:12:48 -0700 From: David Matlack <dmatlack@...gle.com> To: Christian Brauner <brauner@...nel.org> Cc: Pasha Tatashin <pasha.tatashin@...een.com>, pratyush@...nel.org, jasonmiu@...gle.com, graf@...zon.com, changyuanl@...gle.com, rppt@...nel.org, rientjes@...gle.com, corbet@....net, rdunlap@...radead.org, ilpo.jarvinen@...ux.intel.com, kanie@...ux.alibaba.com, ojeda@...nel.org, aliceryhl@...gle.com, masahiroy@...nel.org, akpm@...ux-foundation.org, tj@...nel.org, yoann.congal@...le.fr, mmaurer@...gle.com, roman.gushchin@...ux.dev, chenridong@...wei.com, axboe@...nel.dk, mark.rutland@....com, jannh@...gle.com, vincent.guittot@...aro.org, hannes@...xchg.org, dan.j.williams@...el.com, david@...hat.com, joel.granados@...nel.org, rostedt@...dmis.org, anna.schumaker@...cle.com, song@...nel.org, zhangguopeng@...inos.cn, linux@...ssschuh.net, linux-kernel@...r.kernel.org, linux-doc@...r.kernel.org, linux-mm@...ck.org, gregkh@...uxfoundation.org, tglx@...utronix.de, mingo@...hat.com, bp@...en8.de, dave.hansen@...ux.intel.com, x86@...nel.org, hpa@...or.com, rafael@...nel.org, dakr@...nel.org, bartosz.golaszewski@...aro.org, cw00.choi@...sung.com, myungjoo.ham@...sung.com, yesanishhere@...il.com, Jonathan.Cameron@...wei.com, quic_zijuhu@...cinc.com, aleksander.lobakin@...el.com, ira.weiny@...el.com, andriy.shevchenko@...ux.intel.com, leon@...nel.org, lukas@...ner.de, bhelgaas@...gle.com, wagi@...nel.org, djeffery@...hat.com, stuart.w.hayes@...il.com, ptyadav@...zon.de Subject: Re: [RFC v2 10/16] luo: luo_ioctl: add ioctl interface On Wed, Jun 25, 2025 at 2:36 AM Christian Brauner <brauner@...nel.org> wrote: > > > > While I agree that a filesystem offers superior introspection and > > integration with standard tools, building this complex, stateful > > orchestration logic on top of VFS seemed to be forcing a square peg > > into a round hole. The ioctl interface, while more opaque, provides a > > direct and explicit way to command the state machine and manage these > > complex lifecycle and dependency rules. > > I'm not going to argue that you have to switch to this kexecfs idea > but... > > You're using a character device that's tied to devmptfs. In other words, > you're already using a filesystem interface. Literally the whole code > here is built on top of filesystem APIs. So this argument is just very > wrong imho. If you can built it on top of a character device using VFS > interfaces you can do it as a minimal filesystem. > > You're free to define the filesystem interface any way you like it. We > have a ton of examples there. All your ioctls would just be tied to the > fileystem instance instead of the /dev/somethingsomething character > device. The state machine could just be implemented the same way. > > One of my points is that with an fs interface you can have easy state > seralization on a per-service level. IOW, you have a bunch of virtual > machines running as services or some networking services or whatever. > You could just bind-mount an instance of kexecfs into the service and > the service can persist state into the instance and easily recover it > after kexec. This approach sounds worth exploring more. It would avoid the need for a centralized daemon to mediate the preservation and restoration of all file descriptors. I'm not sure that we can get rid of the machine-wide state machine though, as there is some kernel state that will necessarily cross these kexecfs domains (e.g. IOMMU driver state). So we still might need /dev/liveupdate for that.
Powered by blists - more mailing lists