Re: [PATCH] fs: Restore files_lock and set_fs_root exports

[Greg KH]

On Thu, Jan 13, 2005 at 09:44:28AM -0800, Paul E. McKenney wrote:
> On Thu, Jan 13, 2005 at 09:07:12AM -0800, Greg KH wrote:
> > On Wed, Jan 12, 2005 at 06:51:57PM -0800, Paul E. McKenney wrote:
> > > 
> > > The current hope is that adding (a) shared and asymmetrically shared
> > > subtrees between namespaces/locations in the same namespace, (b) stackable
> > > LSM modules, and (c) dynamic recursive union mount would enable Linux
> > > to provide this in a technically sound manner.  [But this is not clear
> > > to me yet.]
> > 
> > I don't see how (b) has anything to do with this.  Anyone care to
> > explain that?
> 
> It would allow tracking the processes that are using a given view,
> so that state associated with that view could be cleaned up when the
> last process exits.  One case that motivates this approach:
> 
> 1.	one process creates a view (e.g,. "setview" so that
> 	"/vob/foo/bar.c" references version 1.2, just as
> 	"/views/v1.2/vob/foo/bar.c" would),
> 
> 2.	this process forks off several descendants, then exits, and
> 
> 3.	the descendant processes eventually exit.
> 
> The underlying filesystem could use stackable LSM modules to track fork()s
> and exit()s, allowing it to work out when all processes using a given
> view had terminated.

But why the "stackable" requirement?  Why not just use the LSM interface
and be done with it?

Or do you want to combine this LSM with SELinux or any other LSM
(root-plug, seclvl, etc.)?  If so, that's asking for trouble (see the
stackable LSM problems that have been posted multiple times here, and on
the linux-security-modules mailing list.)

thanks,

greg k-h
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/