Re: [PATCH v2 0/6] Composefs: an opportunistically sharing verified image filesystem

From: Gao Xiang
Date: Tue Jan 17 2023 - 20:27:46 EST

Next message: Sean Christopherson: "Re: [PATCH rcu v2 17/20] kvm: Remove "select SRCU""
Previous message: Zhaoyang Huang: "Re: [PATCHv2] mm: use stack_depot_early_init for kmemleak"
In reply to: Dave Chinner: "Re: [PATCH v2 0/6] Composefs: an opportunistically sharing verified image filesystem"
Next in thread: Alexander Larsson: "Re: [PATCH v2 0/6] Composefs: an opportunistically sharing verified image filesystem"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 2023/1/18 08:22, Dave Chinner wrote:

On Tue, Jan 17, 2023 at 04:27:56PM +0100, Christian Brauner wrote:

On Tue, Jan 17, 2023 at 02:56:56PM +0100, Giuseppe Scrivano wrote:

Christian Brauner <brauner@xxxxxxxxxx> writes:
2) no multi repo support:

Both reflinks and hardlinks do not work across mount points, so we

Just fwiw, afaict reflinks work across mount points since at least 5.18.

...

As such, I think composefs is definitely worth further time and
investment as a unique line of filesystem development for Linux.
Solve the chain of trust problem (i.e. crypto signing for the
manifest files) and we potentially have game changing container
infrastructure in a couple of thousand lines of code...

I think that is the last time I write some words in this v2
patchset. At a quick glance of the current v2 patchset:
1) struct cfs_buf { -> struct erofs_buf;

2) cfs_buf_put -> erofs_put_metabuf;

3) cfs_get_buf -> erofs_bread -> (but erofs_read_metabuf() in
v5.17 is much closer);
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tree/fs/erofs/data.c?h=linux-5.17.y

4) cfs_dentry_s -> erofs_dirent;

...

Also it drops EROFS __lexx and uses buggy uxx instead.

It drops iomap/fscache interface with a stackable file
interface and it doesn't have ACL and (else) I don't
have time to look into more.

That is the current my point of view of the current
Composefs. Yes, you could use/fork any code in
open-source projects, but it currently seems like an
immature EROFS-truncated copy and its cover letter
never mentioned EROFS at all.

I'd suggest you guys refactor similar code (if you
claim that is not another EROFS) before it really
needs to be upstreamed, otherwise I would feel
uneasy as well. Apart from that, again I have no
objection if folks feel like a new read-only
stackable filesystem like this.

Apart from the codebase, I do hope there could be some
discussion of this topic at LSF/MM/BPF 2023 as Amir
suggested because I don't think this overlay model is
really safe without fs-verity enforcing.

Thank all for the time. I'm done.

Thanks,
Gao Xiang

Cheers,

Dave.

Next message: Sean Christopherson: "Re: [PATCH rcu v2 17/20] kvm: Remove "select SRCU""
Previous message: Zhaoyang Huang: "Re: [PATCHv2] mm: use stack_depot_early_init for kmemleak"
In reply to: Dave Chinner: "Re: [PATCH v2 0/6] Composefs: an opportunistically sharing verified image filesystem"
Next in thread: Alexander Larsson: "Re: [PATCH v2 0/6] Composefs: an opportunistically sharing verified image filesystem"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]