[REVIEW][PATCH 1/3] vfs: In d_path don't call d_dname on a mount point
Al Viro
viro at ZenIV.linux.org.uk
Sat Nov 30 22:43:40 UTC 2013
On Sat, Nov 30, 2013 at 01:51:07PM -0800, Eric W. Biederman wrote:
> Al Viro <viro at ZenIV.linux.org.uk> writes:
>
> > Eric, what behaviour do you want there?
>
> Here is the behavior I want.
>
> a) Something reasonable in /proc/self/fd when I just open one of these.
>
> root at unassigned:~# exec 5< /proc/self/ns/net
> root at unassigned:~# ls -l /proc/self/fd
> total 0
> lrwx------ 1 root root 64 Nov 30 13:12 0 -> /dev/ttyS0
> lrwx------ 1 root root 64 Nov 30 13:12 1 -> /dev/ttyS0
> lrwx------ 1 root root 64 Nov 30 13:12 2 -> /dev/ttyS0
> lr-x------ 1 root root 64 Nov 30 13:12 3 -> /proc/718/fd
> lr-x------ 1 root root 64 Nov 30 13:12 5 -> net:[4026531955]
> root at unassigned:~# ip netns add foo
>
> b) Something reasonable in /proc/mounts when I bind mount one of these.
>
> root at unassigned:~# ip netns add foo
> root at unassigned:~# cat /proc/mounts
> [...]
> proc /var/run/netns/foo proc rw,nosuid,nodev,noexec,relatime 0 0
Sigh... What do you want to see in /proc/self/mountinfo?
> Any dentry allocated with d_alloc_pseudo will have the same problem if
> it is ever in a context where it can be bind mounted. So this is a
> general issue with d_name.
Yes, ->d_dname() is called in a wrong place. It should be in prepend_path(),
if not deeper. What you are doing is growing a kludge on top of that mistake.
Note that your patch does nothing for mountinfo.
As for redesign... That's exactly what is needed in that area, instead of
letting it fester. Just look at the rats' nest in there - we have a maze
of helper functions, all alike, with slightly varying semantics. With
prepend_path() having oh-so-wonderful calling conventions (0/-ENAMETOOLONG/1/2
for return value with rather opaque callers). Outside of fs/dcache.c we
have the following pile:
d_path() - most of the callers, periodically misused (see lustre
bug upthread)
d_absolute_path(), __d_path(), dentry_path() - very few callers,
most in apparmour and tomoyo attempts to implement more or less the same
kind of thing. Plus handling of /proc/<pid>/mountinfo.
As for check_mnt(old) in do_loopback()... I wonder if we shouldn't just
turn that puppy into (check_mnt(old) || (old->mnt.mnt_flags & MNT_INTERNAL)).
Note that MS_NOUSER in superblock flags would prevent binding pipefs and
all mount_pseudo() users, so we wouldn't change existing behaviour...
More information about the Containers
mailing list