Re: [PATCH 03/34] teach move_mount(2) to work with OPEN_TREE_CLONE [ver #12]

From: David Howells
Date: Thu Oct 11 2018 - 08:15:11 EST

Next message: Ludovic BARRE: "Re: [PATCH V6 00/23] mmc: mmci: add sdmmc variant for stm32"
Previous message: Ying Xue: "Re: net/tipc: recursive locking in tipc_link_reset"
In reply to: Alan Jenkins: "Re: [PATCH 03/34] teach move_mount(2) to work with OPEN_TREE_CLONE [ver #12]"
Next in thread: Alan Jenkins: "Re: [PATCH 03/34] teach move_mount(2) to work with OPEN_TREE_CLONE [ver #12]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

David Howells <dhowells@xxxxxxxxxx> wrote:

> The reason that you can do this with open_tree()/move_mount() is that it
> allows you to create a mount tree (OPEN_TREE_CLONE) that has no namespace
> assignment, pass it through the namespace switch and then attach it inside the
> child namespace. The cross-namespace checks in do_move_mount() are bypassed
> because the root of the newly-cloned mount tree doesn't have one.

It's worse than that. The apparently disconnected tree given you by
open_tree(OPEN_TREE_CLONE) is still subject to modification by outside
forces. All it takes is one shared object within that tree.

So I do wonder if it's possible to form a ring, even in an upstream kernel, by
using the propagation mechanism to push through an nsfs mount into itself,
possibly with a layer of indirection (ie. having two mutually-referential
namespaces).

David

Next message: Ludovic BARRE: "Re: [PATCH V6 00/23] mmc: mmci: add sdmmc variant for stm32"
Previous message: Ying Xue: "Re: net/tipc: recursive locking in tipc_link_reset"
In reply to: Alan Jenkins: "Re: [PATCH 03/34] teach move_mount(2) to work with OPEN_TREE_CLONE [ver #12]"
Next in thread: Alan Jenkins: "Re: [PATCH 03/34] teach move_mount(2) to work with OPEN_TREE_CLONE [ver #12]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]