From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1753962AbbFSHxH (ORCPT ); Fri, 19 Jun 2015 03:53:07 -0400 Received: from mail-qc0-f180.google.com ([209.85.216.180]:34612 "EHLO mail-qc0-f180.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1752977AbbFSHw4 (ORCPT ); Fri, 19 Jun 2015 03:52:56 -0400 MIME-Version: 1.0 X-Originating-IP: [217.173.38.102] In-Reply-To: <20150619072015.GH17109@ZenIV.linux.org.uk> References: <20150618133215.12722.70352.stgit@warthog.procyon.org.uk> <20150619072015.GH17109@ZenIV.linux.org.uk> Date: Fri, 19 Jun 2015 09:52:55 +0200 Message-ID: Subject: Re: [PATCH 0/8] Security: Provide unioned file support From: Miklos Szeredi To: Al Viro Cc: David Howells , sds@tycho.nsa.gov, Linux-Fsdevel , linux-security-module@vger.kernel.org, "linux-unionfs@vger.kernel.org" , Kernel Mailing List Content-Type: text/plain; charset=UTF-8 Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Fri, Jun 19, 2015 at 9:20 AM, Al Viro wrote: > On Thu, Jun 18, 2015 at 02:32:15PM +0100, David Howells wrote: >> >> The attached patches provide security support for unioned files where the >> security involves an object-label-based LSM (such as SELinux) rather than a >> path-based LSM. >> >> The patches can be broken down into a number of sets: >> >> (1) A small patch to drop a lock earlier in overlayfs. The main VFS patch >> touches the same code, so I put this first. >> >> (2) The main VFS patch that makes an open file struct referring to a union >> file have ->f_path point to the union/overlay file whilst ->f_inode and >> ->f_mapping refer to the subordinate file that does the actual work. > > #1 and #2 applied, will be in tomorrow vfs.git#for-next Brave. What's going to happen to all those f_path.dentry uses where the filesystem thinks it's getting its own dentry? > git grep f_path.dentry | wc -l 171 Thanks, Miklos