Received: by 2002:ac0:a5a7:0:0:0:0:0 with SMTP id m36-v6csp126519imm; Fri, 10 Aug 2018 08:38:26 -0700 (PDT) X-Google-Smtp-Source: AA+uWPyDtnjJ1Px7BwIA6zpfHR4nIF/2NnnpNMPPEg+CcN/JPlqwHlb9vcwl0vFKJXO1mG+YDbE4 X-Received: by 2002:a62:d085:: with SMTP id p127-v6mr7601238pfg.119.1533915506698; Fri, 10 Aug 2018 08:38:26 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1533915506; cv=none; d=google.com; s=arc-20160816; b=dXWHhtEzaKTVZyTpVElHP6F+IfXmQXsUbqwXuZ4ubKMT9k86k6sl999fQS1bT2dOk2 97WvlxR5+tSBkhU79WtOt+nabRrEj+mYXK59xd8UVYtGcThQV6xs04kfGdIA//sBhQTC U5BsC19/6dJ4rbfbs89+BffcyMSMFQrb2H7f+I0V38JiHSp3oISAFSsxISnBMqRbLfkw GzfXR0C+X0sAf3bs8nRxxJRunmfWfoeJbdo0EzhPOvdYuq/1H6cTEwA0Xbuy1LBUWUlM 2O5Up6nyUYlL5YkKpGq406IMgqruVwq1LlUWj3N1hU76Y7YKOXUqWWcb4eCVfK8kC/aK 2DIQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:message-id:date:content-id:mime-version :subject:cc:to:references:in-reply-to:from:organization :arc-authentication-results; bh=XM2dsFZo14vzTdwpD3aCUG98nLJRHu/SOxrOoc6bNn0=; b=WFuo7lusa4Mze8mPspqA6DTdZAfC23eI0fkNi60k6YDBSaMBTIJKxtfxw9b7vUttK2 eDwUOIDqgDFF6WPyTvlIq9Sag7PQ/vOCRx7/xpKvabMSA8909ooc/SyjPrAnsVvz+h7r CwLB4uegI3yglI0JiaZE6kmfaiubYFmHMVZUGKWmkpPAIVjBUSFlD7shcJ2evbR6/x2C hFvVx5nG7/c2wu6rylcntYRh170z3IrgjHfa2TR77laQ1t7fpMml7xrFXuI3z/m0B1eu F6rICBIpPexMCkJ7XH2JJF3gQNoGDhdOpoO71uv0pSTlGTqAef7GwJi0Se2JFLxEjBsg bo1A== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=redhat.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id r23-v6si9886525pgi.409.2018.08.10.08.38.11; Fri, 10 Aug 2018 08:38:26 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=redhat.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1728050AbeHJRlx (ORCPT + 99 others); Fri, 10 Aug 2018 13:41:53 -0400 Received: from mx3-rdu2.redhat.com ([66.187.233.73]:57042 "EHLO mx1.redhat.com" rhost-flags-OK-OK-OK-FAIL) by vger.kernel.org with ESMTP id S1727381AbeHJRlx (ORCPT ); Fri, 10 Aug 2018 13:41:53 -0400 Received: from smtp.corp.redhat.com (int-mx04.intmail.prod.int.rdu2.redhat.com [10.11.54.4]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by mx1.redhat.com (Postfix) with ESMTPS id 4FB1640241F7; Fri, 10 Aug 2018 15:11:36 +0000 (UTC) Received: from warthog.procyon.org.uk (ovpn-120-78.rdu2.redhat.com [10.10.120.78]) by smtp.corp.redhat.com (Postfix) with ESMTP id C36DE2026D65; Fri, 10 Aug 2018 15:11:31 +0000 (UTC) Organization: Red Hat UK Ltd. Registered Address: Red Hat UK Ltd, Amberley Place, 107-111 Peascod Street, Windsor, Berkshire, SI4 1TE, United Kingdom. Registered in England and Wales under Company Registration No. 3798903 From: David Howells In-Reply-To: <87d0uqpba5.fsf@xmission.com> References: <87d0uqpba5.fsf@xmission.com> <153313703562.13253.5766498657900728120.stgit@warthog.procyon.org.uk> To: ebiederm@xmission.com (Eric W. Biederman) Cc: dhowells@redhat.com, viro@zeniv.linux.org.uk, John Johansen , Tejun Heo , selinux@tycho.nsa.gov, Paul Moore , Li Zefan , linux-api@vger.kernel.org, apparmor@lists.ubuntu.com, Casey Schaufler , fenghua.yu@intel.com, Greg Kroah-Hartman , Eric Biggers , linux-security-module@vger.kernel.org, Tetsuo Handa , Johannes Weiner , Stephen Smalley , tomoyo-dev-en@lists.sourceforge.jp, cgroups@vger.kernel.org, torvalds@linux-foundation.org, linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, "Theodore Y. Ts'o" , Miklos Szeredi Subject: Re: BUG: Mount ignores mount options MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-ID: <22360.1533913891.1@warthog.procyon.org.uk> Date: Fri, 10 Aug 2018 16:11:31 +0100 Message-ID: <22361.1533913891@warthog.procyon.org.uk> X-Scanned-By: MIMEDefang 2.78 on 10.11.54.4 X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.5.16 (mx1.redhat.com [10.11.55.7]); Fri, 10 Aug 2018 15:11:36 +0000 (UTC) X-Greylist: inspected by milter-greylist-4.5.16 (mx1.redhat.com [10.11.55.7]); Fri, 10 Aug 2018 15:11:36 +0000 (UTC) for IP:'10.11.54.4' DOMAIN:'int-mx04.intmail.prod.int.rdu2.redhat.com' HELO:'smtp.corp.redhat.com' FROM:'dhowells@redhat.com' RCPT:'' Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Eric W. Biederman wrote: > There is a serious problem with mount options today that fsopen does not > address. The problem is that mount options are ignored for block based > filesystems, and any other type of filesystem that follows the same > pattern. Yes. Since you *absolutely* *insist* on this being fixed *right* *now* *or* *else*, I'm working up a set of additional patches to give userspace the option of whether they want no sharing; sharing, but only with exactly the same parameters; or to ignore the parameter differences and just accept sharing of what's already already mounted (ie. the current behaviour). The second option, however, is not trivial as it needs to compare the fs contexts, including the LSM parameters. To make that work, I really need to remove the old security_mnt_opts stuff - which means I need to port btrfs to the new context stuff. We discussed this yesterday, and I proposed a solution, and I'm working on it. Yes, I agree it would be nice to have, but it *doesn't* really need supporting right this minute, since what I have now oughtn't to break the current behaviour. David