Received: by 2002:ac0:a5a7:0:0:0:0:0 with SMTP id m36-v6csp727799imm; Fri, 10 Aug 2018 21:49:34 -0700 (PDT) X-Google-Smtp-Source: AA+uWPy9PubzHpHW/DzuGPKeGEBQT/00pMHged8k5+zpFU/YH8vvUrOrSg5FiKLzFD2Yqmna39jj X-Received: by 2002:a63:f657:: with SMTP id u23-v6mr8993199pgj.258.1533962974738; Fri, 10 Aug 2018 21:49:34 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1533962974; cv=none; d=google.com; s=arc-20160816; b=Mjo6AAozOlOSzA26RVsuUS9lfhEyNw/bRUyWO6khjbK8yapIfccpXKkGR2mXVkEiIa 8HJiGqpHDUyjIJfvqcXXnUGHNbrgk8uTEaVZ3iO9NhuUeAK6+8RmdCWWxHOi5pXTg/Ik GTgZiF9CZ2VgQp2OiyeheE7vineKFz66s84F7soivK+ULdS8IUDBkCk40njQFtAMYzLq FGEZVYejJbci8ll/xSgC/2qdeerU7uLUeVAYqlH9cIxSWXr4Rnk0/1OCFssaD47QYPMP v4aOyBuciVDRYVWWO0usgFhNDOep+B0XynilB3A0A4GbMZs/5Lu8AzmXqSGPTL9mYj9I Wa5w== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:subject:mime-version:user-agent :message-id:in-reply-to:date:references:cc:to:from :arc-authentication-results; bh=MjO0iQGWHdl4eatrs5PqDN1PMZVTza9s1TuVGJGPuIs=; b=0m6XFrKgmxK4aCWZOZO+15vuDqn6v/PrKTCPzz7QUspSPIHLvUaY1kEVNKtFeAdTsN HlWhF8+eDLKHJeLtZcY9WL9i6wJgaHWNXuy3UJM1knzk5wthdBhNK7QXVeQq+HwHrQBX s05SwYNO8RtNSCuQgYuCHA0Cy4FxIOTuRHzk/EHXq7IOqunZvH6ZLQtRFC+US+YdDzaX XebUTdR5MzC0qskFIuqePp0RgDYWEzEF0ektDhsHJLwSVbk/lFyjFrMLY+rG/Gw21RaI Ko671YLqMu1+e9TxobIC//44kSLPPywMGdKd/lDBV4fTwwNbkHBQ6nPwXZBEX1vi0OUa olLw== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id p65-v6si12220734pga.401.2018.08.10.21.49.19; Fri, 10 Aug 2018 21:49:34 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1727289AbeHKHVU (ORCPT + 99 others); Sat, 11 Aug 2018 03:21:20 -0400 Received: from out01.mta.xmission.com ([166.70.13.231]:40749 "EHLO out01.mta.xmission.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726858AbeHKHVU (ORCPT ); Sat, 11 Aug 2018 03:21:20 -0400 Received: from in02.mta.xmission.com ([166.70.13.52]) by out01.mta.xmission.com with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.87) (envelope-from ) id 1foLpF-0001HY-1G; Fri, 10 Aug 2018 22:48:29 -0600 Received: from [97.119.167.31] (helo=x220.xmission.com) by in02.mta.xmission.com with esmtpsa (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.87) (envelope-from ) id 1foLpE-0007vZ-Fj; Fri, 10 Aug 2018 22:48:28 -0600 From: ebiederm@xmission.com (Eric W. Biederman) To: "Theodore Y. Ts'o" Cc: Al Viro , David Howells , John Johansen , Tejun Heo , selinux@tycho.nsa.gov, Paul Moore , Li Zefan , linux-api@vger.kernel.org, apparmor@lists.ubuntu.com, Casey Schaufler , fenghua.yu@intel.com, Greg Kroah-Hartman , Eric Biggers , linux-security-module@vger.kernel.org, Tetsuo Handa , Johannes Weiner , Stephen Smalley , tomoyo-dev-en@lists.sourceforge.jp, cgroups@vger.kernel.org, torvalds@linux-foundation.org, linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, Miklos Szeredi References: <153313703562.13253.5766498657900728120.stgit@warthog.procyon.org.uk> <87d0uqpba5.fsf@xmission.com> <20180810151606.GA6515@ZenIV.linux.org.uk> <87pnypiufr.fsf@xmission.com> <20180811014619.GA14368@thunk.org> Date: Fri, 10 Aug 2018 23:48:24 -0500 In-Reply-To: <20180811014619.GA14368@thunk.org> (Theodore Y. Ts'o's message of "Fri, 10 Aug 2018 21:46:19 -0400") Message-ID: <8736vlo6ef.fsf@xmission.com> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/25.1 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain X-XM-SPF: eid=1foLpE-0007vZ-Fj;;;mid=<8736vlo6ef.fsf@xmission.com>;;;hst=in02.mta.xmission.com;;;ip=97.119.167.31;;;frm=ebiederm@xmission.com;;;spf=neutral X-XM-AID: U2FsdGVkX1/7iC9C0vySju5oNK9rKvy8DgkmTU/ux0Q= X-SA-Exim-Connect-IP: 97.119.167.31 X-SA-Exim-Mail-From: ebiederm@xmission.com X-Spam-Checker-Version: SpamAssassin 3.4.1 (2015-04-28) on sa06.xmission.com X-Spam-Level: X-Spam-Status: No, score=-0.2 required=8.0 tests=ALL_TRUSTED,BAYES_50, DCC_CHECK_NEGATIVE,T_TM2_M_HEADER_IN_MSG autolearn=disabled version=3.4.1 X-Spam-Report: * -1.0 ALL_TRUSTED Passed through trusted hosts only via SMTP * 0.0 T_TM2_M_HEADER_IN_MSG BODY: No description available. * 0.8 BAYES_50 BODY: Bayes spam probability is 40 to 60% * [score: 0.5000] * -0.0 DCC_CHECK_NEGATIVE Not listed in DCC * [sa06 1397; Body=1 Fuz1=1 Fuz2=1] X-Spam-DCC: XMission; sa06 1397; Body=1 Fuz1=1 Fuz2=1 X-Spam-Combo: ;"Theodore Y. Ts'o" X-Spam-Relay-Country: X-Spam-Timing: total 203 ms - load_scoreonly_sql: 0.05 (0.0%), signal_user_changed: 3.0 (1.5%), b_tie_ro: 2.1 (1.0%), parse: 1.09 (0.5%), extract_message_metadata: 3.5 (1.7%), get_uri_detail_list: 1.36 (0.7%), tests_pri_-1000: 4.8 (2.4%), tests_pri_-950: 1.27 (0.6%), tests_pri_-900: 1.08 (0.5%), tests_pri_-400: 23 (11.3%), check_bayes: 22 (10.8%), b_tokenize: 7 (3.6%), b_tok_get_all: 7 (3.5%), b_comp_prob: 2.5 (1.2%), b_tok_touch_all: 3.3 (1.6%), b_finish: 0.57 (0.3%), tests_pri_0: 149 (73.5%), check_dkim_signature: 0.46 (0.2%), check_dkim_adsp: 2.8 (1.4%), tests_pri_500: 7 (3.4%), rewrite_mail: 0.00 (0.0%) Subject: Re: BUG: Mount ignores mount options X-Spam-Flag: No X-SA-Exim-Version: 4.2.1 (built Thu, 05 May 2016 13:38:54 -0600) X-SA-Exim-Scanned: Yes (on in02.mta.xmission.com) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org "Theodore Y. Ts'o" writes: > On Fri, Aug 10, 2018 at 08:05:44PM -0500, Eric W. Biederman wrote: >> >> My complaint is that the current implemented behavior of practically >> every filesystem in the kernel, is that it will ignore mount options >> when mounted a second time. > > The file system is ***not*** mounted a second time. > > The design bug is that we allow bind mounts to be specified via a > block device. A bind mount is not "a second mount" of the file > system. Bind mounts != mounts. > > I had assumed we had allowed bind mounts to be specified via the block > device because of container use cases. If the container folks don't > want it, I would be pushing to simply not allow bind mounts to be > specified via block device at all. No it is not a container thing. > The only reason why we should support it is because we don't want to > break scripts; and if the goal is not to break scripts, then we have > to keep to the current semantics, however broken you think it is. But we don't have to support returning filesystems with mismatched mount options in the new fsopen api. That is my concern. Confusing userspace this way has been shown to be harmful let's not keep doing it. Eric