Received: by 2002:ad5:474a:0:0:0:0:0 with SMTP id i10csp1823357imu; Wed, 12 Dec 2018 05:05:42 -0800 (PST) X-Google-Smtp-Source: AFSGD/Uk9DNZ1DJE5wxCAlWlNWfQg0BLuwz3kCMX8L5Wz+0ruw1Dpe71tX7cjXhDmZY0RVQGe2xb X-Received: by 2002:a63:df13:: with SMTP id u19mr18321729pgg.294.1544619942825; Wed, 12 Dec 2018 05:05:42 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1544619942; cv=none; d=google.com; s=arc-20160816; b=ujVQOMUas79Cy5HIbrc9fNTGCXdTZVYKjzmcOwrbBdAsA1WANR9jvd2kuGk1/ngwNC 3Fk6T5XHbZkyenYLrtHK3oyRJgIDivPYkws/n6KuCOpqwDPoxiHJwkuEKGdr0U8ytqLC +ajrA/la30KPt7XAjA0YnlnjaGPDIz7m/uAz6r4aZfNVemLmiUVUK9AdPzfO/Mst/9aF XlW9FCECYHWdhQJvpPNdNCMGcxAfjd3yiVB1PxoR1cGRJJEW9QACBzOZ+yZzrzdpwBdJ i1rP8VIv/RmvcnB8ZJ1YgBLfKunAZmgkkFYnnmVHbXnw+58e72bhQpptVR8iWNOx2Lvf 00yw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:dkim-signature; bh=oFPOOo4N1Ymi2R/6kUHq8h0ylx9W3wbhBSYt0UWRTLs=; b=jCTohgiIqEHHdnq8PWPItfDAqndUch9nkhJLkXsd3JgXb27thLhv+ruB06xFzLczUG MtE+hlDYA5D3U2nIpL6RjBqYzzd+M3SlKDs6ZPMvd47nVv+yfKTHYIGYu494vDP5Cwjj vM4cVlnYClvtpKa5/hTYAU5Q131ZXFCWMFiSi3ORVdHepttRSXBs6kSuQiuK+7c/YMuW CUB8O1kGkauJ2bFYzRnQIGHlvZmJ41fvKeh3nOEg4VDXyD6XCR0uyragNofFFtXQ4EW4 pDCWNgr2RewH3ArEm5Mm7td1z8wjpRwESiXc7eH+hhVv4+BLsszrMvZbTICsmibdOM2D tb0w== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@paul-moore-com.20150623.gappssmtp.com header.s=20150623 header.b=ryM1XAhg; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id n32si14704148pgm.439.2018.12.12.05.05.26; Wed, 12 Dec 2018 05:05:42 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@paul-moore-com.20150623.gappssmtp.com header.s=20150623 header.b=ryM1XAhg; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726795AbeLLNEC (ORCPT + 99 others); Wed, 12 Dec 2018 08:04:02 -0500 Received: from mail-lf1-f65.google.com ([209.85.167.65]:36511 "EHLO mail-lf1-f65.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726263AbeLLNEB (ORCPT ); Wed, 12 Dec 2018 08:04:01 -0500 Received: by mail-lf1-f65.google.com with SMTP id a16so13473579lfg.3 for ; Wed, 12 Dec 2018 05:04:00 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=paul-moore-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=oFPOOo4N1Ymi2R/6kUHq8h0ylx9W3wbhBSYt0UWRTLs=; b=ryM1XAhgRdMnRywaFP2Pm+4PDxrBEr5zIFrvuMmjvJlVzkOWmJhhSx8oxg8l+1ThHE m53mBrYjrNsORs9ii0otT3DvE3o/QIt3sUzlca3C1dVWsFBIDjFHeg4Zlnq54EEyloB/ KvJ8gSj1cY5VDPU6XFRKq5PDtY/ByFv1MQ8OevF3V0c5T+IgZqhceRCSy3T6UpD2pdVg bkF/GI+m8xUSCgwqgqkojZlhTlsgC5lQldVaqEH/xvXphijlLqPzrm0pcim7ZSV2Dboc P7zJcvgF7TqE0K8Vzw0a7ivpyjsXyBmrSBbMjuB9Pqcri+FdGAAEI2ypcMSR14P/nGOJ 1+pA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=oFPOOo4N1Ymi2R/6kUHq8h0ylx9W3wbhBSYt0UWRTLs=; b=kLSSxAuzCpl2zdDh4UwqNpP2v0z/x/82MKDBcHHXhBZmuIEltvf4JxLKlfrmcz347l oCTbRNkNxYgCdA9OYC3BmKg+ZKOfc6zQYan2mQtB48OmRfPNzL1XkfHlF02dbPZnrHrM sNiPN1DBJ44uYCKjGHnKuJ2dVeg/4KpxaxZNLcdmi72uwv5ig+jlIU9JFSaMOXoCqfQ2 E0vkzEDQxbl8e9aed5zCEcKnbXViDPkQfJ7ewKUSf/iRYMwvt+6s0TgWkC0JHaDAMuiO uw92kH3lzo59Od0zV6a+5WCuVFfNmX7asAowY+MuOqYZzn0e8kU8IUfTJGXmCYKN7ske zRVQ== X-Gm-Message-State: AA+aEWbbVa82WYXLAz6rbmA08hX9ogmwCTU1Xj1T8jEVBYehUv0z1a4J zkOlaFPyZmgOtJq7cwTjLSFLI99Vl57xuTfoBuR3 X-Received: by 2002:a19:a7c1:: with SMTP id q184mr11025591lfe.4.1544619839305; Wed, 12 Dec 2018 05:03:59 -0800 (PST) MIME-Version: 1.0 References: In-Reply-To: From: Paul Moore Date: Wed, 12 Dec 2018 08:03:48 -0500 Message-ID: Subject: Re: [RFC PATCH ghak100 V1 0/2] audit: avoid umount hangs on missing mount To: rgb@redhat.com Cc: linux-fsdevel@vger.kernel.org, viro@zeniv.linux.org.uk, linux-kernel@vger.kernel.org, linux-audit@redhat.com, Eric Paris , sgrubb@redhat.com Content-Type: text/plain; charset="UTF-8" Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Fri, Nov 16, 2018 at 12:34 PM Richard Guy Briggs wrote: > On user and remote filesystems, a forced umount can still hang due to > attemting to fetch the fcaps of a mounted filesystem that is no longer > available. > > These two patches take different approaches to address this, one by > avoiding the lookup when the MNT_FORCE flag is included, the other by > providing a method to filter out auditing specified types of filesystems. > > This can happen on ceph, cifs, 9p, lustre, fuse (gluster) or NFS. > > Arguably the better way to address this issue is to disable auditing > processes that touch removable filesystems. > Please see the github issue tracker > https://github.com/linux-audit/audit-kernel/issues/100 > > Richard Guy Briggs (2): > audit: avoid fcaps on MNT_FORCE > audit: moar filter PATH records keyed on filesystem magic > > fs/namei.c | 2 +- > fs/namespace.c | 3 +++ > include/linux/audit.h | 8 ++++++-- > kernel/audit.c | 5 +++-- > kernel/audit.h | 2 +- > kernel/auditsc.c | 29 ++++++++++++++++++++++++++--- > 6 files changed, 40 insertions(+), 9 deletions(-) Just to get this out of the way, don't use "moar", spell it properly. Beyond that, it's not clear to me from your cover letter if you are proposing these patches as an "or" or as an "and"; assuming the patch(es) are reasonable, do you want us to merge both of these patches, or only the one we like the most? -- paul moore www.paul-moore.com