Received: by 2002:a25:c593:0:0:0:0:0 with SMTP id v141csp5579513ybe;
        Tue, 10 Sep 2019 06:02:56 -0700 (PDT)
X-Google-Smtp-Source: APXvYqwKSd+VA7pCDDdgnGVi3CAY04BpkcU8JiM6ICuEb2dhMFT5rbeJ4fxGfbT+fLtNKYyvBwsd
X-Received: by 2002:a17:906:5ac2:: with SMTP id x2mr23939600ejs.77.1568120576500;
        Tue, 10 Sep 2019 06:02:56 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1568120576; cv=none;
        d=google.com; s=arc-20160816;
        b=aKqn3iUARYKMUF1SqEfxHEkI2E3J0UwMT0RGe2D6mwAPA1FKtN5ABq8yX02o5P0JNa
         ch3UYNGt+y82NkvqAc28P1rkTzPF+uemu3Yn89La83dH+vc8KJUsYeeqs+Ni974RTnWR
         qiPLkm7sr1QfWmsMAc9ZbB6IrDyZNI3XG/cPaD6bHwn4l5jLgfSqSX76G1jB81Klsh/j
         17NNruuPWlaD+z9lRKOBTmo78fvopbSm8SpfTQ4aUSjfsbWesXiTIc6eg8+JagUR/bK+
         66Bkp3jkHklcS8IJhshkuTCxUA1gnabngFjMTZTZZV3qQJodze9eiCPD6KXnMCHko+BS
         gpWQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:content-transfer-encoding
         :content-language:in-reply-to:mime-version:user-agent:date
         :message-id:from:references:to:subject:cc:dkim-signature;
        bh=MrINUQGFA0l/We/Wa3iq30ErdoQdRnCKtSaB6+ShjIs=;
        b=X27TDdl5MM88eff/IbSe7sT3nacCQ7MryJDfcUG7vPd60Uks6HRCh9CqcWUlr8WHh5
         Iyv9hXjXyiVaM6E28PdYS2VicZ7K9Oykr0lyBbDq1et4xnBJ8gsj62hmxb7a6hZd7dpQ
         kdn1w22hmNYEaDbTCaT54OobkphYgSSz59kOtubF9R2AD9CzPTfTavQ5Wxmi2XBYKgnn
         CUCwDicdQqcRpbGMpAsMSe09txJ3Bgvq4g5L9e78Akbt5EByPuW2LOwFqfQWxQm4/om5
         GAxM5v1+jU7krgwlk/NUy9KsDg9MM0WK1Px2S/oa+7NlfJtL6Ncu2kfg3LGqD0jDSXQp
         Fl3w==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@gmail.com header.s=20161025 header.b="pCbEc1/3";
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id a54si10303801edc.333.2019.09.10.06.02.21;
        Tue, 10 Sep 2019 06:02:56 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@gmail.com header.s=20161025 header.b="pCbEc1/3";
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1727359AbfIJLVU (ORCPT <rfc822;shmalave.kernel@gmail.com>
        + 99 others); Tue, 10 Sep 2019 07:21:20 -0400
Received: from mail-wr1-f65.google.com ([209.85.221.65]:38324 "EHLO
        mail-wr1-f65.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1725935AbfIJLVU (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Tue, 10 Sep 2019 07:21:20 -0400
Received: by mail-wr1-f65.google.com with SMTP id l11so19386016wrx.5;
        Tue, 10 Sep 2019 04:21:18 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20161025;
        h=cc:subject:to:references:from:message-id:date:user-agent
         :mime-version:in-reply-to:content-language:content-transfer-encoding;
        bh=MrINUQGFA0l/We/Wa3iq30ErdoQdRnCKtSaB6+ShjIs=;
        b=pCbEc1/3duUPc3UmWObiepmEmkhTJnfZVi4z+Xe+ogQts1oMtlAoovAaM6O7DYSERu
         AgsPRmm4Quo9JT5jbNNV0UCDcyLBcCT74XIu5w3AqSUKEZS1cY1Y0vuY/D7+mt7/q/Vy
         3RSldqlXTMn0KA6H6c3DgSdcLc0hjOJVLs2kaNWTkyZgPusYKRIkPdVc4CXS2pFZ6G09
         s0mQ/y93jFrcvcdIbA1yLtW5QaWnb3vNFzaM4estMADY1H9J6i8zIvulh8CZe4HVJdI2
         6fXoM5oa8V196gnq9ungBEuWevk2wj70tFOKjj0f9Vtfd+yiz+VvRX9waKZ38dlef9lO
         EIAg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:cc:subject:to:references:from:message-id:date
         :user-agent:mime-version:in-reply-to:content-language
         :content-transfer-encoding;
        bh=MrINUQGFA0l/We/Wa3iq30ErdoQdRnCKtSaB6+ShjIs=;
        b=Pfxk8bGMyum+wNV7lGzELuAtSHExBVA24Tz68uSjHAsDfccUfgSD8jyN5qO6NMjuyj
         8vIhiFUpPXF5RtaNcUhgV2h3rWVW04y+THA8WS+qE9KNREV/KyRyqDVoBEwI7tASI3dx
         H1WTCWFz2Aev3gV9POaqgdPGQnJ20GgqVfNrGzOOEUYPfA0cNefkLndeDHPeBy6B/QEA
         OBbnIydmxSBlnq2Anubvy17iuwl/62JrlEDNmx6MGNYQ2gJXnbkllpYA/XgNVWnXQah3
         XjTvHRm9cpYrwCjfoRQRrhsJV5/7AVH0D5z0sel1jlMaOEvlqEx3Pne+wuoo4zXUa/3P
         FAhQ==
X-Gm-Message-State: APjAAAVD5VMlUrP4VHQtQqW5X5N/Po/1qNfMhPWJ2F4biLlHXv+nx7DK
        1u6OqXk83CEKbB+z978JZf8=
X-Received: by 2002:a5d:6602:: with SMTP id n2mr26965864wru.317.1568114477454;
        Tue, 10 Sep 2019 04:21:17 -0700 (PDT)
Received: from [10.0.20.253] ([95.157.63.22])
        by smtp.gmail.com with ESMTPSA id s3sm1871301wmj.48.2019.09.10.04.21.16
        (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128);
        Tue, 10 Sep 2019 04:21:17 -0700 (PDT)
Cc:     mtk.manpages@gmail.com,
        "Eric W. Biederman" <ebiederm@xmission.com>,
        linux-man <linux-man@vger.kernel.org>,
        Containers <containers@lists.linux-foundation.org>,
        lkml <linux-kernel@vger.kernel.org>,
        Andy Lutomirski <luto@amacapital.net>,
        Jordan Ogas <jogas@lanl.gov>, werner@almesberger.net,
        Al Viro <viro@ftp.linux.org.uk>
Subject: Re: pivot_root(".", ".") and the fchdir() dance
To:     Christian Brauner <christian.brauner@ubuntu.com>
References: <CAKgNAki0bR5zZr+kp_xjq+bNUky6-F+s2ep+jnR0YrjHhNMB1g@mail.gmail.com>
 <20190805103630.tu4kytsbi5evfrhi@mikami>
 <3a96c631-6595-b75e-f6a7-db703bf89bcf@gmail.com>
 <da747415-4c7a-f931-6f2e-2962da63c161@philippwendler.de>
 <CAKgNAkjS+x7aMVUiVSgCRwgi8rnukqJv=svtTARE-tt-oxQxWw@mail.gmail.com>
 <87r24piwhm.fsf@x220.int.ebiederm.org>
 <CAKgNAkhK2qBbz5aVY9VdK0UzvpZ=c7c7LWQ1MK2gu-rVKUz9_g@mail.gmail.com>
 <87ftl5donm.fsf@x220.int.ebiederm.org>
 <b8b9d8bd-e959-633f-b879-4bfe4eb0df23@gmail.com>
 <20190910111551.scam5payogqqvlri@wittgenstein>
From:   "Michael Kerrisk (man-pages)" <mtk.manpages@gmail.com>
Message-ID: <30545c5c-ff4c-8b87-e591-40cc0a631304@gmail.com>
Date:   Tue, 10 Sep 2019 13:21:16 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101
 Thunderbird/60.6.1
MIME-Version: 1.0
In-Reply-To: <20190910111551.scam5payogqqvlri@wittgenstein>
Content-Type: text/plain; charset=utf-8
Content-Language: en-US
Content-Transfer-Encoding: 8bit
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

Hello Christian,

>> All: I plan to add the following text to the manual page:
>>
>>        new_root and put_old may be the same  directory.   In  particular,
>>        the following sequence allows a pivot-root operation without need‐
>>        ing to create and remove a temporary directory:
>>
>>            chdir(new_root);
>>            pivot_root(".", ".");
>>            umount2(".", MNT_DETACH);
> 
> Hm, should we mention that MS_PRIVATE or MS_SLAVE is usually needed
> before the umount2()? Especially for the container case... I think we
> discussed this briefly yesterday in person.
Thanks for noticing. That detail (more precisely: not MS_SHARED) is
already covered in the numerous other changes that I have pending
for this page:

       The following restrictions apply:
       ...
       -  The propagation type of new_root and its parent mount must  not
          be MS_SHARED; similarly, if put_old is an existing mount point,
          its propagation type must not be MS_SHARED.

Thanks,

Michael


-- 
Michael Kerrisk
Linux man-pages maintainer; http://www.kernel.org/doc/man-pages/
Linux/UNIX System Programming Training: http://man7.org/training/