Received: by 2002:a25:6193:0:0:0:0:0 with SMTP id v141csp443638ybb; Wed, 1 Apr 2020 03:10:47 -0700 (PDT) X-Google-Smtp-Source: ADFU+vvOXjSDIxgsFbvjZumw8OI0GFiVieIxTnWhzbNR6lOgT0oefiZkn9JkDHgRyKXytv+rHyRh X-Received: by 2002:a9d:2004:: with SMTP id n4mr6787248ota.74.1585735846894; Wed, 01 Apr 2020 03:10:46 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1585735846; cv=none; d=google.com; s=arc-20160816; b=PFuXFqJlYBv+YQaHNPb76KARnxLcoOJKvN5Yro5dJ2nzlbElJnTTpBWr++7tSMbE42 ZW65DDkflxJCWQaNEcJmjyMw0tx5BSePHqObWo28DILZtGY8itATG+o1QdxdWBi0nev4 7RsmUzVKojsFMb4p/FE13rd3bM/ZLTwBzMfWHW7eISIfPK1LBKznbRBWrNUUx386eoY4 pVXZjWcgjqkghSX2zipa1BbjOtpm3VPU4hIQSan9o9HYyP+Pe35Nm+bvA4o7ki0PJXf1 We4vDZw73bOl6ObnEBnc4VHFObL1jVd/fg0Yiiym3n3cj0V3wJGwlySt8jmM7Y0YfpAa amWw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:dkim-signature; bh=/JUjrVIAN05JaqOZ81e9IeMVI4IIpPJGuXB/jnNFM7c=; b=YYFwtaIFeU0jKTS844ei3g5EIXfwK4zn6aIvkyFt1tzboCS9vosCjwrzY2QaD4KH5k eMuFSBZk1x6Js2SZRMOvimzBhjrFKe5mnrKjx2CGDaTPcWGVobSPlefsWgeIeqdmz2p5 AGsrT49GrmirerML3E8zBmc7srph8IlVgCnJ+JP3SzvbVpfGw/NJkAw9hCmoTputhRmo vqDXHyP60qCImeXSfI0vBhIDLwSwg6ogsv9z5B2vTgsY3Lva0nMef0Dovf8zoSb570KN hDwbxlYpdvD9YrNar8oExoYVQrYy4QyTqaZvgLvkYXED85HM/n5SRj+ngAghOrgcihdW SCXA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@cloudflare.com header.s=google header.b=FzxJt0Nt; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=cloudflare.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id e23si645105oth.117.2020.04.01.03.10.34; Wed, 01 Apr 2020 03:10:46 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@cloudflare.com header.s=google header.b=FzxJt0Nt; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=cloudflare.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1725860AbgDAKJ1 (ORCPT + 99 others); Wed, 1 Apr 2020 06:09:27 -0400 Received: from mail-qk1-f195.google.com ([209.85.222.195]:33474 "EHLO mail-qk1-f195.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726335AbgDAKJ0 (ORCPT ); Wed, 1 Apr 2020 06:09:26 -0400 Received: by mail-qk1-f195.google.com with SMTP id v7so26436766qkc.0 for ; Wed, 01 Apr 2020 03:09:26 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cloudflare.com; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=/JUjrVIAN05JaqOZ81e9IeMVI4IIpPJGuXB/jnNFM7c=; b=FzxJt0Nt0NgAOpqNI+AdrmKN0ewi+HoB2BYl1EDjlDDlCJbGfSSc3nt2OmQM8v08KX iSUuKe/+Ujy5NZxR2ldOqTxUSAp4hWsKkaxOTuxqLDX7dgCLt9yBU0Lpf/xKG8I/gBrp PHaK3fs5zyk12tmLZEuCpGQmwJ75uxSLvB8L8= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=/JUjrVIAN05JaqOZ81e9IeMVI4IIpPJGuXB/jnNFM7c=; b=l/C7NNZB8y8+SRN34QUYIKnUTp+FsQdyM8GLMfLex9SIkfvLT9Klw1UpgEkXvfZM30 rdeXJSkm0Lkth4hwiVVYq3mRYrpAGKmQ0s9YZBarj2fX5uRlSc0yU1jtI3UjtgfOfZq6 0wDrKOIbpm99ccuYmEDmEWZkDiJn2MREu9SnCNc5TXbCEOToLck0q6+W9oIhbh4YLbtZ V2dkZhnGHSYFybGE6gs8XcKgWZNYwVII51VFLGWat3y5Xh4xj/uUP4DsRcEfnP2DqUmd jvoDPpmoKBMe8v73gNlRltT2DoEELYEFXa5JGKuQsQQMK8hcMlgJDsTJCQwqEQ5PXEk0 9L6Q== X-Gm-Message-State: ANhLgQ3lqXh98bJC5mD+atRsT+NQvnTXDCtSoD7KlO+ZWK9ioVI3jDdb 1ekkZl1ymFXH9PXJ2HZ6y1S7a56cBtTFzd04f+AGsA== X-Received: by 2002:a37:6cb:: with SMTP id 194mr9284729qkg.235.1585735765690; Wed, 01 Apr 2020 03:09:25 -0700 (PDT) MIME-Version: 1.0 References: <20200331124017.2252-1-ignat@cloudflare.com> <20200331124017.2252-2-ignat@cloudflare.com> <20200401063620.catm73fbp5n4wv5r@yavin.dot.cyphar.com> <20200401063806.5crx6pnm6vzuc3la@yavin.dot.cyphar.com> In-Reply-To: From: Marek Majkowski Date: Wed, 1 Apr 2020 11:09:14 +0100 Message-ID: Subject: Re: [PATCH v2 1/1] mnt: add support for non-rootfs initramfs To: Ignat Korchagin Cc: Aleksa Sarai , Al Viro , Linux FS Devel , linux-kernel , kernel-team , containers@lists.linux-foundation.org, christian.brauner@ubuntu.com Content-Type: text/plain; charset="UTF-8" Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org > However now we see more and more cases needing this and the > boilerplate code and the additional memory copying (and sometimes > security issues like you mentioned), which can handle this from the > userspace becomes too much. I understand the simplicity reasons > described in [1] ("You can't unmount rootfs for approximately the same > reason you can't kill the init process..."), but to support this > simplicity as well as the new containerised Linux world the kernel > should give us a hand. "You can't unmount rootfs for approximately the same reason you can't kill the init process" Pardon my ignorance but this explanation in docs never made any sense to me. Rootfs is pretty much the same as tmpfs. I don't understand why we can't do pivot_root on it and why, we can't unmount it later. I must be missing some context. Can someone explain what is the reason for rootfs to be restricted like that? Perhaps we could just relax rootfs limits.... Marek