Received: by 2002:a05:6358:a55:b0:ec:fcf4:3ecf with SMTP id 21csp4879387rwb; Tue, 17 Jan 2023 06:41:04 -0800 (PST) X-Google-Smtp-Source: AMrXdXsLIprUy8je90SFd9K6mFhZJeG9A8tbVEFGD7JE/HnWiNzhLxh3tVBTDalEfbo/C4q0c5SK X-Received: by 2002:a17:907:515:b0:86a:4bb6:61cc with SMTP id wj21-20020a170907051500b0086a4bb661ccmr2644822ejb.68.1673966464624; Tue, 17 Jan 2023 06:41:04 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1673966464; cv=none; d=google.com; s=arc-20160816; b=h06achhdl8jJsyeF0U0egUo29slfvB4e+Vbfiko0tPFd+ops0F3gfKFLb1bFcYwRMd IiNux8CsYrpo3O4YFzbm8R57LaSZCrbXLSixMAoCdb0fQ3T7cHt1Z6ZUjIV58AIFpiqu wFMtwKg8U07ywSe2nlIgBYorbsduSvwRcd6ADn16XKn5wMVQ760hyepMjHwBeKMfXaoo Y/QObXbjPZQDVPgRNByVDPiIXbU7tpxK5NpI4vWz4VyngECTDhvAjI8mGWVf0yQZp4I8 pD4306+HERyvQ00HVRQlNbkctx/JjeBK44jnuzff1BwluRtjtd7xQmUBPKncIVyBszHl iooQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:in-reply-to:from :references:cc:to:subject:user-agent:mime-version:date:message-id; bh=IyY7WeFUjVmfHXeNrRVzZo+esJqqDWjWvHxWo5Bx4sM=; b=aNto0gP/l0tokHpg/6TPzg2ccZQ1mFcAU7hl0ZHsOdDz2udPPAM+1aad4mzXyxtVS4 EeK8QU4Q1fep54TZ/N/FEj0uNM6vH8Tnt5cNKKTzi3vl56TFF7Lo0tee9EAXXbo6gMb9 TM+l78mj+zXxQWvsD5qiysrk8qfNjwvgVXTh1cM3HlC20iyZdrar4kq9Xjr9CufTOkXL 1unL1qGwRqm2dxIuOO7BAwiigOtLhBazhMoPArKzDe7KVoEnL5gQZCXvqFZhulGuBcbC foG2xbDEQ6QKwzqcLCfzJx3TDA7Fn5l02QAoW6jxWhcGYYZG4gqh6pf5N2uVZT883RMH EO4Q== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=alibaba.com Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id xj4-20020a170906db0400b007a087ccd275si10309032ejb.384.2023.01.17.06.40.52; Tue, 17 Jan 2023 06:41:04 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=alibaba.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S232707AbjAQOaK (ORCPT + 48 others); Tue, 17 Jan 2023 09:30:10 -0500 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:47704 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S232643AbjAQO3p (ORCPT ); Tue, 17 Jan 2023 09:29:45 -0500 Received: from out30-6.freemail.mail.aliyun.com (out30-6.freemail.mail.aliyun.com [115.124.30.6]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id CC2381E287; Tue, 17 Jan 2023 06:28:42 -0800 (PST) X-Alimail-AntiSpam: AC=PASS;BC=-1|-1;BR=01201311R171e4;CH=green;DM=||false|;DS=||;FP=0|-1|-1|-1|0|-1|-1|-1;HT=ay29a033018046050;MF=hsiangkao@linux.alibaba.com;NM=1;PH=DS;RN=11;SR=0;TI=SMTPD_---0VZnLW.p_1673965717; Received: from 192.168.3.7(mailfrom:hsiangkao@linux.alibaba.com fp:SMTPD_---0VZnLW.p_1673965717) by smtp.aliyun-inc.com; Tue, 17 Jan 2023 22:28:38 +0800 Message-ID: <74810a5f-3ed3-27f1-caa6-8d3724f1c85e@linux.alibaba.com> Date: Tue, 17 Jan 2023 22:28:37 +0800 MIME-Version: 1.0 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:102.0) Gecko/20100101 Thunderbird/102.6.1 Subject: Re: [PATCH v2 0/6] Composefs: an opportunistically sharing verified image filesystem To: Giuseppe Scrivano , Christian Brauner Cc: Amir Goldstein , Alexander Larsson , linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, Miklos Szeredi , Yurii Zubrytskyi , Eugene Zemtsov , Vivek Goyal , Al Viro References: <3065ecb6-8e6a-307f-69ea-fb72854aeb0f@linux.alibaba.com> <0a144ffd-38bb-0ff3-e8b2-bca5e277444c@linux.alibaba.com> <9d44494fdf07df000ce1b9bafea7725ea240ca41.camel@redhat.com> <2856820a46a6e47206eb51a7f66ec51a7ef0bd06.camel@redhat.com> <8f854339-1cc0-e575-f320-50a6d9d5a775@linux.alibaba.com> <20230117101202.4v4zxuj2tbljogbx@wittgenstein> <87fsc9gt7b.fsf@redhat.com> From: Gao Xiang In-Reply-To: <87fsc9gt7b.fsf@redhat.com> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Status: No, score=-10.0 required=5.0 tests=BAYES_00, ENV_AND_HDR_SPF_MATCH,NICE_REPLY_A,RCVD_IN_MSPIKE_H2,SPF_HELO_NONE, SPF_PASS,UNPARSEABLE_RELAY,USER_IN_DEF_SPF_WL autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 2023/1/17 21:56, Giuseppe Scrivano wrote: > Christian Brauner writes: > ... > > We looked at EROFS since it is already upstream but it is quite > different than what we are doing as Alex already pointed out. > Sigh.. please kindly help me find out what's the difference if EROFS uses some symlink layout for each regular inode? Some question for me to ask about this new overlay permission model once again: What's the difference between symlink (maybe with some limitations) and this new overlay model? I'm not sure why symlink permission bits is ignored (AFAIK)? I don't think it too further since I don't quite an experienced one in the unionfs field, but if possible, I'm quite happy to learn new stuffs as a newbie filesystem developer to gain more knowledge if it could be some topic at LSF/MM/BPF 2023. > Sure we could bloat EROFS and add all the new features there, after all > composefs is quite simple, but I don't see how this is any cleaner than > having a simple file system that does just one thing. Also if I have time, I could do a code-truncated EROFS without any useless features specificly for ostree use cases. Or I could just seperate out all of that useless code of Ostree-specific use cases by using Kconfig. If you don't want to use EROFS from whatever reason, I'm not oppose to it (You also could use other in-kernel local filesystem for this as well). Except for this new overlay model, I just tried to say how it works similiar to EROFS. > > On top of what was already said: I wish at some point we can do all of > this from a user namespace. That is the main reason for having an easy > on-disk format for composefs. This seems much more difficult to achieve > with EROFS given its complexity. Why? [ Gao Xiang: this time I will try my best stop talking about EROFS under the Composefs patchset anymore because I'd like to avoid appearing at the first time (unless such permission model is never discussed until now)... No matter in the cover letter it never mentioned EROFS at all. ] Thanks, Gao Xiang