Re: [PATCH 0/6] File Sealing & memfd_create()

From: Colin Walters
Date: Thu Apr 10 2014 - 15:49:59 EST

Next message: Bjorn Helgaas: "Re: BAR 14: can't assign mem (size 0x200000)"
Previous message: Boris Ostrovsky: "Re: [PATCH v2] x86/xen: Fix 32-bit PV guests's usage of kernel_stack"
In reply to: Andy Lutomirski: "Re: [PATCH 0/6] File Sealing & memfd_create()"
Next in thread: Andy Lutomirski: "Re: [PATCH 0/6] File Sealing & memfd_create()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Apr 10, 2014 at 3:15 PM, Andy Lutomirski <luto@xxxxxxxxxxxxxx> wrote:

COW links can do this already, I think. Of course, you'll have to use a
filesystem that supports them.

COW is nice if the filesystem supports them, but my userspace code needs to be filesystem agnostic. Because of that, the design for userspace simply doesn't allow arbitrary writes.

Instead, I have to painfully audit every rpm %post/dpkg postinst type script to ensure they break hardlinks, and furthermore only allow executing scripts that are known to do so.

But I think even in a btrfs world it'd still be useful to mark files as content-immutable.

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Bjorn Helgaas: "Re: BAR 14: can't assign mem (size 0x200000)"
Previous message: Boris Ostrovsky: "Re: [PATCH v2] x86/xen: Fix 32-bit PV guests's usage of kernel_stack"
In reply to: Andy Lutomirski: "Re: [PATCH 0/6] File Sealing & memfd_create()"
Next in thread: Andy Lutomirski: "Re: [PATCH 0/6] File Sealing & memfd_create()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]