From mboxrd@z Thu Jan 1 00:00:00 1970 From: "Pekka Enberg" Subject: Re: forced umount? Date: Sat, 17 Mar 2007 12:53:37 +0200 Message-ID: <84144f020703170353y4490d0dcr24352c291c96300b@mail.gmail.com> References: <170fa0d20703162106v47dc13e1u1ae5381576f372ed@mail.gmail.com> <45FB6E32.3050009@goop.org> <170fa0d20703162237m1023cbd2o8ccf9e464c53f4a0@mail.gmail.com> Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: "Jeremy Fitzhardinge" , linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org To: "Mike Snitzer" Return-path: Received: from ug-out-1314.google.com ([66.249.92.169]:53080 "EHLO ug-out-1314.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S965375AbXCQKxj (ORCPT ); Sat, 17 Mar 2007 06:53:39 -0400 Received: by ug-out-1314.google.com with SMTP id 44so909200uga for ; Sat, 17 Mar 2007 03:53:38 -0700 (PDT) In-Reply-To: <170fa0d20703162237m1023cbd2o8ccf9e464c53f4a0@mail.gmail.com> Content-Disposition: inline Sender: linux-fsdevel-owner@vger.kernel.org List-Id: linux-fsdevel.vger.kernel.org On 3/17/07, Mike Snitzer wrote: > Thanks for the heads up; its good to see that Pekka Enberg's work has > continued. I actually stumbled onto that line of work earlier while > searching for more info on Tigran Aivazian's forced unmount (badfs) > patches: > http://lwn.net/Articles/192632/ FYI, the revoke implementation have since been changed to follow the badfs-style approach of the forced unmount patches. However, there are some problems with the forced unmount patches that are now fixed in the revoke implementation: - You can't use munmap() to take down shared memory mappings because the application can accidentally remap something completely different to that region. - The ->f_light bits slow down other fget_light() users and there's a race between fcheck_files() and set_f_light(). - The operation can live-lock if a malicious process keeps forking. The revoke implementation solves this by revoking in two passes: (1) take down the descriptors and (2) take down the actual inodes. Pekka