From: Stanislav Kinsbursky <skinsbursky@parallels.com>
To: "Trond.Myklebust@netapp.com" <Trond.Myklebust@netapp.com>,
"bfields@fieldses.org" <bfields@fieldses.org>
Cc: "linux-nfs@vger.kernel.org" <linux-nfs@vger.kernel.org>
Subject: [RFC] RPCBIND: add anonymous listening socket in addition to named one
Date: Wed, 28 Dec 2011 19:17:30 +0400 [thread overview]
Message-ID: <4EFB330A.7070908@parallels.com> (raw)
Hello.
I've experienced a problem with registering Lockd service with rpcbind in
container. My container operates in it's own network namespace context and has
it's own root. But on service register, kernel tries to connect to named unix
socket by using rpciod_workqueue. Thus any connect is done with the same
fs->root, and this leads to that kernel socket, used for registering service
with local portmapper, will always connect to the same user-space socket
regardless to fs->root of process, requested register operation.
Possible solution for this problem, which I would like to discuss, is to add one
more listening socket to rpcbind process. But this one should be anonymous.
Anonymous unix sockets accept connections only within it's network namespace
context, so kernel socket connect will be done always to the user-space socket
in the same network namespace.
Does anyone have any objections to this? Or, probably, better solution for the
problem?
--
Best regards,
Stanislav Kinsbursky
next reply other threads:[~2011-12-28 15:18 UTC|newest]
Thread overview: 15+ messages / expand[flat|nested] mbox.gz Atom feed top
2011-12-28 15:17 Stanislav Kinsbursky [this message]
2011-12-28 17:03 ` [RFC] RPCBIND: add anonymous listening socket in addition to named one Chuck Lever
2011-12-28 17:30 ` Stanislav Kinsbursky
2011-12-28 17:59 ` Chuck Lever
2011-12-29 11:48 ` Stanislav Kinsbursky
2011-12-29 16:03 ` Chuck Lever
2011-12-29 16:12 ` Stanislav Kinsbursky
2011-12-29 16:23 ` Chuck Lever
2011-12-29 17:04 ` Stanislav Kinsbursky
2011-12-29 17:42 ` Stanislav Kinsbursky
2012-01-25 11:12 ` Stanislav Kinsbursky
2012-01-25 14:41 ` bfields
2012-01-25 16:02 ` Stanislav Kinsbursky
2011-12-28 18:22 ` bfields
2011-12-29 11:48 ` Stanislav Kinsbursky
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=4EFB330A.7070908@parallels.com \
--to=skinsbursky@parallels.com \
--cc=Trond.Myklebust@netapp.com \
--cc=bfields@fieldses.org \
--cc=linux-nfs@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox