From: Gao Xiang <hsiangkao@linux.alibaba.com>
To: Dave Chinner <david@fromorbit.com>,
Christian Brauner <brauner@kernel.org>
Cc: Giuseppe Scrivano <gscrivan@redhat.com>,
Amir Goldstein <amir73il@gmail.com>,
Alexander Larsson <alexl@redhat.com>,
linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org,
Miklos Szeredi <miklos@szeredi.hu>,
Yurii Zubrytskyi <zyy@google.com>,
Eugene Zemtsov <ezemtsov@google.com>,
Vivek Goyal <vgoyal@redhat.com>,
Al Viro <viro@zeniv.linux.org.uk>
Subject: Re: [PATCH v2 0/6] Composefs: an opportunistically sharing verified image filesystem
Date: Wed, 18 Jan 2023 09:27:29 +0800 [thread overview]
Message-ID: <0aaac76f-74a0-f6f9-089f-636b38a2bea7@linux.alibaba.com> (raw)
In-Reply-To: <20230118002242.GB937597@dread.disaster.area>
On 2023/1/18 08:22, Dave Chinner wrote:
> On Tue, Jan 17, 2023 at 04:27:56PM +0100, Christian Brauner wrote:
>> On Tue, Jan 17, 2023 at 02:56:56PM +0100, Giuseppe Scrivano wrote:
>>> Christian Brauner <brauner@kernel.org> writes:
>>> 2) no multi repo support:
>>>
>>> Both reflinks and hardlinks do not work across mount points, so we
>>
>> Just fwiw, afaict reflinks work across mount points since at least 5.18.
>
...
>
> As such, I think composefs is definitely worth further time and
> investment as a unique line of filesystem development for Linux.
> Solve the chain of trust problem (i.e. crypto signing for the
> manifest files) and we potentially have game changing container
> infrastructure in a couple of thousand lines of code...
I think that is the last time I write some words in this v2
patchset. At a quick glance of the current v2 patchset:
1) struct cfs_buf { -> struct erofs_buf;
2) cfs_buf_put -> erofs_put_metabuf;
3) cfs_get_buf -> erofs_bread -> (but erofs_read_metabuf() in
v5.17 is much closer);
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tree/fs/erofs/data.c?h=linux-5.17.y
4) cfs_dentry_s -> erofs_dirent;
...
Also it drops EROFS __lexx and uses buggy uxx instead.
It drops iomap/fscache interface with a stackable file
interface and it doesn't have ACL and (else) I don't
have time to look into more.
That is the current my point of view of the current
Composefs. Yes, you could use/fork any code in
open-source projects, but it currently seems like an
immature EROFS-truncated copy and its cover letter
never mentioned EROFS at all.
I'd suggest you guys refactor similar code (if you
claim that is not another EROFS) before it really
needs to be upstreamed, otherwise I would feel
uneasy as well. Apart from that, again I have no
objection if folks feel like a new read-only
stackable filesystem like this.
Apart from the codebase, I do hope there could be some
discussion of this topic at LSF/MM/BPF 2023 as Amir
suggested because I don't think this overlay model is
really safe without fs-verity enforcing.
Thank all for the time. I'm done.
Thanks,
Gao Xiang
>
> Cheers,
>
> Dave.
next prev parent reply other threads:[~2023-01-18 1:27 UTC|newest]
Thread overview: 34+ messages / expand[flat|nested] mbox.gz Atom feed top
2023-01-13 15:33 [PATCH v2 0/6] Composefs: an opportunistically sharing verified image filesystem Alexander Larsson
2023-01-13 15:33 ` [PATCH v2 1/6] fsverity: Export fsverity_get_digest Alexander Larsson
2023-01-13 15:33 ` [PATCH v2 2/6] composefs: Add on-disk layout Alexander Larsson
2023-01-16 1:29 ` Dave Chinner
2023-01-16 11:00 ` Alexander Larsson
2023-01-16 23:06 ` Dave Chinner
2023-01-17 12:11 ` Alexander Larsson
2023-01-18 3:08 ` Dave Chinner
2023-01-13 15:33 ` [PATCH v2 3/6] composefs: Add descriptor parsing code Alexander Larsson
2023-01-13 15:33 ` [PATCH v2 4/6] composefs: Add filesystem implementation Alexander Larsson
2023-01-13 21:55 ` kernel test robot
2023-01-16 22:07 ` Al Viro
2023-01-17 13:29 ` Alexander Larsson
2023-01-13 15:33 ` [PATCH v2 5/6] composefs: Add documentation Alexander Larsson
2023-01-14 3:20 ` Bagas Sanjaya
2023-01-16 12:38 ` Alexander Larsson
2023-01-13 15:33 ` [PATCH v2 6/6] composefs: Add kconfig and build support Alexander Larsson
2023-01-16 4:44 ` [PATCH v2 0/6] Composefs: an opportunistically sharing verified image filesystem Gao Xiang
2023-01-16 9:30 ` Alexander Larsson
2023-01-16 10:19 ` Gao Xiang
2023-01-16 12:33 ` Alexander Larsson
2023-01-16 13:26 ` Gao Xiang
2023-01-16 14:18 ` Giuseppe Scrivano
2023-01-16 15:27 ` Alexander Larsson
2023-01-17 0:12 ` Gao Xiang
2023-01-17 7:05 ` Amir Goldstein
2023-01-17 10:12 ` Christian Brauner
2023-01-17 10:30 ` Gao Xiang
2023-01-17 13:56 ` Giuseppe Scrivano
2023-01-17 14:28 ` Gao Xiang
2023-01-17 15:27 ` Christian Brauner
2023-01-18 0:22 ` Dave Chinner
2023-01-18 1:27 ` Gao Xiang [this message]
2023-01-20 9:22 ` Alexander Larsson
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=0aaac76f-74a0-f6f9-089f-636b38a2bea7@linux.alibaba.com \
--to=hsiangkao@linux.alibaba.com \
--cc=alexl@redhat.com \
--cc=amir73il@gmail.com \
--cc=brauner@kernel.org \
--cc=david@fromorbit.com \
--cc=ezemtsov@google.com \
--cc=gscrivan@redhat.com \
--cc=linux-fsdevel@vger.kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=miklos@szeredi.hu \
--cc=vgoyal@redhat.com \
--cc=viro@zeniv.linux.org.uk \
--cc=zyy@google.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).