BUG: Mount ignores mount options
Casey Schaufler
casey at schaufler-ca.com
Mon Aug 13 19:20:14 UTC 2018
On 8/13/2018 12:00 PM, James Morris wrote:
> On Mon, 13 Aug 2018, Al Viro wrote:
>
>> On Mon, Aug 13, 2018 at 09:48:53AM -0700, Andy Lutomirski wrote:
>>> Are there cases I'm missing? It sounds like the API could be improved
>>> to fully model the last case, and everything will work nicely.
>> You know, that's starting to remind of this little gem of Borges:
>> http://www.alamut.com/subj/artiface/language/johnWilkins.html
>> Especially the delightful (fake) quote contained in there:
>> [...] it is written that the animals are divided into:
>> (a) belonging to the emperor,
>> (b) embalmed,
>> (c) tame,
>> (d) sucking pigs,
>> (e) sirens,
>> (f) fabulous,
>> (g) stray dogs,
>> (h) included in the present classification,
>> (i) frenzied,
>> (j) innumerable,
>> (k) drawn with a very fine camelhair brush,
>> (l) et cetera,
>> (m) having just broken the water pitcher,
>> (n) that from a long way off look like flies.
>
> Coincidentally, this was also the model for Linux capabilities.
Linux capabilities are POSIX capabilities which are modeled closely
to accommodate the historical behavior manifest in the P1003.1 specification.
So except for (c), (f) and (k) you can use this characterization.
On a slightly more serious note, there's a lot of Linux, mount semantics
included, that have grow organically and that aren't quite up to the
usage models they are being applied to. I applaud David's work in part
because it may make it possible to accommodate more of those cases going
forward.
More information about the Linux-security-module-archive
mailing list