kernel-packages team mailing list archive
-
kernel-packages team
-
Mailing list archive
-
Message #96218
[Bug 1402834] Re: fuse filesystems get disconnected on container exit
So the problem is that a force unmount of a bind-mount of a fuse
filesystem somehow gets the kernel to send the "destroy" command back to
the user space process running the filesystem. This behavior is clearly
wrong.
As an example, lets say that I'm running "lxcfs" as a fuse filesystem on
my system. The mount is visible to everyone on the system and then as a
nobody user I can unshare my user namespace, unshare my mount namespace,
bind-mount that filesystem to say /mnt and then force unmount it and it
will destroy the fuse filesystem entirely, getting the process that
backs it to exit and preventing anyone on the system from accessing it.
A simple reproducer is: echo "mount --bind /var/lib/lxcfs /mnt && umount
-f /mnt" | lxc-usernsexec -- /bin/bash
--
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux in Ubuntu.
https://bugs.launchpad.net/bugs/1402834
Title:
fuse filesystems get disconnected on container exit
Status in linux package in Ubuntu:
Confirmed
Bug description:
When bind-mounting a directory from a fuse filesytems into a container,
then when the container is shut down, the userspace process serving the
fuse fs is terminated. The original fuse mountpoint remains busy until it
is manually unmounted.
I've tested this with sshfs, git://github.com/stgraber/cgmanagerfs,
the bbfs example fs from http://www.cs.nmsu.edu/~pfeiffer/fuse-tutorial/,
or git://github.com/lxc/lxcfs.
To reproduce:
Mount a fusefs - say sshfs - with -o allow_other, let's say onto
/tmp/d.
sshfs -f -d -o allow_other somehost:$HOME /tmp/d
Bind that into a container by adding
lxc.mount.entry = /tmp/d freezer none bind,create=dir 0 0
to the container's config.
start the container, stop it.
the fuse program stops (exits 0 in fact)
the mount is not cleaned up - ls /tmp/d on the host henceforth
complains:
ls: cannot access /tmp/d Transport endpoint is not connected"
(sudo umount /tmp/d cleans it up)
I don't know for sure whether this is a kernel or libfuse bug.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1402834/+subscriptions
References