On 14/01/2021 04:22, Jann Horn wrote:
On Wed, Dec 9, 2020 at 8:28 PM Mickaël Salaün mic@digikod.net wrote:
This patch series adds new built-time checks, a new test, renames some variables and functions to improve readability, and shift syscall numbers to align with -next.
Sorry, I've finally gotten around to looking at v26 - I hadn't actually looked at v25 either yet. I think there's still one remaining small issue in the filesystem access logic, but I think that's very simple to fix, as long as we agree on what the expected semantics are. Otherwise it basically looks good, apart from some typos.
I think v27 will be the final version of this series. :) (And I'll try to actually look at that version much faster - I realize that waiting for code reviews this long sucks.)
I'm improving the tests, especially with bind mounts and overlayfs tests. The v27 will also contains a better documentation to clarify the semantic and explain how these mounts are handled. Thanks!