On Mon, 2010-09-20 at 16:09 -0400, J. Bruce Fields wrote: > On Mon, Sep 20, 2010 at 04:05:16PM -0400, Trond Myklebust wrote: > > On Mon, 2010-09-20 at 23:13 +0400, Pavel Emelyanov wrote: > > > On 09/20/2010 10:04 PM, J. Bruce Fields wrote: > > > > On Mon, Sep 20, 2010 at 08:33:42PM +0400, Pavel Emelyanov wrote: > > > >>>> Looking forward to your feedback. > > > >>> > > > >>> What are you thinking of as a use-case for this? > > > >> > > > >> To make it possible run both NFS server and client in containers. > > > > > > > > Could you describe that in user-visible terms? (Currently if I create a > > > > new network namespace, what happens, and what will happen differently > > > > afterwards?) > > > > > > This is not about the network namespace only I believe. E.g. the > > > nfsd filesystem is a filesystem already and shouldn't be tied to > > > any task-driven context. > > > > > > E.g. as far as the net namespace part is concerned. First of all > > > the TCP/UDP socket used by transport will be per-namespace. User > > > will "feel" this for example by different routing and netfilter > > > rules applied to connections. Besides the rpc service sockets will > > > be per namespace as well. > > > > > > >> Sure! The thing is that the full containerization of that stuff is > > > >> too many patches and I'm not sure that you and other maintainers wish > > > >> to review the 100-patch set in one go ;) > > > > > > > > Well, if it's really all ready.... > > > > > > > > Better, though, would be an outline of the work to be done and what you > > > > expect to be working at the end. > > > > > > The nearest plan is > > > > > > 1. Prepare the sunrpc layer to work in net namespaces > > > 2. Make rpcpipefs and nfsd filesystems be mountable multiple times > > > 3. Make support for multiple instances of the nfsd caches > > > 4. Make suuport for multiple instances of the nfsd_serv > > > > > > After this several NFSd-s can be used in containers (hopefully I > > > didn't miss anything). > > > > > > Plans about the nfs client are much more obscure for now. > > > > The client should be something like the following: > > > > 1) Ensure sunrpc sockets are created using the correct net namespace > > For the client, that's initially the net namespace of the mount? (What > about submounts?) It is the net namespace of the process that does the mount, yes. > > 2) Convert rpc_pipefs to be per-net namespace. > > 3) Convert the nfs_client and superblock to be per-net namespace > > 4) Convert lockd's struct host to be per-net namespace > > What do we expect behavior to actually look like from the point of view > of somebody on the client? > > I'd like to see someone write some kind of spec for how this should all > work. That worries me a lot more than the code..... I think it is fairly obvious what should happen once you are in a net namespace jail: you want all future NFS mounts to confine themselves to that private net namespace. i.e. they must talk to the portmapper, rpc.statd, and rpc.gssd that are defined on that net namespace, and they must confine themselves to that net namespace when talking to servers. The problem is dealing with clone() and unshare() (i.e. the process of changing net namespaces). If the resulting container inherits an NFS mountpoint from its parent process, then I cannot see how we could sanely migrate that to a new net namespace, since the super block etc remains shared between the two containers as part of the mount namespaces. To avoid confusion, I believe we need to ensure that under-the-cover mounts etc inherit the same net namespace as the original mount, and they should talk to the portmapper, rpc.statd and rpc.gssd that the original mount uses. If those die, then too bad - that's operator error. Cheers Trond -- To unsubscribe from this list: send the line "unsubscribe linux-nfs" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html