Re: [RFC PATCH 3/3] coredump, net: remove `SOCK_COREDUMP`
From: Christian Brauner <brauner@kernel.org>
Date: 2026-07-03 09:32:05
Also in:
linux-fsdevel, linux-security-module, lkml
On 2026-07-03 05:08 -0400, John Ericson wrote:
On Fri, Jul 3, 2026, at 4:11 AM, Christian Brauner wrote:quoted
I don't think dragging the bowels of net/ into fs/coredump.c just for the sake of getting a purely internal SOCK_COREDUMP flag out of the way is the right way to go. I suspect the saner thing to do would be to introduce a primitive for connecting to an AF_UNIX path-based socket directly instead of this weird dance here, no? int kernel_unix_connect(const char *path, struct socket *socket, unsigned int o_flags, int type) then my kthread changes would collapse this into: scoped_with_init_fs() retval = kernel_unix_connect(path, socket, O_NONBLOCK, SOCK_STREAM);That works for this case, but the destination I am trying to eventually reach is being allowed (in userspace) to connect to unbound sockets by their fd --- no path, no abstract socket name.
But these are orthogonal changes. It sill doesn't mean we should sprawl net internals over coredump code anymore than we already have to. I'm fond of kernel_unix_connect() int dfd, const char *path even would be fine.
unix_connectat(int fd, const char *path, struct socket *socket, unsigned int at_flags, unsigned int o_flags, int type) is a mouthful, but it would work. Still, there is a subtlety about the retry logic. When one does something like:quoted
connect(..."/dev/fd/N",...)it will repeatedly re-lookup "/dev/fd/N" until the timeout is reached. I consider that pretty terrible --- the rest of the program could race to change what that file descriptor (number) refers to. Therefore, I think table stakes to make a good `unix_connectat` is to make the `AT_EMPTY_PATH` case not re-lookup the socket.
I have no idea how this has any bearong on the three helper split.
(making a sockfs file descriptor work is separate, I already have the patch for that, I can include it.)quoted
The two helpers also make no sense to me and force a bunch of cleanup on the caller as well.I am fine with `unix_connectat`, but just for reference, me breaking up the steps is because I generally like the decomposition of `fverb` rather than `verbat` system calls, since the latter would typically be used with `openat` or so. It seems the `kernel_*` "syscalls" generally take `struct path` rather than strings, which seems good and in the
There's a time to follow precedence and there's a time to do what the maintainability demands. I think here clearly we don't want to pass a struct path. That makes no sense because we don't care about using that object at all. It's merely an intermediate jumping point. This is fundamentally about connecting from the kernel to a specific pathname that functions as a socket address. Intermediary objects don't matter (yet).
spirit of that decomposition, but then even `struct path` is overkill to refer to a socket. So putting all that together, the final composition I had was: 1. string path (from /proc/...) -> `struct path` 2. `struct path` -> `struct sock *` 3. connect to `struct sock *` So I quite liked those 3 orthogonal knobs, vs an all-singing-all-dancing `unix_connectat`. (I suppose making it `struct socket *` would make it slightly less internals-y?) But again, anything that puts us on track to being able to connect to an unbound socket without procfs is good enough for me.
To me this reads like you're introducing moving parts for the sake of a philosophical argument. I couldn't care less about that. What matters is maintainability. Having three knobs that introduce potentially three separate cleanup requirements and exposing three different objects when it's not needed is just a burden.
quoted
I'm not sure why we would go on altering all kinds of LSM hooks as well.That's in the commit message, it is because without `SOCK_COREDUMP` those are all dead code. Instead of removing them in this commit, I can just keep those flags, or remove them in a separate commit. Fine
Do it as a separte commit once we've decided to do this, I think.