Received: by 10.223.185.116 with SMTP id b49csp89985wrg; Thu, 8 Mar 2018 13:25:17 -0800 (PST) X-Google-Smtp-Source: AG47ELu+5cDTwXhuqh/Lw2uxI76vB3g6awc7CQteRjStyDF2qr2yk8LCD7BcR9gKvss1N/RoxwdK X-Received: by 10.99.60.8 with SMTP id j8mr22278295pga.209.1520544317253; Thu, 08 Mar 2018 13:25:17 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1520544317; cv=none; d=google.com; s=arc-20160816; b=SDMgqft6VO03CQac8k57cNEDlOd+pjzhk+IeiwmVJwhXLD+I/amIqJ2ZpvFUWcCCa4 9uiodsuZkDpx2WjANGr7E6QOJi9odhEMI6uzjXdknwC0RTQdIK2hMSfs9WGT6thKKWSZ Oy2FTHhZlDsQZzeXE2s3kEscxOmFiuOAZHmgfi4r+O6Rqr9CvYWk8Bv5W6ObWNY46Q/5 pslK1XZD6GfxgblqWrurBUWZ6dxpxU3Tf81h8GmMMxfz0KR3ooFTT1ZRLji3FGPwclGp mluPNwEA/TI1s/Uv19A/ARlHVBIbreVoi/kB0mhopOO+pIscguI6NGIYsueDPyZD+LLD 5bUg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:subject:mime-version:user-agent :message-id:in-reply-to:date:references:cc:to:from :arc-authentication-results; bh=M3s8ZvznWTuIUlAzh33h1LK2clrcxsvSftlOSuDpvhk=; b=t3aGn8OVCe/ZixyzhVDj6m45NKj3B0ih40uhqgiXn4mVIiHgKiskibRDoOgAMgw6if TzqQOQrL7Jsb8yr/bdfXBNQ1Ebw2m5HXnIlP04FFLUhYsr2rXXTLNwFKxHmUkJwVaEV/ zEnxbD8FebmUnIxJOc2Dh8CYM6QjdrTDoXbnKvhw2hRkGGCtUdIPrImYT7y+CF2XLPoK DW5yYi/vVLRoMO22RinGjARL0Uqn0QPfbvHi9n3m8I0WUkYThgKk3c2AjYtCeElgnjEN uyjXWxALi9ioanC5NCe8pxyJDlqJ0iFU4aK+0RmaJWHl0mlsFnJVCB4f74Zmvma7dPfY yaVg== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id 1-v6si11196803plj.497.2018.03.08.13.25.02; Thu, 08 Mar 2018 13:25:17 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1750911AbeCHVYI (ORCPT + 99 others); Thu, 8 Mar 2018 16:24:08 -0500 Received: from out01.mta.xmission.com ([166.70.13.231]:48907 "EHLO out01.mta.xmission.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1750761AbeCHVYG (ORCPT ); Thu, 8 Mar 2018 16:24:06 -0500 Received: from in02.mta.xmission.com ([166.70.13.52]) by out01.mta.xmission.com with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.87) (envelope-from ) id 1eu31B-0005Q9-Cz; Thu, 08 Mar 2018 14:24:05 -0700 Received: from 174-19-85-160.omah.qwest.net ([174.19.85.160] helo=x220.xmission.com) by in02.mta.xmission.com with esmtpsa (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.87) (envelope-from ) id 1eu31A-0005lW-S3; Thu, 08 Mar 2018 14:24:05 -0700 From: ebiederm@xmission.com (Eric W. Biederman) To: Miklos Szeredi Cc: linux-kernel@vger.kernel.org, containers@lists.linux-foundation.org, , Alban Crequy , Seth Forshee , Sargun Dhillon , Dongsu Park , "Serge E. Hallyn" References: <878tbmf5vl.fsf@xmission.com> <87po4rz4ui.fsf_-_@xmission.com> <87r2p287i8.fsf_-_@xmission.com> Date: Thu, 08 Mar 2018 15:23:23 -0600 In-Reply-To: <87r2p287i8.fsf_-_@xmission.com> (Eric W. Biederman's message of "Fri, 02 Mar 2018 15:58:23 -0600") Message-ID: <87ina6ntx0.fsf_-_@xmission.com> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/25.1 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain X-XM-SPF: eid=1eu31A-0005lW-S3;;;mid=<87ina6ntx0.fsf_-_@xmission.com>;;;hst=in02.mta.xmission.com;;;ip=174.19.85.160;;;frm=ebiederm@xmission.com;;;spf=neutral X-XM-AID: U2FsdGVkX18BsDmYrUi0OoPnQewiO1TFQoQ1X2wqqkw= X-SA-Exim-Connect-IP: 174.19.85.160 X-SA-Exim-Mail-From: ebiederm@xmission.com X-Spam-Checker-Version: SpamAssassin 3.4.1 (2015-04-28) on sa08.xmission.com X-Spam-Level: X-Spam-Status: No, score=-0.2 required=8.0 tests=ALL_TRUSTED,BAYES_50, DCC_CHECK_NEGATIVE,TVD_RCVD_IP,T_TooManySym_01 autolearn=disabled version=3.4.1 X-Spam-Report: * -1.0 ALL_TRUSTED Passed through trusted hosts only via SMTP * 0.0 TVD_RCVD_IP Message was received from an IP address * 0.8 BAYES_50 BODY: Bayes spam probability is 40 to 60% * [score: 0.5000] * -0.0 DCC_CHECK_NEGATIVE Not listed in DCC * [sa08 1397; Body=1 Fuz1=1 Fuz2=1] * 0.0 T_TooManySym_01 4+ unique symbols in subject X-Spam-DCC: XMission; sa08 1397; Body=1 Fuz1=1 Fuz2=1 X-Spam-Combo: ;Miklos Szeredi X-Spam-Relay-Country: X-Spam-Timing: total 179 ms - load_scoreonly_sql: 0.03 (0.0%), signal_user_changed: 4.9 (2.7%), b_tie_ro: 3.9 (2.2%), parse: 0.62 (0.3%), extract_message_metadata: 2.5 (1.4%), get_uri_detail_list: 1.16 (0.6%), tests_pri_-1000: 2.9 (1.6%), tests_pri_-950: 1.10 (0.6%), tests_pri_-900: 0.89 (0.5%), tests_pri_-400: 21 (11.9%), check_bayes: 20 (11.4%), b_tokenize: 5 (2.9%), b_tok_get_all: 7 (4.1%), b_comp_prob: 1.95 (1.1%), b_tok_touch_all: 3.5 (1.9%), b_finish: 0.68 (0.4%), tests_pri_0: 136 (75.7%), check_dkim_signature: 0.39 (0.2%), check_dkim_adsp: 2.7 (1.5%), tests_pri_500: 3.6 (2.0%), rewrite_mail: 0.00 (0.0%) Subject: [PATCH v9 0/4] fuse: mounts from non-init user namespaces X-Spam-Flag: No X-SA-Exim-Version: 4.2.1 (built Thu, 05 May 2016 13:38:54 -0600) X-SA-Exim-Scanned: Yes (on in02.mta.xmission.com) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org This patchset builds on the work by Donsu Park and Seth Forshee and is reduced to the set of patches that just affect fuse. The non-fuse vfs patches are far enough along we can ignore them except possibly for the question of when does FS_USERNS_MOUNT get set in fuse_fs_type. Fuse with a block device has been left as an exercise for a later time. Since v5 I changed the core of this patchset around as the previous patches were showing signs of bitrot. Some important explanations were missing, some important functionality was missing, and xattr handling was completely absent. Since v6 I have: - Removed the failure case from fuse_get_req_nofail_nopages that I added. - Updated fuse to always to use posix_acl_access_xattr_handler, and posix_acl_default_xattr_handler, by teaching fuse to set ACL_DONT_CACHE when FUSE_POSIX_ACL is not set. Since v7 I have: - Rethought and reworked how I am unifying the cached and the non-cached posix acl case so the code is cleaner and simpler. - I have dropped enhancements to caching negative acls when fc->no_getxattr is set. - Removed the need to wrap forget_all_cached_acls in fuse. - Reorder the patches so the posix acl work comes first Since v8 I have: - Dropped and postponed the unification of the uncached and the cached posix acls case. The code is not hard but tricky enough it needs to be considered on it's own on it's own merits. Miklos can you take a look and see what you think? Miklos if you could pick these up I would appreciate it. If not I can merge these through the userns tree. These changes are also available at: git://git.kernel.org/pub/scm/linux/kernel/git/ebiederm/user-namespace.git userns-fuse-v9 Eric W. Biederman (3): fuse: Remove the buggy retranslation of pids in fuse_dev_do_read fuse: Fail all requests with invalid uids or gids fuse: Support fuse filesystems outside of init_user_ns Seth Forshee (1): fuse: Restrict allow_other to the superblock's namespace or a descendant fs/fuse/acl.c | 4 ++-- fs/fuse/cuse.c | 7 ++++++- fs/fuse/dev.c | 30 +++++++++++++++++------------- fs/fuse/dir.c | 16 ++++++++-------- fs/fuse/fuse_i.h | 6 +++++- fs/fuse/inode.c | 31 +++++++++++++++++++------------ kernel/user_namespace.c | 1 + 7 files changed, 58 insertions(+), 37 deletions(-)