Received: by 2002:ac0:a594:0:0:0:0:0 with SMTP id m20-v6csp2771345imm; Thu, 24 May 2018 15:55:15 -0700 (PDT) X-Google-Smtp-Source: AB8JxZoeB5oWuW1cmWJn8jW7VlDcwrL2TC4jSsFyEuTZ6vPnpaos8JS3+7VRy4JWajbqvGDXjb+7 X-Received: by 2002:a63:338c:: with SMTP id z134-v6mr7252848pgz.171.1527202515676; Thu, 24 May 2018 15:55:15 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1527202515; cv=none; d=google.com; s=arc-20160816; b=aVnNJvXrVDQQgzBYKKjJaTIjBGmHjS0UXWE8jQZ6zk1ZaX5yvy6G3fI3IlCkryd47G WwwFJOJ3NFkL+tQ4IXlTxYlwBLkUgEGhslwNE+fBXkiP9bhZP44lxQDv8ugHY5gH+Eu9 hXSo2ngdQbgl7GvsMK1in/4e8z+S1cuDPsKMdr40+vBHzDADKJ24ggc0HG2QzZ6VLcUw 4+XCA0vax5yT80s3mc41enNqVMIBj3ynaeECCVhAAajl2VoaB65EWE7ozOtaRc+nrSJK 8VxBp7JbtScOI0FElhMQQyin+pgzZtSb3Kgp1lxEU3pypfxSddT1N9uPZtonk229fjEy q/PQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:user-agent:in-reply-to :content-disposition:mime-version:references:message-id:subject:cc :to:from:date:arc-authentication-results; bh=bKKMgaSMXOUO0pdcuzFEz0GnI8z6CB+xcC3L7IAtuFY=; b=I3BKl8+9H94iFRtK9lZh8p1znJHTxgIL0ykV1cC6t3BWTqu3trrQ0BIHPi0MJfAV1Z 6cNairpQgdtiMJQFWFq0NUo2BkHxqj5jFIbUJjY0KSGdfJUPmDhnnlo3evafHGGCresc JNbe5yK7yn4WXRFTq70z+iGUnIzxBdL6CYMCKlP8AUniCswakzpN3OX24Ug2k4jRWhkQ CekZV3ejTfLl1SyQam+kisIK31a1RF9iMq/ZI1an/yI3hS77spfJZcbVZXfXrXqG+flS hL5tpzstopIsiKPks4xpFPmGi7TwJkVEUZFYn5Z8aHpEVuFMCZZR8T4rxNQcx1dHIpnU GC7w== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=canonical.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id z33-v6si21581151plb.380.2018.05.24.15.55.00; Thu, 24 May 2018 15:55:15 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=canonical.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S967684AbeEXM6j (ORCPT + 99 others); Thu, 24 May 2018 08:58:39 -0400 Received: from youngberry.canonical.com ([91.189.89.112]:48536 "EHLO youngberry.canonical.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S964789AbeEXM6g (ORCPT ); Thu, 24 May 2018 08:58:36 -0400 Received: from mail-io0-f197.google.com ([209.85.223.197]) by youngberry.canonical.com with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.76) (envelope-from ) id 1fLppD-0003OQ-5E for linux-kernel@vger.kernel.org; Thu, 24 May 2018 12:58:35 +0000 Received: by mail-io0-f197.google.com with SMTP id s2-v6so1468426ioa.22 for ; Thu, 24 May 2018 05:58:35 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:date:from:to:cc:subject:message-id:references :mime-version:content-disposition:in-reply-to:user-agent; bh=bKKMgaSMXOUO0pdcuzFEz0GnI8z6CB+xcC3L7IAtuFY=; b=ZhK3k1FNtj88AFJ3ZuKZV3LBId6SUFssMvwTyldDpuLGVkueAD8PJX4S5POn7mZOKt 7nxEHDpgF5eSQJja9/D9o5FRQVqBDf/cCGUXswZ4PGls8I+5pH9Lf0ND+mY43JqLivnn mFMvpO9Cs20UGorM8+NEamqnrC38d9ccvI3s5vw6ovgOE/whtG7r2Gn/ElobM8Q8TUCO gk8VGq71+CpdrHFUrNn653eAxKedG7dljMMJkzMEN/eT0aPpXDIkslOKhANJA65WupPH Sz6tmi4KT5XJXIrKg6bw1kpLRpdzxtVtiDy5VUDvbJW5Okf0JpKlY2cxqfRRf5jl7F7p jm4A== X-Gm-Message-State: ALKqPwcmLiZKkasI6qDAvN0un7Aw7ZOodT/J6/aWBknT2MzbZRo8xotJ yiqqZN8s9izwvIC27OsFFjrZMSHjRBKrTfoyFH+mtRGqI2eg2h+AdISbjKClkJnGKJIotn6zSJt ABz8W4fncWDVYGwsliA1Me0+7J0ZnuEgF/qgh+Jip4A== X-Received: by 2002:a24:9c84:: with SMTP id b126-v6mr8737342ite.54.1527166714153; Thu, 24 May 2018 05:58:34 -0700 (PDT) X-Received: by 2002:a24:9c84:: with SMTP id b126-v6mr8737330ite.54.1527166713948; Thu, 24 May 2018 05:58:33 -0700 (PDT) Received: from localhost ([2605:a601:ac6:7f20:64ef:8fb:fbce:66ef]) by smtp.gmail.com with ESMTPSA id t132-v6sm8250iod.32.2018.05.24.05.58.32 (version=TLS1_2 cipher=ECDHE-RSA-CHACHA20-POLY1305 bits=256/256); Thu, 24 May 2018 05:58:33 -0700 (PDT) Date: Thu, 24 May 2018 07:58:32 -0500 From: Seth Forshee To: "Eric W. Biederman" Cc: Linux Containers , linux-fsdevel@vger.kernel.org, "Serge E. Hallyn" , Christian Brauner , linux-kernel@vger.kernel.org Subject: Re: [REVIEW][PATCH 1/6] vfs: Don't allow changing the link count of an inode with an invalid uid or gid Message-ID: <20180524125832.GP3401@ubuntu-xps13> References: <87o9h6554f.fsf@xmission.com> <20180523232538.4880-1-ebiederm@xmission.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20180523232538.4880-1-ebiederm@xmission.com> User-Agent: Mutt/1.9.5 (2018-04-13) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Wed, May 23, 2018 at 06:25:33PM -0500, Eric W. Biederman wrote: > Changing the link count of an inode via unlink or link will cause a > write back of that inode. If the uids or gids are invalid (aka not known > to the kernel) writing the inode back may change the uid or gid in the > filesystem. To prevent possible filesystem and to avoid the need for > filesystem maintainers to worry about it don't allow operations on > inodes with an invalid uid or gid. > > Signed-off-by: "Eric W. Biederman" Acked-by: Seth Forshee