Received: by 2002:ad5:474a:0:0:0:0:0 with SMTP id i10csp2822538imu; Sun, 23 Dec 2018 08:33:43 -0800 (PST) X-Google-Smtp-Source: ALg8bN6uZ06tBaXfECZ1zHHBWvYOECsJGsC6SxGvm//J6ZBjoAU2wpTeUg6fc/uS1LUAjSTTXdoB X-Received: by 2002:a62:e044:: with SMTP id f65mr10135792pfh.208.1545582823752; Sun, 23 Dec 2018 08:33:43 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1545582823; cv=none; d=google.com; s=arc-20160816; b=rrZHT2t8LfLLZRFXWcklSH5pH5JNHdhkt1s5tuJiWIFGHPFcwXhUV+DvniP5VMPGkb NfftPX3CcGmv3Mnxa9wVQy3xbyLHy3f0Sh+FnvOKUSql1uu29LSz7qWFHiMorQLfO86v 76C/49yED8Ti9NirZiK263uWcVDVW3qCeVKLHu6V9Ecp9oJ4Lg1vgDBzAYgyESqPVeCM QEWlxERIGw0G0L1k+8/SKTm/XoKDWYOci852RWcUVjQHQE3npf0dID06ns9yexP9SkVX ZxGlChZzR/ti2HO1MceLKANZ5HQmV1lOtKBYydlzeiu0wiH9nRMRYgIAWBvr5Rjo8duj C3cQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version; bh=fFwnZ+H+cAM8uRguz7KMY3aHMaH/WglpMps2jbxCvrY=; b=Wr4rLpdFabrQ1UwRpuZ3MuysjL9vc8cMu2YH/nvxn6aUW2ynWHzkAdRAfUeJm8zYea 0KpAXyHfhQ5UBKaVqLWQg5LkNJ5bzRhBsNGKS2i86MBg9jq10gCxMWI89MhcyxMocru4 P3b7jFmAImnwlnFRHdHQa6zKAjkFTrJRIdojIfwMuqwFt7ScQY044zz3rABPb2szoPo+ tw4pmuRqG09AmY2i53G6QzH+LPoTt4GNbPq7BLesdeYEe2m5hL/bhm7wYgmtfYhaO40w 68rA/FTkK/ASk52OOOLFMHihw2BKSHA07W+tqknZIo2Iy3kfhfrU0/jNUkzm1Pe17GFy 40yQ== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=canonical.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id d90si2376805pld.148.2018.12.23.08.33.28; Sun, 23 Dec 2018 08:33:43 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=canonical.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S2392962AbeLVXHa (ORCPT + 99 others); Sat, 22 Dec 2018 18:07:30 -0500 Received: from youngberry.canonical.com ([91.189.89.112]:44715 "EHLO youngberry.canonical.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1731156AbeLVXH3 (ORCPT ); Sat, 22 Dec 2018 18:07:29 -0500 Received: from mail-vs1-f70.google.com ([209.85.217.70]) by youngberry.canonical.com with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.76) (envelope-from ) id 1gaqMi-0001al-AJ for linux-kernel@vger.kernel.org; Sat, 22 Dec 2018 23:07:28 +0000 Received: by mail-vs1-f70.google.com with SMTP id m5so4407099vso.5 for ; Sat, 22 Dec 2018 15:07:28 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=fFwnZ+H+cAM8uRguz7KMY3aHMaH/WglpMps2jbxCvrY=; b=dbEV7A5Q6gSTXKWKIPolWPBN6dz0VFBHRZUGjcAXXcD/0khNriJclfmDQF/FK3rY9T OXMdHUoX8XsmTa3IFip1H8G891H9Fv5U8XCReXdmHicC3qEJbVGcPf/zuVqRyLFDIFco 9u6/of/kY8J5qD2auRFT1wyvAEtkMJ3x95BBSE81J0HLJZ3qVr4WbpXiVivVw/HHfGyb LeAZqnq6W6TZVPi88bHoi3G7PMSZBeUTY7Mdq6pCXYKrOUpEfJ6E3/ftT6RLOZB1T2Ot L8ZQDSeYwGLs/RCWUog6baTsQxUs5XXbyW0FJko/njy2I9AemQUuUBcd5Vh6mqZ8hS8R Niug== X-Gm-Message-State: AJcUukfpk8Reoxn81nwb34OPey/xVeAr4A0hSWaY9/UlPl1NX7KvGL35 6UJ5KSXwftDYOX5I5LB32vpNhWgSeHPCneS1wzvTk2Xdd82Su7J/IffoN6ifPHkTixnZpsmVIRZ kMYgbe6dETcHH7N3kf7Yg46BNy5K8EhrZuM2G4yRMBo1t/kRUGM7Vk+OaUg== X-Received: by 2002:ab0:1425:: with SMTP id b34mr2897196uae.64.1545520047172; Sat, 22 Dec 2018 15:07:27 -0800 (PST) X-Received: by 2002:ab0:1425:: with SMTP id b34mr2897183uae.64.1545520046794; Sat, 22 Dec 2018 15:07:26 -0800 (PST) MIME-Version: 1.0 References: In-Reply-To: From: Christian Brauner Date: Sun, 23 Dec 2018 00:07:15 +0100 Message-ID: Subject: Re: [BREAKAGE] Since 4.18, kernel sets SB_I_NODEV implicitly on userns mounts, breaking systemd-nspawn To: Linus Torvalds Cc: nix.or.die@gmail.com, "Eric W. Biederman" , ellierevves@gmail.com, Linux List Kernel Mailing , Al Viro , Seth Forshee Content-Type: text/plain; charset="UTF-8" Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Sun, Dec 23, 2018 at 12:02 AM Linus Torvalds wrote: > > On Sat, Dec 22, 2018 at 2:49 PM Christian Brauner > wrote: > > > > To be fair, no one apart from me was pointing out that it actually > > breaks people including systemd folks > > even though I was bringing it up with them. I even tried to fix all of > > userspace after this got NACKED > > Seriously, the "we don't break user space" is the #1 rule in the > kernel, and people should _know_ it's the #1 rule. > > If somebody ignores that rule, it needs to be escalated to me. > Immediately. Because I need to know. Fair enough. I usually try to be very conservative when sending patches directly your way and Eric is otherwise very much on top of not regressing userspace and I trust him. However, for this case should I resend the revert? Christian > > I need to know so that I can override the bogus NAK, and so that we > can fix the breakage ASAP. The absolute last thing we need is some > other user space then starting to rely on the new behavior, which just > compounds the problem and makes it a *much* bigger problem. > > But I also need to know so that I can then make sure I know not to > trust the person who broke rule #1. > > This is not some odd corner case for the kernel. This is literally the > rule we have lived with for *decades*. > > So please escalate to me whenever you feel a kernel developer doesn't > follow the first rule. Because the code that broke things *will* be > reverted (*). > > Linus > > (*) Yes, there are exceptions. We have had situations where some > interface was simply just a huge security issue or had some other > fundamental issue. And we've had cases where the breakage was just so > old that it was no longer fixable. So even rule #1 can sometimes have > things that hold it back. But it is *very* rare. Certainly nothing > like this.