Received: by 2002:ad5:474a:0:0:0:0:0 with SMTP id i10csp2823114imu;
        Sun, 23 Dec 2018 08:34:32 -0800 (PST)
X-Google-Smtp-Source: ALg8bN6WxD+N8HoLAYetcwNv2M2WwYz+4gzyMPTbt6uSs8fGL3Xhya4aXud+Fogb7lYS7Bu1sONt
X-Received: by 2002:a17:902:5ac7:: with SMTP id g7mr10295048plm.212.1545582872824;
        Sun, 23 Dec 2018 08:34:32 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1545582872; cv=none;
        d=google.com; s=arc-20160816;
        b=ETZwvLmF5J4fqAsb4Q9gzz0kdvX7nfAucgwUYu9dt3aew+girLpWwQdZKQg93vPqxd
         z/+XPHVqrF7n6yuobRL+DCvAq0m8U5JU3dcOqo6XJO8vkK8hbruZ2zJnX0yOyXVfvTJe
         m7PIqyUnCk28Em+rOc0+qi/ScGF5WtDMAmW6m68nhVDK59ZUw1urPJWnCSAawW3z/xQs
         oDyAdVdzr/4ujNVsFqn/+J0Be1QF4xgV8dWv304FF+aq2yjtFoqOAm772fzkOc5Mlsx8
         2cx2T4Rvqe3igoG+uY75hLBPC64shRwsq0H+DMoiwabQtQGrdgxCWkrKrhn9qqbaA5OJ
         TX2A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:cc:to:subject:message-id:date:from
         :in-reply-to:references:mime-version:dkim-signature;
        bh=X8p9D2+dDghiBPcrfdEl1NXbNHpsU9NOEXgNZSrUgEY=;
        b=pDLrANtk0T7L5Vbx1wxfY4jCWLtr8rSJWbQFZakdrZ9IooybgEe/eXQHfc0KXdsx0o
         WxyF3/NrKIOxx2I97q2ssMyrRPljt1NyJp3ZyQn8jcw7vuQ5RS/p5yP80FJy+Y1Zkci5
         nce/OlCsXUkXMVMhlaHibC1lXGooW1/0QBZRlZ43Z2yT2cL+Sst2st90SSBtDEsi/1Xu
         /DD2m+ChhmnoGNNS25AnAcjCfBDharPDyzU75ORlRJR+iVunGWtAceoJo/9bpLEvZ/gC
         lNgS9bnAZllphuCm0cibd6SBPrPGY+aMadotbdMxeIxl+LHcvB7vnNbcHv6KlklNIadY
         3YMg==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@linux-foundation.org header.s=google header.b=BE9SJPFK;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id f35si25568309plh.399.2018.12.23.08.34.17;
        Sun, 23 Dec 2018 08:34:32 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@linux-foundation.org header.s=google header.b=BE9SJPFK;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S2392909AbeLVXCP (ORCPT <rfc822;xc.haze2010@gmail.com>
        + 99 others); Sat, 22 Dec 2018 18:02:15 -0500
Received: from mail-lf1-f67.google.com ([209.85.167.67]:41826 "EHLO
        mail-lf1-f67.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1726571AbeLVXCP (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Sat, 22 Dec 2018 18:02:15 -0500
Received: by mail-lf1-f67.google.com with SMTP id c16so6281372lfj.8
        for <linux-kernel@vger.kernel.org>; Sat, 22 Dec 2018 15:02:14 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=linux-foundation.org; s=google;
        h=mime-version:references:in-reply-to:from:date:message-id:subject:to
         :cc;
        bh=X8p9D2+dDghiBPcrfdEl1NXbNHpsU9NOEXgNZSrUgEY=;
        b=BE9SJPFKvRqgmcUUBtNRClUWsCGpu+KcLlxYkstriAQx9QeNsJCzpoh9mlC7+ChkOD
         ZzGEYoq9rZNfMCH4H3uNMg8z222fg2yFQ8pCpdRkogjWA6aZlKd0O4N+1oEn5GzWNG2y
         zmFgFyFpQ5pZMbc/wJ1Hn6Ao8RbhnsDSLErMs=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:references:in-reply-to:from:date
         :message-id:subject:to:cc;
        bh=X8p9D2+dDghiBPcrfdEl1NXbNHpsU9NOEXgNZSrUgEY=;
        b=pX4OjNAFr9XfaNYY4uwp4blYegTpqu5zO+yAeBgiB1cNOPzq+ycAMJv/Pt3xLk2L67
         /i1aRDkQL4MacNECofCFlTMO5zsy5Tzp0kQhfkld4kamJXH+RxU4Lbkl7hpH5jdWi5mc
         KKBHChGxfGTSJYp7xhmkHsvrMl2/nDNOfF9SyDL2mokHEYViQpGQvSGYA4yEh6pTyK+5
         dHWxTDS/TRAElRjPV7nRMoMaP56naNNqj7nJp1Seviyj6XQFl3Oa60PreU7p5TEqyaqS
         6mcp6mIig8AzJ/8XU7COz+kDfOlOMMBTjkvQiJ/IlvwureDzdFT58CBJsb0fyd3hSDIV
         jTKw==
X-Gm-Message-State: AA+aEWZaZB0NrVw6WrgMnKvbnW7ucowvi+PU4IhqZiFniaJQDitDI26i
        L8yDEhf3v2iuQfXCP2BRv1gFJvm/7Rs=
X-Received: by 2002:a19:8fce:: with SMTP id s75mr3944895lfk.151.1545519732911;
        Sat, 22 Dec 2018 15:02:12 -0800 (PST)
Received: from mail-lj1-f173.google.com (mail-lj1-f173.google.com. [209.85.208.173])
        by smtp.gmail.com with ESMTPSA id q3sm5574077lff.42.2018.12.22.15.02.11
        for <linux-kernel@vger.kernel.org>
        (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
        Sat, 22 Dec 2018 15:02:12 -0800 (PST)
Received: by mail-lj1-f173.google.com with SMTP id g11-v6so7795763ljk.3
        for <linux-kernel@vger.kernel.org>; Sat, 22 Dec 2018 15:02:11 -0800 (PST)
X-Received: by 2002:a2e:9983:: with SMTP id w3-v6mr4981776lji.133.1545519731667;
 Sat, 22 Dec 2018 15:02:11 -0800 (PST)
MIME-Version: 1.0
References: <e62d4c3a-b89b-2380-7b39-66733b389145@gmail.com>
 <CAEJqkggwbNP3Q+7AWr4i64CvAdCp15jVLOtUsnMo6rLk3ExTkA@mail.gmail.com>
 <CAHk-=wjd2VJDM+RXwg30MpW45F5EHZtLErzxQzYxi4+Dnm3sjw@mail.gmail.com> <CAPP7u0Vo6gB86S-hZcOW9Rmki8oKHd=Lyx3x-N9gjPC4JP_YxQ@mail.gmail.com>
In-Reply-To: <CAPP7u0Vo6gB86S-hZcOW9Rmki8oKHd=Lyx3x-N9gjPC4JP_YxQ@mail.gmail.com>
From:   Linus Torvalds <torvalds@linux-foundation.org>
Date:   Sat, 22 Dec 2018 15:01:55 -0800
X-Gmail-Original-Message-ID: <CAHk-=wg-6jYZ=bJWdyBR=n8QOfwHTZZdzSUUPgFW+NGCV-pe2g@mail.gmail.com>
Message-ID: <CAHk-=wg-6jYZ=bJWdyBR=n8QOfwHTZZdzSUUPgFW+NGCV-pe2g@mail.gmail.com>
Subject: Re: [BREAKAGE] Since 4.18, kernel sets SB_I_NODEV implicitly on
 userns mounts, breaking systemd-nspawn
To:     christian.brauner@canonical.com
Cc:     nix.or.die@gmail.com, "Eric W. Biederman" <ebiederm@xmission.com>,
        ellierevves@gmail.com,
        Linux List Kernel Mailing <linux-kernel@vger.kernel.org>,
        Al Viro <viro@zeniv.linux.org.uk>, seth.forshee@canonical.com
Content-Type: text/plain; charset="UTF-8"
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Sat, Dec 22, 2018 at 2:49 PM Christian Brauner
<christian.brauner@canonical.com> wrote:
>
> To be fair, no one apart from me was pointing out that it actually
> breaks people including systemd folks
> even though I was bringing it up with them. I even tried to fix all of
> userspace after this got NACKED

Seriously, the "we don't break user space" is the #1 rule in the
kernel, and people should _know_ it's the #1 rule.

If somebody ignores that rule, it needs to be escalated to me.
Immediately. Because I need to know.

I need to know so that I can override the bogus NAK, and so that we
can fix the breakage ASAP. The absolute last thing we need is some
other user space then starting to rely on the new behavior, which just
compounds the problem and makes it a *much* bigger problem.

But I also need to know so that I can then make sure I know not to
trust the person who broke rule #1.

This is not some odd corner case for the kernel. This is literally the
rule we have lived with for *decades*.

So please escalate to me whenever you feel a kernel developer doesn't
follow the first rule. Because the code that broke things *will* be
reverted (*).

                    Linus

(*) Yes, there are exceptions. We have had situations where some
interface was simply just a huge security issue or had some other
fundamental issue. And we've had cases where the breakage was just so
old that it was no longer fixable. So even rule #1 can sometimes have
things that hold it back. But it is *very* rare. Certainly nothing
like this.