Received: by 2002:a05:6a10:f347:0:0:0:0 with SMTP id d7csp4102620pxu; Wed, 9 Dec 2020 08:24:53 -0800 (PST) X-Google-Smtp-Source: ABdhPJxMBimKIeEgXtGyU8MbbVy/6xxyWaJWDZcdQscOgpVwaeb7VO1lbo3Lee6Ye4BNoqrqHGMf X-Received: by 2002:a17:906:17d1:: with SMTP id u17mr2679211eje.6.1607531092740; Wed, 09 Dec 2020 08:24:52 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1607531092; cv=none; d=google.com; s=arc-20160816; b=EhDTLU/umlWUHuuTG5YKx36fpMbAUTOOdKuVHrMD1GHjAbXO0Br08rCP5PXczMJDt6 cya/YxSmsURS9CAXrwpLGYngGGeazts2slAS6fihM9gVQfmvoLHP/XiKS3LSpbHgwB47 wNIs+X0yQwR1ZliV/uutEFJRAtQc4jXXo9lqqXmabuZTymYpLo0FvMuMzAVi3YJ9Ee48 m2n55l86rGXRnz47EibUQHyFMIXRGMQk4r/TEooTnGcA6tyvaFJDSg740+AOk8wLUBgh HuFmqmFeMRGGA+t4Dbpsj/pHtpyfpKwgM2irZM5doCv+xwLGn9bD2bWAKkGxG6PHIVc7 h/Qw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:cc:to:subject:message-id:date:from:in-reply-to :references:mime-version:dkim-signature; bh=ftrjIMacRnCDUW60B5wDdWIgLtC6j6ITMAxZ0z4dcsk=; b=RAFjEw91YpIELMqCbQNdAcPAaRoE9+/C0voFLo1BYumeR7GOiuErOpf1MA5fClp4BW 2+KeQoSBNcN8cnTsuCZhj4ZbQ4lgKkSs5/nfz4W3cBJOmtYfw/HK5kZ6ebIZ4Ega2Nrb 2vvMDKSSQRFke5du2XPq3Ol5W4UrKZrnbFlj2NO7RhYvLXx8RiKaRsq6nkrFQmLgwoiQ nkNSIpTLDaYTSXu9iZjQoXz/K+17f0/Sn6kRNKXQLBEU96cEmx1gxDCCHahVTIq2QCCo 5/xuAyamRrwKUwiFPx4ZLXLL/sjPx0AmwXHQaqziPKYRW4X8u8FP/kXjqjKIy9yz1m6b WB7A== ARC-Authentication-Results: i=1; mx.google.com; dkim=temperror (no key for signature) header.i=@szeredi.hu header.s=google header.b=HgrvSW72; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id q6si958583ejb.731.2020.12.09.08.24.29; Wed, 09 Dec 2020 08:24:52 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=temperror (no key for signature) header.i=@szeredi.hu header.s=google header.b=HgrvSW72; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1732003AbgLIQVi (ORCPT + 99 others); Wed, 9 Dec 2020 11:21:38 -0500 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:53770 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1731905AbgLIQVf (ORCPT ); Wed, 9 Dec 2020 11:21:35 -0500 Received: from mail-vs1-xe44.google.com (mail-vs1-xe44.google.com [IPv6:2607:f8b0:4864:20::e44]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 01D3FC0617A6 for ; Wed, 9 Dec 2020 08:20:54 -0800 (PST) Received: by mail-vs1-xe44.google.com with SMTP id r24so1177289vsg.10 for ; Wed, 09 Dec 2020 08:20:54 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=szeredi.hu; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=ftrjIMacRnCDUW60B5wDdWIgLtC6j6ITMAxZ0z4dcsk=; b=HgrvSW72NUDBACx2rcJOdsk9j2ywqmTiRhxzfml2ObmeS9/p68ApjmmEUiVuFFixel U8V/3sWV/jT/RnYtuN76/jqqa0beH35lqx0GkOdrSQB8kmGRwv6xH/mpxgBW9stqYh98 TB1KeZ8zKUBTeHyC8I0eCxJ7EFkcfOUQYVVWk= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=ftrjIMacRnCDUW60B5wDdWIgLtC6j6ITMAxZ0z4dcsk=; b=KraaKTiJ04lA+pW9XaTODe085f1ZVMGOd3Sz8+o3ugD/DviyWQEXry9Z4yIqUEJa0y FKHSaY1ie0r5NWFGYOkzUs2SM7qr1L66+El/B0h/dqZn+/Q72NxBZH3/k7RghEYSfEmz eNuIPOoOYycPaCVTbk6t2CFcfDYwrn8Kipkj+qF3c0z3ruBB4PUPDjvneVlfm0/zi7hj tWSeHHERs9v/i9E9QJfxjfYtTJ0DdGDx+xTTCecf6d1j0fNtZikiDGWbVZkb/oEplc/Q Dg3+c/26sYkiD/p03VLwpOzvAO5SNJkVVjELqA3n6Nhw/LJoyJZjx/B6uAR+prXf6DsL k/Lw== X-Gm-Message-State: AOAM5332Be+5F9kmy1RKdGXfFiexE9mZdLmgBA6DRZDSritMCED8GhDK lgj8pkNNEUY4Q6QJvvDkfuch8PNN5l0g14GyK/UI9w== X-Received: by 2002:a67:ed57:: with SMTP id m23mr2755029vsp.7.1607530854236; Wed, 09 Dec 2020 08:20:54 -0800 (PST) MIME-Version: 1.0 References: <20201207163255.564116-1-mszeredi@redhat.com> <20201207163255.564116-4-mszeredi@redhat.com> In-Reply-To: From: Miklos Szeredi Date: Wed, 9 Dec 2020 17:20:43 +0100 Message-ID: Subject: Re: [PATCH v2 03/10] ovl: check privs before decoding file handle To: Amir Goldstein Cc: Miklos Szeredi , "Eric W . Biederman" , linux-fsdevel , overlayfs , LSM List , linux-kernel Content-Type: text/plain; charset="UTF-8" Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Wed, Dec 9, 2020 at 11:13 AM Miklos Szeredi wrote: > Hard link indexing should work without fh decoding, since it is only > encoding the file handle to search for the index entry, and encoding > is not privileged. Tested this a bit and while hard link indexing does work, inode lookup is broken since it uses the origin inode as a key (which is not available) instead of using the origin value directly. This is fixable, but needs a fair amount of restructuring, so let's just postpone this and disable index for now, as you suggested. Thanks, Miklos