Received: by 2002:a05:6a10:8c0a:0:0:0:0 with SMTP id go10csp1120044pxb; Thu, 4 Mar 2021 03:58:16 -0800 (PST) X-Google-Smtp-Source: ABdhPJxynOOWa14J2zlP1vRGIUzurEql5j3DAHdTRrnhN9eZu2ajDefJrGgq4gPt3uA1Nnp+GVS5 X-Received: by 2002:a17:906:fa0e:: with SMTP id lo14mr3751845ejb.263.1614859096144; Thu, 04 Mar 2021 03:58:16 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1614859096; cv=none; d=google.com; s=arc-20160816; b=pdUamp58FxX0DA1rms036C+N1/Y/6IDm/rUNpcH7x5A90p06bGGc933sdwBN/V71AW BOFFJ6RW4ddl7eOVUeO5iKEakzXWc9BmXX5bMLmXCtqoCHYF2ZAvdnQFlfWYWoNjA30H hpJ/eMOcQqOv+eckeC/h+fGevFWqLdzBP30fDtTRZqfXYqplCEL0FLrdqr1rRKroDx+K gQPB1uUC5+LMqvyA6afjyGabYlm5zejjVCC4AYTErHcopQjTDT4COdwi8KV2WNgbvnZo N/SUYNWFsI8HOrYhJ3jK15l0z1vusDZz8Ri1CvlGNYEHd0y9/iQ4zwe8Hwmxw1DGNUwY 5eWA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:cc:to:subject:message-id:date:from:in-reply-to :references:mime-version:dkim-signature; bh=Yr1qOumuS8TXWEOrqim0XuS33cj0E8thnCAJCT0r9GY=; b=Uz1EWwh4yK+BLf16i7HSVqwRFvneQJJ76iqm/3ZVYIzHaHUqXzAiUaYCrFEh9VKhtU u8BW5vMmtv6ERW4K6ndTKVc8rB4VWUzP5QKEejBMczp3EReme+sIlkWAMsVaJU276eWb 1J1/q6JgjsQYte44lx7rvmFBHdo0UwoFGvs+gspgEmmoOpPHIJKtZoRDXo2eR7U3UEPm 1zEJ+JhELjoxwDs0vNRA5KaiJVhmNGj4CBcbQRW1m2+4NNvbpvKCLPr5LhogpP2HcC4H oTFw9WueP8aJbwifG56WkxbV0jXaVYaiY6feRB+2K2QY46Pp0oJrhvUuZv2YYj+AwLrM 5jAQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=temperror (no key for signature) header.i=@szeredi.hu header.s=google header.b=ZhRS1Ok6; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id j10si20119809edj.128.2021.03.04.03.57.51; Thu, 04 Mar 2021 03:58:16 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=temperror (no key for signature) header.i=@szeredi.hu header.s=google header.b=ZhRS1Ok6; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1386290AbhCCSOU (ORCPT + 99 others); Wed, 3 Mar 2021 13:14:20 -0500 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:48884 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1343890AbhCCPgy (ORCPT ); Wed, 3 Mar 2021 10:36:54 -0500 Received: from mail-vs1-xe2a.google.com (mail-vs1-xe2a.google.com [IPv6:2607:f8b0:4864:20::e2a]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 7DA88C061756 for ; Wed, 3 Mar 2021 07:36:36 -0800 (PST) Received: by mail-vs1-xe2a.google.com with SMTP id d25so5755742vsr.11 for ; Wed, 03 Mar 2021 07:36:36 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=szeredi.hu; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=Yr1qOumuS8TXWEOrqim0XuS33cj0E8thnCAJCT0r9GY=; b=ZhRS1Ok6vhL7zeDZkgmGxaMYhwI3zcCvbfNUajVPoWdIK7sa0Qg3QadGgEpwbgZPwI WYG5/mB6f3ljby+rTF1atb4Fzjq7V2Bh9gxg8DPAC83591G7R1A7ABhYpVpBv88FjR6G jlGtz+N88vdwfHPiocq9EWVTpEgpzPl6hyFUQ= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=Yr1qOumuS8TXWEOrqim0XuS33cj0E8thnCAJCT0r9GY=; b=qvcZAW5hwrQPBYjXbbNtM7DRVJweY1Kk3ihivfDvI8yaB/I51FO7HgoB+1m7IiGN8j yPTT0emznYwYgrJJywY1BiDdV8koVngw/zyEHUcPdDgOSJIIJDbu9grD/L2qm9GFbYPL k9GpdtkLJbcX7TEX/YgRO2hCwb/GWDr+x8Gyak9C+PN3VRTwVMcrY7wwC7sTAeGTKl6J a+ironOPBH4deIgBzchHqKEWsl4/7DRhRvRp66yXrHP6QpDr98CDUsXpzeXwBCFH0Mda xk0m7BA4ynAbm0N1MXTTuYzcih+tLPTXnaRzjb9RlIwmmnhbgTpOxoN4WqZHmqCQ1Kwm MnaA== X-Gm-Message-State: AOAM531+rOmuliIfRb3REBGRLKOYYrgJ2dLV3UWeTq5WtWuAoBPrBiPU I58XnX6Mb1KJf4QsdktCysaPkWsNjwd2BsDJyg+ckA== X-Received: by 2002:a67:c992:: with SMTP id y18mr6718750vsk.7.1614785795666; Wed, 03 Mar 2021 07:36:35 -0800 (PST) MIME-Version: 1.0 References: <20210226183357.28467-1-lhenriques@suse.de> <20210301163324.GC186178@redhat.com> <20210302160033.GD220334@redhat.com> <20210302162554.GE220334@redhat.com> In-Reply-To: <20210302162554.GE220334@redhat.com> From: Miklos Szeredi Date: Wed, 3 Mar 2021 16:36:24 +0100 Message-ID: Subject: Re: [RFC PATCH] fuse: Clear SGID bit when setting mode in setacl To: Vivek Goyal Cc: Luis Henriques , linux-fsdevel@vger.kernel.org, virtio-fs-list , linux-kernel@vger.kernel.org, "Dr. David Alan Gilbert" Content-Type: text/plain; charset="UTF-8" Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Tue, Mar 2, 2021 at 5:26 PM Vivek Goyal wrote: > > I still feel that it should probably be fixed in virtiofsd, given fuse client > > is expecting file server to take care of any change of mode (file > > permission bits). > > Havid said that, there is one disadvantage of relying on server to > do this. Now idmapped mount patches have been merged. If virtiofs > were to ever support idmapped mounts, this will become an issue. > Server does not know about idmapped mounts, and it does not have > information on how to shift inode gid to determine if SGID should > be cleared or not. > > So if we were to keep possible future support of idmapped mounts in mind, > then solving it in client makes more sense. (/me is afraid that there > might be other dependencies like this elsewhere). > > Miklos, WDYT. Hmm sounds like two different modes of operation. 1) shared, non-idmapped: need to take care of races, so do the sgid clearing in the server 2) non-shared, idmapped: can only do it in client The same applies to all the other FUSE_*_KILL* stuff, so I guess the decision about the mode just needs to be tied to a flag in some way. Not sure if an existing one could be used. Thanks, Miklos