Received: by 2002:ac2:48a3:0:0:0:0:0 with SMTP id u3csp570417lfg; Fri, 11 Mar 2022 13:38:12 -0800 (PST) X-Google-Smtp-Source: ABdhPJyhYj6OjyeO5fcUmjUXWv44d3zn+UOr3fUrMurkx/QxFR3WhXQC57OnAWpQa2URBWaro9If X-Received: by 2002:a63:f40e:0:b0:380:6a04:4335 with SMTP id g14-20020a63f40e000000b003806a044335mr10076639pgi.523.1647034692288; Fri, 11 Mar 2022 13:38:12 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1647034692; cv=none; d=google.com; s=arc-20160816; b=LFRFnyAFCjGeyYbMibGZguFBg2QVBMgBJ3GI/yAnU0qW7NEbk522/318Y58kJQ177P RX3zHxbpo1K5F98kVRstnO2PJtH9USLMWoohB9xOzTEov7LB05jI6GFIkmDYvFHAkT1z Eq5wJPGPI9BVXEwL7o9xHTgnjYc0RBXrTkaz30tfGlF/EjAMQmKK4aK/wkkokBoFxJBm F3q6vUuUWz0wMX1YUChYT+cZ0+C5N/CvU2re8Mpyb6dTqDPr6Mt7P8zNjZFczB5FGkcL d+ivDLHp5BU4KybmASwvpCvCns3RS+yGerSwEJ5i75DgnOCnmCaiBPt4TeDMoSk0bZN2 gWkg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:cc:to:subject :message-id:date:from:in-reply-to:references:mime-version :dkim-signature; bh=9km0i8SFuccdCOVZYquGLNsFmsoS5afCtujPM89debo=; b=oCDhWAEojAtRia7zbzNGxiAqxrfE3Nrg2bCbwLsHPo+dT6Fb5PLISMgxBQltpNUyCE DFN6rgAPJhE68x0DWJsQ/IUG77UQiJsJxky02Zp7hV4pzC6TFS0572kxrEw3vUsRT2zy 7OpWZnK/v2Z6kgABRdwdwRYBGgCTWXr8TC9jF9SXG+8eWg9prHRuoJ1mLSzKnrpiD3CY +t5kpyR3L9QYAln7u2AWxPmGosS3EYA0dgjyaZwb9DbBGjyID0/Ok/tazEUWvDyHtAcu Nbq5sBaTUnGV9T5mQWTLryjHnaDvhgoV5I1sV3FxLNO/Zv0h3JYfZT7foDHiqKMeOQSL 7kSw== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@paul-moore-com.20210112.gappssmtp.com header.s=20210112 header.b="DkO/8stl"; spf=softfail (google.com: domain of transitioning linux-kernel-owner@vger.kernel.org does not designate 23.128.96.19 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from lindbergh.monkeyblade.net (lindbergh.monkeyblade.net. [23.128.96.19]) by mx.google.com with ESMTPS id r3-20020a63b103000000b00378e8ad2b0esi8707582pgf.513.2022.03.11.13.38.12 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Fri, 11 Mar 2022 13:38:12 -0800 (PST) Received-SPF: softfail (google.com: domain of transitioning linux-kernel-owner@vger.kernel.org does not designate 23.128.96.19 as permitted sender) client-ip=23.128.96.19; Authentication-Results: mx.google.com; dkim=pass header.i=@paul-moore-com.20210112.gappssmtp.com header.s=20210112 header.b="DkO/8stl"; spf=softfail (google.com: domain of transitioning linux-kernel-owner@vger.kernel.org does not designate 23.128.96.19 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: from vger.kernel.org (vger.kernel.org [23.128.96.18]) by lindbergh.monkeyblade.net (Postfix) with ESMTP id D913823D1AC; Fri, 11 Mar 2022 13:05:51 -0800 (PST) Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S238810AbiCJWMZ (ORCPT + 99 others); Thu, 10 Mar 2022 17:12:25 -0500 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:37314 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S239224AbiCJWMW (ORCPT ); Thu, 10 Mar 2022 17:12:22 -0500 Received: from mail-ej1-x631.google.com (mail-ej1-x631.google.com [IPv6:2a00:1450:4864:20::631]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id CE0E31959E8 for ; Thu, 10 Mar 2022 14:11:18 -0800 (PST) Received: by mail-ej1-x631.google.com with SMTP id yy13so15212937ejb.2 for ; Thu, 10 Mar 2022 14:11:18 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=paul-moore-com.20210112.gappssmtp.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=9km0i8SFuccdCOVZYquGLNsFmsoS5afCtujPM89debo=; b=DkO/8stlw+jpHvI8npwNphLXTcJGdwo5HGKNzsLEQgRJKoqLNqUtQ14rO8YztWtv6H bAxp1qhPNeH3fynL0mw7GJsoth6uZUwOJRQT3vdvrEI2RpF54ufTb0yXO3++rTXBespQ x5lpjmtoM0L6NN0u9NAmn1YkWynYbmAVkFmqK9RxmA3NcICSIgE9yAEScpXJQ4VdYV+H qGhCj6APjWltlRC5qBmw4vuoMHC3nKYsIbGWFHWJaXvc4I/QXkVgLDu0Y46f5aCQWnEh nBP1d+G1PMaC87QCOjKfloK3Lw9CLGuuIdMcOaJnRc9h+7uDqcwjICH2qyHuewLribm8 lAZA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=9km0i8SFuccdCOVZYquGLNsFmsoS5afCtujPM89debo=; b=2gF+DnF+U4aobN0eMav81X8XWUcAK4juMWSgfzygfheiA2OOb3109vaH89Q/HrDF/0 5MU3ObH2E4suj+aIuBdsCeBMC9pOG3HaiD02OoZQQc3nQkgkKZ9FsM6QPIJo+8NrQmL1 ve7u/VdVl0bBKmHH7ifa+jlZLGSf9LwVz/n+7g6O5VmDWrh0WrcV2wUsMxdaa53dyfu6 8y8qViuic29jE9ujmLelC0V8LxCHYpY0P25mGjJacJtm83ZsZ1RqE32cifI+GSSoiy8X +mzpu9IESDjBdRGLkt2xs+3d2lounqn3hy8zcYI7TuCLm+hjtHXiCswqJT3xS70Zn0HV O+Ug== X-Gm-Message-State: AOAM531lyc5/j0l8c512qqA/gmbyUBFXBbSYXZdhRimdcPA6jJrIy0Bq cksX4ys90+RRPgg7XMLVdrC13kUHaTQe0w26u+hB X-Received: by 2002:a17:907:216f:b0:6ce:d85f:35cf with SMTP id rl15-20020a170907216f00b006ced85f35cfmr6109610ejb.517.1646950277373; Thu, 10 Mar 2022 14:11:17 -0800 (PST) MIME-Version: 1.0 References: <20211117015806.2192263-1-dvander@google.com> In-Reply-To: From: Paul Moore Date: Thu, 10 Mar 2022 17:11:05 -0500 Message-ID: Subject: Re: [PATCH v19 0/4] overlayfs override_creds=off & nested get xattr fix To: Vivek Goyal , Amir Goldstein , Miklos Szeredi , David Anderson Cc: Mark Salyzyn , Jonathan Corbet , "Eric W . Biederman" , Randy Dunlap , Stephen Smalley , John Stultz , linux-doc@vger.kernel.org, linux-kernel , linux-fsdevel , overlayfs , LSM List , kernel-team , selinux@vger.kernel.org, paulmoore@microsoft.com, luca.boccassi@microsoft.com Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,DKIM_SIGNED, DKIM_VALID,HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI,RDNS_NONE, SPF_HELO_NONE,T_SCC_BODY_TEXT_LINE autolearn=no autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Wed, Mar 9, 2022 at 4:13 PM Paul Moore wrote: > On Tue, Mar 1, 2022 at 12:05 AM David Anderson wrote= : > > On Mon, Feb 28, 2022 at 5:09 PM Paul Moore wrote: ... > >> This patchset may not have been The Answer, but surely there is > >> something we can do to support this use-case. > > > > Yup exactly, and we still need patches 3 & 4 to deal with this. My curr= ent plan is to try and rework our sepolicy (we have some ideas on how it co= uld be made compatible with how overlayfs works). If that doesn't pan out w= e'll revisit these patches and think harder about how to deal with the cohe= rency issues. > > Can you elaborate a bit more on the coherency issues? Is this the dir > cache issue that is alluded to in the patchset? Anything else that > has come up on review? > > Before I start looking at the dir cache in any detail, did you have > any thoughts on how to resolve the problems that have arisen? David, Vivek, Amir, Miklos, or anyone for that matter, can you please go into more detail on the cache issues? I *think* I may have found a potential solution for an issue that could arise when the credential override is not in place, but I'm not certain it's the only issue :) There is motivation on our part to try and get the "override_creds=3Doff" portion of the patchset working and suitable for upstreaming, but I need some help in making sure I understand all the objections/problems. --=20 paul-moore.com