From mboxrd@z Thu Jan 1 00:00:00 1970 From: Mark Salyzyn Subject: [PATCH v13 0/5] overlayfs override_creds=off Date: Wed, 31 Jul 2019 09:57:55 -0700 Message-ID: <20190731165803.4755-1-salyzyn@android.com> Mime-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Return-path: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Sender: "linux-mtd" Errors-To: linux-mtd-bounces+gldm-linux-mtd-36=gmane.org@lists.infradead.org To: linux-kernel@vger.kernel.org Cc: Latchesar Ionkov , Dave Kleikamp , jfs-discussion@lists.sourceforge.net, Randy Dunlap , linux-doc@vger.kernel.org, Martin Brandenburg , samba-technical@lists.samba.org, Dominique Martinet , Amir Goldstein , David Howells , Chris Mason , "David S . Miller" , Andreas Dilger , ocfs2-devel@oss.oracle.com, netdev@vger.kernel.org, Tyler Hicks , linux-afs@lists.infradead.org, Mike Marshall , linux-xfs@vger.kernel.org, Andreas Gruenbacher , Sage Weil , Jonathan Corbet , Richard Weinberger , Mark Fasheh , devel@lists.orangefs.org, Hugh Dickins List-Id: ceph-devel.vger.kernel.org UGF0Y2ggc2VyaWVzOgoKb3ZlcmxheWZzOiBjaGVjayBDQVBfREFDX1JFQURfU0VBUkNIIGJlZm9y ZSBpc3N1aW5nIGV4cG9ydGZzX2RlY29kZV9maApBZGQgZmxhZ3Mgb3B0aW9uIHRvIGdldCB4YXR0 ciBtZXRob2QgcGFpcmVkIHRvIF9fdmZzX2dldHhhdHRyCm92ZXJsYXlmczogaGFuZGxlIFhBVFRS X05PU0VDVVJJVFkgZmxhZyBmb3IgZ2V0IHhhdHRyIG1ldGhvZApvdmVybGF5ZnM6IGludGVybmFs IGdldHhhdHRyIG9wZXJhdGlvbnMgd2l0aG91dCBzZXBvbGljeSBjaGVja2luZwpvdmVybGF5ZnM6 IG92ZXJyaWRlX2NyZWRzPW9mZiBvcHRpb24gYnlwYXNzIGNyZWF0b3JfY3JlZAoKVGhlIGZpcnN0 IGZvdXIgcGF0Y2hlcyBhZGRyZXNzIGZ1bmRhbWVudGFsIHNlY3VyaXR5IGlzc3VlcyB0aGF0IHNo b3VsZApiZSBzb2x2ZWQgcmVnYXJkbGVzcyBvZiB0aGUgb3ZlcnJpZGVfY3JlZHM9b2ZmIGZlYXR1 cmUuCm9uIHRoZW0pLgoKVGhlIGZpZnRoIGFkZHMgdGhlIGZlYXR1cmUgZGVwZW5kcyBvbiB0aGVz ZSBvdGhlciBmaXhlcy4KCkJ5IGRlZmF1bHQsIGFsbCBhY2Nlc3MgdG8gdGhlIHVwcGVyLCBsb3dl ciBhbmQgd29yayBkaXJlY3RvcmllcyBpcyB0aGUKcmVjb3JkZWQgbW91bnRlcidzIE1BQyBhbmQg REFDIGNyZWRlbnRpYWxzLiAgVGhlIGluY29taW5nIGFjY2Vzc2VzIGFyZQpjaGVja2VkIGFnYWlu c3QgdGhlIGNhbGxlcidzIGNyZWRlbnRpYWxzLgoKSWYgdGhlIHByaW5jaXBsZXMgb2YgbGVhc3Qg cHJpdmlsZWdlIGFyZSBhcHBsaWVkIGZvciBzZXBvbGljeSwgdGhlCm1vdW50ZXIncyBjcmVkZW50 aWFscyBtaWdodCBub3Qgb3ZlcmxhcCB0aGUgY3JlZGVudGlhbHMgb2YgdGhlIGNhbGxlcidzCndo ZW4gYWNjZXNzaW5nIHRoZSBvdmVybGF5ZnMgZmlsZXN5c3RlbS4gIEZvciBleGFtcGxlLCBhIGZp bGUgdGhhdCBhCmxvd2VyIERBQyBwcml2aWxlZ2VkIGNhbGxlciBjYW4gZXhlY3V0ZSwgaXMgTUFD IGRlbmllZCB0byB0aGUKZ2VuZXJhbGx5IGhpZ2hlciBEQUMgcHJpdmlsZWdlZCBtb3VudGVyLCB0 byBwcmV2ZW50IGFuIGF0dGFjayB2ZWN0b3IuCgpXZSBhZGQgdGhlIG9wdGlvbiB0byB0dXJuIG9m ZiBvdmVycmlkZV9jcmVkcyBpbiB0aGUgbW91bnQgb3B0aW9uczsgYWxsCnN1YnNlcXVlbnQgb3Bl cmF0aW9ucyBhZnRlciBtb3VudCBvbiB0aGUgZmlsZXN5c3RlbSB3aWxsIGJlIG9ubHkgdGhlCmNh bGxlcidzIGNyZWRlbnRpYWxzLiAgVGhlIG1vZHVsZSBib29sZWFuIHBhcmFtZXRlciBhbmQgbW91 bnQgb3B0aW9uCm92ZXJyaWRlX2NyZWRzIGlzIGFsc28gYWRkZWQgYXMgYSBwcmVzZW5jZSBjaGVj ayBmb3IgdGhpcyAiZmVhdHVyZSIsCmV4aXN0ZW5jZSBvZiAvc3lzL21vZHVsZS9vdmVybGF5L3Bh cmFtZXRlcnMvb3ZlcmxheV9jcmVkcwoKU2lnbmVkLW9mZi1ieTogTWFyayBTYWx5enluIDxzYWx5 enluQGFuZHJvaWQuY29tPgpDYzogTWlrbG9zIFN6ZXJlZGkgPG1pa2xvc0BzemVyZWRpLmh1PgpD YzogSm9uYXRoYW4gQ29yYmV0IDxjb3JiZXRAbHduLm5ldD4KQ2M6IFZpdmVrIEdveWFsIDx2Z295 YWxAcmVkaGF0LmNvbT4KQ2M6IEVyaWMgVy4gQmllZGVybWFuIDxlYmllZGVybUB4bWlzc2lvbi5j b20+CkNjOiBBbWlyIEdvbGRzdGVpbiA8YW1pcjczaWxAZ21haWwuY29tPgpDYzogUmFuZHkgRHVu bGFwIDxyZHVubGFwQGluZnJhZGVhZC5vcmc+CkNjOiBTdGVwaGVuIFNtYWxsZXkgPHNkc0B0eWNo by5uc2EuZ292PgpDYzogbGludXgtdW5pb25mc0B2Z2VyLmtlcm5lbC5vcmcKQ2M6IGxpbnV4LWRv Y0B2Z2VyLmtlcm5lbC5vcmcKQ2M6IGxpbnV4LWtlcm5lbEB2Z2VyLmtlcm5lbC5vcmcKQ2M6IEVy aWMgVmFuIEhlbnNiZXJnZW4gPGVyaWN2aEBnbWFpbC5jb20+CkNjOiBMYXRjaGVzYXIgSW9ua292 IDxsdWNob0Bpb25rb3YubmV0PgpDYzogRG9taW5pcXVlIE1hcnRpbmV0IDxhc21hZGV1c0Bjb2Rl d3JlY2sub3JnPgpDYzogRGF2aWQgSG93ZWxscyA8ZGhvd2VsbHNAcmVkaGF0LmNvbT4KQ2M6IENo cmlzIE1hc29uIDxjbG1AZmIuY29tPgpDYzogSm9zZWYgQmFjaWsgPGpvc2VmQHRveGljcGFuZGEu Y29tPgpDYzogRGF2aWQgU3RlcmJhIDxkc3RlcmJhQHN1c2UuY29tPgpDYzogSmVmZiBMYXl0b24g PGpsYXl0b25Aa2VybmVsLm9yZz4KQ2M6IFNhZ2UgV2VpbCA8c2FnZUByZWRoYXQuY29tPgpDYzog SWx5YSBEcnlvbW92IDxpZHJ5b21vdkBnbWFpbC5jb20+CkNjOiBTdGV2ZSBGcmVuY2ggPHNmcmVu Y2hAc2FtYmEub3JnPgpDYzogVHlsZXIgSGlja3MgPHR5aGlja3NAY2Fub25pY2FsLmNvbT4KQ2M6 IEphbiBLYXJhIDxqYWNrQHN1c2UuY29tPgpDYzogVGhlb2RvcmUgVHMnbyA8dHl0c29AbWl0LmVk dT4KQ2M6IEFuZHJlYXMgRGlsZ2VyIDxhZGlsZ2VyLmtlcm5lbEBkaWxnZXIuY2E+CkNjOiBKYWVn ZXVrIEtpbSA8amFlZ2V1a0BrZXJuZWwub3JnPgpDYzogQ2hhbyBZdSA8eXVjaGFvMEBodWF3ZWku Y29tPgpDYzogQm9iIFBldGVyc29uIDxycGV0ZXJzb0ByZWRoYXQuY29tPgpDYzogQW5kcmVhcyBH cnVlbmJhY2hlciA8YWdydWVuYmFAcmVkaGF0LmNvbT4KQ2M6IERhdmlkIFdvb2Rob3VzZSA8ZHdt dzJAaW5mcmFkZWFkLm9yZz4KQ2M6IFJpY2hhcmQgV2VpbmJlcmdlciA8cmljaGFyZEBub2QuYXQ+ CkNjOiBEYXZlIEtsZWlrYW1wIDxzaGFnZ3lAa2VybmVsLm9yZz4KQ2M6IEdyZWcgS3JvYWgtSGFy dG1hbiA8Z3JlZ2toQGxpbnV4Zm91bmRhdGlvbi5vcmc+CkNjOiBUZWp1biBIZW8gPHRqQGtlcm5l bC5vcmc+CkNjOiBUcm9uZCBNeWtsZWJ1c3QgPHRyb25kLm15a2xlYnVzdEBoYW1tZXJzcGFjZS5j b20+CkNjOiBBbm5hIFNjaHVtYWtlciA8YW5uYS5zY2h1bWFrZXJAbmV0YXBwLmNvbT4KQ2M6IE1h cmsgRmFzaGVoIDxtYXJrQGZhc2hlaC5jb20+CkNjOiBKb2VsIEJlY2tlciA8amxiZWNAZXZpbHBs YW4ub3JnPgpDYzogSm9zZXBoIFFpIDxqb3NlcGgucWlAbGludXguYWxpYmFiYS5jb20+CkNjOiBN aWtlIE1hcnNoYWxsIDxodWJjYXBAb21uaWJvbmQuY29tPgpDYzogTWFydGluIEJyYW5kZW5idXJn IDxtYXJ0aW5Ab21uaWJvbmQuY29tPgpDYzogQWxleGFuZGVyIFZpcm8gPHZpcm9AemVuaXYubGlu dXgub3JnLnVrPgpDYzogUGhpbGxpcCBMb3VnaGVyIDxwaGlsbGlwQHNxdWFzaGZzLm9yZy51az4K Q2M6IERhcnJpY2sgSi4gV29uZyA8ZGFycmljay53b25nQG9yYWNsZS5jb20+CkNjOiBsaW51eC14 ZnNAdmdlci5rZXJuZWwub3JnCkNjOiBIdWdoIERpY2tpbnMgPGh1Z2hkQGdvb2dsZS5jb20+CkNj OiBEYXZpZCBTLiBNaWxsZXIgPGRhdmVtQGRhdmVtbG9mdC5uZXQ+CkNjOiBBbmRyZXcgTW9ydG9u IDxha3BtQGxpbnV4LWZvdW5kYXRpb24ub3JnPgpDYzogTWF0aGlldSBNYWxhdGVycmUgPG1hbGF0 QGRlYmlhbi5vcmc+CkNjOiBFcm5lc3RvIEEuIEZlcm7DoW5kZXogPGVybmVzdG8ubW5kLmZlcm5h bmRlekBnbWFpbC5jb20+CkNjOiBWeWFjaGVzbGF2IER1YmV5a28gPHNsYXZhQGR1YmV5a28uY29t PgpDYzogdjlmcy1kZXZlbG9wZXJAbGlzdHMuc291cmNlZm9yZ2UubmV0CkNjOiBsaW51eC1hZnNA bGlzdHMuaW5mcmFkZWFkLm9yZwpDYzogbGludXgtYnRyZnNAdmdlci5rZXJuZWwub3JnCkNjOiBj ZXBoLWRldmVsQHZnZXIua2VybmVsLm9yZwpDYzogbGludXgtY2lmc0B2Z2VyLmtlcm5lbC5vcmcK Q2M6IHNhbWJhLXRlY2huaWNhbEBsaXN0cy5zYW1iYS5vcmcKQ2M6IGVjcnlwdGZzQHZnZXIua2Vy bmVsLm9yZwpDYzogbGludXgtZXh0NEB2Z2VyLmtlcm5lbC5vcmcKQ2M6IGxpbnV4LWYyZnMtZGV2 ZWxAbGlzdHMuc291cmNlZm9yZ2UubmV0CkNjOiBsaW51eC1mc2RldmVsQHZnZXIua2VybmVsLm9y ZwpDYzogY2x1c3Rlci1kZXZlbEByZWRoYXQuY29tCkNjOiBsaW51eC1tdGRAbGlzdHMuaW5mcmFk ZWFkLm9yZwpDYzogamZzLWRpc2N1c3Npb25AbGlzdHMuc291cmNlZm9yZ2UubmV0CkNjOiBsaW51 eC1uZnNAdmdlci5rZXJuZWwub3JnCkNjOiBvY2ZzMi1kZXZlbEBvc3Mub3JhY2xlLmNvbQpDYzog ZGV2ZWxAbGlzdHMub3JhbmdlZnMub3JnCkNjOiByZWlzZXJmcy1kZXZlbEB2Z2VyLmtlcm5lbC5v cmcKQ2M6IGxpbnV4LW1tQGt2YWNrLm9yZwpDYzogbmV0ZGV2QHZnZXIua2VybmVsLm9yZwpDYzog bGludXgtc2VjdXJpdHktbW9kdWxlQHZnZXIua2VybmVsLm9yZwpDYzogc3RhYmxlQHZnZXIua2Vy bmVsLm9yZyAjIDQuNCwgNC45LCA0LjE0ICYgNC4xOQotLS0KdjEzOgotIGFkZCBmbGFncyBhcmd1 bWVudCB0byBfX3Zmc19nZXR4YXR0cgotIGRyb3AgR0ZQX05PRlMgc2lkZS1lZmZlY3QKCnYxMjoK LSBSZXN0b3JlIHNxdWlzaGVkIG91dCBwYXRjaCAyIGFuZCAzIGluIHRoZSBzZXJpZXMsCiAgdGhl biBjaGFuZ2UgYWxnb3JpdGhtIHRvIGFkZCBmbGFncyBhcmd1bWVudC4KICBQZXItdGhyZWFkIGZs YWcgaXMgYSBsYXJnZSBzZWN1cml0eSBzdXJmYWNlLgoKdjExOgotIFNxdWlzaCBvdXQgdjEwIGlu dHJvZHVjZWQgcGF0Y2ggMiBhbmQgMyBpbiB0aGUgc2VyaWVzLAogIHRoZW4gYW5kIHVzZSBwZXIt dGhyZWFkIGZsYWcgaW5zdGVhZCBmb3IgbmVzdGluZy4KLSBTd2l0Y2ggbmFtZSB0byBvdmxfZG9f dmRzX2dldHhhdHRyIGZvciBfX3Zkc19nZXR4YXR0ciB3cmFwcGVyLgotIEFkZCBzYiBhcmd1bWVu dCB0byBvdmxfcmV2ZXJ0X2NyZWRzIHRvIG1hdGNoIGZ1dHVyZSB3b3JrLgoKdjEwOgotIFJldHVy biBOVUxMIG9uIENBUF9EQUNfUkVBRF9TRUFSQ0gKLSBBZGQgX19nZXQgeGF0dHIgbWV0aG9kIHRv IHNvbHZlIHNlcG9saWN5IGxvZ2dpbmcgaXNzdWUKLSBEcm9wIHVubmVjZXNzYXJ5IHN5c19hZG1p biBzZXBvbGljeSBjaGVja2luZyBmb3IgYWRtaW5pc3RyYXRpdmUKICBkcml2ZXIgaW50ZXJuYWwg eGF0dHIgZnVuY3Rpb25zLgoKdjY6Ci0gRHJvcCBDT05GSUdfT1ZFUkxBWV9GU19PVkVSUklERV9D UkVEUy4KLSBEbyBiZXR0ZXIgd2l0aCB0aGUgZG9jdW1lbnRhdGlvbiwgZHJvcCByYXRpb25hbGl6 YXRpb25zLgotIHByX3dhcm4gbWVzc2FnZSBhZGp1c3RlZCB0byByZXBvcnQgY29uc2VxdWVuY2Vz LgoKdjU6Ci0gYmVlZmVkIHVwIHRoZSBjYXZlYXRzIGluIHRoZSBEb2N1bWVudGF0aW9uCi0gSXMg ZGVwZW5kZW50IG9uCiAgIm92ZXJsYXlmczogY2hlY2sgQ0FQX0RBQ19SRUFEX1NFQVJDSCBiZWZv cmUgaXNzdWluZyBleHBvcnRmc19kZWNvZGVfZmgiCiAgIm92ZXJsYXlmczogY2hlY2sgQ0FQX01L Tk9EIGJlZm9yZSBpc3N1aW5nIHZmc193aGl0ZW91dCIKLSBBZGRlZCBwcndhcm4gd2hlbiBvdmVy cmlkZV9jcmVkcz1vZmYKCnY0OgotIHNwZWxsaW5nIGFuZCBncmFtbWFyIGVycm9ycyBpbiB0ZXh0 Cgp2MzoKLSBDaGFuZ2UgbmFtZSBmcm9tIGNhbGxlcl9jcmVkZW50aWFscyAvIGNyZWF0b3JfY3Jl ZGVudGlhbHMgdG8gdGhlCiAgYm9vbGVhbiBvdmVycmlkZV9jcmVkcy4KLSBDaGFuZ2VkIGZyb20g Y3JlYXRvciB0byBtb3VudGVyIGNyZWRlbnRpYWxzLgotIFVwZGF0ZWQgYW5kIGZvcnRpZmllZCB0 aGUgZG9jdW1lbnRhdGlvbi4KLSBBZGRlZCBDT05GSUdfT1ZFUkxBWV9GU19PVkVSUklERV9DUkVE UwoKdjI6Ci0gRm9yd2FyZCBwb3J0IGNoYW5nZWQgYXR0ciB0byBzdGF0LCByZXN1bHRpbmcgaW4g YSBidWlsZCBlcnJvci4KLSBhbHRlcmVkIGNvbW1pdCBtZXNzYWdlLgoKX19fX19fX19fX19fX19f X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fCkxpbnV4IE1URCBkaXNjdXNz aW9uIG1haWxpbmcgbGlzdApodHRwOi8vbGlzdHMuaW5mcmFkZWFkLm9yZy9tYWlsbWFuL2xpc3Rp bmZvL2xpbnV4LW10ZC8K From mboxrd@z Thu Jan 1 00:00:00 1970 From: Mark Salyzyn Date: Wed, 31 Jul 2019 09:57:55 -0700 Subject: [Cluster-devel] [PATCH v13 0/5] overlayfs override_creds=off Message-ID: <20190731165803.4755-1-salyzyn@android.com> List-Id: To: cluster-devel.redhat.com MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Patch series: overlayfs: check CAP_DAC_READ_SEARCH before issuing exportfs_decode_fh Add flags option to get xattr method paired to __vfs_getxattr overlayfs: handle XATTR_NOSECURITY flag for get xattr method overlayfs: internal getxattr operations without sepolicy checking overlayfs: override_creds=off option bypass creator_cred The first four patches address fundamental security issues that should be solved regardless of the override_creds=off feature. on them). The fifth adds the feature depends on these other fixes. By default, all access to the upper, lower and work directories is the recorded mounter's MAC and DAC credentials. The incoming accesses are checked against the caller's credentials. If the principles of least privilege are applied for sepolicy, the mounter's credentials might not overlap the credentials of the caller's when accessing the overlayfs filesystem. For example, a file that a lower DAC privileged caller can execute, is MAC denied to the generally higher DAC privileged mounter, to prevent an attack vector. We add the option to turn off override_creds in the mount options; all subsequent operations after mount on the filesystem will be only the caller's credentials. The module boolean parameter and mount option override_creds is also added as a presence check for this "feature", existence of /sys/module/overlay/parameters/overlay_creds Signed-off-by: Mark Salyzyn Cc: Miklos Szeredi Cc: Jonathan Corbet Cc: Vivek Goyal Cc: Eric W. Biederman Cc: Amir Goldstein Cc: Randy Dunlap Cc: Stephen Smalley Cc: linux-unionfs at vger.kernel.org Cc: linux-doc at vger.kernel.org Cc: linux-kernel at vger.kernel.org Cc: Eric Van Hensbergen Cc: Latchesar Ionkov Cc: Dominique Martinet Cc: David Howells Cc: Chris Mason Cc: Josef Bacik Cc: David Sterba Cc: Jeff Layton Cc: Sage Weil Cc: Ilya Dryomov Cc: Steve French Cc: Tyler Hicks Cc: Jan Kara Cc: Theodore Ts'o Cc: Andreas Dilger Cc: Jaegeuk Kim Cc: Chao Yu Cc: Bob Peterson Cc: Andreas Gruenbacher Cc: David Woodhouse Cc: Richard Weinberger Cc: Dave Kleikamp Cc: Greg Kroah-Hartman Cc: Tejun Heo Cc: Trond Myklebust Cc: Anna Schumaker Cc: Mark Fasheh Cc: Joel Becker Cc: Joseph Qi Cc: Mike Marshall Cc: Martin Brandenburg Cc: Alexander Viro Cc: Phillip Lougher Cc: Darrick J. Wong Cc: linux-xfs at vger.kernel.org Cc: Hugh Dickins Cc: David S. Miller Cc: Andrew Morton Cc: Mathieu Malaterre Cc: Ernesto A. Fern?ndez Cc: Vyacheslav Dubeyko Cc: v9fs-developer at lists.sourceforge.net Cc: linux-afs at lists.infradead.org Cc: linux-btrfs at vger.kernel.org Cc: ceph-devel at vger.kernel.org Cc: linux-cifs at vger.kernel.org Cc: samba-technical at lists.samba.org Cc: ecryptfs at vger.kernel.org Cc: linux-ext4 at vger.kernel.org Cc: linux-f2fs-devel at lists.sourceforge.net Cc: linux-fsdevel at vger.kernel.org Cc: cluster-devel at redhat.com Cc: linux-mtd at lists.infradead.org Cc: jfs-discussion at lists.sourceforge.net Cc: linux-nfs at vger.kernel.org Cc: ocfs2-devel at oss.oracle.com Cc: devel at lists.orangefs.org Cc: reiserfs-devel at vger.kernel.org Cc: linux-mm at kvack.org Cc: netdev at vger.kernel.org Cc: linux-security-module at vger.kernel.org Cc: stable at vger.kernel.org # 4.4, 4.9, 4.14 & 4.19 --- v13: - add flags argument to __vfs_getxattr - drop GFP_NOFS side-effect v12: - Restore squished out patch 2 and 3 in the series, then change algorithm to add flags argument. Per-thread flag is a large security surface. v11: - Squish out v10 introduced patch 2 and 3 in the series, then and use per-thread flag instead for nesting. - Switch name to ovl_do_vds_getxattr for __vds_getxattr wrapper. - Add sb argument to ovl_revert_creds to match future work. v10: - Return NULL on CAP_DAC_READ_SEARCH - Add __get xattr method to solve sepolicy logging issue - Drop unnecessary sys_admin sepolicy checking for administrative driver internal xattr functions. v6: - Drop CONFIG_OVERLAY_FS_OVERRIDE_CREDS. - Do better with the documentation, drop rationalizations. - pr_warn message adjusted to report consequences. v5: - beefed up the caveats in the Documentation - Is dependent on "overlayfs: check CAP_DAC_READ_SEARCH before issuing exportfs_decode_fh" "overlayfs: check CAP_MKNOD before issuing vfs_whiteout" - Added prwarn when override_creds=off v4: - spelling and grammar errors in text v3: - Change name from caller_credentials / creator_credentials to the boolean override_creds. - Changed from creator to mounter credentials. - Updated and fortified the documentation. - Added CONFIG_OVERLAY_FS_OVERRIDE_CREDS v2: - Forward port changed attr to stat, resulting in a build error. - altered commit message. From mboxrd@z Thu Jan 1 00:00:00 1970 From: Mark Salyzyn Subject: [PATCH v13 0/5] overlayfs override_creds=off Date: Wed, 31 Jul 2019 09:57:55 -0700 Message-ID: <20190731165803.4755-1-salyzyn@android.com> Mime-Version: 1.0 Content-Transfer-Encoding: base64 Return-path: List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Sender: "linux-mtd" Errors-To: linux-mtd-bounces+gldm-linux-mtd-36=gmane.org@lists.infradead.org Content-Type: text/plain; charset="macroman" To: linux-kernel@vger.kernel.org Cc: Latchesar Ionkov , Dave Kleikamp , jfs-discussion@lists.sourceforge.net, Randy Dunlap , linux-doc@vger.kernel.org, Martin Brandenburg , samba-technical@lists.samba.org, Dominique Martinet , Amir Goldstein , David Howells , Chris Mason , "David S . Miller" , Andreas Dilger , ocfs2-devel@oss.oracle.com, netdev@vger.kernel.org, Tyler Hicks , linux-afs@lists.infradead.org, Mike Marshall , linux-xfs@vger.kernel.org, Andreas Gruenbacher , Sage Weil , Jonathan Corbet , Richard Weinberger , Mark Fasheh , devel@lists.orangefs.org, Hugh Dickins <> UGF0Y2ggc2VyaWVzOgoKb3ZlcmxheWZzOiBjaGVjayBDQVBfREFDX1JFQURfU0VBUkNIIGJlZm9y ZSBpc3N1aW5nIGV4cG9ydGZzX2RlY29kZV9maApBZGQgZmxhZ3Mgb3B0aW9uIHRvIGdldCB4YXR0 ciBtZXRob2QgcGFpcmVkIHRvIF9fdmZzX2dldHhhdHRyCm92ZXJsYXlmczogaGFuZGxlIFhBVFRS X05PU0VDVVJJVFkgZmxhZyBmb3IgZ2V0IHhhdHRyIG1ldGhvZApvdmVybGF5ZnM6IGludGVybmFs IGdldHhhdHRyIG9wZXJhdGlvbnMgd2l0aG91dCBzZXBvbGljeSBjaGVja2luZwpvdmVybGF5ZnM6 IG92ZXJyaWRlX2NyZWRzPW9mZiBvcHRpb24gYnlwYXNzIGNyZWF0b3JfY3JlZAoKVGhlIGZpcnN0 IGZvdXIgcGF0Y2hlcyBhZGRyZXNzIGZ1bmRhbWVudGFsIHNlY3VyaXR5IGlzc3VlcyB0aGF0IHNo b3VsZApiZSBzb2x2ZWQgcmVnYXJkbGVzcyBvZiB0aGUgb3ZlcnJpZGVfY3JlZHM9b2ZmIGZlYXR1 cmUuCm9uIHRoZW0pLgoKVGhlIGZpZnRoIGFkZHMgdGhlIGZlYXR1cmUgZGVwZW5kcyBvbiB0aGVz ZSBvdGhlciBmaXhlcy4KCkJ5IGRlZmF1bHQsIGFsbCBhY2Nlc3MgdG8gdGhlIHVwcGVyLCBsb3dl ciBhbmQgd29yayBkaXJlY3RvcmllcyBpcyB0aGUKcmVjb3JkZWQgbW91bnRlcidzIE1BQyBhbmQg REFDIGNyZWRlbnRpYWxzLiAgVGhlIGluY29taW5nIGFjY2Vzc2VzIGFyZQpjaGVja2VkIGFnYWlu c3QgdGhlIGNhbGxlcidzIGNyZWRlbnRpYWxzLgoKSWYgdGhlIHByaW5jaXBsZXMgb2YgbGVhc3Qg cHJpdmlsZWdlIGFyZSBhcHBsaWVkIGZvciBzZXBvbGljeSwgdGhlCm1vdW50ZXIncyBjcmVkZW50 aWFscyBtaWdodCBub3Qgb3ZlcmxhcCB0aGUgY3JlZGVudGlhbHMgb2YgdGhlIGNhbGxlcidzCndo ZW4gYWNjZXNzaW5nIHRoZSBvdmVybGF5ZnMgZmlsZXN5c3RlbS4gIEZvciBleGFtcGxlLCBhIGZp bGUgdGhhdCBhCmxvd2VyIERBQyBwcml2aWxlZ2VkIGNhbGxlciBjYW4gZXhlY3V0ZSwgaXMgTUFD IGRlbmllZCB0byB0aGUKZ2VuZXJhbGx5IGhpZ2hlciBEQUMgcHJpdmlsZWdlZCBtb3VudGVyLCB0 byBwcmV2ZW50IGFuIGF0dGFjayB2ZWN0b3IuCgpXZSBhZGQgdGhlIG9wdGlvbiB0byB0dXJuIG9m ZiBvdmVycmlkZV9jcmVkcyBpbiB0aGUgbW91bnQgb3B0aW9uczsgYWxsCnN1YnNlcXVlbnQgb3Bl cmF0aW9ucyBhZnRlciBtb3VudCBvbiB0aGUgZmlsZXN5c3RlbSB3aWxsIGJlIG9ubHkgdGhlCmNh bGxlcidzIGNyZWRlbnRpYWxzLiAgVGhlIG1vZHVsZSBib29sZWFuIHBhcmFtZXRlciBhbmQgbW91 bnQgb3B0aW9uCm92ZXJyaWRlX2NyZWRzIGlzIGFsc28gYWRkZWQgYXMgYSBwcmVzZW5jZSBjaGVj ayBmb3IgdGhpcyAiZmVhdHVyZSIsCmV4aXN0ZW5jZSBvZiAvc3lzL21vZHVsZS9vdmVybGF5L3Bh cmFtZXRlcnMvb3ZlcmxheV9jcmVkcwoKU2lnbmVkLW9mZi1ieTogTWFyayBTYWx5enluIDxzYWx5 enluQGFuZHJvaWQuY29tPgpDYzogTWlrbG9zIFN6ZXJlZGkgPG1pa2xvc0BzemVyZWRpLmh1PgpD YzogSm9uYXRoYW4gQ29yYmV0IDxjb3JiZXRAbHduLm5ldD4KQ2M6IFZpdmVrIEdveWFsIDx2Z295 YWxAcmVkaGF0LmNvbT4KQ2M6IEVyaWMgVy4gQmllZGVybWFuIDxlYmllZGVybUB4bWlzc2lvbi5j b20+CkNjOiBBbWlyIEdvbGRzdGVpbiA8YW1pcjczaWxAZ21haWwuY29tPgpDYzogUmFuZHkgRHVu bGFwIDxyZHVubGFwQGluZnJhZGVhZC5vcmc+CkNjOiBTdGVwaGVuIFNtYWxsZXkgPHNkc0B0eWNo by5uc2EuZ292PgpDYzogbGludXgtdW5pb25mc0B2Z2VyLmtlcm5lbC5vcmcKQ2M6IGxpbnV4LWRv Y0B2Z2VyLmtlcm5lbC5vcmcKQ2M6IGxpbnV4LWtlcm5lbEB2Z2VyLmtlcm5lbC5vcmcKQ2M6IEVy aWMgVmFuIEhlbnNiZXJnZW4gPGVyaWN2aEBnbWFpbC5jb20+CkNjOiBMYXRjaGVzYXIgSW9ua292 IDxsdWNob0Bpb25rb3YubmV0PgpDYzogRG9taW5pcXVlIE1hcnRpbmV0IDxhc21hZGV1c0Bjb2Rl d3JlY2sub3JnPgpDYzogRGF2aWQgSG93ZWxscyA8ZGhvd2VsbHNAcmVkaGF0LmNvbT4KQ2M6IENo cmlzIE1hc29uIDxjbG1AZmIuY29tPgpDYzogSm9zZWYgQmFjaWsgPGpvc2VmQHRveGljcGFuZGEu Y29tPgpDYzogRGF2aWQgU3RlcmJhIDxkc3RlcmJhQHN1c2UuY29tPgpDYzogSmVmZiBMYXl0b24g PGpsYXl0b25Aa2VybmVsLm9yZz4KQ2M6IFNhZ2UgV2VpbCA8c2FnZUByZWRoYXQuY29tPgpDYzog SWx5YSBEcnlvbW92IDxpZHJ5b21vdkBnbWFpbC5jb20+CkNjOiBTdGV2ZSBGcmVuY2ggPHNmcmVu Y2hAc2FtYmEub3JnPgpDYzogVHlsZXIgSGlja3MgPHR5aGlja3NAY2Fub25pY2FsLmNvbT4KQ2M6 IEphbiBLYXJhIDxqYWNrQHN1c2UuY29tPgpDYzogVGhlb2RvcmUgVHMnbyA8dHl0c29AbWl0LmVk dT4KQ2M6IEFuZHJlYXMgRGlsZ2VyIDxhZGlsZ2VyLmtlcm5lbEBkaWxnZXIuY2E+CkNjOiBKYWVn ZXVrIEtpbSA8amFlZ2V1a0BrZXJuZWwub3JnPgpDYzogQ2hhbyBZdSA8eXVjaGFvMEBodWF3ZWku Y29tPgpDYzogQm9iIFBldGVyc29uIDxycGV0ZXJzb0ByZWRoYXQuY29tPgpDYzogQW5kcmVhcyBH cnVlbmJhY2hlciA8YWdydWVuYmFAcmVkaGF0LmNvbT4KQ2M6IERhdmlkIFdvb2Rob3VzZSA8ZHdt dzJAaW5mcmFkZWFkLm9yZz4KQ2M6IFJpY2hhcmQgV2VpbmJlcmdlciA8cmljaGFyZEBub2QuYXQ+ CkNjOiBEYXZlIEtsZWlrYW1wIDxzaGFnZ3lAa2VybmVsLm9yZz4KQ2M6IEdyZWcgS3JvYWgtSGFy dG1hbiA8Z3JlZ2toQGxpbnV4Zm91bmRhdGlvbi5vcmc+CkNjOiBUZWp1biBIZW8gPHRqQGtlcm5l bC5vcmc+CkNjOiBUcm9uZCBNeWtsZWJ1c3QgPHRyb25kLm15a2xlYnVzdEBoYW1tZXJzcGFjZS5j b20+CkNjOiBBbm5hIFNjaHVtYWtlciA8YW5uYS5zY2h1bWFrZXJAbmV0YXBwLmNvbT4KQ2M6IE1h cmsgRmFzaGVoIDxtYXJrQGZhc2hlaC5jb20+CkNjOiBKb2VsIEJlY2tlciA8amxiZWNAZXZpbHBs YW4ub3JnPgpDYzogSm9zZXBoIFFpIDxqb3NlcGgucWlAbGludXguYWxpYmFiYS5jb20+CkNjOiBN aWtlIE1hcnNoYWxsIDxodWJjYXBAb21uaWJvbmQuY29tPgpDYzogTWFydGluIEJyYW5kZW5idXJn IDxtYXJ0aW5Ab21uaWJvbmQuY29tPgpDYzogQWxleGFuZGVyIFZpcm8gPHZpcm9AemVuaXYubGlu dXgub3JnLnVrPgpDYzogUGhpbGxpcCBMb3VnaGVyIDxwaGlsbGlwQHNxdWFzaGZzLm9yZy51az4K Q2M6IERhcnJpY2sgSi4gV29uZyA8ZGFycmljay53b25nQG9yYWNsZS5jb20+CkNjOiBsaW51eC14 ZnNAdmdlci5rZXJuZWwub3JnCkNjOiBIdWdoIERpY2tpbnMgPGh1Z2hkQGdvb2dsZS5jb20+CkNj OiBEYXZpZCBTLiBNaWxsZXIgPGRhdmVtQGRhdmVtbG9mdC5uZXQ+CkNjOiBBbmRyZXcgTW9ydG9u IDxha3BtQGxpbnV4LWZvdW5kYXRpb24ub3JnPgpDYzogTWF0aGlldSBNYWxhdGVycmUgPG1hbGF0 QGRlYmlhbi5vcmc+CkNjOiBFcm5lc3RvIEEuIEZlcm7DoW5kZXogPGVybmVzdG8ubW5kLmZlcm5h bmRlekBnbWFpbC5jb20+CkNjOiBWeWFjaGVzbGF2IER1YmV5a28gPHNsYXZhQGR1YmV5a28uY29t PgpDYzogdjlmcy1kZXZlbG9wZXJAbGlzdHMuc291cmNlZm9yZ2UubmV0CkNjOiBsaW51eC1hZnNA bGlzdHMuaW5mcmFkZWFkLm9yZwpDYzogbGludXgtYnRyZnNAdmdlci5rZXJuZWwub3JnCkNjOiBj ZXBoLWRldmVsQHZnZXIua2VybmVsLm9yZwpDYzogbGludXgtY2lmc0B2Z2VyLmtlcm5lbC5vcmcK Q2M6IHNhbWJhLXRlY2huaWNhbEBsaXN0cy5zYW1iYS5vcmcKQ2M6IGVjcnlwdGZzQHZnZXIua2Vy bmVsLm9yZwpDYzogbGludXgtZXh0NEB2Z2VyLmtlcm5lbC5vcmcKQ2M6IGxpbnV4LWYyZnMtZGV2 ZWxAbGlzdHMuc291cmNlZm9yZ2UubmV0CkNjOiBsaW51eC1mc2RldmVsQHZnZXIua2VybmVsLm9y ZwpDYzogY2x1c3Rlci1kZXZlbEByZWRoYXQuY29tCkNjOiBsaW51eC1tdGRAbGlzdHMuaW5mcmFk ZWFkLm9yZwpDYzogamZzLWRpc2N1c3Npb25AbGlzdHMuc291cmNlZm9yZ2UubmV0CkNjOiBsaW51 eC1uZnNAdmdlci5rZXJuZWwub3JnCkNjOiBvY2ZzMi1kZXZlbEBvc3Mub3JhY2xlLmNvbQpDYzog ZGV2ZWxAbGlzdHMub3JhbmdlZnMub3JnCkNjOiByZWlzZXJmcy1kZXZlbEB2Z2VyLmtlcm5lbC5v cmcKQ2M6IGxpbnV4LW1tQGt2YWNrLm9yZwpDYzogbmV0ZGV2QHZnZXIua2VybmVsLm9yZwpDYzog bGludXgtc2VjdXJpdHktbW9kdWxlQHZnZXIua2VybmVsLm9yZwpDYzogc3RhYmxlQHZnZXIua2Vy bmVsLm9yZyAjIDQuNCwgNC45LCA0LjE0ICYgNC4xOQotLS0KdjEzOgotIGFkZCBmbGFncyBhcmd1 bWVudCB0byBfX3Zmc19nZXR4YXR0cgotIGRyb3AgR0ZQX05PRlMgc2lkZS1lZmZlY3QKCnYxMjoK LSBSZXN0b3JlIHNxdWlzaGVkIG91dCBwYXRjaCAyIGFuZCAzIGluIHRoZSBzZXJpZXMsCiAgdGhl biBjaGFuZ2UgYWxnb3JpdGhtIHRvIGFkZCBmbGFncyBhcmd1bWVudC4KICBQZXItdGhyZWFkIGZs YWcgaXMgYSBsYXJnZSBzZWN1cml0eSBzdXJmYWNlLgoKdjExOgotIFNxdWlzaCBvdXQgdjEwIGlu dHJvZHVjZWQgcGF0Y2ggMiBhbmQgMyBpbiB0aGUgc2VyaWVzLAogIHRoZW4gYW5kIHVzZSBwZXIt dGhyZWFkIGZsYWcgaW5zdGVhZCBmb3IgbmVzdGluZy4KLSBTd2l0Y2ggbmFtZSB0byBvdmxfZG9f dmRzX2dldHhhdHRyIGZvciBfX3Zkc19nZXR4YXR0ciB3cmFwcGVyLgotIEFkZCBzYiBhcmd1bWVu dCB0byBvdmxfcmV2ZXJ0X2NyZWRzIHRvIG1hdGNoIGZ1dHVyZSB3b3JrLgoKdjEwOgotIFJldHVy biBOVUxMIG9uIENBUF9EQUNfUkVBRF9TRUFSQ0gKLSBBZGQgX19nZXQgeGF0dHIgbWV0aG9kIHRv IHNvbHZlIHNlcG9saWN5IGxvZ2dpbmcgaXNzdWUKLSBEcm9wIHVubmVjZXNzYXJ5IHN5c19hZG1p biBzZXBvbGljeSBjaGVja2luZyBmb3IgYWRtaW5pc3RyYXRpdmUKICBkcml2ZXIgaW50ZXJuYWwg eGF0dHIgZnVuY3Rpb25zLgoKdjY6Ci0gRHJvcCBDT05GSUdfT1ZFUkxBWV9GU19PVkVSUklERV9D UkVEUy4KLSBEbyBiZXR0ZXIgd2l0aCB0aGUgZG9jdW1lbnRhdGlvbiwgZHJvcCByYXRpb25hbGl6 YXRpb25zLgotIHByX3dhcm4gbWVzc2FnZSBhZGp1c3RlZCB0byByZXBvcnQgY29uc2VxdWVuY2Vz LgoKdjU6Ci0gYmVlZmVkIHVwIHRoZSBjYXZlYXRzIGluIHRoZSBEb2N1bWVudGF0aW9uCi0gSXMg ZGVwZW5kZW50IG9uCiAgIm92ZXJsYXlmczogY2hlY2sgQ0FQX0RBQ19SRUFEX1NFQVJDSCBiZWZv cmUgaXNzdWluZyBleHBvcnRmc19kZWNvZGVfZmgiCiAgIm92ZXJsYXlmczogY2hlY2sgQ0FQX01L Tk9EIGJlZm9yZSBpc3N1aW5nIHZmc193aGl0ZW91dCIKLSBBZGRlZCBwcndhcm4gd2hlbiBvdmVy cmlkZV9jcmVkcz1vZmYKCnY0OgotIHNwZWxsaW5nIGFuZCBncmFtbWFyIGVycm9ycyBpbiB0ZXh0 Cgp2MzoKLSBDaGFuZ2UgbmFtZSBmcm9tIGNhbGxlcl9jcmVkZW50aWFscyAvIGNyZWF0b3JfY3Jl ZGVudGlhbHMgdG8gdGhlCiAgYm9vbGVhbiBvdmVycmlkZV9jcmVkcy4KLSBDaGFuZ2VkIGZyb20g Y3JlYXRvciB0byBtb3VudGVyIGNyZWRlbnRpYWxzLgotIFVwZGF0ZWQgYW5kIGZvcnRpZmllZCB0 aGUgZG9jdW1lbnRhdGlvbi4KLSBBZGRlZCBDT05GSUdfT1ZFUkxBWV9GU19PVkVSUklERV9DUkVE UwoKdjI6Ci0gRm9yd2FyZCBwb3J0IGNoYW5nZWQgYXR0ciB0byBzdGF0LCByZXN1bHRpbmcgaW4g YSBidWlsZCBlcnJvci4KLSBhbHRlcmVkIGNvbW1pdCBtZXNzYWdlLgoKX19fX19fX19fX19fX19f X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fCkxpbnV4IE1URCBkaXNjdXNz aW9uIG1haWxpbmcgbGlzdApodHRwOi8vbGlzdHMuaW5mcmFkZWFkLm9yZy9tYWlsbWFuL2xpc3Rp bmZvL2xpbnV4LW10ZC8K From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org X-Spam-Level: X-Spam-Status: No, score=-6.9 required=3.0 tests=DKIMWL_WL_HIGH,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI, SIGNED_OFF_BY,SPF_HELO_NONE,SPF_PASS,URIBL_BLOCKED,USER_AGENT_GIT autolearn=ham autolearn_force=no version=3.4.0 Received: from mail.kernel.org (mail.kernel.org [198.145.29.99]) by smtp.lore.kernel.org (Postfix) with ESMTP id 9CF14C433FF for ; Wed, 31 Jul 2019 16:58:23 +0000 (UTC) Received: from lists.sourceforge.net (lists.sourceforge.net [216.105.38.7]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.kernel.org (Postfix) with ESMTPS id 64C80206B8; Wed, 31 Jul 2019 16:58:23 +0000 (UTC) Authentication-Results: mail.kernel.org; dkim=pass (1024-bit key) header.d=lists.sourceforge.net header.i=@lists.sourceforge.net header.b="PDKU2B5x"; dkim=fail reason="signature verification failed" (1024-bit key) header.d=sourceforge.net header.i=@sourceforge.net header.b="gAaA6/AN"; dkim=fail reason="signature verification failed" (1024-bit key) header.d=sf.net header.i=@sf.net header.b="mAHj5QUE"; dkim=neutral (0-bit key) header.d=android.com header.i=@android.com header.b="cfX4VNn7" DMARC-Filter: OpenDMARC Filter v1.3.2 mail.kernel.org 64C80206B8 Authentication-Results: mail.kernel.org; dmarc=pass (p=none dis=none) header.from=lists.sourceforge.net Authentication-Results: mail.kernel.org; spf=pass smtp.mailfrom=linux-f2fs-devel-bounces@lists.sourceforge.net DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=lists.sourceforge.net; s=beta; h=Content-Transfer-Encoding:Content-Type:Cc: Reply-To:From:List-Subscribe:List-Help:List-Post:List-Archive: List-Unsubscribe:List-Id:Subject:MIME-Version:Message-Id:Date:To:Sender: Content-ID:Content-Description:Resent-Date:Resent-From:Resent-Sender: Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Owner; bh=2I9RP4Fc8CBiZOzHD/V9kymCSCHcn04e93kSOa/LfEo=; b=PDKU2B5x3DYbtFVbk8PHkJlzGa CtwGCRezz30uJOaTUurUjdUx3WXAmQXC7B6TY5Xksv1j0iFVsnTWoLnJ3MMI2MR8ILyAYmoIScIFW 6JXi1gcI5V87nOJHy1VaQp9KBXTo71SbAHRkiDZp1T71zxxMyFItvUwVGOeERTdxeX0U=; Received: from [127.0.0.1] (helo=sfs-ml-2.v29.lw.sourceforge.com) by sfs-ml-2.v29.lw.sourceforge.com with esmtp (Exim 4.90_1) (envelope-from ) id 1hsrvi-00042d-Ko; Wed, 31 Jul 2019 16:58:22 +0000 Received: from [172.30.20.202] (helo=mx.sourceforge.net) by sfs-ml-2.v29.lw.sourceforge.com with esmtps (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256) (Exim 4.90_1) (envelope-from ) id 1hsrvh-00042W-Hw for linux-f2fs-devel@lists.sourceforge.net; Wed, 31 Jul 2019 16:58:21 +0000 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=sourceforge.net; s=x; h=Content-Transfer-Encoding:Content-Type:MIME-Version :Message-Id:Date:Subject:Cc:To:From:Sender:Reply-To:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:In-Reply-To:References:List-Id:List-Help:List-Unsubscribe: List-Subscribe:List-Post:List-Owner:List-Archive; bh=YkWr+p+vKLuVNlEdLhOL/tn/V0J5xAeOTfzwbmW2id8=; b=gAaA6/AN2PqIzK+8Nyp1f4w2IK q7KdX3rQBi7zDDIpFpzhzCBD/Cq0EWnNktmBp+cS807NAZl2UBZd6NEJWmoTa3AHtobY9c98p5XS7 7AHAQn2ZZ3CMXiOx8LxwiGC91re8MfuEhoVmGaEa6kOxBdFIy34xGQDWbi2P+v+KV4x8=; DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=sf.net; s=x ; h=Content-Transfer-Encoding:Content-Type:MIME-Version:Message-Id:Date: Subject:Cc:To:From:Sender:Reply-To:Content-ID:Content-Description:Resent-Date :Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To: References:List-Id:List-Help:List-Unsubscribe:List-Subscribe:List-Post: List-Owner:List-Archive; bh=YkWr+p+vKLuVNlEdLhOL/tn/V0J5xAeOTfzwbmW2id8=; b=m AHj5QUE9IyGu7+TLzFwRPvGaTqIBtlyVKGydFQvvGkESCjva5n61H/tJS6t+6yd3G5xTJXg60aXDR rjC6+yWnkbMWsIZgDJS1XjCubfxTbHpZCEgw2WZJNpsWYwOhzJRAEpaf87iDoHnHqmOuhsrGHHQSM 2Sk3qDYON3pf4C9s=; Received: from mail-pg1-f193.google.com ([209.85.215.193]) by sfi-mx-4.v28.lw.sourceforge.com with esmtps (TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128) (Exim 4.90_1) id 1hsrvd-005Sd4-AW for linux-f2fs-devel@lists.sourceforge.net; Wed, 31 Jul 2019 16:58:21 +0000 Received: by mail-pg1-f193.google.com with SMTP id u17so32335442pgi.6 for ; Wed, 31 Jul 2019 09:58:17 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=android.com; s=20161025; h=from:to:cc:subject:date:message-id:mime-version :content-transfer-encoding; bh=YkWr+p+vKLuVNlEdLhOL/tn/V0J5xAeOTfzwbmW2id8=; b=cfX4VNn7i5fVUAJEVA4MBhomWV9u/SiICGvW/8hoXIHAFSEgly0mFbnQ+ACtuwiC3g IpRmu1ckKjW2mFtirOT4pZeZvT2dDPhZMzF32ZvoQFr92hPVsLC2dNO3QsACLmwar0UV QGuSfotvuKuTlqK5sSL0gn6Mhis1cY41gMWMYYlYUWkSVqwTLLDgqF7CYEi0YCD1g00b 7XO/I47/oxluNGrRhfkGi6MsDix8d8wmsmYqbtCrJdMXSv2+AjyqFMUYQjA2L9of7CoM 8oMQRrlSd8a/C7QbtWiQIXkLjDxq+jhIt0VkS66EI4A6SO7z2CwCPG6R7kaiAWc0Io97 PoBw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:date:message-id:mime-version :content-transfer-encoding; bh=YkWr+p+vKLuVNlEdLhOL/tn/V0J5xAeOTfzwbmW2id8=; b=GVJ8dttWaC4+VExu76znVKFYg1r9T1LOEog2xLqB0BlGnrbxHsWqXl0I1jqQIo6XwT O32IJiHmmnLrlnwG/p9GivUltVALWZ26/Ya6mIv6lN5TOLcuCFBEuqg6kZwcOaylMBAc B5xBLgiX1qfm6fLdelmuitDIZmODAKddt8qUpx8h4HsEbf8ZqJcA9ialb77gisqs9hJb aGoRS/LSW8lTUf3kh/ybt2XwB3+o+Yrb3cLJPiGZfJQiHnyvqe/QzUjC9vc5xB48Fnrg eSzk8m1Smy7nmp3uOvITFW+83oVbhJ5LnaTksJTbYLhkBjmqTILty7r19jU+ZDssLiOt EuQw== X-Gm-Message-State: APjAAAXMVf9Vaypg/4JhZK4v+O/4uAoESjPfFImsCQqlXjyQfiz69sLY nu6GJd1+pIvohMSUqJ3uUlc= X-Google-Smtp-Source: APXvYqy8vRIpYoYhq+l1XHKOf/Pp65RQkYrvXTYdFcAiznSLIUoJDMNElyzOyLh9v1G4MbxuSIIkEQ== X-Received: by 2002:a17:90a:2041:: with SMTP id n59mr3794829pjc.6.1564592291310; Wed, 31 Jul 2019 09:58:11 -0700 (PDT) Received: from nebulus.mtv.corp.google.com ([2620:15c:211:200:5404:91ba:59dc:9400]) by smtp.gmail.com with ESMTPSA id f72sm2245954pjg.10.2019.07.31.09.58.09 (version=TLS1_3 cipher=AEAD-AES256-GCM-SHA384 bits=256/256); Wed, 31 Jul 2019 09:58:10 -0700 (PDT) To: linux-kernel@vger.kernel.org Date: Wed, 31 Jul 2019 09:57:55 -0700 Message-Id: <20190731165803.4755-1-salyzyn@android.com> X-Mailer: git-send-email 2.22.0.770.g0f2c4a37fd-goog MIME-Version: 1.0 X-Headers-End: 1hsrvd-005Sd4-AW Subject: [f2fs-dev] [PATCH v13 0/5] overlayfs override_creds=off X-BeenThere: linux-f2fs-devel@lists.sourceforge.net X-Mailman-Version: 2.1.21 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , From: Mark Salyzyn via Linux-f2fs-devel Reply-To: Mark Salyzyn Cc: Latchesar Ionkov , Dave Kleikamp , jfs-discussion@lists.sourceforge.net, Randy Dunlap , linux-doc@vger.kernel.org, Martin Brandenburg , samba-technical@lists.samba.org, Dominique Martinet , Amir Goldstein , David Howells , Chris Mason , "David S . Miller" , Andreas Dilger , ocfs2-devel@oss.oracle.com, netdev@vger.kernel.org, Tyler Hicks , linux-afs@lists.infradead.org, Mike Marshall , linux-xfs@vger.kernel.org, Andreas Gruenbacher , Sage Weil , Jonathan Corbet , Richard Weinberger , Mark Fasheh , devel@lists.orangefs.org, Hugh Dickins , linux-security-module@vger.kernel.org, cluster-devel@redhat.com, Vyacheslav Dubeyko , v9fs-developer@lists.sourceforge.net, Ilya Dryomov , linux-ext4@vger.kernel.org, Stephen Smalley , linux-mm@kvack.org, Vivek Goyal , linux-cifs@vger.kernel.org, Eric Van Hensbergen , ecryptfs@vger.kernel.org, Josef Bacik , "Darrick J . Wong" , reiserfs-devel@vger.kernel.org, Tejun Heo , Greg Kroah-Hartman , Joel Becker , linux-mtd@lists.infradead.org, David Sterba , Jaegeuk Kim , ceph-devel@vger.kernel.org, Trond Myklebust , linux-nfs@vger.kernel.org, linux-f2fs-devel@lists.sourceforge.net, Theodore Ts'o , linux-fsdevel@vger.kernel.org, Joseph Qi , Mathieu Malaterre , kernel-team@android.com, Miklos Szeredi , Jeff Layton , linux-unionfs@vger.kernel.org, stable@vger.kernel.org, Mark Salyzyn , Steve French , =?UTF-8?q?Ernesto=20A=20=2E=20Fern=C3=A1ndez?= , "Eric W . Biederman" , Jan Kara , Bob Peterson , Phillip Lougher , Andrew Morton , David Woodhouse , Anna Schumaker , linux-btrfs@vger.kernel.org, Alexander Viro Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: linux-f2fs-devel-bounces@lists.sourceforge.net UGF0Y2ggc2VyaWVzOgoKb3ZlcmxheWZzOiBjaGVjayBDQVBfREFDX1JFQURfU0VBUkNIIGJlZm9y ZSBpc3N1aW5nIGV4cG9ydGZzX2RlY29kZV9maApBZGQgZmxhZ3Mgb3B0aW9uIHRvIGdldCB4YXR0 ciBtZXRob2QgcGFpcmVkIHRvIF9fdmZzX2dldHhhdHRyCm92ZXJsYXlmczogaGFuZGxlIFhBVFRS X05PU0VDVVJJVFkgZmxhZyBmb3IgZ2V0IHhhdHRyIG1ldGhvZApvdmVybGF5ZnM6IGludGVybmFs IGdldHhhdHRyIG9wZXJhdGlvbnMgd2l0aG91dCBzZXBvbGljeSBjaGVja2luZwpvdmVybGF5ZnM6 IG92ZXJyaWRlX2NyZWRzPW9mZiBvcHRpb24gYnlwYXNzIGNyZWF0b3JfY3JlZAoKVGhlIGZpcnN0 IGZvdXIgcGF0Y2hlcyBhZGRyZXNzIGZ1bmRhbWVudGFsIHNlY3VyaXR5IGlzc3VlcyB0aGF0IHNo b3VsZApiZSBzb2x2ZWQgcmVnYXJkbGVzcyBvZiB0aGUgb3ZlcnJpZGVfY3JlZHM9b2ZmIGZlYXR1 cmUuCm9uIHRoZW0pLgoKVGhlIGZpZnRoIGFkZHMgdGhlIGZlYXR1cmUgZGVwZW5kcyBvbiB0aGVz ZSBvdGhlciBmaXhlcy4KCkJ5IGRlZmF1bHQsIGFsbCBhY2Nlc3MgdG8gdGhlIHVwcGVyLCBsb3dl ciBhbmQgd29yayBkaXJlY3RvcmllcyBpcyB0aGUKcmVjb3JkZWQgbW91bnRlcidzIE1BQyBhbmQg REFDIGNyZWRlbnRpYWxzLiAgVGhlIGluY29taW5nIGFjY2Vzc2VzIGFyZQpjaGVja2VkIGFnYWlu c3QgdGhlIGNhbGxlcidzIGNyZWRlbnRpYWxzLgoKSWYgdGhlIHByaW5jaXBsZXMgb2YgbGVhc3Qg cHJpdmlsZWdlIGFyZSBhcHBsaWVkIGZvciBzZXBvbGljeSwgdGhlCm1vdW50ZXIncyBjcmVkZW50 aWFscyBtaWdodCBub3Qgb3ZlcmxhcCB0aGUgY3JlZGVudGlhbHMgb2YgdGhlIGNhbGxlcidzCndo ZW4gYWNjZXNzaW5nIHRoZSBvdmVybGF5ZnMgZmlsZXN5c3RlbS4gIEZvciBleGFtcGxlLCBhIGZp bGUgdGhhdCBhCmxvd2VyIERBQyBwcml2aWxlZ2VkIGNhbGxlciBjYW4gZXhlY3V0ZSwgaXMgTUFD IGRlbmllZCB0byB0aGUKZ2VuZXJhbGx5IGhpZ2hlciBEQUMgcHJpdmlsZWdlZCBtb3VudGVyLCB0 byBwcmV2ZW50IGFuIGF0dGFjayB2ZWN0b3IuCgpXZSBhZGQgdGhlIG9wdGlvbiB0byB0dXJuIG9m ZiBvdmVycmlkZV9jcmVkcyBpbiB0aGUgbW91bnQgb3B0aW9uczsgYWxsCnN1YnNlcXVlbnQgb3Bl cmF0aW9ucyBhZnRlciBtb3VudCBvbiB0aGUgZmlsZXN5c3RlbSB3aWxsIGJlIG9ubHkgdGhlCmNh bGxlcidzIGNyZWRlbnRpYWxzLiAgVGhlIG1vZHVsZSBib29sZWFuIHBhcmFtZXRlciBhbmQgbW91 bnQgb3B0aW9uCm92ZXJyaWRlX2NyZWRzIGlzIGFsc28gYWRkZWQgYXMgYSBwcmVzZW5jZSBjaGVj ayBmb3IgdGhpcyAiZmVhdHVyZSIsCmV4aXN0ZW5jZSBvZiAvc3lzL21vZHVsZS9vdmVybGF5L3Bh cmFtZXRlcnMvb3ZlcmxheV9jcmVkcwoKU2lnbmVkLW9mZi1ieTogTWFyayBTYWx5enluIDxzYWx5 enluQGFuZHJvaWQuY29tPgpDYzogTWlrbG9zIFN6ZXJlZGkgPG1pa2xvc0BzemVyZWRpLmh1PgpD YzogSm9uYXRoYW4gQ29yYmV0IDxjb3JiZXRAbHduLm5ldD4KQ2M6IFZpdmVrIEdveWFsIDx2Z295 YWxAcmVkaGF0LmNvbT4KQ2M6IEVyaWMgVy4gQmllZGVybWFuIDxlYmllZGVybUB4bWlzc2lvbi5j b20+CkNjOiBBbWlyIEdvbGRzdGVpbiA8YW1pcjczaWxAZ21haWwuY29tPgpDYzogUmFuZHkgRHVu bGFwIDxyZHVubGFwQGluZnJhZGVhZC5vcmc+CkNjOiBTdGVwaGVuIFNtYWxsZXkgPHNkc0B0eWNo by5uc2EuZ292PgpDYzogbGludXgtdW5pb25mc0B2Z2VyLmtlcm5lbC5vcmcKQ2M6IGxpbnV4LWRv Y0B2Z2VyLmtlcm5lbC5vcmcKQ2M6IGxpbnV4LWtlcm5lbEB2Z2VyLmtlcm5lbC5vcmcKQ2M6IEVy aWMgVmFuIEhlbnNiZXJnZW4gPGVyaWN2aEBnbWFpbC5jb20+CkNjOiBMYXRjaGVzYXIgSW9ua292 IDxsdWNob0Bpb25rb3YubmV0PgpDYzogRG9taW5pcXVlIE1hcnRpbmV0IDxhc21hZGV1c0Bjb2Rl d3JlY2sub3JnPgpDYzogRGF2aWQgSG93ZWxscyA8ZGhvd2VsbHNAcmVkaGF0LmNvbT4KQ2M6IENo cmlzIE1hc29uIDxjbG1AZmIuY29tPgpDYzogSm9zZWYgQmFjaWsgPGpvc2VmQHRveGljcGFuZGEu Y29tPgpDYzogRGF2aWQgU3RlcmJhIDxkc3RlcmJhQHN1c2UuY29tPgpDYzogSmVmZiBMYXl0b24g PGpsYXl0b25Aa2VybmVsLm9yZz4KQ2M6IFNhZ2UgV2VpbCA8c2FnZUByZWRoYXQuY29tPgpDYzog SWx5YSBEcnlvbW92IDxpZHJ5b21vdkBnbWFpbC5jb20+CkNjOiBTdGV2ZSBGcmVuY2ggPHNmcmVu Y2hAc2FtYmEub3JnPgpDYzogVHlsZXIgSGlja3MgPHR5aGlja3NAY2Fub25pY2FsLmNvbT4KQ2M6 IEphbiBLYXJhIDxqYWNrQHN1c2UuY29tPgpDYzogVGhlb2RvcmUgVHMnbyA8dHl0c29AbWl0LmVk dT4KQ2M6IEFuZHJlYXMgRGlsZ2VyIDxhZGlsZ2VyLmtlcm5lbEBkaWxnZXIuY2E+CkNjOiBKYWVn ZXVrIEtpbSA8amFlZ2V1a0BrZXJuZWwub3JnPgpDYzogQ2hhbyBZdSA8eXVjaGFvMEBodWF3ZWku Y29tPgpDYzogQm9iIFBldGVyc29uIDxycGV0ZXJzb0ByZWRoYXQuY29tPgpDYzogQW5kcmVhcyBH cnVlbmJhY2hlciA8YWdydWVuYmFAcmVkaGF0LmNvbT4KQ2M6IERhdmlkIFdvb2Rob3VzZSA8ZHdt dzJAaW5mcmFkZWFkLm9yZz4KQ2M6IFJpY2hhcmQgV2VpbmJlcmdlciA8cmljaGFyZEBub2QuYXQ+ CkNjOiBEYXZlIEtsZWlrYW1wIDxzaGFnZ3lAa2VybmVsLm9yZz4KQ2M6IEdyZWcgS3JvYWgtSGFy dG1hbiA8Z3JlZ2toQGxpbnV4Zm91bmRhdGlvbi5vcmc+CkNjOiBUZWp1biBIZW8gPHRqQGtlcm5l bC5vcmc+CkNjOiBUcm9uZCBNeWtsZWJ1c3QgPHRyb25kLm15a2xlYnVzdEBoYW1tZXJzcGFjZS5j b20+CkNjOiBBbm5hIFNjaHVtYWtlciA8YW5uYS5zY2h1bWFrZXJAbmV0YXBwLmNvbT4KQ2M6IE1h cmsgRmFzaGVoIDxtYXJrQGZhc2hlaC5jb20+CkNjOiBKb2VsIEJlY2tlciA8amxiZWNAZXZpbHBs YW4ub3JnPgpDYzogSm9zZXBoIFFpIDxqb3NlcGgucWlAbGludXguYWxpYmFiYS5jb20+CkNjOiBN aWtlIE1hcnNoYWxsIDxodWJjYXBAb21uaWJvbmQuY29tPgpDYzogTWFydGluIEJyYW5kZW5idXJn IDxtYXJ0aW5Ab21uaWJvbmQuY29tPgpDYzogQWxleGFuZGVyIFZpcm8gPHZpcm9AemVuaXYubGlu dXgub3JnLnVrPgpDYzogUGhpbGxpcCBMb3VnaGVyIDxwaGlsbGlwQHNxdWFzaGZzLm9yZy51az4K Q2M6IERhcnJpY2sgSi4gV29uZyA8ZGFycmljay53b25nQG9yYWNsZS5jb20+CkNjOiBsaW51eC14 ZnNAdmdlci5rZXJuZWwub3JnCkNjOiBIdWdoIERpY2tpbnMgPGh1Z2hkQGdvb2dsZS5jb20+CkNj OiBEYXZpZCBTLiBNaWxsZXIgPGRhdmVtQGRhdmVtbG9mdC5uZXQ+CkNjOiBBbmRyZXcgTW9ydG9u IDxha3BtQGxpbnV4LWZvdW5kYXRpb24ub3JnPgpDYzogTWF0aGlldSBNYWxhdGVycmUgPG1hbGF0 QGRlYmlhbi5vcmc+CkNjOiBFcm5lc3RvIEEuIEZlcm7DoW5kZXogPGVybmVzdG8ubW5kLmZlcm5h bmRlekBnbWFpbC5jb20+CkNjOiBWeWFjaGVzbGF2IER1YmV5a28gPHNsYXZhQGR1YmV5a28uY29t PgpDYzogdjlmcy1kZXZlbG9wZXJAbGlzdHMuc291cmNlZm9yZ2UubmV0CkNjOiBsaW51eC1hZnNA bGlzdHMuaW5mcmFkZWFkLm9yZwpDYzogbGludXgtYnRyZnNAdmdlci5rZXJuZWwub3JnCkNjOiBj ZXBoLWRldmVsQHZnZXIua2VybmVsLm9yZwpDYzogbGludXgtY2lmc0B2Z2VyLmtlcm5lbC5vcmcK Q2M6IHNhbWJhLXRlY2huaWNhbEBsaXN0cy5zYW1iYS5vcmcKQ2M6IGVjcnlwdGZzQHZnZXIua2Vy bmVsLm9yZwpDYzogbGludXgtZXh0NEB2Z2VyLmtlcm5lbC5vcmcKQ2M6IGxpbnV4LWYyZnMtZGV2 ZWxAbGlzdHMuc291cmNlZm9yZ2UubmV0CkNjOiBsaW51eC1mc2RldmVsQHZnZXIua2VybmVsLm9y ZwpDYzogY2x1c3Rlci1kZXZlbEByZWRoYXQuY29tCkNjOiBsaW51eC1tdGRAbGlzdHMuaW5mcmFk ZWFkLm9yZwpDYzogamZzLWRpc2N1c3Npb25AbGlzdHMuc291cmNlZm9yZ2UubmV0CkNjOiBsaW51 eC1uZnNAdmdlci5rZXJuZWwub3JnCkNjOiBvY2ZzMi1kZXZlbEBvc3Mub3JhY2xlLmNvbQpDYzog ZGV2ZWxAbGlzdHMub3JhbmdlZnMub3JnCkNjOiByZWlzZXJmcy1kZXZlbEB2Z2VyLmtlcm5lbC5v cmcKQ2M6IGxpbnV4LW1tQGt2YWNrLm9yZwpDYzogbmV0ZGV2QHZnZXIua2VybmVsLm9yZwpDYzog bGludXgtc2VjdXJpdHktbW9kdWxlQHZnZXIua2VybmVsLm9yZwpDYzogc3RhYmxlQHZnZXIua2Vy bmVsLm9yZyAjIDQuNCwgNC45LCA0LjE0ICYgNC4xOQotLS0KdjEzOgotIGFkZCBmbGFncyBhcmd1 bWVudCB0byBfX3Zmc19nZXR4YXR0cgotIGRyb3AgR0ZQX05PRlMgc2lkZS1lZmZlY3QKCnYxMjoK LSBSZXN0b3JlIHNxdWlzaGVkIG91dCBwYXRjaCAyIGFuZCAzIGluIHRoZSBzZXJpZXMsCiAgdGhl biBjaGFuZ2UgYWxnb3JpdGhtIHRvIGFkZCBmbGFncyBhcmd1bWVudC4KICBQZXItdGhyZWFkIGZs YWcgaXMgYSBsYXJnZSBzZWN1cml0eSBzdXJmYWNlLgoKdjExOgotIFNxdWlzaCBvdXQgdjEwIGlu dHJvZHVjZWQgcGF0Y2ggMiBhbmQgMyBpbiB0aGUgc2VyaWVzLAogIHRoZW4gYW5kIHVzZSBwZXIt dGhyZWFkIGZsYWcgaW5zdGVhZCBmb3IgbmVzdGluZy4KLSBTd2l0Y2ggbmFtZSB0byBvdmxfZG9f dmRzX2dldHhhdHRyIGZvciBfX3Zkc19nZXR4YXR0ciB3cmFwcGVyLgotIEFkZCBzYiBhcmd1bWVu dCB0byBvdmxfcmV2ZXJ0X2NyZWRzIHRvIG1hdGNoIGZ1dHVyZSB3b3JrLgoKdjEwOgotIFJldHVy biBOVUxMIG9uIENBUF9EQUNfUkVBRF9TRUFSQ0gKLSBBZGQgX19nZXQgeGF0dHIgbWV0aG9kIHRv IHNvbHZlIHNlcG9saWN5IGxvZ2dpbmcgaXNzdWUKLSBEcm9wIHVubmVjZXNzYXJ5IHN5c19hZG1p biBzZXBvbGljeSBjaGVja2luZyBmb3IgYWRtaW5pc3RyYXRpdmUKICBkcml2ZXIgaW50ZXJuYWwg eGF0dHIgZnVuY3Rpb25zLgoKdjY6Ci0gRHJvcCBDT05GSUdfT1ZFUkxBWV9GU19PVkVSUklERV9D UkVEUy4KLSBEbyBiZXR0ZXIgd2l0aCB0aGUgZG9jdW1lbnRhdGlvbiwgZHJvcCByYXRpb25hbGl6 YXRpb25zLgotIHByX3dhcm4gbWVzc2FnZSBhZGp1c3RlZCB0byByZXBvcnQgY29uc2VxdWVuY2Vz LgoKdjU6Ci0gYmVlZmVkIHVwIHRoZSBjYXZlYXRzIGluIHRoZSBEb2N1bWVudGF0aW9uCi0gSXMg ZGVwZW5kZW50IG9uCiAgIm92ZXJsYXlmczogY2hlY2sgQ0FQX0RBQ19SRUFEX1NFQVJDSCBiZWZv cmUgaXNzdWluZyBleHBvcnRmc19kZWNvZGVfZmgiCiAgIm92ZXJsYXlmczogY2hlY2sgQ0FQX01L Tk9EIGJlZm9yZSBpc3N1aW5nIHZmc193aGl0ZW91dCIKLSBBZGRlZCBwcndhcm4gd2hlbiBvdmVy cmlkZV9jcmVkcz1vZmYKCnY0OgotIHNwZWxsaW5nIGFuZCBncmFtbWFyIGVycm9ycyBpbiB0ZXh0 Cgp2MzoKLSBDaGFuZ2UgbmFtZSBmcm9tIGNhbGxlcl9jcmVkZW50aWFscyAvIGNyZWF0b3JfY3Jl ZGVudGlhbHMgdG8gdGhlCiAgYm9vbGVhbiBvdmVycmlkZV9jcmVkcy4KLSBDaGFuZ2VkIGZyb20g Y3JlYXRvciB0byBtb3VudGVyIGNyZWRlbnRpYWxzLgotIFVwZGF0ZWQgYW5kIGZvcnRpZmllZCB0 aGUgZG9jdW1lbnRhdGlvbi4KLSBBZGRlZCBDT05GSUdfT1ZFUkxBWV9GU19PVkVSUklERV9DUkVE UwoKdjI6Ci0gRm9yd2FyZCBwb3J0IGNoYW5nZWQgYXR0ciB0byBzdGF0LCByZXN1bHRpbmcgaW4g YSBidWlsZCBlcnJvci4KLSBhbHRlcmVkIGNvbW1pdCBtZXNzYWdlLgoKCl9fX19fX19fX19fX19f X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fCkxpbnV4LWYyZnMtZGV2ZWwgbWFpbGlu ZyBsaXN0CkxpbnV4LWYyZnMtZGV2ZWxAbGlzdHMuc291cmNlZm9yZ2UubmV0Cmh0dHBzOi8vbGlz dHMuc291cmNlZm9yZ2UubmV0L2xpc3RzL2xpc3RpbmZvL2xpbnV4LWYyZnMtZGV2ZWwK From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org X-Spam-Level: X-Spam-Status: No, score=-6.8 required=3.0 tests=DKIMWL_WL_HIGH,DKIM_SIGNED, DKIM_VALID,HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI,SIGNED_OFF_BY, SPF_HELO_NONE,SPF_PASS,URIBL_BLOCKED,USER_AGENT_GIT autolearn=unavailable autolearn_force=no version=3.4.0 Received: from mail.kernel.org (mail.kernel.org [198.145.29.99]) by smtp.lore.kernel.org (Postfix) with ESMTP id 1587AC32753 for ; Wed, 31 Jul 2019 16:58:42 +0000 (UTC) Received: from bombadil.infradead.org (bombadil.infradead.org [198.137.202.133]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.kernel.org (Postfix) with ESMTPS id 8FA4220C01 for ; Wed, 31 Jul 2019 16:58:41 +0000 (UTC) Authentication-Results: mail.kernel.org; dkim=pass (2048-bit key) header.d=lists.infradead.org header.i=@lists.infradead.org header.b="QK5pzVD5"; dkim=fail reason="signature verification failed" (2048-bit key) header.d=android.com header.i=@android.com header.b="cfX4VNn7" DMARC-Filter: OpenDMARC Filter v1.3.2 mail.kernel.org 8FA4220C01 Authentication-Results: mail.kernel.org; dmarc=fail (p=reject dis=none) header.from=android.com Authentication-Results: mail.kernel.org; spf=none smtp.mailfrom=linux-mtd-bounces+linux-mtd=archiver.kernel.org@lists.infradead.org DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=lists.infradead.org; s=bombadil.20170209; h=Sender: Content-Transfer-Encoding:Content-Type:Cc:List-Subscribe:List-Help:List-Post: List-Archive:List-Unsubscribe:List-Id:MIME-Version:Message-Id:Date:Subject:To :From:Reply-To:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References: List-Owner; bh=nm7ya+0GOlHnYI6uJnS1W4YhlopjKfKMAxf0Ku79lZ0=; b=QK5pzVD5hXlUr5 ErAgmh0cKq902As15aQMvsLwDIHyJFb2eph36J8vvKbyBeRZp17KsH9fd6ytpkZWHhvtTlnCT8peH qHcPaqUQJ4g0s8CBDDsm6hfT9qXLMtAPJxizroInRVlqhdl88KMeIL7FRlh7KLAPRLWXoETyi3b4s EFckF31hmSYc+kv/uEdM2JF1//McUN//WDVM0baIRMFo5MsHHIgo+Sx9G7PKAV+Jl8MPT90MAhmal +zfsk4fIcNMGUSPCBbG2QgOYSGP/1YxCvfqtxYvQaBOBipzu0pqixOlvodW7HOfZvivl5BkRQaVq1 kt7Hzid19pe0VtwzCZRw==; Received: from localhost ([127.0.0.1] helo=bombadil.infradead.org) by bombadil.infradead.org with esmtp (Exim 4.92 #3 (Red Hat Linux)) id 1hsrve-000776-40; Wed, 31 Jul 2019 16:58:18 +0000 Received: from mail-pg1-x543.google.com ([2607:f8b0:4864:20::543]) by bombadil.infradead.org with esmtps (Exim 4.92 #3 (Red Hat Linux)) id 1hsrvY-00076M-G6 for linux-mtd@lists.infradead.org; Wed, 31 Jul 2019 16:58:14 +0000 Received: by mail-pg1-x543.google.com with SMTP id n190so894040pgn.0 for ; Wed, 31 Jul 2019 09:58:12 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=android.com; s=20161025; h=from:to:cc:subject:date:message-id:mime-version :content-transfer-encoding; bh=YkWr+p+vKLuVNlEdLhOL/tn/V0J5xAeOTfzwbmW2id8=; b=cfX4VNn7i5fVUAJEVA4MBhomWV9u/SiICGvW/8hoXIHAFSEgly0mFbnQ+ACtuwiC3g IpRmu1ckKjW2mFtirOT4pZeZvT2dDPhZMzF32ZvoQFr92hPVsLC2dNO3QsACLmwar0UV QGuSfotvuKuTlqK5sSL0gn6Mhis1cY41gMWMYYlYUWkSVqwTLLDgqF7CYEi0YCD1g00b 7XO/I47/oxluNGrRhfkGi6MsDix8d8wmsmYqbtCrJdMXSv2+AjyqFMUYQjA2L9of7CoM 8oMQRrlSd8a/C7QbtWiQIXkLjDxq+jhIt0VkS66EI4A6SO7z2CwCPG6R7kaiAWc0Io97 PoBw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:date:message-id:mime-version :content-transfer-encoding; bh=YkWr+p+vKLuVNlEdLhOL/tn/V0J5xAeOTfzwbmW2id8=; b=sGwJuKLZAqU6k9oCW3x+a+aauj33STf5tC5hPm/S9MGYHLudP1qlftXBDIGQa4IPfW JlWZjew7BE1ai5Jta6KMOhkUzAfLM2y1jf/OWUZqSD3Jr7FGAWLQp7kSu59LFWRJvd0/ gVaHbiq3nOjXo8OYz4MNm6JXAlwxJGj4sVfdOTLtFA6aTJS82U00BDDlZYf6TQwa6RA/ 6j1k6h2+W4loWAmqMAhE2J0+mIkHHM3eQk0mpP9uuB8shBEpp1TWloJAUx9VV9M2hvwO gHKve2Dl+TpldOxs5d7DZRuDqt1mOslZYr5i+KDz+bTPY9GUGw/ShJ34yYUdfTkKFp2B U1zQ== X-Gm-Message-State: APjAAAUTJXWJHpxmqjCNKsIXfywKKpkn8iN8r5L8a4pJGSV1SGoJIYwY rhP51w39KxZDeQSi0wXRVRE= X-Google-Smtp-Source: APXvYqy8vRIpYoYhq+l1XHKOf/Pp65RQkYrvXTYdFcAiznSLIUoJDMNElyzOyLh9v1G4MbxuSIIkEQ== X-Received: by 2002:a17:90a:2041:: with SMTP id n59mr3794829pjc.6.1564592291310; Wed, 31 Jul 2019 09:58:11 -0700 (PDT) Received: from nebulus.mtv.corp.google.com ([2620:15c:211:200:5404:91ba:59dc:9400]) by smtp.gmail.com with ESMTPSA id f72sm2245954pjg.10.2019.07.31.09.58.09 (version=TLS1_3 cipher=AEAD-AES256-GCM-SHA384 bits=256/256); Wed, 31 Jul 2019 09:58:10 -0700 (PDT) From: Mark Salyzyn To: linux-kernel@vger.kernel.org Subject: [PATCH v13 0/5] overlayfs override_creds=off Date: Wed, 31 Jul 2019 09:57:55 -0700 Message-Id: <20190731165803.4755-1-salyzyn@android.com> X-Mailer: git-send-email 2.22.0.770.g0f2c4a37fd-goog MIME-Version: 1.0 X-CRM114-Version: 20100106-BlameMichelson ( TRE 0.8.0 (BSD) ) MR-646709E3 X-CRM114-CacheID: sfid-20190731_095812_562267_6ADB563D X-CRM114-Status: GOOD ( 14.30 ) X-BeenThere: linux-mtd@lists.infradead.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Linux MTD discussion mailing list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Cc: Latchesar Ionkov , Dave Kleikamp , jfs-discussion@lists.sourceforge.net, Randy Dunlap , linux-doc@vger.kernel.org, Martin Brandenburg , samba-technical@lists.samba.org, Dominique Martinet , Amir Goldstein , David Howells , Chris Mason , "David S . Miller" , Andreas Dilger , ocfs2-devel@oss.oracle.com, netdev@vger.kernel.org, Tyler Hicks , linux-afs@lists.infradead.org, Mike Marshall , linux-xfs@vger.kernel.org, Andreas Gruenbacher , Sage Weil , Jonathan Corbet , Richard Weinberger , Mark Fasheh , devel@lists.orangefs.org, Hugh Dickins , linux-security-module@vger.kernel.org, cluster-devel@redhat.com, Vyacheslav Dubeyko , v9fs-developer@lists.sourceforge.net, Ilya Dryomov , linux-ext4@vger.kernel.org, Stephen Smalley , linux-mm@kvack.org, Vivek Goyal , Chao Yu , linux-cifs@vger.kernel.org, Eric Van Hensbergen , ecryptfs@vger.kernel.org, Josef Bacik , "Darrick J . Wong" , reiserfs-devel@vger.kernel.org, Tejun Heo , Greg Kroah-Hartman , Joel Becker , linux-mtd@lists.infradead.org, David Sterba , Jaegeuk Kim , ceph-devel@vger.kernel.org, Trond Myklebust , linux-nfs@vger.kernel.org, linux-f2fs-devel@lists.sourceforge.net, Theodore Ts'o , linux-fsdevel@vger.kernel.org, Joseph Qi , Mathieu Malaterre , kernel-team@android.com, Miklos Szeredi , Jeff Layton , linux-unionfs@vger.kernel.org, stable@vger.kernel.org, Mark Salyzyn , Steve French , =?UTF-8?q?Ernesto=20A=20=2E=20Fern=C3=A1ndez?= , "Eric W . Biederman" , Jan Kara , Bob Peterson , Phillip Lougher , Andrew Morton , David Woodhouse , Anna Schumaker , linux-btrfs@vger.kernel.org, Alexander Viro Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Sender: "linux-mtd" Errors-To: linux-mtd-bounces+linux-mtd=archiver.kernel.org@lists.infradead.org UGF0Y2ggc2VyaWVzOgoKb3ZlcmxheWZzOiBjaGVjayBDQVBfREFDX1JFQURfU0VBUkNIIGJlZm9y ZSBpc3N1aW5nIGV4cG9ydGZzX2RlY29kZV9maApBZGQgZmxhZ3Mgb3B0aW9uIHRvIGdldCB4YXR0 ciBtZXRob2QgcGFpcmVkIHRvIF9fdmZzX2dldHhhdHRyCm92ZXJsYXlmczogaGFuZGxlIFhBVFRS X05PU0VDVVJJVFkgZmxhZyBmb3IgZ2V0IHhhdHRyIG1ldGhvZApvdmVybGF5ZnM6IGludGVybmFs IGdldHhhdHRyIG9wZXJhdGlvbnMgd2l0aG91dCBzZXBvbGljeSBjaGVja2luZwpvdmVybGF5ZnM6 IG92ZXJyaWRlX2NyZWRzPW9mZiBvcHRpb24gYnlwYXNzIGNyZWF0b3JfY3JlZAoKVGhlIGZpcnN0 IGZvdXIgcGF0Y2hlcyBhZGRyZXNzIGZ1bmRhbWVudGFsIHNlY3VyaXR5IGlzc3VlcyB0aGF0IHNo b3VsZApiZSBzb2x2ZWQgcmVnYXJkbGVzcyBvZiB0aGUgb3ZlcnJpZGVfY3JlZHM9b2ZmIGZlYXR1 cmUuCm9uIHRoZW0pLgoKVGhlIGZpZnRoIGFkZHMgdGhlIGZlYXR1cmUgZGVwZW5kcyBvbiB0aGVz ZSBvdGhlciBmaXhlcy4KCkJ5IGRlZmF1bHQsIGFsbCBhY2Nlc3MgdG8gdGhlIHVwcGVyLCBsb3dl ciBhbmQgd29yayBkaXJlY3RvcmllcyBpcyB0aGUKcmVjb3JkZWQgbW91bnRlcidzIE1BQyBhbmQg REFDIGNyZWRlbnRpYWxzLiAgVGhlIGluY29taW5nIGFjY2Vzc2VzIGFyZQpjaGVja2VkIGFnYWlu c3QgdGhlIGNhbGxlcidzIGNyZWRlbnRpYWxzLgoKSWYgdGhlIHByaW5jaXBsZXMgb2YgbGVhc3Qg cHJpdmlsZWdlIGFyZSBhcHBsaWVkIGZvciBzZXBvbGljeSwgdGhlCm1vdW50ZXIncyBjcmVkZW50 aWFscyBtaWdodCBub3Qgb3ZlcmxhcCB0aGUgY3JlZGVudGlhbHMgb2YgdGhlIGNhbGxlcidzCndo ZW4gYWNjZXNzaW5nIHRoZSBvdmVybGF5ZnMgZmlsZXN5c3RlbS4gIEZvciBleGFtcGxlLCBhIGZp bGUgdGhhdCBhCmxvd2VyIERBQyBwcml2aWxlZ2VkIGNhbGxlciBjYW4gZXhlY3V0ZSwgaXMgTUFD IGRlbmllZCB0byB0aGUKZ2VuZXJhbGx5IGhpZ2hlciBEQUMgcHJpdmlsZWdlZCBtb3VudGVyLCB0 byBwcmV2ZW50IGFuIGF0dGFjayB2ZWN0b3IuCgpXZSBhZGQgdGhlIG9wdGlvbiB0byB0dXJuIG9m ZiBvdmVycmlkZV9jcmVkcyBpbiB0aGUgbW91bnQgb3B0aW9uczsgYWxsCnN1YnNlcXVlbnQgb3Bl cmF0aW9ucyBhZnRlciBtb3VudCBvbiB0aGUgZmlsZXN5c3RlbSB3aWxsIGJlIG9ubHkgdGhlCmNh bGxlcidzIGNyZWRlbnRpYWxzLiAgVGhlIG1vZHVsZSBib29sZWFuIHBhcmFtZXRlciBhbmQgbW91 bnQgb3B0aW9uCm92ZXJyaWRlX2NyZWRzIGlzIGFsc28gYWRkZWQgYXMgYSBwcmVzZW5jZSBjaGVj ayBmb3IgdGhpcyAiZmVhdHVyZSIsCmV4aXN0ZW5jZSBvZiAvc3lzL21vZHVsZS9vdmVybGF5L3Bh cmFtZXRlcnMvb3ZlcmxheV9jcmVkcwoKU2lnbmVkLW9mZi1ieTogTWFyayBTYWx5enluIDxzYWx5 enluQGFuZHJvaWQuY29tPgpDYzogTWlrbG9zIFN6ZXJlZGkgPG1pa2xvc0BzemVyZWRpLmh1PgpD YzogSm9uYXRoYW4gQ29yYmV0IDxjb3JiZXRAbHduLm5ldD4KQ2M6IFZpdmVrIEdveWFsIDx2Z295 YWxAcmVkaGF0LmNvbT4KQ2M6IEVyaWMgVy4gQmllZGVybWFuIDxlYmllZGVybUB4bWlzc2lvbi5j b20+CkNjOiBBbWlyIEdvbGRzdGVpbiA8YW1pcjczaWxAZ21haWwuY29tPgpDYzogUmFuZHkgRHVu bGFwIDxyZHVubGFwQGluZnJhZGVhZC5vcmc+CkNjOiBTdGVwaGVuIFNtYWxsZXkgPHNkc0B0eWNo by5uc2EuZ292PgpDYzogbGludXgtdW5pb25mc0B2Z2VyLmtlcm5lbC5vcmcKQ2M6IGxpbnV4LWRv Y0B2Z2VyLmtlcm5lbC5vcmcKQ2M6IGxpbnV4LWtlcm5lbEB2Z2VyLmtlcm5lbC5vcmcKQ2M6IEVy aWMgVmFuIEhlbnNiZXJnZW4gPGVyaWN2aEBnbWFpbC5jb20+CkNjOiBMYXRjaGVzYXIgSW9ua292 IDxsdWNob0Bpb25rb3YubmV0PgpDYzogRG9taW5pcXVlIE1hcnRpbmV0IDxhc21hZGV1c0Bjb2Rl d3JlY2sub3JnPgpDYzogRGF2aWQgSG93ZWxscyA8ZGhvd2VsbHNAcmVkaGF0LmNvbT4KQ2M6IENo cmlzIE1hc29uIDxjbG1AZmIuY29tPgpDYzogSm9zZWYgQmFjaWsgPGpvc2VmQHRveGljcGFuZGEu Y29tPgpDYzogRGF2aWQgU3RlcmJhIDxkc3RlcmJhQHN1c2UuY29tPgpDYzogSmVmZiBMYXl0b24g PGpsYXl0b25Aa2VybmVsLm9yZz4KQ2M6IFNhZ2UgV2VpbCA8c2FnZUByZWRoYXQuY29tPgpDYzog SWx5YSBEcnlvbW92IDxpZHJ5b21vdkBnbWFpbC5jb20+CkNjOiBTdGV2ZSBGcmVuY2ggPHNmcmVu Y2hAc2FtYmEub3JnPgpDYzogVHlsZXIgSGlja3MgPHR5aGlja3NAY2Fub25pY2FsLmNvbT4KQ2M6 IEphbiBLYXJhIDxqYWNrQHN1c2UuY29tPgpDYzogVGhlb2RvcmUgVHMnbyA8dHl0c29AbWl0LmVk dT4KQ2M6IEFuZHJlYXMgRGlsZ2VyIDxhZGlsZ2VyLmtlcm5lbEBkaWxnZXIuY2E+CkNjOiBKYWVn ZXVrIEtpbSA8amFlZ2V1a0BrZXJuZWwub3JnPgpDYzogQ2hhbyBZdSA8eXVjaGFvMEBodWF3ZWku Y29tPgpDYzogQm9iIFBldGVyc29uIDxycGV0ZXJzb0ByZWRoYXQuY29tPgpDYzogQW5kcmVhcyBH cnVlbmJhY2hlciA8YWdydWVuYmFAcmVkaGF0LmNvbT4KQ2M6IERhdmlkIFdvb2Rob3VzZSA8ZHdt dzJAaW5mcmFkZWFkLm9yZz4KQ2M6IFJpY2hhcmQgV2VpbmJlcmdlciA8cmljaGFyZEBub2QuYXQ+ CkNjOiBEYXZlIEtsZWlrYW1wIDxzaGFnZ3lAa2VybmVsLm9yZz4KQ2M6IEdyZWcgS3JvYWgtSGFy dG1hbiA8Z3JlZ2toQGxpbnV4Zm91bmRhdGlvbi5vcmc+CkNjOiBUZWp1biBIZW8gPHRqQGtlcm5l bC5vcmc+CkNjOiBUcm9uZCBNeWtsZWJ1c3QgPHRyb25kLm15a2xlYnVzdEBoYW1tZXJzcGFjZS5j b20+CkNjOiBBbm5hIFNjaHVtYWtlciA8YW5uYS5zY2h1bWFrZXJAbmV0YXBwLmNvbT4KQ2M6IE1h cmsgRmFzaGVoIDxtYXJrQGZhc2hlaC5jb20+CkNjOiBKb2VsIEJlY2tlciA8amxiZWNAZXZpbHBs YW4ub3JnPgpDYzogSm9zZXBoIFFpIDxqb3NlcGgucWlAbGludXguYWxpYmFiYS5jb20+CkNjOiBN aWtlIE1hcnNoYWxsIDxodWJjYXBAb21uaWJvbmQuY29tPgpDYzogTWFydGluIEJyYW5kZW5idXJn IDxtYXJ0aW5Ab21uaWJvbmQuY29tPgpDYzogQWxleGFuZGVyIFZpcm8gPHZpcm9AemVuaXYubGlu dXgub3JnLnVrPgpDYzogUGhpbGxpcCBMb3VnaGVyIDxwaGlsbGlwQHNxdWFzaGZzLm9yZy51az4K Q2M6IERhcnJpY2sgSi4gV29uZyA8ZGFycmljay53b25nQG9yYWNsZS5jb20+CkNjOiBsaW51eC14 ZnNAdmdlci5rZXJuZWwub3JnCkNjOiBIdWdoIERpY2tpbnMgPGh1Z2hkQGdvb2dsZS5jb20+CkNj OiBEYXZpZCBTLiBNaWxsZXIgPGRhdmVtQGRhdmVtbG9mdC5uZXQ+CkNjOiBBbmRyZXcgTW9ydG9u IDxha3BtQGxpbnV4LWZvdW5kYXRpb24ub3JnPgpDYzogTWF0aGlldSBNYWxhdGVycmUgPG1hbGF0 QGRlYmlhbi5vcmc+CkNjOiBFcm5lc3RvIEEuIEZlcm7DoW5kZXogPGVybmVzdG8ubW5kLmZlcm5h bmRlekBnbWFpbC5jb20+CkNjOiBWeWFjaGVzbGF2IER1YmV5a28gPHNsYXZhQGR1YmV5a28uY29t PgpDYzogdjlmcy1kZXZlbG9wZXJAbGlzdHMuc291cmNlZm9yZ2UubmV0CkNjOiBsaW51eC1hZnNA bGlzdHMuaW5mcmFkZWFkLm9yZwpDYzogbGludXgtYnRyZnNAdmdlci5rZXJuZWwub3JnCkNjOiBj ZXBoLWRldmVsQHZnZXIua2VybmVsLm9yZwpDYzogbGludXgtY2lmc0B2Z2VyLmtlcm5lbC5vcmcK Q2M6IHNhbWJhLXRlY2huaWNhbEBsaXN0cy5zYW1iYS5vcmcKQ2M6IGVjcnlwdGZzQHZnZXIua2Vy bmVsLm9yZwpDYzogbGludXgtZXh0NEB2Z2VyLmtlcm5lbC5vcmcKQ2M6IGxpbnV4LWYyZnMtZGV2 ZWxAbGlzdHMuc291cmNlZm9yZ2UubmV0CkNjOiBsaW51eC1mc2RldmVsQHZnZXIua2VybmVsLm9y ZwpDYzogY2x1c3Rlci1kZXZlbEByZWRoYXQuY29tCkNjOiBsaW51eC1tdGRAbGlzdHMuaW5mcmFk ZWFkLm9yZwpDYzogamZzLWRpc2N1c3Npb25AbGlzdHMuc291cmNlZm9yZ2UubmV0CkNjOiBsaW51 eC1uZnNAdmdlci5rZXJuZWwub3JnCkNjOiBvY2ZzMi1kZXZlbEBvc3Mub3JhY2xlLmNvbQpDYzog ZGV2ZWxAbGlzdHMub3JhbmdlZnMub3JnCkNjOiByZWlzZXJmcy1kZXZlbEB2Z2VyLmtlcm5lbC5v cmcKQ2M6IGxpbnV4LW1tQGt2YWNrLm9yZwpDYzogbmV0ZGV2QHZnZXIua2VybmVsLm9yZwpDYzog bGludXgtc2VjdXJpdHktbW9kdWxlQHZnZXIua2VybmVsLm9yZwpDYzogc3RhYmxlQHZnZXIua2Vy bmVsLm9yZyAjIDQuNCwgNC45LCA0LjE0ICYgNC4xOQotLS0KdjEzOgotIGFkZCBmbGFncyBhcmd1 bWVudCB0byBfX3Zmc19nZXR4YXR0cgotIGRyb3AgR0ZQX05PRlMgc2lkZS1lZmZlY3QKCnYxMjoK LSBSZXN0b3JlIHNxdWlzaGVkIG91dCBwYXRjaCAyIGFuZCAzIGluIHRoZSBzZXJpZXMsCiAgdGhl biBjaGFuZ2UgYWxnb3JpdGhtIHRvIGFkZCBmbGFncyBhcmd1bWVudC4KICBQZXItdGhyZWFkIGZs YWcgaXMgYSBsYXJnZSBzZWN1cml0eSBzdXJmYWNlLgoKdjExOgotIFNxdWlzaCBvdXQgdjEwIGlu dHJvZHVjZWQgcGF0Y2ggMiBhbmQgMyBpbiB0aGUgc2VyaWVzLAogIHRoZW4gYW5kIHVzZSBwZXIt dGhyZWFkIGZsYWcgaW5zdGVhZCBmb3IgbmVzdGluZy4KLSBTd2l0Y2ggbmFtZSB0byBvdmxfZG9f dmRzX2dldHhhdHRyIGZvciBfX3Zkc19nZXR4YXR0ciB3cmFwcGVyLgotIEFkZCBzYiBhcmd1bWVu dCB0byBvdmxfcmV2ZXJ0X2NyZWRzIHRvIG1hdGNoIGZ1dHVyZSB3b3JrLgoKdjEwOgotIFJldHVy biBOVUxMIG9uIENBUF9EQUNfUkVBRF9TRUFSQ0gKLSBBZGQgX19nZXQgeGF0dHIgbWV0aG9kIHRv IHNvbHZlIHNlcG9saWN5IGxvZ2dpbmcgaXNzdWUKLSBEcm9wIHVubmVjZXNzYXJ5IHN5c19hZG1p biBzZXBvbGljeSBjaGVja2luZyBmb3IgYWRtaW5pc3RyYXRpdmUKICBkcml2ZXIgaW50ZXJuYWwg eGF0dHIgZnVuY3Rpb25zLgoKdjY6Ci0gRHJvcCBDT05GSUdfT1ZFUkxBWV9GU19PVkVSUklERV9D UkVEUy4KLSBEbyBiZXR0ZXIgd2l0aCB0aGUgZG9jdW1lbnRhdGlvbiwgZHJvcCByYXRpb25hbGl6 YXRpb25zLgotIHByX3dhcm4gbWVzc2FnZSBhZGp1c3RlZCB0byByZXBvcnQgY29uc2VxdWVuY2Vz LgoKdjU6Ci0gYmVlZmVkIHVwIHRoZSBjYXZlYXRzIGluIHRoZSBEb2N1bWVudGF0aW9uCi0gSXMg ZGVwZW5kZW50IG9uCiAgIm92ZXJsYXlmczogY2hlY2sgQ0FQX0RBQ19SRUFEX1NFQVJDSCBiZWZv cmUgaXNzdWluZyBleHBvcnRmc19kZWNvZGVfZmgiCiAgIm92ZXJsYXlmczogY2hlY2sgQ0FQX01L Tk9EIGJlZm9yZSBpc3N1aW5nIHZmc193aGl0ZW91dCIKLSBBZGRlZCBwcndhcm4gd2hlbiBvdmVy cmlkZV9jcmVkcz1vZmYKCnY0OgotIHNwZWxsaW5nIGFuZCBncmFtbWFyIGVycm9ycyBpbiB0ZXh0 Cgp2MzoKLSBDaGFuZ2UgbmFtZSBmcm9tIGNhbGxlcl9jcmVkZW50aWFscyAvIGNyZWF0b3JfY3Jl ZGVudGlhbHMgdG8gdGhlCiAgYm9vbGVhbiBvdmVycmlkZV9jcmVkcy4KLSBDaGFuZ2VkIGZyb20g Y3JlYXRvciB0byBtb3VudGVyIGNyZWRlbnRpYWxzLgotIFVwZGF0ZWQgYW5kIGZvcnRpZmllZCB0 aGUgZG9jdW1lbnRhdGlvbi4KLSBBZGRlZCBDT05GSUdfT1ZFUkxBWV9GU19PVkVSUklERV9DUkVE UwoKdjI6Ci0gRm9yd2FyZCBwb3J0IGNoYW5nZWQgYXR0ciB0byBzdGF0LCByZXN1bHRpbmcgaW4g YSBidWlsZCBlcnJvci4KLSBhbHRlcmVkIGNvbW1pdCBtZXNzYWdlLgoKX19fX19fX19fX19fX19f X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fCkxpbnV4IE1URCBkaXNjdXNz aW9uIG1haWxpbmcgbGlzdApodHRwOi8vbGlzdHMuaW5mcmFkZWFkLm9yZy9tYWlsbWFuL2xpc3Rp bmZvL2xpbnV4LW10ZC8K From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org X-Spam-Level: X-Spam-Status: No, score=-6.9 required=3.0 tests=DKIMWL_WL_HIGH,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI, SIGNED_OFF_BY,SPF_HELO_NONE,SPF_PASS,URIBL_BLOCKED,USER_AGENT_GIT autolearn=ham autolearn_force=no version=3.4.0 Received: from mail.kernel.org (mail.kernel.org [198.145.29.99]) by smtp.lore.kernel.org (Postfix) with ESMTP id 08E55C32751 for ; Wed, 31 Jul 2019 16:58:15 +0000 (UTC) Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17]) by mail.kernel.org (Postfix) with ESMTP id B29CE206B8 for ; Wed, 31 Jul 2019 16:58:14 +0000 (UTC) Authentication-Results: mail.kernel.org; dkim=pass (2048-bit key) header.d=android.com header.i=@android.com header.b="cfX4VNn7" DMARC-Filter: OpenDMARC Filter v1.3.2 mail.kernel.org B29CE206B8 Authentication-Results: mail.kernel.org; dmarc=fail (p=reject dis=none) header.from=android.com Authentication-Results: mail.kernel.org; spf=pass smtp.mailfrom=owner-linux-mm@kvack.org Received: by kanga.kvack.org (Postfix) id 345EE8E0003; Wed, 31 Jul 2019 12:58:14 -0400 (EDT) Received: by kanga.kvack.org (Postfix, from userid 40) id 2F6A18E0001; Wed, 31 Jul 2019 12:58:14 -0400 (EDT) X-Delivered-To: int-list-linux-mm@kvack.org Received: by kanga.kvack.org (Postfix, from userid 63042) id 198208E0003; Wed, 31 Jul 2019 12:58:14 -0400 (EDT) X-Delivered-To: linux-mm@kvack.org Received: from mail-pg1-f197.google.com (mail-pg1-f197.google.com [209.85.215.197]) by kanga.kvack.org (Postfix) with ESMTP id D7F318E0001 for ; Wed, 31 Jul 2019 12:58:13 -0400 (EDT) Received: by mail-pg1-f197.google.com with SMTP id h3so43233762pgc.19 for ; Wed, 31 Jul 2019 09:58:13 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:dkim-signature:from:to:cc:subject:date :message-id:mime-version:content-transfer-encoding; bh=YkWr+p+vKLuVNlEdLhOL/tn/V0J5xAeOTfzwbmW2id8=; b=qRaAjajXwEbGPiPnCoVOP1TgL4wfQOERvWM98rF/f5T1V38kfsWtocx1sBd4aSMHwl 9PQPsOguT7TV4Zr9TUIXygKiqvO38Ugx3Fc4iuvwtOPLAm4DYwU8z8xU4df2pRmql+nh TqAefQsZEjsAjPPN0zDawiN81lxVGh0uPEX4pLsJ3KEO+DuO/wFWqRAxK+8VKO1Usw6z tsTUxfR7S+/na39yYHD5rRVCIIWlBB19aP6tzwNmjxzya1/UXnCR/7kNDubGFk1u2KgJ Km9mftVWJGwtEs+nmX3Wd0gXvLO1tsPtsr+56NXCBt6F6cODMPkmovP5lJUZBwBs38rw WQpw== X-Gm-Message-State: APjAAAV5/G7JW1uksBvwlTkYVXiY02gafmQe9Y3q0THtLBOYbz8UpAGh QusCkQGghnSUGQwEsI52fiTzpmsd8nxKwmH62fYdLyWBqL4ceIm2FPabTilhV7Zi3RtPv/tSPzt aB/gT1MAsLVL9pxY09zWXIKwKgSvTAGz6lmnLul1OigIfTmWIsMuH9Em6dYYjdmzxjw== X-Received: by 2002:a17:90a:2488:: with SMTP id i8mr3817080pje.123.1564592293354; Wed, 31 Jul 2019 09:58:13 -0700 (PDT) X-Received: by 2002:a17:90a:2488:: with SMTP id i8mr3817015pje.123.1564592291953; Wed, 31 Jul 2019 09:58:11 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1564592291; cv=none; d=google.com; s=arc-20160816; b=OIFjD2g9+ArpOe0nVD/uTP1MZ2GC+V1RYC/bLfTunVF3aQFXHE48j5/JzYpO4YF59E 2oIyG3cTO5ZRsoUSKWlKJZZ/q7bNc7asIsQIgVXj4N7EW8OeDwMattXUkYsr6LEFDwcR RriAiCPhEl7Wgmy7u/ZPxf2po81T2b693/sn57H9pfuaaf2PR2eQJn94C94Q4FeYe+Vr w5KCXLAkxNfCLdVV1ZvkwdR9Dm+coakov8+CdAlqEWcy4f+lYXnfGvKydDuLT1oPNq6z u7DQMlxpSFUJm4V/YdUbVUhZbpktZ4JwvD0ycIid5lEk0kE/yo6tniuPDd+oS5+MXlhi gSBA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=content-transfer-encoding:mime-version:message-id:date:subject:cc :to:from:dkim-signature; bh=YkWr+p+vKLuVNlEdLhOL/tn/V0J5xAeOTfzwbmW2id8=; b=pUQ6wyxvrfr9hcWcY4St1kKrbo3tR3rJeqCCDvI52WevkFoJIWjaEEe/dXUpfu/NI2 fNch9xN3EyFgorZQOT+oKHV6QAvBiN4qefBVZpUaOowVO69p8WtH2sRublrZijupvaE6 +WE4jSGqk8qz39wFsf+MSE8wOArNk5BPul4Qe7pFtNdnLYtoxx4YIuHyrllJGwIFV0nt XMi7ch0aqZysKn56/KYOJVzquOXjSzL0O6Du2vZBccWIUFNETHOkqGRU8z9ryqWJULhz xutlLv9aDMqcfIcamPYkPivEzFPvX1S3elUiyobBdie/cJylgw1VmcXj/VfvRcwHskmI lOZA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@android.com header.s=20161025 header.b=cfX4VNn7; spf=pass (google.com: domain of salyzyn@android.com designates 209.85.220.65 as permitted sender) smtp.mailfrom=salyzyn@android.com; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=android.com Received: from mail-sor-f65.google.com (mail-sor-f65.google.com. [209.85.220.65]) by mx.google.com with SMTPS id ca12sor2885175pjb.6.2019.07.31.09.58.11 for (Google Transport Security); Wed, 31 Jul 2019 09:58:11 -0700 (PDT) Received-SPF: pass (google.com: domain of salyzyn@android.com designates 209.85.220.65 as permitted sender) client-ip=209.85.220.65; Authentication-Results: mx.google.com; dkim=pass header.i=@android.com header.s=20161025 header.b=cfX4VNn7; spf=pass (google.com: domain of salyzyn@android.com designates 209.85.220.65 as permitted sender) smtp.mailfrom=salyzyn@android.com; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=android.com DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=android.com; s=20161025; h=from:to:cc:subject:date:message-id:mime-version :content-transfer-encoding; bh=YkWr+p+vKLuVNlEdLhOL/tn/V0J5xAeOTfzwbmW2id8=; b=cfX4VNn7i5fVUAJEVA4MBhomWV9u/SiICGvW/8hoXIHAFSEgly0mFbnQ+ACtuwiC3g IpRmu1ckKjW2mFtirOT4pZeZvT2dDPhZMzF32ZvoQFr92hPVsLC2dNO3QsACLmwar0UV QGuSfotvuKuTlqK5sSL0gn6Mhis1cY41gMWMYYlYUWkSVqwTLLDgqF7CYEi0YCD1g00b 7XO/I47/oxluNGrRhfkGi6MsDix8d8wmsmYqbtCrJdMXSv2+AjyqFMUYQjA2L9of7CoM 8oMQRrlSd8a/C7QbtWiQIXkLjDxq+jhIt0VkS66EI4A6SO7z2CwCPG6R7kaiAWc0Io97 PoBw== X-Google-Smtp-Source: APXvYqy8vRIpYoYhq+l1XHKOf/Pp65RQkYrvXTYdFcAiznSLIUoJDMNElyzOyLh9v1G4MbxuSIIkEQ== X-Received: by 2002:a17:90a:2041:: with SMTP id n59mr3794829pjc.6.1564592291310; Wed, 31 Jul 2019 09:58:11 -0700 (PDT) Received: from nebulus.mtv.corp.google.com ([2620:15c:211:200:5404:91ba:59dc:9400]) by smtp.gmail.com with ESMTPSA id f72sm2245954pjg.10.2019.07.31.09.58.09 (version=TLS1_3 cipher=AEAD-AES256-GCM-SHA384 bits=256/256); Wed, 31 Jul 2019 09:58:10 -0700 (PDT) From: Mark Salyzyn To: linux-kernel@vger.kernel.org Cc: kernel-team@android.com, Mark Salyzyn , Miklos Szeredi , Jonathan Corbet , Vivek Goyal , "Eric W . Biederman" , Amir Goldstein , Randy Dunlap , Stephen Smalley , linux-unionfs@vger.kernel.org, linux-doc@vger.kernel.org, Eric Van Hensbergen , Latchesar Ionkov , Dominique Martinet , David Howells , Chris Mason , Josef Bacik , David Sterba , Jeff Layton , Sage Weil , Ilya Dryomov , Steve French , Tyler Hicks , Jan Kara , Theodore Ts'o , Andreas Dilger , Jaegeuk Kim , Chao Yu , Bob Peterson , Andreas Gruenbacher , David Woodhouse , Richard Weinberger , Dave Kleikamp , Greg Kroah-Hartman , Tejun Heo , Trond Myklebust , Anna Schumaker , Mark Fasheh , Joel Becker , Joseph Qi , Mike Marshall , Martin Brandenburg , Alexander Viro , Phillip Lougher , "Darrick J . Wong" , linux-xfs@vger.kernel.org, Hugh Dickins , "David S . Miller" , Andrew Morton , Mathieu Malaterre , =?UTF-8?q?Ernesto=20A=20=2E=20Fern=C3=A1ndez?= , Vyacheslav Dubeyko , v9fs-developer@lists.sourceforge.net, linux-afs@lists.infradead.org, linux-btrfs@vger.kernel.org, ceph-devel@vger.kernel.org, linux-cifs@vger.kernel.org, samba-technical@lists.samba.org, ecryptfs@vger.kernel.org, linux-ext4@vger.kernel.org, linux-f2fs-devel@lists.sourceforge.net, linux-fsdevel@vger.kernel.org, cluster-devel@redhat.com, linux-mtd@lists.infradead.org, jfs-discussion@lists.sourceforge.net, linux-nfs@vger.kernel.org, ocfs2-devel@oss.oracle.com, devel@lists.orangefs.org, reiserfs-devel@vger.kernel.org, linux-mm@kvack.org, netdev@vger.kernel.org, linux-security-module@vger.kernel.org, stable@vger.kernel.org Subject: [PATCH v13 0/5] overlayfs override_creds=off Date: Wed, 31 Jul 2019 09:57:55 -0700 Message-Id: <20190731165803.4755-1-salyzyn@android.com> X-Mailer: git-send-email 2.22.0.770.g0f2c4a37fd-goog MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4 Sender: owner-linux-mm@kvack.org Precedence: bulk X-Loop: owner-majordomo@kvack.org List-ID: Patch series: overlayfs: check CAP_DAC_READ_SEARCH before issuing exportfs_decode_fh Add flags option to get xattr method paired to __vfs_getxattr overlayfs: handle XATTR_NOSECURITY flag for get xattr method overlayfs: internal getxattr operations without sepolicy checking overlayfs: override_creds=off option bypass creator_cred The first four patches address fundamental security issues that should be solved regardless of the override_creds=off feature. on them). The fifth adds the feature depends on these other fixes. By default, all access to the upper, lower and work directories is the recorded mounter's MAC and DAC credentials. The incoming accesses are checked against the caller's credentials. If the principles of least privilege are applied for sepolicy, the mounter's credentials might not overlap the credentials of the caller's when accessing the overlayfs filesystem. For example, a file that a lower DAC privileged caller can execute, is MAC denied to the generally higher DAC privileged mounter, to prevent an attack vector. We add the option to turn off override_creds in the mount options; all subsequent operations after mount on the filesystem will be only the caller's credentials. The module boolean parameter and mount option override_creds is also added as a presence check for this "feature", existence of /sys/module/overlay/parameters/overlay_creds Signed-off-by: Mark Salyzyn Cc: Miklos Szeredi Cc: Jonathan Corbet Cc: Vivek Goyal Cc: Eric W. Biederman Cc: Amir Goldstein Cc: Randy Dunlap Cc: Stephen Smalley Cc: linux-unionfs@vger.kernel.org Cc: linux-doc@vger.kernel.org Cc: linux-kernel@vger.kernel.org Cc: Eric Van Hensbergen Cc: Latchesar Ionkov Cc: Dominique Martinet Cc: David Howells Cc: Chris Mason Cc: Josef Bacik Cc: David Sterba Cc: Jeff Layton Cc: Sage Weil Cc: Ilya Dryomov Cc: Steve French Cc: Tyler Hicks Cc: Jan Kara Cc: Theodore Ts'o Cc: Andreas Dilger Cc: Jaegeuk Kim Cc: Chao Yu Cc: Bob Peterson Cc: Andreas Gruenbacher Cc: David Woodhouse Cc: Richard Weinberger Cc: Dave Kleikamp Cc: Greg Kroah-Hartman Cc: Tejun Heo Cc: Trond Myklebust Cc: Anna Schumaker Cc: Mark Fasheh Cc: Joel Becker Cc: Joseph Qi Cc: Mike Marshall Cc: Martin Brandenburg Cc: Alexander Viro Cc: Phillip Lougher Cc: Darrick J. Wong Cc: linux-xfs@vger.kernel.org Cc: Hugh Dickins Cc: David S. Miller Cc: Andrew Morton Cc: Mathieu Malaterre Cc: Ernesto A. Fernández Cc: Vyacheslav Dubeyko Cc: v9fs-developer@lists.sourceforge.net Cc: linux-afs@lists.infradead.org Cc: linux-btrfs@vger.kernel.org Cc: ceph-devel@vger.kernel.org Cc: linux-cifs@vger.kernel.org Cc: samba-technical@lists.samba.org Cc: ecryptfs@vger.kernel.org Cc: linux-ext4@vger.kernel.org Cc: linux-f2fs-devel@lists.sourceforge.net Cc: linux-fsdevel@vger.kernel.org Cc: cluster-devel@redhat.com Cc: linux-mtd@lists.infradead.org Cc: jfs-discussion@lists.sourceforge.net Cc: linux-nfs@vger.kernel.org Cc: ocfs2-devel@oss.oracle.com Cc: devel@lists.orangefs.org Cc: reiserfs-devel@vger.kernel.org Cc: linux-mm@kvack.org Cc: netdev@vger.kernel.org Cc: linux-security-module@vger.kernel.org Cc: stable@vger.kernel.org # 4.4, 4.9, 4.14 & 4.19 --- v13: - add flags argument to __vfs_getxattr - drop GFP_NOFS side-effect v12: - Restore squished out patch 2 and 3 in the series, then change algorithm to add flags argument. Per-thread flag is a large security surface. v11: - Squish out v10 introduced patch 2 and 3 in the series, then and use per-thread flag instead for nesting. - Switch name to ovl_do_vds_getxattr for __vds_getxattr wrapper. - Add sb argument to ovl_revert_creds to match future work. v10: - Return NULL on CAP_DAC_READ_SEARCH - Add __get xattr method to solve sepolicy logging issue - Drop unnecessary sys_admin sepolicy checking for administrative driver internal xattr functions. v6: - Drop CONFIG_OVERLAY_FS_OVERRIDE_CREDS. - Do better with the documentation, drop rationalizations. - pr_warn message adjusted to report consequences. v5: - beefed up the caveats in the Documentation - Is dependent on "overlayfs: check CAP_DAC_READ_SEARCH before issuing exportfs_decode_fh" "overlayfs: check CAP_MKNOD before issuing vfs_whiteout" - Added prwarn when override_creds=off v4: - spelling and grammar errors in text v3: - Change name from caller_credentials / creator_credentials to the boolean override_creds. - Changed from creator to mounter credentials. - Updated and fortified the documentation. - Added CONFIG_OVERLAY_FS_OVERRIDE_CREDS v2: - Forward port changed attr to stat, resulting in a build error. - altered commit message.