[PATCH 00/12] attr: group fix backport

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Christian Brauner <brauner@kernel.org>
To: Greg KH <gregkh@linuxfoundation.org>
Cc: "Christian Brauner (Microsoft)" <brauner@kernel.org>,
	stable@vger.kernel.org
Subject: [PATCH 00/12] attr: group fix backport
Date: Tue, 28 Jun 2022 14:16:08 +0200	[thread overview]
Message-ID: <20220628121620.188722-1-brauner@kernel.org> (raw)
In-Reply-To: <20220628102244.wymkrob3cfys2h7i@wittgenstein>

From: "Christian Brauner (Microsoft)" <brauner@kernel.org>

Hey Greg,

As promised, here is a series that allows to backport the fix which
failed to build for you. This backports a few patches that are required
to make this work. I decided to backport them instead of rolling a
custom fix for this. That would've been smaller but there is future
hardening work that I would like to backport and this enables this.

I've run xfstests for ext4, xfs, and btrfs as well as LTP with:
runltp -f fs_perms_simple,fs_bind,containers,cap_bounds,cve,uevent,filecaps
and I see no regressions. There is an xfs failure but that is related to
a - for obvious reasons - missing stable backport.

Thanks!
Christian

Christian Brauner (12):
  fs: add is_idmapped_mnt() helper
  fs: move mapping helpers
  fs: tweak fsuidgid_has_mapping()
  fs: account for filesystem mappings
  docs: update mapping documentation
  fs: use low-level mapping helpers
  fs: remove unused low-level mapping helpers
  fs: port higher-level mapping helpers
  fs: add i_user_ns() helper
  fs: support mapped mounts of mapped filesystems
  fs: fix acl translation
  fs: account for group membership

 Documentation/filesystems/idmappings.rst |  72 -------
 fs/attr.c                                |  26 ++-
 fs/cachefiles/bind.c                     |   2 +-
 fs/ecryptfs/main.c                       |   2 +-
 fs/ksmbd/smbacl.c                        |  19 +-
 fs/ksmbd/smbacl.h                        |   5 +-
 fs/namespace.c                           |  53 +++--
 fs/nfsd/export.c                         |   2 +-
 fs/open.c                                |   8 +-
 fs/overlayfs/super.c                     |   2 +-
 fs/posix_acl.c                           |  27 ++-
 fs/proc_namespace.c                      |   2 +-
 fs/xattr.c                               |   6 +-
 fs/xfs/xfs_inode.c                       |   8 +-
 fs/xfs/xfs_linux.h                       |   1 +
 fs/xfs/xfs_symlink.c                     |   4 +-
 include/linux/fs.h                       | 141 ++++----------
 include/linux/mnt_idmapping.h            | 234 +++++++++++++++++++++++
 include/linux/posix_acl_xattr.h          |   4 +
 security/commoncap.c                     |  15 +-
 20 files changed, 394 insertions(+), 239 deletions(-)
 create mode 100644 include/linux/mnt_idmapping.h


base-commit: 18a33c8dabb88b50b860e0177a73933f2c0ddf68
-- 
2.34.1

next prev parent reply	other threads:[~2022-06-28 12:16 UTC|newest]

Thread overview: 18+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2022-06-20  9:56 FAILED: patch "[PATCH] fs: account for group membership" failed to apply to 5.15-stable tree gregkh
2022-06-27 17:24 ` Christian Brauner
2022-06-28 10:22   ` Christian Brauner
2022-06-28 12:16     ` Christian Brauner [this message]
2022-06-30 11:37       ` [PATCH 00/12] attr: group fix backport Greg KH
2022-06-28 12:16     ` [PATCH 01/12] fs: add is_idmapped_mnt() helper Christian Brauner
2022-06-28 12:16     ` [PATCH 02/12] fs: move mapping helpers Christian Brauner
2022-06-28 12:16     ` [PATCH 03/12] fs: tweak fsuidgid_has_mapping() Christian Brauner
2022-06-28 12:16     ` [PATCH 04/12] fs: account for filesystem mappings Christian Brauner
2022-06-28 12:16     ` [PATCH 05/12] docs: update mapping documentation Christian Brauner
2022-06-28 12:16     ` [PATCH 06/12] fs: use low-level mapping helpers Christian Brauner
2022-06-28 12:16     ` [PATCH 07/12] fs: remove unused " Christian Brauner
2022-06-28 12:16     ` [PATCH 08/12] fs: port higher-level " Christian Brauner
2022-06-28 12:16     ` [PATCH 09/12] fs: add i_user_ns() helper Christian Brauner
2022-06-28 12:16     ` [PATCH 10/12] fs: support mapped mounts of mapped filesystems Christian Brauner
2022-06-28 12:16     ` [PATCH 11/12] fs: fix acl translation Christian Brauner
2022-06-30 11:36       ` Patch "fs: fix acl translation" has been added to the 5.15-stable tree gregkh
2022-06-28 12:16     ` [PATCH 12/12] fs: account for group membership Christian Brauner

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20220628121620.188722-1-brauner@kernel.org \
    --to=brauner@kernel.org \
    --cc=gregkh@linuxfoundation.org \
    --cc=stable@vger.kernel.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.