From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <linux-fsdevel-owner@kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from vger.kernel.org (vger.kernel.org [23.128.96.18])
	by smtp.lore.kernel.org (Postfix) with ESMTP id 38389C433F5
	for <linux-fsdevel@archiver.kernel.org>; Thu, 28 Apr 2022 08:08:39 +0000 (UTC)
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1344001AbiD1ILt (ORCPT
        <rfc822;linux-fsdevel@archiver.kernel.org>);
        Thu, 28 Apr 2022 04:11:49 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:46234 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S241754AbiD1IK7 (ORCPT
        <rfc822;linux-fsdevel@vger.kernel.org>);
        Thu, 28 Apr 2022 04:10:59 -0400
Received: from mail-lf1-x12a.google.com (mail-lf1-x12a.google.com [IPv6:2a00:1450:4864:20::12a])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 14AEB633BC
        for <linux-fsdevel@vger.kernel.org>; Thu, 28 Apr 2022 01:07:37 -0700 (PDT)
Received: by mail-lf1-x12a.google.com with SMTP id y32so7203715lfa.6
        for <linux-fsdevel@vger.kernel.org>; Thu, 28 Apr 2022 01:07:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20210112;
        h=mime-version:references:in-reply-to:from:date:message-id:subject:to
         :cc;
        bh=b3ZjQZG2T09sX84KZoMmaZgnceJT8vxnozrBMwBfGNM=;
        b=gjBRtDH70b5jo6u2b6jgMARq3Xjk0ClteRYVgsuMp8BtED+/Z/vPm5ATwITAxImkoG
         BsE3HfMu9OH3CiguvPjuCC3FNd8i3PqppQqnksKquSntLwl6s7O3k3Ge26XgdpgnW7Z4
         qkTJl1jqfBPfbr0g9ILY3OXYt+I1kkESS8lit7avLeCSsy5yfkkJNhdw4dpRMmuc8JqS
         yq+zKzLMon0K0ae9qrZ7ndNC2IBJ8uyENtjkr5P8FbPSpgDaNvlHj5YOm75iakuz5nu0
         XLygSDMAsIFm+gNsGKeReiIAh9LZ2YXTHiCYLPlAVcPIms94BzLz7MaThii3nrSZrbxd
         J0Aw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20210112;
        h=x-gm-message-state:mime-version:references:in-reply-to:from:date
         :message-id:subject:to:cc;
        bh=b3ZjQZG2T09sX84KZoMmaZgnceJT8vxnozrBMwBfGNM=;
        b=wOP5RswKBAFLfFF/bNiHvK2pdemCtn34kfJeeFqLIgHq6vCLpXzu0b81RaI4uUpRVU
         r3TeUQBi6OzQ+c/ayPNzk0frHRuPfbPsfOaVp122gKt5Q2JnaRMQkX5jBm+C67VpqYJr
         VDi8z+b97k5CG4K0ur5iDKDSEWzL8I0zsfWkLb7c33wOsytiTLyplgEx6yA9pSRePg8J
         3zfdwxSNgITO4j2kSyBMd0Qj1rZCl5ruCYunamyGjhhoy+unxOfEyozeH9ppftJYNcFV
         B5tsfp7rfEwkYkR8Sw0ekODcZXWJVwlkSA46l1v8OYhZJZO0zQT8x5OD0hp9uZxHXtVV
         IcUw==
X-Gm-Message-State: AOAM532aRHk06eAJ8hOLqQx1anphxsoiE1yPhEBL11axYBflS+ivHYFr
        uegCHCym2ZgsumhVom64D+9AXJc6LEEmBqqEO7d54g==
X-Google-Smtp-Source: ABdhPJzGnYj50OoGGT/MGdQXvjVOVHLw2nhp6+XJqKPeN3Gww7x+4GV9YNC3NiaQRtmbnXOtwA+kqjFugNxiNe4OFf0=
X-Received: by 2002:a05:6512:3484:b0:472:13f9:4aee with SMTP id
 v4-20020a056512348400b0047213f94aeemr9831999lfr.288.1651133255155; Thu, 28
 Apr 2022 01:07:35 -0700 (PDT)
MIME-Version: 1.0
References: <1650971490-4532-1-git-send-email-xuyang2018.jy@fujitsu.com>
 <Ymn05eNgOnaYy36R@zeniv-ca.linux.org.uk> <Ymn4xPXXWe4LFhPZ@zeniv-ca.linux.org.uk>
 <626A08DA.3060802@fujitsu.com> <YmoAp+yWBpH5T8rt@zeniv-ca.linux.org.uk> <YmoGHrNVtfXsl6vM@zeniv-ca.linux.org.uk>
In-Reply-To: <YmoGHrNVtfXsl6vM@zeniv-ca.linux.org.uk>
From:   Jann Horn <jannh@google.com>
Date:   Thu, 28 Apr 2022 10:06:58 +0200
Message-ID: <CAG48ez0LAF1NX+SBNNpzNrLMyccZEAS1GLrzYdhn_NoDFr=DLg@mail.gmail.com>
Subject: Re: [PATCH v8 1/4] fs: add mode_strip_sgid() helper
To:     Al Viro <viro@zeniv.linux.org.uk>
Cc:     "xuyang2018.jy@fujitsu.com" <xuyang2018.jy@fujitsu.com>,
        "linux-fsdevel@vger.kernel.org" <linux-fsdevel@vger.kernel.org>,
        "ceph-devel@vger.kernel.org" <ceph-devel@vger.kernel.org>,
        "david@fromorbit.com" <david@fromorbit.com>,
        "djwong@kernel.org" <djwong@kernel.org>,
        "brauner@kernel.org" <brauner@kernel.org>,
        "willy@infradead.org" <willy@infradead.org>,
        "jlayton@kernel.org" <jlayton@kernel.org>,
        Linus Torvalds <torvalds@linux-foundation.org>
Content-Type: text/plain; charset="UTF-8"
Precedence: bulk
List-ID: <linux-fsdevel.vger.kernel.org>
X-Mailing-List: linux-fsdevel@vger.kernel.org

On Thu, Apr 28, 2022 at 5:12 AM Al Viro <viro@zeniv.linux.org.uk> wrote:
> On Thu, Apr 28, 2022 at 02:49:11AM +0000, Al Viro wrote:
> > Let's try to separate the issues here.  Jann, could you explain what makes
> > empty sgid files dangerous?
>
> Found the original thread in old mailbox, and the method of avoiding the
> SGID removal on modification is usable.  Which answers the question above...

As context for everyone on the thread who isn't on security@, you can see a
public copy of the bug report here:
https://bugs.chromium.org/p/project-zero/issues/detail?id=1611
and also here:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1779923

And the kernel patch in question is this one:
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=0fa3ecd87848c9c93c2c828ef4c3a8ca36ce46c7