git.baikalelectronics.ru Git - kernel.git/commit

open: handle idmapped mounts in do_truncate()

When truncating files the vfs will verify that the caller is privileged
over the inode. Extend it to handle idmapped mounts. If the inode is
accessed through an idmapped mount it is mapped according to the mount's
user namespace. Afterwards the permissions checks are identical to
non-idmapped mounts. If the initial user namespace is passed nothing
changes so non-idmapped mounts will see identical behavior as before.

Link: https://lore.kernel.org/r/20210121131959.646623-16-christian.brauner@ubuntu.com
Cc: Christoph Hellwig <hch@lst.de>
Cc: David Howells <dhowells@redhat.com>
Cc: Al Viro <viro@zeniv.linux.org.uk>
Cc: linux-fsdevel@vger.kernel.org
Reviewed-by: Christoph Hellwig <hch@lst.de>
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

author	Christian Brauner <christian.brauner@ubuntu.com>
	Thu, 21 Jan 2021 13:19:34 +0000 (14:19 +0100)
committer	Christian Brauner <christian.brauner@ubuntu.com>
	Sun, 24 Jan 2021 13:27:18 +0000 (14:27 +0100)
commit	a32e42e7b01c14173e1d6075e3ae08d92f91dfa8
tree	48f1b5b8ed624ca70008a8ec9b82147a60e2865c	tree \| snapshot
parent	c2f0b56af237eeae4c4acaffd0c6847fda809642	commit \| diff

fs/coredump.c		diff \| blob \| history
fs/inode.c		diff \| blob \| history
fs/namei.c		diff \| blob \| history
fs/open.c		diff \| blob \| history
include/linux/fs.h		diff \| blob \| history