Re: [PATCH V9 2/4] fuse: Trace daemon creds

From: Antonio SJ Musumeci
Date: Wed Sep 30 2020 - 15:39:52 EST

Next message: Peter Zijlstra: "Re: [PATCH v4 04/17] x86/acrn: Introduce hypercall interfaces"
Previous message: Krzysztof Kozlowski: "[PATCH v2 06/12] dt-bindings: arm: fsl: document VF boards"
In reply to: Miklos Szeredi: "Re: [PATCH V9 2/4] fuse: Trace daemon creds"
Next in thread: Alessio Balsini: "[PATCH V9 3/4] fuse: Introduce synchronous read and write for passthrough"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 9/30/2020 2:45 PM, Miklos Szeredi wrote:

On Thu, Sep 24, 2020 at 3:13 PM Alessio Balsini <balsini@xxxxxxxxxxx> wrote:

Add a reference to the FUSE daemon credentials, so that they can be used to
temporarily raise the user credentials when accessing lower file system
files in passthrough.

Hmm, I think it would be better to store the creds of the ioctl()
caller together with the open file. The mounter may deliberately
have different privileges from the process doing the actual I/O.

Thanks,
Miklos

In my usecase I'm changing euid/egid of the thread to whichever the uid/gid was passed to the server which is otherwise running as root.

Next message: Peter Zijlstra: "Re: [PATCH v4 04/17] x86/acrn: Introduce hypercall interfaces"
Previous message: Krzysztof Kozlowski: "[PATCH v2 06/12] dt-bindings: arm: fsl: document VF boards"
In reply to: Miklos Szeredi: "Re: [PATCH V9 2/4] fuse: Trace daemon creds"
Next in thread: Alessio Balsini: "[PATCH V9 3/4] fuse: Introduce synchronous read and write for passthrough"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]