On Tue, Nov 26, 2019 at 10:50 AM <hubcap@xxxxxxxxxx> wrote:
>
> Here's another version that is hopefully closer to
> usable...
This looks like it should work.
I don't know what side effects that "new_op->upcall.uid = 0;" will
have on the server side, and it still looks a bit hacky to me, but at
least it doesn't have the obvious problems on the client side.
Arguably, if you trust the client, you might as well just *always* do
that upcall.uid clearing.
And if you don't trust the client, then you'd have to do some NFS-like
root squash anyway, at which point the uid clearing will actually
remove permissions and break this situation again.
So I do think this shows a deeper issue still, but at least it is an
understandable workaround for a non-posix filesystem.
Linus
