From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on inbox.vuxu.org X-Spam-Level: X-Spam-Status: No, score=-0.8 required=5.0 tests=DKIM_SIGNED,DKIM_VALID, HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI,RCVD_IN_DNSWL_NONE, T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no version=3.4.4 Received: from tb-ob20.topicbox.com (tb-ob20.topicbox.com [173.228.157.66]) by inbox.vuxu.org (Postfix) with ESMTP id A8A8325E17 for ; Fri, 23 Feb 2024 22:10:59 +0100 (CET) Received: from tb-mx0.topicbox.com (tb-mx0.nyi.icgroup.com [10.90.30.73]) by tb-ob20.topicbox.com (Postfix) with ESMTP id B56AD32261 for ; Fri, 23 Feb 2024 16:10:57 -0500 (EST) (envelope-from bounce.mM9d4a22b7f8e14bfa2bb23e3c.r522be890-2105-11eb-b15e-8d699134e1fa@9fans.bounce.topicbox.com) Received: by tb-mx0.topicbox.com (Postfix, from userid 1132) id 52BA7F6BDB0; Fri, 23 Feb 2024 16:10:57 -0500 (EST) ARC-Authentication-Results: i=3; topicbox.com; arc=pass (as.1.zohomail.eu=pass, ams.1.zohomail.eu=pass) smtp.remote-ip=136.143.169.17; dkim=pass (2048-bit rsa key sha256) header.d=rdklein.fr header.i=edou@rdklein.fr header.b=QKZPVhQi header.a=rsa-sha256 header.s=zoho x-bits=2048; dmarc=none policy.published-domain-policy=none policy.applied-disposition=none policy.evaluated-disposition=none (p=none,d=none,d.eval=none) policy.policy-from=p header.from=rdklein.fr; spf=pass smtp.mailfrom=edou@rdklein.fr smtp.helo=sender-op-o17.zoho.eu; x-internal-arc=fail (as.2.topicbox.com=pass, ams.2.topicbox.com=fail (message has been altered), as.1.zohomail.eu=pass, ams.1.zohomail.eu=fail (message has been altered)) (Message modified while forwarding at Topicbox) ARC-Message-Signature: i=3; a=rsa-sha256; c=relaxed/relaxed; d= topicbox.com; h=references:from:to:cc:subject:date:in-reply-to :message-id:mime-version:content-type:list-help:list-id :list-post:list-subscribe:reply-to:content-transfer-encoding :list-unsubscribe; s=sysmsg-1; t=1708722657; bh=dpahVcagcCxbo32q gCbY957R6EaR36s00jsRkGsSuQk=; b=HI+S3Wq/fyiebVYs8wYoE61m73gBa9MU jjHW1qOzec01XOI5EkbvJEW9cRaEVcc572vQbbwz+bJp512Krf+aNymLoHqJhznt 0VucjFG6ugka5DiqSAUH3/eSKbotjMDR487tEUmWgKNiLSUewlYx4P9ylE3CdQ0U I765wice4IQ= ARC-Seal: i=3; a=rsa-sha256; cv=pass; d=topicbox.com; s=sysmsg-1; t= 1708722657; b=odyKAIxgf6JtievTi08USHrE8yYFk48fMyU9tPv7xuKs4ue2OO sUZoDjSpAlFE12LX9U7PrEAZDcK/oDOZnfc1gf9HfpCbwJsMILE6aY1vKc/Fb253 7Ci+tcU7AMSG2t03eI0TDyxH5ot3omddpfV0SSzNUFbnl3J5PBZyOFAZk= Authentication-Results: topicbox.com; arc=pass (as.1.zohomail.eu=pass, ams.1.zohomail.eu=pass) smtp.remote-ip=136.143.169.17; dkim=pass (2048-bit rsa key sha256) header.d=rdklein.fr header.i=edou@rdklein.fr header.b=QKZPVhQi header.a=rsa-sha256 header.s=zoho x-bits=2048; dmarc=none policy.published-domain-policy=none policy.applied-disposition=none policy.evaluated-disposition=none (p=none,d=none,d.eval=none) policy.policy-from=p header.from=rdklein.fr; spf=pass smtp.mailfrom=edou@rdklein.fr smtp.helo=sender-op-o17.zoho.eu; x-internal-arc=fail (as.2.topicbox.com=pass, ams.2.topicbox.com=fail (message has been altered), as.1.zohomail.eu=pass, ams.1.zohomail.eu=fail (message has been altered)) (Message modified while forwarding at Topicbox) X-Received-Authentication-Results: tb-mx0.topicbox.com; arc=pass (as.1.zohomail.eu=pass, ams.1.zohomail.eu=pass) smtp.remote-ip=136.143.169.17; bimi=skipped (DMARC did not pass); dkim=pass (2048-bit rsa key sha256) header.d=rdklein.fr header.i=edou@rdklein.fr header.b=QKZPVhQi header.a=rsa-sha256 header.s=zoho x-bits=2048; dmarc=none policy.published-domain-policy=none policy.applied-disposition=none policy.evaluated-disposition=none (p=none,d=none,d.eval=none) policy.policy-from=p header.from=rdklein.fr; iprev=pass smtp.remote-ip=136.143.169.17 (sender-op-o17.zoho.eu); spf=pass smtp.mailfrom=edou@rdklein.fr smtp.helo=sender-op-o17.zoho.eu; x-aligned-from=pass (Address match); x-me-sender=none; x-ptr=pass smtp.helo=sender-op-o17.zoho.eu policy.ptr=sender-op-o17.zoho.eu; x-return-mx=pass header.domain=rdklein.fr policy.is_org=yes (MX Records found: mx.zoho.eu,mx3.zoho.eu,mx2.zoho.eu); x-return-mx=pass smtp.domain=rdklein.fr policy.is_org=yes (MX Records found: mx.zoho.eu,mx3.zoho.eu,mx2.zoho.eu); x-tls=pass smtp.version=TLSv1.2 smtp.cipher=ECDHE-RSA-AES256-GCM-SHA384 smtp.bits=256/256; x-vs=clean score=0 state=0 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed; d=9fans.net; h=references :from:to:cc:subject:date:in-reply-to:message-id:mime-version :content-type:list-help:list-id:list-post:list-subscribe :reply-to:content-transfer-encoding:list-unsubscribe; s=dkim-1; t=1708722657; x=1708809057; bh=33GKNgDVyxcqfiror11eH2gqucLXH50f A6CSioeBQtE=; b=TTM5s2YDJkB9KRV01rFTb8ABbKzzsdMfsXVsJbaBsQnf51wV 6zaewMkoqkTTbMmVg3bhj38rCpDx/AIoHE3rx6J8bxNz48rFx4vqRcxXoK4HOQDf 0DGuU9ZtcGSqWR/MWEJaEVCno+2qrJSX4CLWnnzvnTm/ppwIWxmfmRye5I8= Received: from tb-mx0.topicbox.com (localhost.local [127.0.0.1]) by tb-mx0.topicbox.com (Postfix) with ESMTP id 2DCD4F6B966 for <9fans@9fans.net>; Fri, 23 Feb 2024 16:10:42 -0500 (EST) (envelope-from edou@rdklein.fr) Received: from tb-mx0.topicbox.com (localhost [127.0.0.1]) by tb-mx0.topicbox.com (Authentication Milter) with ESMTP id CEA2A45FFBA; Fri, 23 Feb 2024 16:10:42 -0500 ARC-Seal: i=2; a=rsa-sha256; cv=pass; d=topicbox.com; s=arcseal; t= 1708722642; b=pRmBICCgtAmAtiSq3JRFaKTh87bSuj8XCNeTu+jJ6l4rqhmytj Ht94niFlz2JeUdr84wKaOYC/fq4wtfGwyBimGTXFT0Ns65yt7qm9NXB1a96UTO+2 YOd32v/xjk3vn5gGN+P2UTAbcQigCUnbQKIgDjMEgAo75N3iZjR0LVFakcaaEnjS xYeLWHSzC/S2vlwlYUZ3Og/hA+F/hfga/ci7TXAB2aB1JEVdxWOg1HSY11S83hD5 e+Fh0nut08qTPdxxmkgl/MvgNIICKbBXtxGCacW+DXo47ftJWG/HowG+s0SwzQt9 L0iQ1mBZm/Z8ZEYS3QMjIqn6U4k3lcrkA1CA== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d= topicbox.com; h=references:from:to:cc:subject:date:in-reply-to :message-id:mime-version:content-type; s=arcseal; t=1708722642; bh=hmOJYCTjJ83GKvpOGsDQPzhiZ8UqlvMxGFkCP2qt9gQ=; b=IeV+Wo7++b1+ GAQX7y4MrRDCtWiQJ0BmMQa7wj1mf2ByuIkrKz/7OWyzJNU5UPll5eRi8AyM8qcU 9lo3Yec0nCcWMVFQoAWEXtqbt+k0VzKDmxcb6d/qZpl3N24kLXDaXreFXtSKlFJO 1zrRbK+LDc6KhtnmsINsqA4t90zHnL6R9IK6w/vQ8r8wddBjwrUvagO0zOXkh6Et S6945Q+HXbNv87LmuM5T3Tz0joy/J4nEvw23TqGhNwdHIXvHBxwHrSN+Kmq2wifZ MQLv04vxBoGPDBRB+NXy0xQxpl/ePRbD0TiqiblOThZ6B7VDJDGoxL1gXuT75A3y wMZlQ3lzMg== ARC-Authentication-Results: i=2; tb-mx0.topicbox.com; arc=pass (as.1.zohomail.eu=pass, ams.1.zohomail.eu=pass) smtp.remote-ip=136.143.169.17; bimi=skipped (DMARC did not pass); dkim=pass (2048-bit rsa key sha256) header.d=rdklein.fr header.i=edou@rdklein.fr header.b=QKZPVhQi header.a=rsa-sha256 header.s=zoho x-bits=2048; dmarc=none policy.published-domain-policy=none policy.applied-disposition=none policy.evaluated-disposition=none (p=none,d=none,d.eval=none) policy.policy-from=p header.from=rdklein.fr; iprev=pass smtp.remote-ip=136.143.169.17 (sender-op-o17.zoho.eu); spf=pass smtp.mailfrom=edou@rdklein.fr smtp.helo=sender-op-o17.zoho.eu; x-aligned-from=pass (Address match); x-me-sender=none; x-ptr=pass smtp.helo=sender-op-o17.zoho.eu policy.ptr=sender-op-o17.zoho.eu; x-return-mx=pass header.domain=rdklein.fr policy.is_org=yes (MX Records found: mx.zoho.eu,mx3.zoho.eu,mx2.zoho.eu); x-return-mx=pass smtp.domain=rdklein.fr policy.is_org=yes (MX Records found: mx.zoho.eu,mx3.zoho.eu,mx2.zoho.eu); x-tls=pass smtp.version=TLSv1.2 smtp.cipher=ECDHE-RSA-AES256-GCM-SHA384 smtp.bits=256/256; x-vs=clean score=0 state=0 X-ME-VSCause: gggruggvucftvghtrhhoucdtuddrgedvledrfeeigddugeehucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdggtfgfnhhsuhgsshgtrhhisggvpdfu rfetoffkrfgpnffqhgenuceurghilhhouhhtmecufedttdenucenucfjughrpehffgfhvf evufffjgfkgggtsehttdertddtredtnecuhfhrohhmpefgughouhgrrhguucfmlhgvihhn uceovgguohhusehrughklhgvihhnrdhfrheqnecuggftrfgrthhtvghrnhepiedthfejfe ekkeejgeetfeehiefhudetkefhgfetleehledttefhudelleduvdegnecuffhomhgrihhn pehgihhthhhusgdrtghomhdplhhkmhhlrdhorhhgpdhkvghrnhgvlhdrohhrghdpthhoph hitggsohigrdgtohhmnecukfhppedufeeirddugeefrdduieelrddujedpkeeirddvhedv rddvfeejrddvgeegnecuvehluhhsthgvrhfuihiivgeptdenucfrrghrrghmpehinhgvth epudefiedrudegfedrudeiledrudejpdhhvghlohepshgvnhguvghrqdhophdqohdujedr iihohhhordgvuhdpmhgrihhlfhhrohhmpeeovgguohhusehrughklhgvihhnrdhfrheq X-ME-VSScore: 0 X-ME-VSCategory: clean Received-SPF: pass (rdklein.fr: Sender is authorized to use 'edou@rdklein.fr' in 'mfrom' identity (mechanism 'include:zoho.eu' matched)) receiver=tb-mx0.topicbox.com; identity=mailfrom; envelope-from="edou@rdklein.fr"; helo=sender-op-o17.zoho.eu; client-ip=136.143.169.17 Received: from sender-op-o17.zoho.eu (sender-op-o17.zoho.eu [136.143.169.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by tb-mx0.topicbox.com (Postfix) with ESMTPS for <9fans@9fans.net>; Fri, 23 Feb 2024 16:10:39 -0500 (EST) (envelope-from edou@rdklein.fr) ARC-Seal: i=1; a=rsa-sha256; t=1708722636; cv=none; d=zohomail.eu; s=zohoarc; b=h3FkWrJjoTmyQ33/Bao+jXtGsJa+7eQ92iNCyetuzfb7HWtiJSHippyNojmNR41vT6eoaqX+qqvXux4/9ww53NcrXtAYIvsmKABRgMuTqiMGptC3t+3CWqXXrqSTaVl6XPsup9I6Z9QZrrHdGb8dv+67NnSdc7A7oXrmrOM7urA= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.eu; s=zohoarc; t=1708722636; h=Content-Type:Cc:Cc:Date:Date:From:From:In-Reply-To:MIME-Version:Message-ID:References:Subject:Subject:To:To:Message-Id:Reply-To; bh=hmOJYCTjJ83GKvpOGsDQPzhiZ8UqlvMxGFkCP2qt9gQ=; b=W5pERUKHOywC5IJTpY8vdOuTsf9cpDZs8rk3Ct3v1+8T/K6Q0vGlLPtnYsYiX4DdyygYZ3xpMHJd1Qk72tP/k1R+hD9nBINFl6hRmOlrSj4UDQvfTxN1cq43KLtj2z++yUjMEa0/g3bWkK1Gcrb0U0mWFtL1O4B8n6t5NDMGWGU= ARC-Authentication-Results: i=1; mx.zohomail.eu; dkim=pass header.i=rdklein.fr; spf=pass smtp.mailfrom=edou@rdklein.fr; dmarc=pass header.from= Received: from schwarzy (lfbn-idf3-1-667-244.w86-252.abo.wanadoo.fr [86.252.237.244]) by mx.zoho.eu with SMTPS id 1708722633629435.79227438284033; Fri, 23 Feb 2024 22:10:33 +0100 (CET) References: <87jzr8rqwh.fsf@rdklein.fr> <16984244950.678D8a2.80641@composer.9fans.topicbox.com> <87v8aqbx57.fsf@rdklein.fr> <87msw2bsfk.fsf@rdklein.fr> User-agent: mu4e 1.10.2; emacs 28.2 From: Edouard Klein To: 9fans <9fans@9fans.net> Cc: moody@posixcafe.org Subject: Re: [9fans] Re: Mounting a 9P filesystem under a Linux "user namespace" Date: Fri, 23 Feb 2024 22:08:14 +0100 In-reply-to: <87msw2bsfk.fsf@rdklein.fr> Message-ID: <87plwm3n07.fsf@rdklein.fr> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 X-ZohoMailClient: External Topicbox-Policy-Reasoning: allow: sender is a member Topicbox-Message-UUID: 03ac9a26-d290-11ee-bfc7-282d078c7b06 Archived-At: =?UTF-8?B?PGh0dHBzOi8vOWZhbnMudG9waWNib3guY29tL2dyb3Vwcy85?= =?UTF-8?B?ZmFucy9UYjVkMDM5ZjY3NWM1NDA0Ni1NOWQ0YTIyYjdmOGUxNGJmYTJiYjIz?= =?UTF-8?B?ZTNjPg==?= List-Help: List-Id: "9fans" <9fans.9fans.net> List-Post: List-Software: Topicbox v0 List-Subscribe: Precedence: list Reply-To: 9fans <9fans@9fans.net> Content-Transfer-Encoding: quoted-printable List-Unsubscribe: , Topicbox-Delivery-ID: 2:9fans:437d30aa-c441-11e9-8a57-d036212d11b0:522be890-2105-11eb-b15e-8d699134e1fa:M9d4a22b7f8e14bfa2bb23e3c:1:Uy2KmKdpQl7_Seeor3TfibmvQqy41bkJoVdXQuaB_LQ Again for the record, if anybody is looking for a 9P2000.L FUSE implementation, I had to write one, I used github.com/hugelgupf/p9 as a base: git clone git@the-dam.org:f29p With that, one can mount a 9P2000.L server from inside a linux 'mount namespace'. I'll talk about that if my paper passes the IWP9 review. Cheers, Edouard. Edouard Klein writes: > For the record here is the lkml post > https://lkml.org/lkml/2023/10/28/155 > Edouard Klein writes: > >> Thanks Moody for the nudge in a direction I hadn't explored. >> >> It seems that Linux does not see 9p as been safe to mount without >> privilege. From what I understand, only FS with the FS_USERNS_MOUNT flag >> can be mounted in a user namespace. It seems that v9fs is not one of >> them: >> >> For example, tmpfs is a safe FS, and I can do: >> unshare --user --map-root-user --mount >> mount -t tmpfs tmpfs mnt/mnt1/ >> >> and it works. >> >> However, if I do: >> unshare --user --map-root-user --mount >> mount -t 9p -o trans=3Dunix /run/9p/srv4 mnt/mnt1 >> >> I get mount: /home/edouard/mnt/mnt1: permission denied. >> >> >> I've sent an email to the linux kernel mailing list to see if somebody >> there has any up to date information. >> >> Somebody tried the same thing in 2018: >> https://lore.kernel.org/all/39b08c53-3449-3164-c1b1-44ac587dd4ea@metux.n= et/T/ >> Seemingly without succeeding. >> >> The end of the above thread is a bit worrying: >>> plan9fs would >>> also be a candidate for that kind of treatment if it had a maintainer. >> >> I did not know v9fs was unmaintained, I find that a bit surprising. It >> does work very reliably. >> >> I'll keep this list updated as I make progress. >> >> Cheers, >> >> Edouard >> >> moody@posixcafe.org writes: >> >>> Edouard, >>> >>> I am no Linux expert, but I think if you create a mount namespace as pa= rt of >>> the user namespace you will be allowed to execute mounts without root. = In >>> terms of clients, I am not aware >>> of any other then the one within the linux kernel. >>> >>> Regards, >>> Moody >>> 9fans / 9fans / see discussions + participants + delivery options Perma= link ------------------------------------------ 9fans: 9fans Permalink: https://9fans.topicbox.com/groups/9fans/Tb5d039f675c54046-M9d4a2= 2b7f8e14bfa2bb23e3c Delivery options: https://9fans.topicbox.com/groups/9fans/subscription