On Wed, Sep 25, 2019, at 3:11 AM, Dave Chinner wrote: > > We're talking about user data read/write access here, not some > special security capability. Access to the data has already been > permission checked, so why should the format that the data is > supplied to the kernel in suddenly require new privilege checks? What happens with BTRFS today if userspace provides invalid compressed data via this interface? Does that show up as filesystem corruption later? If the data is verified at write time, wouldn't that be losing most of the speed advantages of providing pre-compressed data? Ability for a user to cause fsck errors later would be a new thing that would argue for a privilege check I think.
- [RFC PATCH 2/3] fs: add RWF_ENCODED for writing compress... Omar Sandoval
- Re: [RFC PATCH 2/3] fs: add RWF_ENCODED for writing... Jann Horn
- Re: [RFC PATCH 2/3] fs: add RWF_ENCODED for wri... Jens Axboe
- Re: [RFC PATCH 2/3] fs: add RWF_ENCODED for wri... Omar Sandoval
- Re: [RFC PATCH 2/3] fs: add RWF_ENCODED for... Omar Sandoval
- Re: [RFC PATCH 2/3] fs: add RWF_ENCODED... Jann Horn
- Re: [RFC PATCH 2/3] fs: add RWF_EN... Christian Brauner
- Re: [RFC PATCH 2/3] fs: add RW... Matthew Wilcox
- Re: [RFC PATCH 2/3] fs: add RWF_EN... Omar Sandoval
- Re: [RFC PATCH 2/3] fs: add RWF_EN... Dave Chinner
- Re: [RFC PATCH 2/3] fs: add RW... Colin Walters
- Re: [RFC PATCH 2/3] add RWF_EN... Chris Mason
- Re: [RFC PATCH 2/3] add RWF_EN... Colin Walters
- Re: [RFC PATCH 2/3] add RWF_EN... Omar Sandoval
- Re: [RFC PATCH 2/3] fs: add RW... Theodore Y. Ts'o
- Re: [RFC PATCH 2/3] fs: add RW... Dave Chinner
- Re: [RFC PATCH 2/3] fs: add RW... Omar Sandoval
