#! /bin/bash # SPDX-License-Identifier: GPL-2.0 # Copyright (C) 2013 Oracle, Inc. All Rights Reserved. # # FS QA Test No. 317 # # Check uid/gid to/from disk with a user namespace. A new file # will be created from inside a userns. We check that the uid/gid # is correct from both inside the userns and also from init_user_ns. # We will then unmount and remount the file system and check the # uid/gid from both inside the userns and from init_user_ns to show # that the correct uid was flushed and brought back from disk. # seq=`basename $0` seqres=$RESULT_DIR/$seq echo "QA output created by $seq" here=`pwd` tmp=/tmp/$$ status=1 # failure is the default! _cleanup() { cd / _scratch_unmount >/dev/null 2>&1 } trap "_cleanup; exit \$status" 0 1 2 3 15 # get standard environment, filters and checks . ./common/rc . ./common/filter . ./common/attr file=$SCRATCH_MNT/file1 # real QA test starts here _supported_fs generic # only Linux supports user namespace _supported_os Linux [ -x $lstat64 ] || _notrun "$lstat64 executable not found" rm -f $seqres.full _require_scratch _require_user _require_ugid_map _require_userns qa_user_id=`id -u $qa_user` _filter_output() { sed \ -e "s/$qa_user_id/qa_user/g" \ -e "s!$SCRATCH_MNT!\$SCRATCH_MNT!" } _print_numeric_uid() { echo "From init_user_ns" $here/src/lstat64 $file |head -3 |_filter_output echo "From user_ns" # don't use $here/src/lstat64, as we're running cmd(src/lstat64) in # nsexec as a regular user, and $here may contain path component that # a regular user doesn't have search permission $here/src/nsexec -s -U -M "0 $qa_user_id 1000" -G "0 $qa_user_id 1000" src/lstat64 $file |head -3 |_filter_output } _scratch_unmount >/dev/null 2>&1 echo "*** MKFS ***" >>$seqres.full echo "" >>$seqres.full _scratch_mkfs >>$seqres.full 2>&1 || _fail "mkfs failed" _scratch_mount chmod 777 $SCRATCH_MNT # create $file as "root" in userns, which is $qa_user in parent namespace $here/src/nsexec -s -U -M "0 $qa_user_id 1000" -G "0 $qa_user_id 1000" touch $file _print_numeric_uid echo "" echo "*** Remounting ***" echo "" sync _scratch_cycle_mount >>$seqres.full 2>&1 || _fail "remount failed" _print_numeric_uid _scratch_unmount >/dev/null 2>&1 status=0 exit