Skip to content

Replace KILLPRIV with KILLPRIV_V2 #532

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
slp wants to merge 6 commits into
base: main
Choose a base branch
from
Open

Replace KILLPRIV with KILLPRIV_V2 #532

slp wants to merge 6 commits into from
+417 −174

Conversation

@slp
Copy link
Collaborator

@slp slp commented Feb 6, 2026

While we were announcing it, we never really supported KILLPRIV, so this was breaking some fs tests. This PR stops announcing KILLPRIV support, and implements support for KILLPRIV_V2.

slp added 6 commits February 6, 2026 15:49
@slp
virtio/fs: don't announce HANDLE_KILLPRIV
3eaa1c7 
We never really supported HANDLE_KILLPRIV, so let's be honest about it
and stop announcing it.

Signed-off-by: Sergio Lopez <[email protected]>
@slp
ci: install libcap-ng-dev on Linux runners
4651dfc 
We're going to need this library in the next commit libcap-ng-dev.

Signed-off-by: Sergio Lopez <[email protected]>
@slp
virtio/fs: implement KILLPRIV_V2 support
2fd1ea5 
KILLPRIV_V2 is a FUSE flag that indicates that the filesystem is
responsible for clearing security.capability xattr and clearing setuid
and setgid bits, following these rules:

- clear "security.capability" on write, truncate and chown unconditionally
- clear suid/sgid if following is true. Note, sgid is cleared only if
  group executable bit is set.
    o setattr has FATTR_SIZE and FATTR_KILL_SUIDGID set.
    o setattr has FATTR_UID or FATTR_GID
    o open has O_TRUNC and FUSE_OPEN_KILL_SUIDGID
    o create has O_TRUNC and FUSE_OPEN_KILL_SUIDGID flag set.

Signed-off-by: Sergio Lopez <[email protected]>
@slp
virtio/fs/macos: merge InodeHandle and StatFile
cd7e174 
Those structs were mostly redundant, converge on InodeHandle. This also
allows us to simplify and unify many code paths.

Signed-off-by: Sergio Lopez <[email protected]>
@slp
virtio/fs/macos: optimize lstat and fstat
6e2b791 
Reuse the previously obtained libc::stat with get_xattr_* to avoid an
additional stat syscall.

Signed-off-by: Sergio Lopez <[email protected]>
@slp
virtio/fs/macos: optimize set_xattr_stat
1c23c77 
Enable set_xattr_stat to receive a bindings::stat struct so we it can
be provided in the cases where we've already obtained it, saving an
additional stat syscall.

Signed-off-by: Sergio Lopez <[email protected]>
@slp slp force-pushed the virtiofs-killpriv-v2 branch from 33af184 to 1c23c77 Compare February 6, 2026 14:54
@slp
Copy link
Collaborator Author

slp commented Feb 6, 2026

Tested with pjdfstest on both Linux and macOS.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jakecorrenti jakecorrenti Awaiting requested review from jakecorrenti jakecorrenti is a code owner

@MatiasVara MatiasVara Awaiting requested review from MatiasVara MatiasVara is a code owner

@mtjhrc mtjhrc Awaiting requested review from mtjhrc mtjhrc is a code owner

@tylerfanelli tylerfanelli Awaiting requested review from tylerfanelli tylerfanelli is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@slp