]> git.proxmox.com Git - mirror_ubuntu-focal-kernel.git/blame - fs/overlayfs/dir.c
projects / mirror_ubuntu-focal-kernel.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
ovl: mark upper dir with type origin entries "impure"
[mirror_ubuntu-focal-kernel.git] / fs / overlayfs / dir.c
CommitLineData
e9be9d5e
MS		 1/*
2 *
3 * Copyright (C) 2011 Novell Inc.
4 *
5 * This program is free software; you can redistribute it and/or modify it
6 * under the terms of the GNU General Public License version 2 as published by
7 * the Free Software Foundation.
8 */
9
10#include <linux/fs.h>
11#include <linux/namei.h>
12#include <linux/xattr.h>
13#include <linux/security.h>
14#include <linux/cred.h>
3ea22a71 15#include <linux/module.h>
38b25697
MS		 16#include <linux/posix_acl.h>
17#include <linux/posix_acl_xattr.h>
6a45b362 18#include <linux/atomic.h>
a6c60655 19#include <linux/ratelimit.h>
e9be9d5e
MS		 20#include "overlayfs.h"
21
3ea22a71
MS		 22static unsigned short ovl_redirect_max = 256;
23module_param_named(redirect_max, ovl_redirect_max, ushort, 0644);
24MODULE_PARM_DESC(ovl_redirect_max,
25 "Maximum length of absolute redirect xattr value");
26
e9be9d5e
MS		 27void ovl_cleanup(struct inode *wdir, struct dentry *wdentry)
28{
29 int err;
30
31 dget(wdentry);
e36cb0b8 32 if (d_is_dir(wdentry))
e9be9d5e
MS		 33 err = ovl_do_rmdir(wdir, wdentry);
34 else
35 err = ovl_do_unlink(wdir, wdentry);
36 dput(wdentry);
37
38 if (err) {
39 pr_err("overlayfs: cleanup of '%pd2' failed (%i)\n",
40 wdentry, err);
41 }
42}
43
3d27573c 44struct dentry *ovl_lookup_temp(struct dentry *workdir)
e9be9d5e
MS		 45{
46 struct dentry *temp;
47 char name[20];
6a45b362 48 static atomic_t temp_id = ATOMIC_INIT(0);
e9be9d5e 49
6a45b362
RW		 50 /* counter is allowed to wrap, since temp dentries are ephemeral */
51 snprintf(name, sizeof(name), "#%x", atomic_inc_return(&temp_id));
e9be9d5e
MS		 52
53 temp = lookup_one_len(name, workdir, strlen(name));
54 if (!IS_ERR(temp) && temp->d_inode) {
55 pr_err("overlayfs: workdir/%s already exists\n", name);
56 dput(temp);
57 temp = ERR_PTR(-EIO);
58 }
59
60 return temp;
61}
62
63/* caller holds i_mutex on workdir */
64static struct dentry *ovl_whiteout(struct dentry *workdir,
65 struct dentry *dentry)
66{
67 int err;
68 struct dentry *whiteout;
69 struct inode *wdir = workdir->d_inode;
70
3d27573c 71 whiteout = ovl_lookup_temp(workdir);
e9be9d5e
MS		 72 if (IS_ERR(whiteout))
73 return whiteout;
74
75 err = ovl_do_whiteout(wdir, whiteout);
76 if (err) {
77 dput(whiteout);
78 whiteout = ERR_PTR(err);
79 }
80
81 return whiteout;
82}
83
84int ovl_create_real(struct inode *dir, struct dentry *newdentry,
32a3d848 85 struct cattr *attr, struct dentry *hardlink, bool debug)
e9be9d5e
MS		 86{
87 int err;
88
89 if (newdentry->d_inode)
90 return -ESTALE;
91
92 if (hardlink) {
93 err = ovl_do_link(hardlink, dir, newdentry, debug);
94 } else {
32a3d848 95 switch (attr->mode & S_IFMT) {
e9be9d5e 96 case S_IFREG:
32a3d848 97 err = ovl_do_create(dir, newdentry, attr->mode, debug);
e9be9d5e
MS		 98 break;
99
100 case S_IFDIR:
32a3d848 101 err = ovl_do_mkdir(dir, newdentry, attr->mode, debug);
e9be9d5e
MS		 102 break;
103
104 case S_IFCHR:
105 case S_IFBLK:
106 case S_IFIFO:
107 case S_IFSOCK:
108 err = ovl_do_mknod(dir, newdentry,
32a3d848 109 attr->mode, attr->rdev, debug);
e9be9d5e
MS		 110 break;
111
112 case S_IFLNK:
32a3d848 113 err = ovl_do_symlink(dir, newdentry, attr->link, debug);
e9be9d5e
MS		 114 break;
115
116 default:
117 err = -EPERM;
118 }
119 }
120 if (!err && WARN_ON(!newdentry->d_inode)) {
121 /*
122 * Not quite sure if non-instantiated dentry is legal or not.
123 * VFS doesn't seem to care so check and warn here.
124 */
125 err = -ENOENT;
126 }
127 return err;
128}
129
21a22878
AG		 130static int ovl_set_opaque_xerr(struct dentry *dentry, struct dentry *upper,
131 int xerr)
e9be9d5e 132{
5cf5b477
MS		 133 int err;
134
21a22878 135 err = ovl_check_setxattr(dentry, upper, OVL_XATTR_OPAQUE, "y", 1, xerr);
5cf5b477
MS		 136 if (!err)
137 ovl_dentry_set_opaque(dentry);
138
139 return err;
e9be9d5e
MS		 140}
141
21a22878
AG		 142static int ovl_set_opaque(struct dentry *dentry, struct dentry *upperdentry)
143{
144 /*
145 * Fail with -EIO when trying to create opaque dir and upper doesn't
146 * support xattrs. ovl_rename() calls ovl_set_opaque_xerr(-EXDEV) to
147 * return a specific error for noxattr case.
148 */
149 return ovl_set_opaque_xerr(dentry, upperdentry, -EIO);
150}
151
ee1d6d37
AG		 152static int ovl_set_impure(struct dentry *dentry, struct dentry *upperdentry)
153{
154 int err;
155
156 /*
157 * Do not fail when upper doesn't support xattrs.
158 * Upper inodes won't have origin nor redirect xattr anyway.
159 */
160 err = ovl_check_setxattr(dentry, upperdentry, OVL_XATTR_IMPURE,
161 "y", 1, 0);
162 if (!err)
163 ovl_dentry_set_impure(dentry);
164
165 return err;
166}
167
72e48481
VG		 168/* Common operations required to be done after creation of file on upper */
169static void ovl_instantiate(struct dentry *dentry, struct inode *inode,
51f7e52d 170 struct dentry *newdentry, bool hardlink)
72e48481
VG		 171{
172 ovl_dentry_version_inc(dentry->d_parent);
173 ovl_dentry_update(dentry, newdentry);
51f7e52d
MS		 174 if (!hardlink) {
175 ovl_inode_update(inode, d_inode(newdentry));
176 ovl_copyattr(newdentry->d_inode, inode);
177 } else {
178 WARN_ON(ovl_inode_real(inode, NULL) != d_inode(newdentry));
179 inc_nlink(inode);
180 }
72e48481 181 d_instantiate(dentry, inode);
5b6c9053
AG		 182 /* Force lookup of new upper hardlink to find its lower */
183 if (hardlink)
184 d_drop(dentry);
72e48481
VG		 185}
186
97c684cc
AG		 187static bool ovl_type_merge(struct dentry *dentry)
188{
189 return OVL_TYPE_MERGE(ovl_path_type(dentry));
190}
191
ee1d6d37
AG		 192static bool ovl_type_origin(struct dentry *dentry)
193{
194 return OVL_TYPE_ORIGIN(ovl_path_type(dentry));
195}
196
e9be9d5e 197static int ovl_create_upper(struct dentry *dentry, struct inode *inode,
32a3d848 198 struct cattr *attr, struct dentry *hardlink)
e9be9d5e
MS		 199{
200 struct dentry *upperdir = ovl_dentry_upper(dentry->d_parent);
201 struct inode *udir = upperdir->d_inode;
202 struct dentry *newdentry;
203 int err;
204
38b25697 205 if (!hardlink && !IS_POSIXACL(udir))
32a3d848 206 attr->mode &= ~current_umask();
38b25697 207
5955102c 208 inode_lock_nested(udir, I_MUTEX_PARENT);
e9be9d5e
MS		 209 newdentry = lookup_one_len(dentry->d_name.name, upperdir,
210 dentry->d_name.len);
211 err = PTR_ERR(newdentry);
212 if (IS_ERR(newdentry))
213 goto out_unlock;
32a3d848 214 err = ovl_create_real(udir, newdentry, attr, hardlink, false);
e9be9d5e
MS		 215 if (err)
216 goto out_dput;
217
4a99f3c8 218 if (ovl_type_merge(dentry->d_parent) && d_is_dir(newdentry)) {
97c684cc
AG		 219 /* Setting opaque here is just an optimization, allow to fail */
220 ovl_set_opaque(dentry, newdentry);
221 }
222
51f7e52d 223 ovl_instantiate(dentry, inode, newdentry, !!hardlink);
e9be9d5e
MS		 224 newdentry = NULL;
225out_dput:
226 dput(newdentry);
227out_unlock:
5955102c 228 inode_unlock(udir);
e9be9d5e
MS		 229 return err;
230}
231
232static int ovl_lock_rename_workdir(struct dentry *workdir,
233 struct dentry *upperdir)
234{
235 /* Workdir should not be the same as upperdir */
236 if (workdir == upperdir)
237 goto err;
238
239 /* Workdir should not be subdir of upperdir and vice versa */
240 if (lock_rename(workdir, upperdir) != NULL)
241 goto err_unlock;
242
243 return 0;
244
245err_unlock:
246 unlock_rename(workdir, upperdir);
247err:
248 pr_err("overlayfs: failed to lock workdir+upperdir\n");
249 return -EIO;
250}
251
252static struct dentry *ovl_clear_empty(struct dentry *dentry,
253 struct list_head *list)
254{
255 struct dentry *workdir = ovl_workdir(dentry);
256 struct inode *wdir = workdir->d_inode;
257 struct dentry *upperdir = ovl_dentry_upper(dentry->d_parent);
258 struct inode *udir = upperdir->d_inode;
259 struct path upperpath;
260 struct dentry *upper;
261 struct dentry *opaquedir;
262 struct kstat stat;
263 int err;
264
cc6f67bc
MS		 265 if (WARN_ON(!workdir))
266 return ERR_PTR(-EROFS);
267
e9be9d5e
MS		 268 err = ovl_lock_rename_workdir(workdir, upperdir);
269 if (err)
270 goto out;
271
272 ovl_path_upper(dentry, &upperpath);
a528d35e
DH		 273 err = vfs_getattr(&upperpath, &stat,
274 STATX_BASIC_STATS, AT_STATX_SYNC_AS_STAT);
e9be9d5e
MS		 275 if (err)
276 goto out_unlock;
277
278 err = -ESTALE;
279 if (!S_ISDIR(stat.mode))
280 goto out_unlock;
281 upper = upperpath.dentry;
282 if (upper->d_parent->d_inode != udir)
283 goto out_unlock;
284
3d27573c 285 opaquedir = ovl_lookup_temp(workdir);
e9be9d5e
MS		 286 err = PTR_ERR(opaquedir);
287 if (IS_ERR(opaquedir))
288 goto out_unlock;
289
32a3d848
AV		 290 err = ovl_create_real(wdir, opaquedir,
291 &(struct cattr){.mode = stat.mode}, NULL, true);
e9be9d5e
MS		 292 if (err)
293 goto out_dput;
294
295 err = ovl_copy_xattr(upper, opaquedir);
296 if (err)
297 goto out_cleanup;
298
5cf5b477 299 err = ovl_set_opaque(dentry, opaquedir);
e9be9d5e
MS		 300 if (err)
301 goto out_cleanup;
302
5955102c 303 inode_lock(opaquedir->d_inode);
e9be9d5e 304 err = ovl_set_attr(opaquedir, &stat);
5955102c 305 inode_unlock(opaquedir->d_inode);
e9be9d5e
MS		 306 if (err)
307 goto out_cleanup;
308
309 err = ovl_do_rename(wdir, opaquedir, udir, upper, RENAME_EXCHANGE);
310 if (err)
311 goto out_cleanup;
312
313 ovl_cleanup_whiteouts(upper, list);
314 ovl_cleanup(wdir, upper);
315 unlock_rename(workdir, upperdir);
316
317 /* dentry's upper doesn't match now, get rid of it */
318 d_drop(dentry);
319
320 return opaquedir;
321
322out_cleanup:
323 ovl_cleanup(wdir, opaquedir);
324out_dput:
325 dput(opaquedir);
326out_unlock:
327 unlock_rename(workdir, upperdir);
328out:
329 return ERR_PTR(err);
330}
331
a105d685 332static struct dentry *ovl_check_empty_and_clear(struct dentry *dentry)
e9be9d5e
MS		 333{
334 int err;
335 struct dentry *ret = NULL;
30c17ebf 336 enum ovl_path_type type = ovl_path_type(dentry);
e9be9d5e
MS		 337 LIST_HEAD(list);
338
339 err = ovl_check_empty_dir(dentry, &list);
30c17ebf 340 if (err) {
e9be9d5e 341 ret = ERR_PTR(err);
30c17ebf 342 goto out_free;
a105d685 343 }
e9be9d5e 344
30c17ebf
MS		 345 /*
346 * When removing an empty opaque directory, then it makes no sense to
347 * replace it with an exact replica of itself.
348 *
349 * If no upperdentry then skip clearing whiteouts.
350 *
351 * Can race with copy-up, since we don't hold the upperdir mutex.
352 * Doesn't matter, since copy-up can't create a non-empty directory
353 * from an empty one.
354 */
355 if (OVL_TYPE_UPPER(type) && OVL_TYPE_MERGE(type))
356 ret = ovl_clear_empty(dentry, &list);
357
358out_free:
e9be9d5e
MS		 359 ovl_cache_free(&list);
360
361 return ret;
362}
363
38b25697
MS		 364static int ovl_set_upper_acl(struct dentry *upperdentry, const char *name,
365 const struct posix_acl *acl)
366{
367 void *buffer;
368 size_t size;
369 int err;
370
371 if (!IS_ENABLED(CONFIG_FS_POSIX_ACL) || !acl)
372 return 0;
373
374 size = posix_acl_to_xattr(NULL, acl, NULL, 0);
375 buffer = kmalloc(size, GFP_KERNEL);
376 if (!buffer)
377 return -ENOMEM;
378
379 size = posix_acl_to_xattr(&init_user_ns, acl, buffer, size);
380 err = size;
381 if (err < 0)
382 goto out_free;
383
384 err = vfs_setxattr(upperdentry, name, buffer, size, XATTR_CREATE);
385out_free:
386 kfree(buffer);
387 return err;
388}
389
e9be9d5e 390static int ovl_create_over_whiteout(struct dentry *dentry, struct inode *inode,
32a3d848 391 struct cattr *cattr,
e9be9d5e
MS		 392 struct dentry *hardlink)
393{
394 struct dentry *workdir = ovl_workdir(dentry);
395 struct inode *wdir = workdir->d_inode;
396 struct dentry *upperdir = ovl_dentry_upper(dentry->d_parent);
397 struct inode *udir = upperdir->d_inode;
398 struct dentry *upper;
399 struct dentry *newdentry;
400 int err;
38b25697 401 struct posix_acl *acl, *default_acl;
e9be9d5e 402
cc6f67bc
MS		 403 if (WARN_ON(!workdir))
404 return -EROFS;
405
38b25697
MS		 406 if (!hardlink) {
407 err = posix_acl_create(dentry->d_parent->d_inode,
32a3d848 408 &cattr->mode, &default_acl, &acl);
38b25697
MS		 409 if (err)
410 return err;
411 }
412
e9be9d5e
MS		 413 err = ovl_lock_rename_workdir(workdir, upperdir);
414 if (err)
415 goto out;
416
3d27573c 417 newdentry = ovl_lookup_temp(workdir);
e9be9d5e
MS		 418 err = PTR_ERR(newdentry);
419 if (IS_ERR(newdentry))
420 goto out_unlock;
421
422 upper = lookup_one_len(dentry->d_name.name, upperdir,
423 dentry->d_name.len);
424 err = PTR_ERR(upper);
425 if (IS_ERR(upper))
426 goto out_dput;
427
32a3d848 428 err = ovl_create_real(wdir, newdentry, cattr, hardlink, true);
e9be9d5e
MS		 429 if (err)
430 goto out_dput2;
431
bb0d2b8a
MS		 432 /*
433 * mode could have been mutilated due to umask (e.g. sgid directory)
434 */
51f7e52d 435 if (!hardlink &&
32a3d848
AV		 436 !S_ISLNK(cattr->mode) &&
437 newdentry->d_inode->i_mode != cattr->mode) {
bb0d2b8a
MS		 438 struct iattr attr = {
439 .ia_valid = ATTR_MODE,
32a3d848 440 .ia_mode = cattr->mode,
bb0d2b8a
MS		 441 };
442 inode_lock(newdentry->d_inode);
443 err = notify_change(newdentry, &attr, NULL);
444 inode_unlock(newdentry->d_inode);
445 if (err)
446 goto out_cleanup;
447 }
38b25697
MS		 448 if (!hardlink) {
449 err = ovl_set_upper_acl(newdentry, XATTR_NAME_POSIX_ACL_ACCESS,
450 acl);
451 if (err)
452 goto out_cleanup;
453
454 err = ovl_set_upper_acl(newdentry, XATTR_NAME_POSIX_ACL_DEFAULT,
455 default_acl);
456 if (err)
457 goto out_cleanup;
458 }
bb0d2b8a 459
32a3d848 460 if (!hardlink && S_ISDIR(cattr->mode)) {
5cf5b477 461 err = ovl_set_opaque(dentry, newdentry);
e9be9d5e
MS		 462 if (err)
463 goto out_cleanup;
464
465 err = ovl_do_rename(wdir, newdentry, udir, upper,
466 RENAME_EXCHANGE);
467 if (err)
468 goto out_cleanup;
469
470 ovl_cleanup(wdir, upper);
471 } else {
472 err = ovl_do_rename(wdir, newdentry, udir, upper, 0);
473 if (err)
474 goto out_cleanup;
475 }
51f7e52d 476 ovl_instantiate(dentry, inode, newdentry, !!hardlink);
e9be9d5e
MS		 477 newdentry = NULL;
478out_dput2:
479 dput(upper);
480out_dput:
481 dput(newdentry);
482out_unlock:
483 unlock_rename(workdir, upperdir);
484out:
38b25697
MS		 485 if (!hardlink) {
486 posix_acl_release(acl);
487 posix_acl_release(default_acl);
488 }
e9be9d5e
MS		 489 return err;
490
491out_cleanup:
492 ovl_cleanup(wdir, newdentry);
493 goto out_dput2;
494}
495
51f7e52d 496static int ovl_create_or_link(struct dentry *dentry, struct inode *inode,
32a3d848 497 struct cattr *attr, struct dentry *hardlink)
e9be9d5e
MS		 498{
499 int err;
1175b6b8
VG		 500 const struct cred *old_cred;
501 struct cred *override_cred;
e9be9d5e
MS		 502
503 err = ovl_copy_up(dentry->d_parent);
504 if (err)
51f7e52d 505 return err;
bb0d2b8a 506
1175b6b8
VG		 507 old_cred = ovl_override_creds(dentry->d_sb);
508 err = -ENOMEM;
509 override_cred = prepare_creds();
510 if (override_cred) {
bb0d2b8a
MS		 511 override_cred->fsuid = inode->i_uid;
512 override_cred->fsgid = inode->i_gid;
2602625b
VG		 513 if (!hardlink) {
514 err = security_dentry_create_files_as(dentry,
32a3d848 515 attr->mode, &dentry->d_name, old_cred,
2602625b
VG		 516 override_cred);
517 if (err) {
518 put_cred(override_cred);
519 goto out_revert_creds;
520 }
521 }
1175b6b8
VG		 522 put_cred(override_creds(override_cred));
523 put_cred(override_cred);
524
c412ce49 525 if (!ovl_dentry_is_whiteout(dentry))
32a3d848 526 err = ovl_create_upper(dentry, inode, attr,
1175b6b8
VG		 527 hardlink);
528 else
32a3d848
AV		 529 err = ovl_create_over_whiteout(dentry, inode, attr,
530 hardlink);
e9be9d5e 531 }
2602625b 532out_revert_creds:
1175b6b8 533 revert_creds(old_cred);
bb0d2b8a
MS		 534 if (!err) {
535 struct inode *realinode = d_inode(ovl_dentry_upper(dentry));
536
537 WARN_ON(inode->i_mode != realinode->i_mode);
538 WARN_ON(!uid_eq(inode->i_uid, realinode->i_uid));
539 WARN_ON(!gid_eq(inode->i_gid, realinode->i_gid));
bb0d2b8a 540 }
e9be9d5e
MS		 541 return err;
542}
543
544static int ovl_create_object(struct dentry *dentry, int mode, dev_t rdev,
545 const char *link)
546{
547 int err;
51f7e52d 548 struct inode *inode;
32a3d848 549 struct cattr attr = {
51f7e52d 550 .rdev = rdev,
32a3d848 551 .link = link,
51f7e52d 552 };
e9be9d5e
MS		 553
554 err = ovl_want_write(dentry);
51f7e52d
MS		 555 if (err)
556 goto out;
557
558 err = -ENOMEM;
ca4c8a3a 559 inode = ovl_new_inode(dentry->d_sb, mode, rdev);
51f7e52d
MS		 560 if (!inode)
561 goto out_drop_write;
562
563 inode_init_owner(inode, dentry->d_parent->d_inode, mode);
32a3d848 564 attr.mode = inode->i_mode;
51f7e52d 565
32a3d848 566 err = ovl_create_or_link(dentry, inode, &attr, NULL);
51f7e52d
MS		 567 if (err)
568 iput(inode);
e9be9d5e 569
51f7e52d
MS		 570out_drop_write:
571 ovl_drop_write(dentry);
572out:
e9be9d5e
MS		 573 return err;
574}
575
576static int ovl_create(struct inode *dir, struct dentry *dentry, umode_t mode,
577 bool excl)
578{
579 return ovl_create_object(dentry, (mode & 07777) | S_IFREG, 0, NULL);
580}
581
582static int ovl_mkdir(struct inode *dir, struct dentry *dentry, umode_t mode)
583{
584 return ovl_create_object(dentry, (mode & 07777) | S_IFDIR, 0, NULL);
585}
586
587static int ovl_mknod(struct inode *dir, struct dentry *dentry, umode_t mode,
588 dev_t rdev)
589{
590 /* Don't allow creation of "whiteout" on overlay */
591 if (S_ISCHR(mode) && rdev == WHITEOUT_DEV)
592 return -EPERM;
593
594 return ovl_create_object(dentry, mode, rdev, NULL);
595}
596
597static int ovl_symlink(struct inode *dir, struct dentry *dentry,
598 const char *link)
599{
600 return ovl_create_object(dentry, S_IFLNK, 0, link);
601}
602
603static int ovl_link(struct dentry *old, struct inode *newdir,
604 struct dentry *new)
605{
606 int err;
51f7e52d 607 struct inode *inode;
e9be9d5e
MS		 608
609 err = ovl_want_write(old);
610 if (err)
611 goto out;
612
613 err = ovl_copy_up(old);
614 if (err)
615 goto out_drop_write;
616
51f7e52d
MS		 617 inode = d_inode(old);
618 ihold(inode);
619
32a3d848 620 err = ovl_create_or_link(new, inode, NULL, ovl_dentry_upper(old));
51f7e52d
MS		 621 if (err)
622 iput(inode);
e9be9d5e
MS		 623
624out_drop_write:
625 ovl_drop_write(old);
626out:
627 return err;
628}
629
a105d685 630static int ovl_remove_and_whiteout(struct dentry *dentry, bool is_dir)
e9be9d5e
MS		 631{
632 struct dentry *workdir = ovl_workdir(dentry);
633 struct inode *wdir = workdir->d_inode;
634 struct dentry *upperdir = ovl_dentry_upper(dentry->d_parent);
635 struct inode *udir = upperdir->d_inode;
636 struct dentry *whiteout;
637 struct dentry *upper;
638 struct dentry *opaquedir = NULL;
639 int err;
cfc9fde0 640 int flags = 0;
e9be9d5e 641
cc6f67bc
MS		 642 if (WARN_ON(!workdir))
643 return -EROFS;
644
d377c5eb 645 if (is_dir) {
30c17ebf
MS		 646 opaquedir = ovl_check_empty_and_clear(dentry);
647 err = PTR_ERR(opaquedir);
648 if (IS_ERR(opaquedir))
649 goto out;
e9be9d5e
MS		 650 }
651
652 err = ovl_lock_rename_workdir(workdir, upperdir);
653 if (err)
654 goto out_dput;
655
cfc9fde0
MP		 656 upper = lookup_one_len(dentry->d_name.name, upperdir,
657 dentry->d_name.len);
658 err = PTR_ERR(upper);
659 if (IS_ERR(upper))
e9be9d5e
MS		 660 goto out_unlock;
661
cfc9fde0
MP		 662 err = -ESTALE;
663 if ((opaquedir && upper != opaquedir) ||
664 (!opaquedir && ovl_dentry_upper(dentry) &&
665 upper != ovl_dentry_upper(dentry))) {
666 goto out_dput_upper;
667 }
e9be9d5e 668
cfc9fde0
MP		 669 whiteout = ovl_whiteout(workdir, dentry);
670 err = PTR_ERR(whiteout);
671 if (IS_ERR(whiteout))
672 goto out_dput_upper;
e9be9d5e 673
cfc9fde0
MP		 674 if (d_is_dir(upper))
675 flags = RENAME_EXCHANGE;
e9be9d5e 676
cfc9fde0
MP		 677 err = ovl_do_rename(wdir, whiteout, udir, upper, flags);
678 if (err)
679 goto kill_whiteout;
680 if (flags)
681 ovl_cleanup(wdir, upper);
e9be9d5e 682
e9be9d5e
MS		 683 ovl_dentry_version_inc(dentry->d_parent);
684out_d_drop:
685 d_drop(dentry);
686 dput(whiteout);
cfc9fde0
MP		 687out_dput_upper:
688 dput(upper);
e9be9d5e
MS		 689out_unlock:
690 unlock_rename(workdir, upperdir);
691out_dput:
692 dput(opaquedir);
693out:
694 return err;
695
696kill_whiteout:
697 ovl_cleanup(wdir, whiteout);
698 goto out_d_drop;
699}
700
701static int ovl_remove_upper(struct dentry *dentry, bool is_dir)
702{
703 struct dentry *upperdir = ovl_dentry_upper(dentry->d_parent);
704 struct inode *dir = upperdir->d_inode;
11f37104 705 struct dentry *upper;
d1595119 706 struct dentry *opaquedir = NULL;
e9be9d5e
MS		 707 int err;
708
d1595119
AG		 709 /* Redirect dir can be !ovl_lower_positive && OVL_TYPE_MERGE */
710 if (is_dir && ovl_dentry_get_redirect(dentry)) {
711 opaquedir = ovl_check_empty_and_clear(dentry);
712 err = PTR_ERR(opaquedir);
713 if (IS_ERR(opaquedir))
714 goto out;
715 }
716
5955102c 717 inode_lock_nested(dir, I_MUTEX_PARENT);
11f37104
MS		 718 upper = lookup_one_len(dentry->d_name.name, upperdir,
719 dentry->d_name.len);
720 err = PTR_ERR(upper);
721 if (IS_ERR(upper))
722 goto out_unlock;
723
e9be9d5e 724 err = -ESTALE;
d1595119
AG		 725 if ((opaquedir && upper != opaquedir) ||
726 (!opaquedir && upper != ovl_dentry_upper(dentry)))
727 goto out_dput_upper;
728
729 if (is_dir)
730 err = vfs_rmdir(dir, upper);
731 else
732 err = vfs_unlink(dir, upper, NULL);
733 ovl_dentry_version_inc(dentry->d_parent);
e9be9d5e
MS		 734
735 /*
736 * Keeping this dentry hashed would mean having to release
737 * upperpath/lowerpath, which could only be done if we are the
738 * sole user of this dentry. Too tricky... Just unhash for
739 * now.
740 */
ce9113bb
RW		 741 if (!err)
742 d_drop(dentry);
d1595119
AG		 743out_dput_upper:
744 dput(upper);
11f37104 745out_unlock:
5955102c 746 inode_unlock(dir);
d1595119
AG		 747 dput(opaquedir);
748out:
e9be9d5e
MS		 749 return err;
750}
751
e9be9d5e
MS		 752static int ovl_do_remove(struct dentry *dentry, bool is_dir)
753{
754 enum ovl_path_type type;
755 int err;
1175b6b8
VG		 756 const struct cred *old_cred;
757
e9be9d5e
MS		 758 err = ovl_want_write(dentry);
759 if (err)
760 goto out;
761
762 err = ovl_copy_up(dentry->d_parent);
763 if (err)
764 goto out_drop_write;
765
766 type = ovl_path_type(dentry);
e9be9d5e 767
1175b6b8 768 old_cred = ovl_override_creds(dentry->d_sb);
2aff4534 769 if (!ovl_lower_positive(dentry))
1175b6b8
VG		 770 err = ovl_remove_upper(dentry, is_dir);
771 else
a105d685 772 err = ovl_remove_and_whiteout(dentry, is_dir);
1175b6b8 773 revert_creds(old_cred);
dbc816d0
MS		 774 if (!err) {
775 if (is_dir)
776 clear_nlink(dentry->d_inode);
777 else
778 drop_nlink(dentry->d_inode);
779 }
e9be9d5e
MS		 780out_drop_write:
781 ovl_drop_write(dentry);
782out:
783 return err;
784}
785
786static int ovl_unlink(struct inode *dir, struct dentry *dentry)
787{
788 return ovl_do_remove(dentry, false);
789}
790
791static int ovl_rmdir(struct inode *dir, struct dentry *dentry)
792{
793 return ovl_do_remove(dentry, true);
794}
795
370e55ac
MS		 796static bool ovl_type_merge_or_lower(struct dentry *dentry)
797{
798 enum ovl_path_type type = ovl_path_type(dentry);
799
800 return OVL_TYPE_MERGE(type) || !OVL_TYPE_UPPER(type);
801}
802
a6c60655
MS		 803static bool ovl_can_move(struct dentry *dentry)
804{
805 return ovl_redirect_dir(dentry->d_sb) ||
806 !d_is_dir(dentry) || !ovl_type_merge_or_lower(dentry);
807}
808
a6c60655
MS		 809static char *ovl_get_redirect(struct dentry *dentry, bool samedir)
810{
811 char *buf, *ret;
812 struct dentry *d, *tmp;
3ea22a71 813 int buflen = ovl_redirect_max + 1;
a6c60655
MS		 814
815 if (samedir) {
816 ret = kstrndup(dentry->d_name.name, dentry->d_name.len,
817 GFP_KERNEL);
818 goto out;
819 }
820
821 buf = ret = kmalloc(buflen, GFP_TEMPORARY);
822 if (!buf)
823 goto out;
824
825 buflen--;
826 buf[buflen] = '\0';
827 for (d = dget(dentry); !IS_ROOT(d);) {
828 const char *name;
829 int thislen;
830
831 spin_lock(&d->d_lock);
832 name = ovl_dentry_get_redirect(d);
833 if (name) {
834 thislen = strlen(name);
835 } else {
836 name = d->d_name.name;
837 thislen = d->d_name.len;
838 }
839
840 /* If path is too long, fall back to userspace move */
841 if (thislen + (name[0] != '/') > buflen) {
842 ret = ERR_PTR(-EXDEV);
843 spin_unlock(&d->d_lock);
844 goto out_put;
845 }
846
847 buflen -= thislen;
848 memcpy(&buf[buflen], name, thislen);
849 tmp = dget_dlock(d->d_parent);
850 spin_unlock(&d->d_lock);
851
852 dput(d);
853 d = tmp;
854
855 /* Absolute redirect: finished */
856 if (buf[buflen] == '/')
857 break;
858 buflen--;
859 buf[buflen] = '/';
860 }
861 ret = kstrdup(&buf[buflen], GFP_KERNEL);
862out_put:
863 dput(d);
864 kfree(buf);
865out:
866 return ret ? ret : ERR_PTR(-ENOMEM);
867}
868
869static int ovl_set_redirect(struct dentry *dentry, bool samedir)
870{
871 int err;
872 const char *redirect = ovl_dentry_get_redirect(dentry);
873
874 if (redirect && (samedir || redirect[0] == '/'))
875 return 0;
876
877 redirect = ovl_get_redirect(dentry, samedir);
878 if (IS_ERR(redirect))
879 return PTR_ERR(redirect);
880
21a22878
AG		 881 err = ovl_check_setxattr(dentry, ovl_dentry_upper(dentry),
882 OVL_XATTR_REDIRECT,
883 redirect, strlen(redirect), -EXDEV);
a6c60655
MS		 884 if (!err) {
885 spin_lock(&dentry->d_lock);
886 ovl_dentry_set_redirect(dentry, redirect);
887 spin_unlock(&dentry->d_lock);
888 } else {
889 kfree(redirect);
21a22878 890 pr_warn_ratelimited("overlay: failed to set redirect (%i)\n", err);
a6c60655
MS		 891 /* Fall back to userspace copy-up */
892 err = -EXDEV;
893 }
894 return err;
895}
896
6c02cb59
MS		 897static int ovl_rename(struct inode *olddir, struct dentry *old,
898 struct inode *newdir, struct dentry *new,
899 unsigned int flags)
e9be9d5e
MS		 900{
901 int err;
e9be9d5e
MS		 902 struct dentry *old_upperdir;
903 struct dentry *new_upperdir;
904 struct dentry *olddentry;
905 struct dentry *newdentry;
906 struct dentry *trap;
907 bool old_opaque;
908 bool new_opaque;
e9be9d5e
MS		 909 bool cleanup_whiteout = false;
910 bool overwrite = !(flags & RENAME_EXCHANGE);
e36cb0b8 911 bool is_dir = d_is_dir(old);
370e55ac 912 bool new_is_dir = d_is_dir(new);
a6c60655 913 bool samedir = olddir == newdir;
e9be9d5e
MS		 914 struct dentry *opaquedir = NULL;
915 const struct cred *old_cred = NULL;
e9be9d5e
MS		 916
917 err = -EINVAL;
918 if (flags & ~(RENAME_EXCHANGE | RENAME_NOREPLACE))
919 goto out;
920
921 flags &= ~RENAME_NOREPLACE;
922
e9be9d5e 923 /* Don't copy up directory trees */
e9be9d5e 924 err = -EXDEV;
a6c60655 925 if (!ovl_can_move(old))
370e55ac 926 goto out;
a6c60655 927 if (!overwrite && !ovl_can_move(new))
e9be9d5e 928 goto out;
e9be9d5e
MS		 929
930 err = ovl_want_write(old);
931 if (err)
932 goto out;
933
934 err = ovl_copy_up(old);
935 if (err)
936 goto out_drop_write;
937
938 err = ovl_copy_up(new->d_parent);
939 if (err)
940 goto out_drop_write;
941 if (!overwrite) {
942 err = ovl_copy_up(new);
943 if (err)
944 goto out_drop_write;
945 }
946
1175b6b8 947 old_cred = ovl_override_creds(old->d_sb);
e9be9d5e 948
370e55ac 949 if (overwrite && new_is_dir && ovl_type_merge_or_lower(new)) {
a105d685 950 opaquedir = ovl_check_empty_and_clear(new);
e9be9d5e
MS		 951 err = PTR_ERR(opaquedir);
952 if (IS_ERR(opaquedir)) {
953 opaquedir = NULL;
954 goto out_revert_creds;
955 }
956 }
957
958 if (overwrite) {
2aff4534 959 if (ovl_lower_positive(old)) {
c412ce49 960 if (!ovl_dentry_is_whiteout(new)) {
e9be9d5e
MS		 961 /* Whiteout source */
962 flags |= RENAME_WHITEOUT;
963 } else {
964 /* Switch whiteouts */
965 flags |= RENAME_EXCHANGE;
966 }
c412ce49 967 } else if (is_dir && ovl_dentry_is_whiteout(new)) {
e9be9d5e
MS		 968 flags |= RENAME_EXCHANGE;
969 cleanup_whiteout = true;
970 }
971 }
972
973 old_upperdir = ovl_dentry_upper(old->d_parent);
974 new_upperdir = ovl_dentry_upper(new->d_parent);
975
ee1d6d37
AG		 976 if (!samedir) {
977 /*
978 * When moving a merge dir or non-dir with copy up origin into
979 * a non-merge upper dir (a.k.a pure upper dir), we are making
980 * the target parent dir "impure". ovl_iterate() iterates pure
981 * upper dirs directly, because there is no need to filter out
982 * whiteouts and merge dir content with lower dir. But for the
983 * case of an "impure" upper dir, ovl_iterate() cannot iterate
984 * the real directory directly, because it looks for the inode
985 * numbers to fill d_ino in the entries origin inode.
986 */
987 if (ovl_type_origin(old) && !ovl_type_merge(new->d_parent)) {
988 err = ovl_set_impure(new->d_parent, new_upperdir);
989 if (err)
990 goto out_revert_creds;
991 }
992 if (!overwrite && ovl_type_origin(new) &&
993 !ovl_type_merge(old->d_parent)) {
994 err = ovl_set_impure(old->d_parent, old_upperdir);
995 if (err)
996 goto out_revert_creds;
997 }
998 }
999
e9be9d5e
MS		 1000 trap = lock_rename(new_upperdir, old_upperdir);
1001
11f37104
MS		 1002 olddentry = lookup_one_len(old->d_name.name, old_upperdir,
1003 old->d_name.len);
1004 err = PTR_ERR(olddentry);
1005 if (IS_ERR(olddentry))
1006 goto out_unlock;
1007
1008 err = -ESTALE;
1009 if (olddentry != ovl_dentry_upper(old))
1010 goto out_dput_old;
1011
1012 newdentry = lookup_one_len(new->d_name.name, new_upperdir,
1013 new->d_name.len);
1014 err = PTR_ERR(newdentry);
1015 if (IS_ERR(newdentry))
1016 goto out_dput_old;
1017
3ee23ff1
MS		 1018 old_opaque = ovl_dentry_is_opaque(old);
1019 new_opaque = ovl_dentry_is_opaque(new);
1020
11f37104
MS		 1021 err = -ESTALE;
1022 if (ovl_dentry_upper(new)) {
e9be9d5e 1023 if (opaquedir) {
11f37104
MS		 1024 if (newdentry != opaquedir)
1025 goto out_dput;
e9be9d5e 1026 } else {
11f37104
MS		 1027 if (newdentry != ovl_dentry_upper(new))
1028 goto out_dput;
e9be9d5e
MS		 1029 }
1030 } else {
11f37104
MS		 1031 if (!d_is_negative(newdentry) &&
1032 (!new_opaque || !ovl_is_whiteout(newdentry)))
1033 goto out_dput;
e9be9d5e
MS		 1034 }
1035
e9be9d5e
MS		 1036 if (olddentry == trap)
1037 goto out_dput;
1038 if (newdentry == trap)
1039 goto out_dput;
1040
804032fa
MS		 1041 if (WARN_ON(olddentry->d_inode == newdentry->d_inode))
1042 goto out_dput;
1043
5cf5b477 1044 err = 0;
a6c60655 1045 if (is_dir) {
5cf5b477 1046 if (ovl_type_merge_or_lower(old))
a6c60655 1047 err = ovl_set_redirect(old, samedir);
97c684cc 1048 else if (!old_opaque && ovl_type_merge(new->d_parent))
21a22878 1049 err = ovl_set_opaque_xerr(old, olddentry, -EXDEV);
5cf5b477
MS		 1050 if (err)
1051 goto out_dput;
e9be9d5e 1052 }
a6c60655 1053 if (!overwrite && new_is_dir) {
5cf5b477 1054 if (ovl_type_merge_or_lower(new))
a6c60655 1055 err = ovl_set_redirect(new, samedir);
97c684cc 1056 else if (!new_opaque && ovl_type_merge(old->d_parent))
21a22878 1057 err = ovl_set_opaque_xerr(new, newdentry, -EXDEV);
5cf5b477
MS		 1058 if (err)
1059 goto out_dput;
e9be9d5e
MS		 1060 }
1061
3ee23ff1
MS		 1062 err = ovl_do_rename(old_upperdir->d_inode, olddentry,
1063 new_upperdir->d_inode, newdentry, flags);
1064 if (err)
e9be9d5e 1065 goto out_dput;
e9be9d5e
MS		 1066
1067 if (cleanup_whiteout)
1068 ovl_cleanup(old_upperdir->d_inode, newdentry);
1069
1070 ovl_dentry_version_inc(old->d_parent);
1071 ovl_dentry_version_inc(new->d_parent);
1072
1073out_dput:
1074 dput(newdentry);
11f37104
MS		 1075out_dput_old:
1076 dput(olddentry);
e9be9d5e
MS		 1077out_unlock:
1078 unlock_rename(new_upperdir, old_upperdir);
1079out_revert_creds:
1175b6b8 1080 revert_creds(old_cred);
e9be9d5e
MS		 1081out_drop_write:
1082 ovl_drop_write(old);
1083out:
1084 dput(opaquedir);
1085 return err;
1086}
1087
1088const struct inode_operations ovl_dir_inode_operations = {
1089 .lookup = ovl_lookup,
1090 .mkdir = ovl_mkdir,
1091 .symlink = ovl_symlink,
1092 .unlink = ovl_unlink,
1093 .rmdir = ovl_rmdir,
6c02cb59 1094 .rename = ovl_rename,
e9be9d5e
MS		 1095 .link = ovl_link,
1096 .setattr = ovl_setattr,
1097 .create = ovl_create,
1098 .mknod = ovl_mknod,
1099 .permission = ovl_permission,
5b712091 1100 .getattr = ovl_getattr,
e9be9d5e 1101 .listxattr = ovl_listxattr,
39a25b2b 1102 .get_acl = ovl_get_acl,
d719e8f2 1103 .update_time = ovl_update_time,
e9be9d5e 1104};
Ubuntu Focal Linux kernel mirror