3 * Copyright (C) 2011 Novell Inc.
5 * This program is free software; you can redistribute it and/or modify it
6 * under the terms of the GNU General Public License version 2 as published by
7 * the Free Software Foundation.
11 #include <linux/namei.h>
12 #include <linux/xattr.h>
13 #include <linux/security.h>
14 #include <linux/cred.h>
15 #include <linux/posix_acl.h>
16 #include <linux/posix_acl_xattr.h>
17 #include <linux/atomic.h>
18 #include "overlayfs.h"
20 void ovl_cleanup(struct inode *wdir, struct dentry *wdentry)
25 if (d_is_dir(wdentry))
26 err = ovl_do_rmdir(wdir, wdentry);
28 err = ovl_do_unlink(wdir, wdentry);
32 pr_err("overlayfs: cleanup of '%pd2' failed (%i)\n",
37 struct dentry *ovl_lookup_temp(struct dentry *workdir, struct dentry *dentry)
41 static atomic_t temp_id = ATOMIC_INIT(0);
43 /* counter is allowed to wrap, since temp dentries are ephemeral */
44 snprintf(name, sizeof(name), "#%x", atomic_inc_return(&temp_id));
46 temp = lookup_one_len(name, workdir, strlen(name));
47 if (!IS_ERR(temp) && temp->d_inode) {
48 pr_err("overlayfs: workdir/%s already exists\n", name);
56 /* caller holds i_mutex on workdir */
57 static struct dentry *ovl_whiteout(struct dentry *workdir,
58 struct dentry *dentry)
61 struct dentry *whiteout;
62 struct inode *wdir = workdir->d_inode;
64 whiteout = ovl_lookup_temp(workdir, dentry);
68 err = ovl_do_whiteout(wdir, whiteout);
71 whiteout = ERR_PTR(err);
77 int ovl_create_real(struct inode *dir, struct dentry *newdentry,
78 struct kstat *stat, const char *link,
79 struct dentry *hardlink, bool debug)
83 if (newdentry->d_inode)
87 err = ovl_do_link(hardlink, dir, newdentry, debug);
89 switch (stat->mode & S_IFMT) {
91 err = ovl_do_create(dir, newdentry, stat->mode, debug);
95 err = ovl_do_mkdir(dir, newdentry, stat->mode, debug);
102 err = ovl_do_mknod(dir, newdentry,
103 stat->mode, stat->rdev, debug);
107 err = ovl_do_symlink(dir, newdentry, link, debug);
114 if (!err && WARN_ON(!newdentry->d_inode)) {
116 * Not quite sure if non-instantiated dentry is legal or not.
117 * VFS doesn't seem to care so check and warn here.
124 static int ovl_set_opaque(struct dentry *upperdentry)
126 return ovl_do_setxattr(upperdentry, OVL_XATTR_OPAQUE, "y", 1, 0);
129 static void ovl_remove_opaque(struct dentry *upperdentry)
133 err = ovl_do_removexattr(upperdentry, OVL_XATTR_OPAQUE);
135 pr_warn("overlayfs: failed to remove opaque from '%s' (%i)\n",
136 upperdentry->d_name.name, err);
140 static int ovl_dir_getattr(struct vfsmount *mnt, struct dentry *dentry,
144 enum ovl_path_type type;
145 struct path realpath;
146 const struct cred *old_cred;
148 type = ovl_path_real(dentry, &realpath);
149 old_cred = ovl_override_creds(dentry->d_sb);
150 err = vfs_getattr(&realpath, stat);
151 revert_creds(old_cred);
155 stat->dev = dentry->d_sb->s_dev;
156 stat->ino = dentry->d_inode->i_ino;
159 * It's probably not worth it to count subdirs to get the
160 * correct link count. nlink=1 seems to pacify 'find' and
163 if (OVL_TYPE_MERGE(type))
169 /* Common operations required to be done after creation of file on upper */
170 static void ovl_instantiate(struct dentry *dentry, struct inode *inode,
171 struct dentry *newdentry, bool hardlink)
173 ovl_dentry_version_inc(dentry->d_parent);
174 ovl_dentry_update(dentry, newdentry);
176 ovl_inode_update(inode, d_inode(newdentry));
177 ovl_copyattr(newdentry->d_inode, inode);
179 WARN_ON(ovl_inode_real(inode, NULL) != d_inode(newdentry));
182 d_instantiate(dentry, inode);
185 static int ovl_create_upper(struct dentry *dentry, struct inode *inode,
186 struct kstat *stat, const char *link,
187 struct dentry *hardlink)
189 struct dentry *upperdir = ovl_dentry_upper(dentry->d_parent);
190 struct inode *udir = upperdir->d_inode;
191 struct dentry *newdentry;
194 if (!hardlink && !IS_POSIXACL(udir))
195 stat->mode &= ~current_umask();
197 inode_lock_nested(udir, I_MUTEX_PARENT);
198 newdentry = lookup_one_len(dentry->d_name.name, upperdir,
200 err = PTR_ERR(newdentry);
201 if (IS_ERR(newdentry))
203 err = ovl_create_real(udir, newdentry, stat, link, hardlink, false);
207 ovl_instantiate(dentry, inode, newdentry, !!hardlink);
216 static int ovl_lock_rename_workdir(struct dentry *workdir,
217 struct dentry *upperdir)
219 /* Workdir should not be the same as upperdir */
220 if (workdir == upperdir)
223 /* Workdir should not be subdir of upperdir and vice versa */
224 if (lock_rename(workdir, upperdir) != NULL)
230 unlock_rename(workdir, upperdir);
232 pr_err("overlayfs: failed to lock workdir+upperdir\n");
236 static struct dentry *ovl_clear_empty(struct dentry *dentry,
237 struct list_head *list)
239 struct dentry *workdir = ovl_workdir(dentry);
240 struct inode *wdir = workdir->d_inode;
241 struct dentry *upperdir = ovl_dentry_upper(dentry->d_parent);
242 struct inode *udir = upperdir->d_inode;
243 struct path upperpath;
244 struct dentry *upper;
245 struct dentry *opaquedir;
249 if (WARN_ON(!workdir))
250 return ERR_PTR(-EROFS);
252 err = ovl_lock_rename_workdir(workdir, upperdir);
256 ovl_path_upper(dentry, &upperpath);
257 err = vfs_getattr(&upperpath, &stat);
262 if (!S_ISDIR(stat.mode))
264 upper = upperpath.dentry;
265 if (upper->d_parent->d_inode != udir)
268 opaquedir = ovl_lookup_temp(workdir, dentry);
269 err = PTR_ERR(opaquedir);
270 if (IS_ERR(opaquedir))
273 err = ovl_create_real(wdir, opaquedir, &stat, NULL, NULL, true);
277 err = ovl_copy_xattr(upper, opaquedir);
281 err = ovl_set_opaque(opaquedir);
285 inode_lock(opaquedir->d_inode);
286 err = ovl_set_attr(opaquedir, &stat);
287 inode_unlock(opaquedir->d_inode);
291 err = ovl_do_rename(wdir, opaquedir, udir, upper, RENAME_EXCHANGE);
295 ovl_cleanup_whiteouts(upper, list);
296 ovl_cleanup(wdir, upper);
297 unlock_rename(workdir, upperdir);
299 /* dentry's upper doesn't match now, get rid of it */
305 ovl_cleanup(wdir, opaquedir);
309 unlock_rename(workdir, upperdir);
314 static struct dentry *ovl_check_empty_and_clear(struct dentry *dentry)
317 struct dentry *ret = NULL;
318 enum ovl_path_type type = ovl_path_type(dentry);
321 err = ovl_check_empty_dir(dentry, &list);
328 * When removing an empty opaque directory, then it makes no sense to
329 * replace it with an exact replica of itself.
331 * If no upperdentry then skip clearing whiteouts.
333 * Can race with copy-up, since we don't hold the upperdir mutex.
334 * Doesn't matter, since copy-up can't create a non-empty directory
337 if (OVL_TYPE_UPPER(type) && OVL_TYPE_MERGE(type))
338 ret = ovl_clear_empty(dentry, &list);
341 ovl_cache_free(&list);
346 static int ovl_set_upper_acl(struct dentry *upperdentry, const char *name,
347 const struct posix_acl *acl)
353 if (!IS_ENABLED(CONFIG_FS_POSIX_ACL) || !acl)
356 size = posix_acl_to_xattr(NULL, acl, NULL, 0);
357 buffer = kmalloc(size, GFP_KERNEL);
361 size = posix_acl_to_xattr(&init_user_ns, acl, buffer, size);
366 err = vfs_setxattr(upperdentry, name, buffer, size, XATTR_CREATE);
372 static int ovl_create_over_whiteout(struct dentry *dentry, struct inode *inode,
373 struct kstat *stat, const char *link,
374 struct dentry *hardlink)
376 struct dentry *workdir = ovl_workdir(dentry);
377 struct inode *wdir = workdir->d_inode;
378 struct dentry *upperdir = ovl_dentry_upper(dentry->d_parent);
379 struct inode *udir = upperdir->d_inode;
380 struct dentry *upper;
381 struct dentry *newdentry;
383 struct posix_acl *acl, *default_acl;
385 if (WARN_ON(!workdir))
389 err = posix_acl_create(dentry->d_parent->d_inode,
390 &stat->mode, &default_acl, &acl);
395 err = ovl_lock_rename_workdir(workdir, upperdir);
399 newdentry = ovl_lookup_temp(workdir, dentry);
400 err = PTR_ERR(newdentry);
401 if (IS_ERR(newdentry))
404 upper = lookup_one_len(dentry->d_name.name, upperdir,
406 err = PTR_ERR(upper);
410 err = ovl_create_real(wdir, newdentry, stat, link, hardlink, true);
415 * mode could have been mutilated due to umask (e.g. sgid directory)
418 !S_ISLNK(stat->mode) && newdentry->d_inode->i_mode != stat->mode) {
419 struct iattr attr = {
420 .ia_valid = ATTR_MODE,
421 .ia_mode = stat->mode,
423 inode_lock(newdentry->d_inode);
424 err = notify_change(newdentry, &attr, NULL);
425 inode_unlock(newdentry->d_inode);
430 err = ovl_set_upper_acl(newdentry, XATTR_NAME_POSIX_ACL_ACCESS,
435 err = ovl_set_upper_acl(newdentry, XATTR_NAME_POSIX_ACL_DEFAULT,
441 if (!hardlink && S_ISDIR(stat->mode)) {
442 err = ovl_set_opaque(newdentry);
446 err = ovl_do_rename(wdir, newdentry, udir, upper,
451 ovl_cleanup(wdir, upper);
453 err = ovl_do_rename(wdir, newdentry, udir, upper, 0);
457 ovl_instantiate(dentry, inode, newdentry, !!hardlink);
464 unlock_rename(workdir, upperdir);
467 posix_acl_release(acl);
468 posix_acl_release(default_acl);
473 ovl_cleanup(wdir, newdentry);
477 static int ovl_create_or_link(struct dentry *dentry, struct inode *inode,
478 struct kstat *stat, const char *link,
479 struct dentry *hardlink)
482 const struct cred *old_cred;
483 struct cred *override_cred;
485 err = ovl_copy_up(dentry->d_parent);
489 old_cred = ovl_override_creds(dentry->d_sb);
491 override_cred = prepare_creds();
493 override_cred->fsuid = inode->i_uid;
494 override_cred->fsgid = inode->i_gid;
495 put_cred(override_creds(override_cred));
496 put_cred(override_cred);
498 if (!ovl_dentry_is_opaque(dentry))
499 err = ovl_create_upper(dentry, inode, stat, link,
502 err = ovl_create_over_whiteout(dentry, inode, stat,
505 revert_creds(old_cred);
507 struct inode *realinode = d_inode(ovl_dentry_upper(dentry));
509 WARN_ON(inode->i_mode != realinode->i_mode);
510 WARN_ON(!uid_eq(inode->i_uid, realinode->i_uid));
511 WARN_ON(!gid_eq(inode->i_gid, realinode->i_gid));
516 static int ovl_create_object(struct dentry *dentry, int mode, dev_t rdev,
521 struct kstat stat = {
525 err = ovl_want_write(dentry);
530 inode = ovl_new_inode(dentry->d_sb, mode);
534 inode_init_owner(inode, dentry->d_parent->d_inode, mode);
535 stat.mode = inode->i_mode;
537 err = ovl_create_or_link(dentry, inode, &stat, link, NULL);
542 ovl_drop_write(dentry);
547 static int ovl_create(struct inode *dir, struct dentry *dentry, umode_t mode,
550 return ovl_create_object(dentry, (mode & 07777) | S_IFREG, 0, NULL);
553 static int ovl_mkdir(struct inode *dir, struct dentry *dentry, umode_t mode)
555 return ovl_create_object(dentry, (mode & 07777) | S_IFDIR, 0, NULL);
558 static int ovl_mknod(struct inode *dir, struct dentry *dentry, umode_t mode,
561 /* Don't allow creation of "whiteout" on overlay */
562 if (S_ISCHR(mode) && rdev == WHITEOUT_DEV)
565 return ovl_create_object(dentry, mode, rdev, NULL);
568 static int ovl_symlink(struct inode *dir, struct dentry *dentry,
571 return ovl_create_object(dentry, S_IFLNK, 0, link);
574 static int ovl_link(struct dentry *old, struct inode *newdir,
580 err = ovl_want_write(old);
584 err = ovl_copy_up(old);
588 inode = d_inode(old);
591 err = ovl_create_or_link(new, inode, NULL, NULL, ovl_dentry_upper(old));
601 static int ovl_remove_and_whiteout(struct dentry *dentry, bool is_dir)
603 struct dentry *workdir = ovl_workdir(dentry);
604 struct inode *wdir = workdir->d_inode;
605 struct dentry *upperdir = ovl_dentry_upper(dentry->d_parent);
606 struct inode *udir = upperdir->d_inode;
607 struct dentry *whiteout;
608 struct dentry *upper;
609 struct dentry *opaquedir = NULL;
613 if (WARN_ON(!workdir))
617 opaquedir = ovl_check_empty_and_clear(dentry);
618 err = PTR_ERR(opaquedir);
619 if (IS_ERR(opaquedir))
623 err = ovl_lock_rename_workdir(workdir, upperdir);
627 upper = lookup_one_len(dentry->d_name.name, upperdir,
629 err = PTR_ERR(upper);
634 if ((opaquedir && upper != opaquedir) ||
635 (!opaquedir && ovl_dentry_upper(dentry) &&
636 upper != ovl_dentry_upper(dentry))) {
640 whiteout = ovl_whiteout(workdir, dentry);
641 err = PTR_ERR(whiteout);
642 if (IS_ERR(whiteout))
646 flags = RENAME_EXCHANGE;
648 err = ovl_do_rename(wdir, whiteout, udir, upper, flags);
652 ovl_cleanup(wdir, upper);
654 ovl_dentry_version_inc(dentry->d_parent);
661 unlock_rename(workdir, upperdir);
668 ovl_cleanup(wdir, whiteout);
672 static int ovl_remove_upper(struct dentry *dentry, bool is_dir)
674 struct dentry *upperdir = ovl_dentry_upper(dentry->d_parent);
675 struct inode *dir = upperdir->d_inode;
676 struct dentry *upper;
679 inode_lock_nested(dir, I_MUTEX_PARENT);
680 upper = lookup_one_len(dentry->d_name.name, upperdir,
682 err = PTR_ERR(upper);
687 if (upper == ovl_dentry_upper(dentry)) {
689 err = vfs_rmdir(dir, upper);
691 err = vfs_unlink(dir, upper, NULL);
692 ovl_dentry_version_inc(dentry->d_parent);
697 * Keeping this dentry hashed would mean having to release
698 * upperpath/lowerpath, which could only be done if we are the
699 * sole user of this dentry. Too tricky... Just unhash for
710 static inline int ovl_check_sticky(struct dentry *dentry)
712 struct inode *dir = ovl_dentry_real(dentry->d_parent)->d_inode;
713 struct inode *inode = ovl_dentry_real(dentry)->d_inode;
715 if (check_sticky(dir, inode))
721 static int ovl_do_remove(struct dentry *dentry, bool is_dir)
723 enum ovl_path_type type;
725 const struct cred *old_cred;
728 err = ovl_check_sticky(dentry);
732 err = ovl_want_write(dentry);
736 err = ovl_copy_up(dentry->d_parent);
740 type = ovl_path_type(dentry);
742 old_cred = ovl_override_creds(dentry->d_sb);
743 if (OVL_TYPE_PURE_UPPER(type))
744 err = ovl_remove_upper(dentry, is_dir);
746 err = ovl_remove_and_whiteout(dentry, is_dir);
747 revert_creds(old_cred);
750 clear_nlink(dentry->d_inode);
752 drop_nlink(dentry->d_inode);
755 ovl_drop_write(dentry);
760 static int ovl_unlink(struct inode *dir, struct dentry *dentry)
762 return ovl_do_remove(dentry, false);
765 static int ovl_rmdir(struct inode *dir, struct dentry *dentry)
767 return ovl_do_remove(dentry, true);
770 static int ovl_rename2(struct inode *olddir, struct dentry *old,
771 struct inode *newdir, struct dentry *new,
775 enum ovl_path_type old_type;
776 enum ovl_path_type new_type;
777 struct dentry *old_upperdir;
778 struct dentry *new_upperdir;
779 struct dentry *olddentry;
780 struct dentry *newdentry;
784 bool cleanup_whiteout = false;
785 bool overwrite = !(flags & RENAME_EXCHANGE);
786 bool is_dir = d_is_dir(old);
787 bool new_is_dir = false;
788 struct dentry *opaquedir = NULL;
789 const struct cred *old_cred = NULL;
792 if (flags & ~(RENAME_EXCHANGE | RENAME_NOREPLACE))
795 flags &= ~RENAME_NOREPLACE;
797 err = ovl_check_sticky(old);
801 /* Don't copy up directory trees */
802 old_type = ovl_path_type(old);
804 if (OVL_TYPE_MERGE_OR_LOWER(old_type) && is_dir)
808 err = ovl_check_sticky(new);
815 new_type = ovl_path_type(new);
817 if (!overwrite && OVL_TYPE_MERGE_OR_LOWER(new_type) && new_is_dir)
821 if (!OVL_TYPE_UPPER(new_type) && !OVL_TYPE_UPPER(old_type)) {
822 if (ovl_dentry_lower(old)->d_inode ==
823 ovl_dentry_lower(new)->d_inode)
826 if (OVL_TYPE_UPPER(new_type) && OVL_TYPE_UPPER(old_type)) {
827 if (ovl_dentry_upper(old)->d_inode ==
828 ovl_dentry_upper(new)->d_inode)
832 if (ovl_dentry_is_opaque(new))
833 new_type = __OVL_PATH_UPPER;
835 new_type = __OVL_PATH_UPPER | __OVL_PATH_PURE;
838 err = ovl_want_write(old);
842 err = ovl_copy_up(old);
846 err = ovl_copy_up(new->d_parent);
850 err = ovl_copy_up(new);
855 old_opaque = !OVL_TYPE_PURE_UPPER(old_type);
856 new_opaque = !OVL_TYPE_PURE_UPPER(new_type);
858 old_cred = ovl_override_creds(old->d_sb);
860 if (overwrite && OVL_TYPE_MERGE_OR_LOWER(new_type) && new_is_dir) {
861 opaquedir = ovl_check_empty_and_clear(new);
862 err = PTR_ERR(opaquedir);
863 if (IS_ERR(opaquedir)) {
865 goto out_revert_creds;
871 if (new->d_inode || !new_opaque) {
872 /* Whiteout source */
873 flags |= RENAME_WHITEOUT;
875 /* Switch whiteouts */
876 flags |= RENAME_EXCHANGE;
878 } else if (is_dir && !new->d_inode && new_opaque) {
879 flags |= RENAME_EXCHANGE;
880 cleanup_whiteout = true;
884 old_upperdir = ovl_dentry_upper(old->d_parent);
885 new_upperdir = ovl_dentry_upper(new->d_parent);
887 trap = lock_rename(new_upperdir, old_upperdir);
890 olddentry = lookup_one_len(old->d_name.name, old_upperdir,
892 err = PTR_ERR(olddentry);
893 if (IS_ERR(olddentry))
897 if (olddentry != ovl_dentry_upper(old))
900 newdentry = lookup_one_len(new->d_name.name, new_upperdir,
902 err = PTR_ERR(newdentry);
903 if (IS_ERR(newdentry))
907 if (ovl_dentry_upper(new)) {
909 if (newdentry != opaquedir)
912 if (newdentry != ovl_dentry_upper(new))
916 if (!d_is_negative(newdentry) &&
917 (!new_opaque || !ovl_is_whiteout(newdentry)))
921 if (olddentry == trap)
923 if (newdentry == trap)
926 if (is_dir && !old_opaque && new_opaque) {
927 err = ovl_set_opaque(olddentry);
931 if (!overwrite && new_is_dir && old_opaque && !new_opaque) {
932 err = ovl_set_opaque(newdentry);
937 if (old_opaque || new_opaque) {
938 err = ovl_do_rename(old_upperdir->d_inode, olddentry,
939 new_upperdir->d_inode, newdentry,
942 /* No debug for the plain case */
943 BUG_ON(flags & ~RENAME_EXCHANGE);
944 err = vfs_rename(old_upperdir->d_inode, olddentry,
945 new_upperdir->d_inode, newdentry,
950 if (is_dir && !old_opaque && new_opaque)
951 ovl_remove_opaque(olddentry);
952 if (!overwrite && new_is_dir && old_opaque && !new_opaque)
953 ovl_remove_opaque(newdentry);
957 if (is_dir && old_opaque && !new_opaque)
958 ovl_remove_opaque(olddentry);
959 if (!overwrite && new_is_dir && !old_opaque && new_opaque)
960 ovl_remove_opaque(newdentry);
963 * Old dentry now lives in different location. Dentries in
964 * lowerstack are stale. We cannot drop them here because
965 * access to them is lockless. This could be only pure upper
966 * or opaque directory - numlower is zero. Or upper non-dir
967 * entry - its pureness is tracked by flag opaque.
969 if (old_opaque != new_opaque) {
970 ovl_dentry_set_opaque(old, new_opaque);
972 ovl_dentry_set_opaque(new, old_opaque);
975 if (cleanup_whiteout)
976 ovl_cleanup(old_upperdir->d_inode, newdentry);
978 ovl_dentry_version_inc(old->d_parent);
979 ovl_dentry_version_inc(new->d_parent);
986 unlock_rename(new_upperdir, old_upperdir);
988 revert_creds(old_cred);
996 const struct inode_operations ovl_dir_inode_operations = {
997 .lookup = ovl_lookup,
999 .symlink = ovl_symlink,
1000 .unlink = ovl_unlink,
1002 .rename2 = ovl_rename2,
1004 .setattr = ovl_setattr,
1005 .create = ovl_create,
1007 .permission = ovl_permission,
1008 .getattr = ovl_dir_getattr,
1009 .setxattr = generic_setxattr,
1010 .getxattr = generic_getxattr,
1011 .listxattr = ovl_listxattr,
1012 .removexattr = generic_removexattr,
1013 .get_acl = ovl_get_acl,
1014 .update_time = ovl_update_time,
projects / cascardo / linux.git / blob