[2/2] ovl: support encoding fid from inode with no alias

Message ID	20250105162404.357058-3-amir73il@gmail.com (mailing list archive)
State	New
Headers	show Received: from mail-wr1-f54.google.com (mail-wr1-f54.google.com [209.85.221.54]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id B6156157466 for <linux-fsdevel@vger.kernel.org>; Sun, 5 Jan 2025 16:24:12 +0000 (UTC) From: Amir Goldstein <amir73il@gmail.com> To: Christian Brauner <brauner@kernel.org> Cc: Jan Kara <jack@suse.cz>, Miklos Szeredi <miklos@szeredi.hu>, linux-fsdevel@vger.kernel.org, Dmitry Safonov <dima@arista.com> Subject: [PATCH 2/2] ovl: support encoding fid from inode with no alias Date: Sun, 5 Jan 2025 17:24:04 +0100 Message-Id: <20250105162404.357058-3-amir73il@gmail.com> In-Reply-To: <20250105162404.357058-1-amir73il@gmail.com> References: <20250105162404.357058-1-amir73il@gmail.com> Precedence: bulk MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	Fix encoding overlayfs fid for fanotify delete events \| expand [0/2] Fix encoding overlayfs fid for fanotify delete events [1/2] ovl: pass realinode to ovl_encode_real_fh() instead of realdentry [2/2] ovl: support encoding fid from inode with no alias

Message ID

20250105162404.357058-3-amir73il@gmail.com (mailing list archive)

State

New

Headers

From: Amir Goldstein <amir73il@gmail.com>
To: Christian Brauner <brauner@kernel.org>
Cc: Jan Kara <jack@suse.cz>,
	Miklos Szeredi <miklos@szeredi.hu>,
	linux-fsdevel@vger.kernel.org,
	Dmitry Safonov <dima@arista.com>
Subject: [PATCH 2/2] ovl: support encoding fid from inode with no alias
Date: Sun,  5 Jan 2025 17:24:04 +0100
Message-Id: <20250105162404.357058-3-amir73il@gmail.com>
In-Reply-To: <20250105162404.357058-1-amir73il@gmail.com>
References: <20250105162404.357058-1-amir73il@gmail.com>
Precedence: bulk
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

Fix encoding overlayfs fid for fanotify delete events | expand

Commit Message

Amir Goldstein Jan. 5, 2025, 4:24 p.m. UTC

Dmitry Safonov reported that a WARN_ON() assertion can be trigered by
userspace when calling inotify_show_fdinfo() for an overlayfs watched
inode, whose dentry aliases were discarded with drop_caches.

The WARN_ON() assertion in inotify_show_fdinfo() was removed, because
it is possible for encoding file handle to fail for other reason, but
the impact of failing to encode an overlayfs file handle goes beyond
this assertion.

As shown in the LTP test case mentioned in the link below, failure to
encode an overlayfs file handle from a non-aliased inode also leads to
failure to report an fid with FAN_DELETE_SELF fanotify events.

As Dmitry notes in his analyzis of the problem, ovl_encode_fh() fails
if it cannot find an alias for the inode, but this failure can be fixed.
ovl_encode_fh() seldom uses the alias and in the case of non-decodable
file handles, as is often the case with fanotify fid info,
ovl_encode_fh() never needs to use the alias to encode a file handle.

Defer finding an alias until it is actually needed so ovl_encode_fh()
will not fail in the common case of FAN_DELETE_SELF fanotify events.

Fixes: 16aac5ad1fa9 ("ovl: support encoding non-decodable file handles")
Reported-by: Dmitry Safonov <dima@arista.com>
Closes: https://lore.kernel.org/linux-fsdevel/CAOQ4uxiie81voLZZi2zXS1BziXZCM24nXqPAxbu8kxXCUWdwOg@mail.gmail.com/
Signed-off-by: Amir Goldstein <amir73il@gmail.com>
---
 fs/overlayfs/export.c | 46 +++++++++++++++++++++++--------------------
 1 file changed, 25 insertions(+), 21 deletions(-)

Comments

Dmitry Safonov Jan. 7, 2025, 1:24 a.m. UTC | #1

Hi Amir,

On Sun, Jan 5, 2025 at 4:24 PM Amir Goldstein <amir73il@gmail.com> wrote:
>
> Dmitry Safonov reported that a WARN_ON() assertion can be trigered by
> userspace when calling inotify_show_fdinfo() for an overlayfs watched
> inode, whose dentry aliases were discarded with drop_caches.
>
> The WARN_ON() assertion in inotify_show_fdinfo() was removed, because
> it is possible for encoding file handle to fail for other reason, but
> the impact of failing to encode an overlayfs file handle goes beyond
> this assertion.
>
> As shown in the LTP test case mentioned in the link below, failure to
> encode an overlayfs file handle from a non-aliased inode also leads to
> failure to report an fid with FAN_DELETE_SELF fanotify events.
>
> As Dmitry notes in his analyzis of the problem, ovl_encode_fh() fails
> if it cannot find an alias for the inode, but this failure can be fixed.
> ovl_encode_fh() seldom uses the alias and in the case of non-decodable
> file handles, as is often the case with fanotify fid info,
> ovl_encode_fh() never needs to use the alias to encode a file handle.
>
> Defer finding an alias until it is actually needed so ovl_encode_fh()
> will not fail in the common case of FAN_DELETE_SELF fanotify events.
>
> Fixes: 16aac5ad1fa9 ("ovl: support encoding non-decodable file handles")
> Reported-by: Dmitry Safonov <dima@arista.com>
> Closes: https://lore.kernel.org/linux-fsdevel/CAOQ4uxiie81voLZZi2zXS1BziXZCM24nXqPAxbu8kxXCUWdwOg@mail.gmail.com/
> Signed-off-by: Amir Goldstein <amir73il@gmail.com>

Thank you for such a quick and proper fix, even though it was the
holiday season :-)

FWIW, I've pushed the patches locally. In two or three days I should
have some hundreds of test results from the duts where the issue was
hitting originally. Judging by code changes, I hardly doubt the
original issue would reproduce, but might be worth getting more
coverage of this code.

Thanks,
           Dmitry

diff --git a/fs/overlayfs/export.c b/fs/overlayfs/export.c
index 036c9f39a14d7..444aeeccb6daf 100644
--- a/fs/overlayfs/export.c
+++ b/fs/overlayfs/export.c
@@ -176,35 +176,37 @@  static int ovl_connect_layer(struct dentry *dentry)
  *
  * Return 0 for upper file handle, > 0 for lower file handle or < 0 on error.
  */
-static int ovl_check_encode_origin(struct dentry *dentry)
+static int ovl_check_encode_origin(struct inode *inode)
 {
-	struct ovl_fs *ofs = OVL_FS(dentry->d_sb);
+	struct ovl_fs *ofs = OVL_FS(inode->i_sb);
 	bool decodable = ofs->config.nfs_export;
+	struct dentry *dentry;
+	int err;
 
 	/* No upper layer? */
 	if (!ovl_upper_mnt(ofs))
 		return 1;
 
 	/* Lower file handle for non-upper non-decodable */
-	if (!ovl_dentry_upper(dentry) && !decodable)
+	if (!ovl_inode_upper(inode) && !decodable)
 		return 1;
 
 	/* Upper file handle for pure upper */
-	if (!ovl_dentry_lower(dentry))
+	if (!ovl_inode_lower(inode))
 		return 0;
 
 	/*
 	 * Root is never indexed, so if there's an upper layer, encode upper for
 	 * root.
 	 */
-	if (dentry == dentry->d_sb->s_root)
+	if (inode == d_inode(inode->i_sb->s_root))
 		return 0;
 
 	/*
 	 * Upper decodable file handle for non-indexed upper.
 	 */
-	if (ovl_dentry_upper(dentry) && decodable &&
-	    !ovl_test_flag(OVL_INDEX, d_inode(dentry)))
+	if (ovl_inode_upper(inode) && decodable &&
+	    !ovl_test_flag(OVL_INDEX, inode))
 		return 0;
 
 	/*
@@ -213,17 +215,25 @@  static int ovl_check_encode_origin(struct dentry *dentry)
 	 * ovl_connect_layer() will try to make origin's layer "connected" by
 	 * copying up a "connectable" ancestor.
 	 */
-	if (d_is_dir(dentry) && decodable)
-		return ovl_connect_layer(dentry);
+	if (!decodable || !S_ISDIR(inode->i_mode))
+		return 1;
+
+	dentry = d_find_any_alias(inode);
+	if (!dentry)
+		return -ENOENT;
+
+	err = ovl_connect_layer(dentry);
+	dput(dentry);
+	if (err < 0)
+		return err;
 
 	/* Lower file handle for indexed and non-upper dir/non-dir */
 	return 1;
 }
 
-static int ovl_dentry_to_fid(struct ovl_fs *ofs, struct dentry *dentry,
+static int ovl_dentry_to_fid(struct ovl_fs *ofs, struct inode *inode,
 			     u32 *fid, int buflen)
 {
-	struct inode *inode = d_inode(dentry);
 	struct ovl_fh *fh = NULL;
 	int err, enc_lower;
 	int len;
@@ -232,7 +242,7 @@  static int ovl_dentry_to_fid(struct ovl_fs *ofs, struct dentry *dentry,
 	 * Check if we should encode a lower or upper file handle and maybe
 	 * copy up an ancestor to make lower file handle connectable.
 	 */
-	err = enc_lower = ovl_check_encode_origin(dentry);
+	err = enc_lower = ovl_check_encode_origin(inode);
 	if (enc_lower < 0)
 		goto fail;
 
@@ -252,8 +262,8 @@  static int ovl_dentry_to_fid(struct ovl_fs *ofs, struct dentry *dentry,
 	return err;
 
 fail:
-	pr_warn_ratelimited("failed to encode file handle (%pd2, err=%i)\n",
-			    dentry, err);
+	pr_warn_ratelimited("failed to encode file handle (ino=%lu, err=%i)\n",
+			    inode->i_ino, err);
 	goto out;
 }
 
@@ -261,19 +271,13 @@  static int ovl_encode_fh(struct inode *inode, u32 *fid, int *max_len,
 			 struct inode *parent)
 {
 	struct ovl_fs *ofs = OVL_FS(inode->i_sb);
-	struct dentry *dentry;
 	int bytes, buflen = *max_len << 2;
 
 	/* TODO: encode connectable file handles */
 	if (parent)
 		return FILEID_INVALID;
 
-	dentry = d_find_any_alias(inode);
-	if (!dentry)
-		return FILEID_INVALID;
-
-	bytes = ovl_dentry_to_fid(ofs, dentry, fid, buflen);
-	dput(dentry);
+	bytes = ovl_dentry_to_fid(ofs, inode, fid, buflen);
 	if (bytes <= 0)
 		return FILEID_INVALID;

[2/2] ovl: support encoding fid from inode with no alias

Commit Message

Comments

Patch