1 // SPDX-License-Identifier: GPL-2.0-only
2 /*
3 * fs/libfs.c
4 * Library for filesystems writers.
5 */
6
7 #include <linux/blkdev.h>
8 #include <linux/export.h>
9 #include <linux/pagemap.h>
10 #include <linux/slab.h>
11 #include <linux/cred.h>
12 #include <linux/mount.h>
13 #include <linux/vfs.h>
14 #include <linux/quotaops.h>
15 #include <linux/mutex.h>
16 #include <linux/namei.h>
17 #include <linux/exportfs.h>
18 #include <linux/iversion.h>
19 #include <linux/writeback.h>
20 #include <linux/buffer_head.h> /* sync_mapping_buffers */
21 #include <linux/fs_context.h>
22 #include <linux/pseudo_fs.h>
23 #include <linux/fsnotify.h>
24 #include <linux/unicode.h>
25 #include <linux/fscrypt.h>
26
27 #include <linux/uaccess.h>
28
29 #include "internal.h"
30
simple_getattr(struct user_namespace * mnt_userns,const struct path * path,struct kstat * stat,u32 request_mask,unsigned int query_flags)31 int simple_getattr(struct user_namespace *mnt_userns, const struct path *path,
32 struct kstat *stat, u32 request_mask,
33 unsigned int query_flags)
34 {
35 struct inode *inode = d_inode(path->dentry);
36 generic_fillattr(&init_user_ns, inode, stat);
37 stat->blocks = inode->i_mapping->nrpages << (PAGE_SHIFT - 9);
38 return 0;
39 }
40 EXPORT_SYMBOL(simple_getattr);
41
simple_statfs(struct dentry * dentry,struct kstatfs * buf)42 int simple_statfs(struct dentry *dentry, struct kstatfs *buf)
43 {
44 buf->f_type = dentry->d_sb->s_magic;
45 buf->f_bsize = PAGE_SIZE;
46 buf->f_namelen = NAME_MAX;
47 return 0;
48 }
49 EXPORT_SYMBOL(simple_statfs);
50
51 /*
52 * Retaining negative dentries for an in-memory filesystem just wastes
53 * memory and lookup time: arrange for them to be deleted immediately.
54 */
always_delete_dentry(const struct dentry * dentry)55 int always_delete_dentry(const struct dentry *dentry)
56 {
57 return 1;
58 }
59 EXPORT_SYMBOL(always_delete_dentry);
60
61 const struct dentry_operations simple_dentry_operations = {
62 .d_delete = always_delete_dentry,
63 };
64 EXPORT_SYMBOL(simple_dentry_operations);
65
66 /*
67 * Lookup the data. This is trivial - if the dentry didn't already
68 * exist, we know it is negative. Set d_op to delete negative dentries.
69 */
simple_lookup(struct inode * dir,struct dentry * dentry,unsigned int flags)70 struct dentry *simple_lookup(struct inode *dir, struct dentry *dentry, unsigned int flags)
71 {
72 if (dentry->d_name.len > NAME_MAX)
73 return ERR_PTR(-ENAMETOOLONG);
74 if (!dentry->d_sb->s_d_op)
75 d_set_d_op(dentry, &simple_dentry_operations);
76 d_add(dentry, NULL);
77 return NULL;
78 }
79 EXPORT_SYMBOL(simple_lookup);
80
dcache_dir_open(struct inode * inode,struct file * file)81 int dcache_dir_open(struct inode *inode, struct file *file)
82 {
83 file->private_data = d_alloc_cursor(file->f_path.dentry);
84
85 return file->private_data ? 0 : -ENOMEM;
86 }
87 EXPORT_SYMBOL(dcache_dir_open);
88
dcache_dir_close(struct inode * inode,struct file * file)89 int dcache_dir_close(struct inode *inode, struct file *file)
90 {
91 dput(file->private_data);
92 return 0;
93 }
94 EXPORT_SYMBOL(dcache_dir_close);
95
96 /* parent is locked at least shared */
97 /*
98 * Returns an element of siblings' list.
99 * We are looking for <count>th positive after <p>; if
100 * found, dentry is grabbed and returned to caller.
101 * If no such element exists, NULL is returned.
102 */
scan_positives(struct dentry * cursor,struct list_head * p,loff_t count,struct dentry * last)103 static struct dentry *scan_positives(struct dentry *cursor,
104 struct list_head *p,
105 loff_t count,
106 struct dentry *last)
107 {
108 struct dentry *dentry = cursor->d_parent, *found = NULL;
109
110 spin_lock(&dentry->d_lock);
111 while ((p = p->next) != &dentry->d_subdirs) {
112 struct dentry *d = list_entry(p, struct dentry, d_child);
113 // we must at least skip cursors, to avoid livelocks
114 if (d->d_flags & DCACHE_DENTRY_CURSOR)
115 continue;
116 if (simple_positive(d) && !--count) {
117 spin_lock_nested(&d->d_lock, DENTRY_D_LOCK_NESTED);
118 if (simple_positive(d))
119 found = dget_dlock(d);
120 spin_unlock(&d->d_lock);
121 if (likely(found))
122 break;
123 count = 1;
124 }
125 if (need_resched()) {
126 list_move(&cursor->d_child, p);
127 p = &cursor->d_child;
128 spin_unlock(&dentry->d_lock);
129 cond_resched();
130 spin_lock(&dentry->d_lock);
131 }
132 }
133 spin_unlock(&dentry->d_lock);
134 dput(last);
135 return found;
136 }
137
dcache_dir_lseek(struct file * file,loff_t offset,int whence)138 loff_t dcache_dir_lseek(struct file *file, loff_t offset, int whence)
139 {
140 struct dentry *dentry = file->f_path.dentry;
141 switch (whence) {
142 case 1:
143 offset += file->f_pos;
144 fallthrough;
145 case 0:
146 if (offset >= 0)
147 break;
148 fallthrough;
149 default:
150 return -EINVAL;
151 }
152 if (offset != file->f_pos) {
153 struct dentry *cursor = file->private_data;
154 struct dentry *to = NULL;
155
156 inode_lock_shared(dentry->d_inode);
157
158 if (offset > 2)
159 to = scan_positives(cursor, &dentry->d_subdirs,
160 offset - 2, NULL);
161 spin_lock(&dentry->d_lock);
162 if (to)
163 list_move(&cursor->d_child, &to->d_child);
164 else
165 list_del_init(&cursor->d_child);
166 spin_unlock(&dentry->d_lock);
167 dput(to);
168
169 file->f_pos = offset;
170
171 inode_unlock_shared(dentry->d_inode);
172 }
173 return offset;
174 }
175 EXPORT_SYMBOL(dcache_dir_lseek);
176
177 /* Relationship between i_mode and the DT_xxx types */
dt_type(struct inode * inode)178 static inline unsigned char dt_type(struct inode *inode)
179 {
180 return (inode->i_mode >> 12) & 15;
181 }
182
183 /*
184 * Directory is locked and all positive dentries in it are safe, since
185 * for ramfs-type trees they can't go away without unlink() or rmdir(),
186 * both impossible due to the lock on directory.
187 */
188
dcache_readdir(struct file * file,struct dir_context * ctx)189 int dcache_readdir(struct file *file, struct dir_context *ctx)
190 {
191 struct dentry *dentry = file->f_path.dentry;
192 struct dentry *cursor = file->private_data;
193 struct list_head *anchor = &dentry->d_subdirs;
194 struct dentry *next = NULL;
195 struct list_head *p;
196
197 if (!dir_emit_dots(file, ctx))
198 return 0;
199
200 if (ctx->pos == 2)
201 p = anchor;
202 else if (!list_empty(&cursor->d_child))
203 p = &cursor->d_child;
204 else
205 return 0;
206
207 while ((next = scan_positives(cursor, p, 1, next)) != NULL) {
208 if (!dir_emit(ctx, next->d_name.name, next->d_name.len,
209 d_inode(next)->i_ino, dt_type(d_inode(next))))
210 break;
211 ctx->pos++;
212 p = &next->d_child;
213 }
214 spin_lock(&dentry->d_lock);
215 if (next)
216 list_move_tail(&cursor->d_child, &next->d_child);
217 else
218 list_del_init(&cursor->d_child);
219 spin_unlock(&dentry->d_lock);
220 dput(next);
221
222 return 0;
223 }
224 EXPORT_SYMBOL(dcache_readdir);
225
generic_read_dir(struct file * filp,char __user * buf,size_t siz,loff_t * ppos)226 ssize_t generic_read_dir(struct file *filp, char __user *buf, size_t siz, loff_t *ppos)
227 {
228 return -EISDIR;
229 }
230 EXPORT_SYMBOL(generic_read_dir);
231
232 const struct file_operations simple_dir_operations = {
233 .open = dcache_dir_open,
234 .release = dcache_dir_close,
235 .llseek = dcache_dir_lseek,
236 .read = generic_read_dir,
237 .iterate_shared = dcache_readdir,
238 .fsync = noop_fsync,
239 };
240 EXPORT_SYMBOL(simple_dir_operations);
241
242 const struct inode_operations simple_dir_inode_operations = {
243 .lookup = simple_lookup,
244 };
245 EXPORT_SYMBOL(simple_dir_inode_operations);
246
find_next_child(struct dentry * parent,struct dentry * prev)247 static struct dentry *find_next_child(struct dentry *parent, struct dentry *prev)
248 {
249 struct dentry *child = NULL;
250 struct list_head *p = prev ? &prev->d_child : &parent->d_subdirs;
251
252 spin_lock(&parent->d_lock);
253 while ((p = p->next) != &parent->d_subdirs) {
254 struct dentry *d = container_of(p, struct dentry, d_child);
255 if (simple_positive(d)) {
256 spin_lock_nested(&d->d_lock, DENTRY_D_LOCK_NESTED);
257 if (simple_positive(d))
258 child = dget_dlock(d);
259 spin_unlock(&d->d_lock);
260 if (likely(child))
261 break;
262 }
263 }
264 spin_unlock(&parent->d_lock);
265 dput(prev);
266 return child;
267 }
268
simple_recursive_removal(struct dentry * dentry,void (* callback)(struct dentry *))269 void simple_recursive_removal(struct dentry *dentry,
270 void (*callback)(struct dentry *))
271 {
272 struct dentry *this = dget(dentry);
273 while (true) {
274 struct dentry *victim = NULL, *child;
275 struct inode *inode = this->d_inode;
276
277 inode_lock(inode);
278 if (d_is_dir(this))
279 inode->i_flags |= S_DEAD;
280 while ((child = find_next_child(this, victim)) == NULL) {
281 // kill and ascend
282 // update metadata while it's still locked
283 inode->i_ctime = current_time(inode);
284 clear_nlink(inode);
285 inode_unlock(inode);
286 victim = this;
287 this = this->d_parent;
288 inode = this->d_inode;
289 inode_lock(inode);
290 if (simple_positive(victim)) {
291 d_invalidate(victim); // avoid lost mounts
292 if (d_is_dir(victim))
293 fsnotify_rmdir(inode, victim);
294 else
295 fsnotify_unlink(inode, victim);
296 if (callback)
297 callback(victim);
298 dput(victim); // unpin it
299 }
300 if (victim == dentry) {
301 inode->i_ctime = inode->i_mtime =
302 current_time(inode);
303 if (d_is_dir(dentry))
304 drop_nlink(inode);
305 inode_unlock(inode);
306 dput(dentry);
307 return;
308 }
309 }
310 inode_unlock(inode);
311 this = child;
312 }
313 }
314 EXPORT_SYMBOL(simple_recursive_removal);
315
316 static const struct super_operations simple_super_operations = {
317 .statfs = simple_statfs,
318 };
319
pseudo_fs_fill_super(struct super_block * s,struct fs_context * fc)320 static int pseudo_fs_fill_super(struct super_block *s, struct fs_context *fc)
321 {
322 struct pseudo_fs_context *ctx = fc->fs_private;
323 struct inode *root;
324
325 s->s_maxbytes = MAX_LFS_FILESIZE;
326 s->s_blocksize = PAGE_SIZE;
327 s->s_blocksize_bits = PAGE_SHIFT;
328 s->s_magic = ctx->magic;
329 s->s_op = ctx->ops ?: &simple_super_operations;
330 s->s_xattr = ctx->xattr;
331 s->s_time_gran = 1;
332 root = new_inode(s);
333 if (!root)
334 return -ENOMEM;
335
336 /*
337 * since this is the first inode, make it number 1. New inodes created
338 * after this must take care not to collide with it (by passing
339 * max_reserved of 1 to iunique).
340 */
341 root->i_ino = 1;
342 root->i_mode = S_IFDIR | S_IRUSR | S_IWUSR;
343 root->i_atime = root->i_mtime = root->i_ctime = current_time(root);
344 s->s_root = d_make_root(root);
345 if (!s->s_root)
346 return -ENOMEM;
347 s->s_d_op = ctx->dops;
348 return 0;
349 }
350
pseudo_fs_get_tree(struct fs_context * fc)351 static int pseudo_fs_get_tree(struct fs_context *fc)
352 {
353 return get_tree_nodev(fc, pseudo_fs_fill_super);
354 }
355
pseudo_fs_free(struct fs_context * fc)356 static void pseudo_fs_free(struct fs_context *fc)
357 {
358 kfree(fc->fs_private);
359 }
360
361 static const struct fs_context_operations pseudo_fs_context_ops = {
362 .free = pseudo_fs_free,
363 .get_tree = pseudo_fs_get_tree,
364 };
365
366 /*
367 * Common helper for pseudo-filesystems (sockfs, pipefs, bdev - stuff that
368 * will never be mountable)
369 */
init_pseudo(struct fs_context * fc,unsigned long magic)370 struct pseudo_fs_context *init_pseudo(struct fs_context *fc,
371 unsigned long magic)
372 {
373 struct pseudo_fs_context *ctx;
374
375 ctx = kzalloc(sizeof(struct pseudo_fs_context), GFP_KERNEL);
376 if (likely(ctx)) {
377 ctx->magic = magic;
378 fc->fs_private = ctx;
379 fc->ops = &pseudo_fs_context_ops;
380 fc->sb_flags |= SB_NOUSER;
381 fc->global = true;
382 }
383 return ctx;
384 }
385 EXPORT_SYMBOL(init_pseudo);
386
simple_open(struct inode * inode,struct file * file)387 int simple_open(struct inode *inode, struct file *file)
388 {
389 if (inode->i_private)
390 file->private_data = inode->i_private;
391 return 0;
392 }
393 EXPORT_SYMBOL(simple_open);
394
simple_link(struct dentry * old_dentry,struct inode * dir,struct dentry * dentry)395 int simple_link(struct dentry *old_dentry, struct inode *dir, struct dentry *dentry)
396 {
397 struct inode *inode = d_inode(old_dentry);
398
399 inode->i_ctime = dir->i_ctime = dir->i_mtime = current_time(inode);
400 inc_nlink(inode);
401 ihold(inode);
402 dget(dentry);
403 d_instantiate(dentry, inode);
404 return 0;
405 }
406 EXPORT_SYMBOL(simple_link);
407
simple_empty(struct dentry * dentry)408 int simple_empty(struct dentry *dentry)
409 {
410 struct dentry *child;
411 int ret = 0;
412
413 spin_lock(&dentry->d_lock);
414 list_for_each_entry(child, &dentry->d_subdirs, d_child) {
415 spin_lock_nested(&child->d_lock, DENTRY_D_LOCK_NESTED);
416 if (simple_positive(child)) {
417 spin_unlock(&child->d_lock);
418 goto out;
419 }
420 spin_unlock(&child->d_lock);
421 }
422 ret = 1;
423 out:
424 spin_unlock(&dentry->d_lock);
425 return ret;
426 }
427 EXPORT_SYMBOL(simple_empty);
428
simple_unlink(struct inode * dir,struct dentry * dentry)429 int simple_unlink(struct inode *dir, struct dentry *dentry)
430 {
431 struct inode *inode = d_inode(dentry);
432
433 inode->i_ctime = dir->i_ctime = dir->i_mtime = current_time(inode);
434 drop_nlink(inode);
435 dput(dentry);
436 return 0;
437 }
438 EXPORT_SYMBOL(simple_unlink);
439
simple_rmdir(struct inode * dir,struct dentry * dentry)440 int simple_rmdir(struct inode *dir, struct dentry *dentry)
441 {
442 if (!simple_empty(dentry))
443 return -ENOTEMPTY;
444
445 drop_nlink(d_inode(dentry));
446 simple_unlink(dir, dentry);
447 drop_nlink(dir);
448 return 0;
449 }
450 EXPORT_SYMBOL(simple_rmdir);
451
simple_rename_exchange(struct inode * old_dir,struct dentry * old_dentry,struct inode * new_dir,struct dentry * new_dentry)452 int simple_rename_exchange(struct inode *old_dir, struct dentry *old_dentry,
453 struct inode *new_dir, struct dentry *new_dentry)
454 {
455 bool old_is_dir = d_is_dir(old_dentry);
456 bool new_is_dir = d_is_dir(new_dentry);
457
458 if (old_dir != new_dir && old_is_dir != new_is_dir) {
459 if (old_is_dir) {
460 drop_nlink(old_dir);
461 inc_nlink(new_dir);
462 } else {
463 drop_nlink(new_dir);
464 inc_nlink(old_dir);
465 }
466 }
467 old_dir->i_ctime = old_dir->i_mtime =
468 new_dir->i_ctime = new_dir->i_mtime =
469 d_inode(old_dentry)->i_ctime =
470 d_inode(new_dentry)->i_ctime = current_time(old_dir);
471
472 return 0;
473 }
474 EXPORT_SYMBOL_GPL(simple_rename_exchange);
475
simple_rename(struct user_namespace * mnt_userns,struct inode * old_dir,struct dentry * old_dentry,struct inode * new_dir,struct dentry * new_dentry,unsigned int flags)476 int simple_rename(struct user_namespace *mnt_userns, struct inode *old_dir,
477 struct dentry *old_dentry, struct inode *new_dir,
478 struct dentry *new_dentry, unsigned int flags)
479 {
480 struct inode *inode = d_inode(old_dentry);
481 int they_are_dirs = d_is_dir(old_dentry);
482
483 if (flags & ~(RENAME_NOREPLACE | RENAME_EXCHANGE))
484 return -EINVAL;
485
486 if (flags & RENAME_EXCHANGE)
487 return simple_rename_exchange(old_dir, old_dentry, new_dir, new_dentry);
488
489 if (!simple_empty(new_dentry))
490 return -ENOTEMPTY;
491
492 if (d_really_is_positive(new_dentry)) {
493 simple_unlink(new_dir, new_dentry);
494 if (they_are_dirs) {
495 drop_nlink(d_inode(new_dentry));
496 drop_nlink(old_dir);
497 }
498 } else if (they_are_dirs) {
499 drop_nlink(old_dir);
500 inc_nlink(new_dir);
501 }
502
503 old_dir->i_ctime = old_dir->i_mtime = new_dir->i_ctime =
504 new_dir->i_mtime = inode->i_ctime = current_time(old_dir);
505
506 return 0;
507 }
508 EXPORT_SYMBOL(simple_rename);
509
510 /**
511 * simple_setattr - setattr for simple filesystem
512 * @mnt_userns: user namespace of the target mount
513 * @dentry: dentry
514 * @iattr: iattr structure
515 *
516 * Returns 0 on success, -error on failure.
517 *
518 * simple_setattr is a simple ->setattr implementation without a proper
519 * implementation of size changes.
520 *
521 * It can either be used for in-memory filesystems or special files
522 * on simple regular filesystems. Anything that needs to change on-disk
523 * or wire state on size changes needs its own setattr method.
524 */
simple_setattr(struct user_namespace * mnt_userns,struct dentry * dentry,struct iattr * iattr)525 int simple_setattr(struct user_namespace *mnt_userns, struct dentry *dentry,
526 struct iattr *iattr)
527 {
528 struct inode *inode = d_inode(dentry);
529 int error;
530
531 error = setattr_prepare(mnt_userns, dentry, iattr);
532 if (error)
533 return error;
534
535 if (iattr->ia_valid & ATTR_SIZE)
536 truncate_setsize(inode, iattr->ia_size);
537 setattr_copy(mnt_userns, inode, iattr);
538 mark_inode_dirty(inode);
539 return 0;
540 }
541 EXPORT_SYMBOL(simple_setattr);
542
simple_read_folio(struct file * file,struct folio * folio)543 static int simple_read_folio(struct file *file, struct folio *folio)
544 {
545 folio_zero_range(folio, 0, folio_size(folio));
546 flush_dcache_folio(folio);
547 folio_mark_uptodate(folio);
548 folio_unlock(folio);
549 return 0;
550 }
551
simple_write_begin(struct file * file,struct address_space * mapping,loff_t pos,unsigned len,struct page ** pagep,void ** fsdata)552 int simple_write_begin(struct file *file, struct address_space *mapping,
553 loff_t pos, unsigned len,
554 struct page **pagep, void **fsdata)
555 {
556 struct page *page;
557 pgoff_t index;
558
559 index = pos >> PAGE_SHIFT;
560
561 page = grab_cache_page_write_begin(mapping, index);
562 if (!page)
563 return -ENOMEM;
564
565 *pagep = page;
566
567 if (!PageUptodate(page) && (len != PAGE_SIZE)) {
568 unsigned from = pos & (PAGE_SIZE - 1);
569
570 zero_user_segments(page, 0, from, from + len, PAGE_SIZE);
571 }
572 return 0;
573 }
574 EXPORT_SYMBOL(simple_write_begin);
575
576 /**
577 * simple_write_end - .write_end helper for non-block-device FSes
578 * @file: See .write_end of address_space_operations
579 * @mapping: "
580 * @pos: "
581 * @len: "
582 * @copied: "
583 * @page: "
584 * @fsdata: "
585 *
586 * simple_write_end does the minimum needed for updating a page after writing is
587 * done. It has the same API signature as the .write_end of
588 * address_space_operations vector. So it can just be set onto .write_end for
589 * FSes that don't need any other processing. i_mutex is assumed to be held.
590 * Block based filesystems should use generic_write_end().
591 * NOTE: Even though i_size might get updated by this function, mark_inode_dirty
592 * is not called, so a filesystem that actually does store data in .write_inode
593 * should extend on what's done here with a call to mark_inode_dirty() in the
594 * case that i_size has changed.
595 *
596 * Use *ONLY* with simple_read_folio()
597 */
simple_write_end(struct file * file,struct address_space * mapping,loff_t pos,unsigned len,unsigned copied,struct page * page,void * fsdata)598 static int simple_write_end(struct file *file, struct address_space *mapping,
599 loff_t pos, unsigned len, unsigned copied,
600 struct page *page, void *fsdata)
601 {
602 struct inode *inode = page->mapping->host;
603 loff_t last_pos = pos + copied;
604
605 /* zero the stale part of the page if we did a short copy */
606 if (!PageUptodate(page)) {
607 if (copied < len) {
608 unsigned from = pos & (PAGE_SIZE - 1);
609
610 zero_user(page, from + copied, len - copied);
611 }
612 SetPageUptodate(page);
613 }
614 /*
615 * No need to use i_size_read() here, the i_size
616 * cannot change under us because we hold the i_mutex.
617 */
618 if (last_pos > inode->i_size)
619 i_size_write(inode, last_pos);
620
621 set_page_dirty(page);
622 unlock_page(page);
623 put_page(page);
624
625 return copied;
626 }
627
628 /*
629 * Provides ramfs-style behavior: data in the pagecache, but no writeback.
630 */
631 const struct address_space_operations ram_aops = {
632 .read_folio = simple_read_folio,
633 .write_begin = simple_write_begin,
634 .write_end = simple_write_end,
635 .dirty_folio = noop_dirty_folio,
636 };
637 EXPORT_SYMBOL(ram_aops);
638
639 /*
640 * the inodes created here are not hashed. If you use iunique to generate
641 * unique inode values later for this filesystem, then you must take care
642 * to pass it an appropriate max_reserved value to avoid collisions.
643 */
simple_fill_super(struct super_block * s,unsigned long magic,const struct tree_descr * files)644 int simple_fill_super(struct super_block *s, unsigned long magic,
645 const struct tree_descr *files)
646 {
647 struct inode *inode;
648 struct dentry *root;
649 struct dentry *dentry;
650 int i;
651
652 s->s_blocksize = PAGE_SIZE;
653 s->s_blocksize_bits = PAGE_SHIFT;
654 s->s_magic = magic;
655 s->s_op = &simple_super_operations;
656 s->s_time_gran = 1;
657
658 inode = new_inode(s);
659 if (!inode)
660 return -ENOMEM;
661 /*
662 * because the root inode is 1, the files array must not contain an
663 * entry at index 1
664 */
665 inode->i_ino = 1;
666 inode->i_mode = S_IFDIR | 0755;
667 inode->i_atime = inode->i_mtime = inode->i_ctime = current_time(inode);
668 inode->i_op = &simple_dir_inode_operations;
669 inode->i_fop = &simple_dir_operations;
670 set_nlink(inode, 2);
671 root = d_make_root(inode);
672 if (!root)
673 return -ENOMEM;
674 for (i = 0; !files->name || files->name[0]; i++, files++) {
675 if (!files->name)
676 continue;
677
678 /* warn if it tries to conflict with the root inode */
679 if (unlikely(i == 1))
680 printk(KERN_WARNING "%s: %s passed in a files array"
681 "with an index of 1!\n", __func__,
682 s->s_type->name);
683
684 dentry = d_alloc_name(root, files->name);
685 if (!dentry)
686 goto out;
687 inode = new_inode(s);
688 if (!inode) {
689 dput(dentry);
690 goto out;
691 }
692 inode->i_mode = S_IFREG | files->mode;
693 inode->i_atime = inode->i_mtime = inode->i_ctime = current_time(inode);
694 inode->i_fop = files->ops;
695 inode->i_ino = i;
696 d_add(dentry, inode);
697 }
698 s->s_root = root;
699 return 0;
700 out:
701 d_genocide(root);
702 shrink_dcache_parent(root);
703 dput(root);
704 return -ENOMEM;
705 }
706 EXPORT_SYMBOL(simple_fill_super);
707
708 static DEFINE_SPINLOCK(pin_fs_lock);
709
simple_pin_fs(struct file_system_type * type,struct vfsmount ** mount,int * count)710 int simple_pin_fs(struct file_system_type *type, struct vfsmount **mount, int *count)
711 {
712 struct vfsmount *mnt = NULL;
713 spin_lock(&pin_fs_lock);
714 if (unlikely(!*mount)) {
715 spin_unlock(&pin_fs_lock);
716 mnt = vfs_kern_mount(type, SB_KERNMOUNT, type->name, NULL);
717 if (IS_ERR(mnt))
718 return PTR_ERR(mnt);
719 spin_lock(&pin_fs_lock);
720 if (!*mount)
721 *mount = mnt;
722 }
723 mntget(*mount);
724 ++*count;
725 spin_unlock(&pin_fs_lock);
726 mntput(mnt);
727 return 0;
728 }
729 EXPORT_SYMBOL(simple_pin_fs);
730
simple_release_fs(struct vfsmount ** mount,int * count)731 void simple_release_fs(struct vfsmount **mount, int *count)
732 {
733 struct vfsmount *mnt;
734 spin_lock(&pin_fs_lock);
735 mnt = *mount;
736 if (!--*count)
737 *mount = NULL;
738 spin_unlock(&pin_fs_lock);
739 mntput(mnt);
740 }
741 EXPORT_SYMBOL(simple_release_fs);
742
743 /**
744 * simple_read_from_buffer - copy data from the buffer to user space
745 * @to: the user space buffer to read to
746 * @count: the maximum number of bytes to read
747 * @ppos: the current position in the buffer
748 * @from: the buffer to read from
749 * @available: the size of the buffer
750 *
751 * The simple_read_from_buffer() function reads up to @count bytes from the
752 * buffer @from at offset @ppos into the user space address starting at @to.
753 *
754 * On success, the number of bytes read is returned and the offset @ppos is
755 * advanced by this number, or negative value is returned on error.
756 **/
simple_read_from_buffer(void __user * to,size_t count,loff_t * ppos,const void * from,size_t available)757 ssize_t simple_read_from_buffer(void __user *to, size_t count, loff_t *ppos,
758 const void *from, size_t available)
759 {
760 loff_t pos = *ppos;
761 size_t ret;
762
763 if (pos < 0)
764 return -EINVAL;
765 if (pos >= available || !count)
766 return 0;
767 if (count > available - pos)
768 count = available - pos;
769 ret = copy_to_user(to, from + pos, count);
770 if (ret == count)
771 return -EFAULT;
772 count -= ret;
773 *ppos = pos + count;
774 return count;
775 }
776 EXPORT_SYMBOL(simple_read_from_buffer);
777
778 /**
779 * simple_write_to_buffer - copy data from user space to the buffer
780 * @to: the buffer to write to
781 * @available: the size of the buffer
782 * @ppos: the current position in the buffer
783 * @from: the user space buffer to read from
784 * @count: the maximum number of bytes to read
785 *
786 * The simple_write_to_buffer() function reads up to @count bytes from the user
787 * space address starting at @from into the buffer @to at offset @ppos.
788 *
789 * On success, the number of bytes written is returned and the offset @ppos is
790 * advanced by this number, or negative value is returned on error.
791 **/
simple_write_to_buffer(void * to,size_t available,loff_t * ppos,const void __user * from,size_t count)792 ssize_t simple_write_to_buffer(void *to, size_t available, loff_t *ppos,
793 const void __user *from, size_t count)
794 {
795 loff_t pos = *ppos;
796 size_t res;
797
798 if (pos < 0)
799 return -EINVAL;
800 if (pos >= available || !count)
801 return 0;
802 if (count > available - pos)
803 count = available - pos;
804 res = copy_from_user(to + pos, from, count);
805 if (res == count)
806 return -EFAULT;
807 count -= res;
808 *ppos = pos + count;
809 return count;
810 }
811 EXPORT_SYMBOL(simple_write_to_buffer);
812
813 /**
814 * memory_read_from_buffer - copy data from the buffer
815 * @to: the kernel space buffer to read to
816 * @count: the maximum number of bytes to read
817 * @ppos: the current position in the buffer
818 * @from: the buffer to read from
819 * @available: the size of the buffer
820 *
821 * The memory_read_from_buffer() function reads up to @count bytes from the
822 * buffer @from at offset @ppos into the kernel space address starting at @to.
823 *
824 * On success, the number of bytes read is returned and the offset @ppos is
825 * advanced by this number, or negative value is returned on error.
826 **/
memory_read_from_buffer(void * to,size_t count,loff_t * ppos,const void * from,size_t available)827 ssize_t memory_read_from_buffer(void *to, size_t count, loff_t *ppos,
828 const void *from, size_t available)
829 {
830 loff_t pos = *ppos;
831
832 if (pos < 0)
833 return -EINVAL;
834 if (pos >= available)
835 return 0;
836 if (count > available - pos)
837 count = available - pos;
838 memcpy(to, from + pos, count);
839 *ppos = pos + count;
840
841 return count;
842 }
843 EXPORT_SYMBOL(memory_read_from_buffer);
844
845 /*
846 * Transaction based IO.
847 * The file expects a single write which triggers the transaction, and then
848 * possibly a read which collects the result - which is stored in a
849 * file-local buffer.
850 */
851
simple_transaction_set(struct file * file,size_t n)852 void simple_transaction_set(struct file *file, size_t n)
853 {
854 struct simple_transaction_argresp *ar = file->private_data;
855
856 BUG_ON(n > SIMPLE_TRANSACTION_LIMIT);
857
858 /*
859 * The barrier ensures that ar->size will really remain zero until
860 * ar->data is ready for reading.
861 */
862 smp_mb();
863 ar->size = n;
864 }
865 EXPORT_SYMBOL(simple_transaction_set);
866
simple_transaction_get(struct file * file,const char __user * buf,size_t size)867 char *simple_transaction_get(struct file *file, const char __user *buf, size_t size)
868 {
869 struct simple_transaction_argresp *ar;
870 static DEFINE_SPINLOCK(simple_transaction_lock);
871
872 if (size > SIMPLE_TRANSACTION_LIMIT - 1)
873 return ERR_PTR(-EFBIG);
874
875 ar = (struct simple_transaction_argresp *)get_zeroed_page(GFP_KERNEL);
876 if (!ar)
877 return ERR_PTR(-ENOMEM);
878
879 spin_lock(&simple_transaction_lock);
880
881 /* only one write allowed per open */
882 if (file->private_data) {
883 spin_unlock(&simple_transaction_lock);
884 free_page((unsigned long)ar);
885 return ERR_PTR(-EBUSY);
886 }
887
888 file->private_data = ar;
889
890 spin_unlock(&simple_transaction_lock);
891
892 if (copy_from_user(ar->data, buf, size))
893 return ERR_PTR(-EFAULT);
894
895 return ar->data;
896 }
897 EXPORT_SYMBOL(simple_transaction_get);
898
simple_transaction_read(struct file * file,char __user * buf,size_t size,loff_t * pos)899 ssize_t simple_transaction_read(struct file *file, char __user *buf, size_t size, loff_t *pos)
900 {
901 struct simple_transaction_argresp *ar = file->private_data;
902
903 if (!ar)
904 return 0;
905 return simple_read_from_buffer(buf, size, pos, ar->data, ar->size);
906 }
907 EXPORT_SYMBOL(simple_transaction_read);
908
simple_transaction_release(struct inode * inode,struct file * file)909 int simple_transaction_release(struct inode *inode, struct file *file)
910 {
911 free_page((unsigned long)file->private_data);
912 return 0;
913 }
914 EXPORT_SYMBOL(simple_transaction_release);
915
916 /* Simple attribute files */
917
918 struct simple_attr {
919 int (*get)(void *, u64 *);
920 int (*set)(void *, u64);
921 char get_buf[24]; /* enough to store a u64 and "\n\0" */
922 char set_buf[24];
923 void *data;
924 const char *fmt; /* format for read operation */
925 struct mutex mutex; /* protects access to these buffers */
926 };
927
928 /* simple_attr_open is called by an actual attribute open file operation
929 * to set the attribute specific access operations. */
simple_attr_open(struct inode * inode,struct file * file,int (* get)(void *,u64 *),int (* set)(void *,u64),const char * fmt)930 int simple_attr_open(struct inode *inode, struct file *file,
931 int (*get)(void *, u64 *), int (*set)(void *, u64),
932 const char *fmt)
933 {
934 struct simple_attr *attr;
935
936 attr = kzalloc(sizeof(*attr), GFP_KERNEL);
937 if (!attr)
938 return -ENOMEM;
939
940 attr->get = get;
941 attr->set = set;
942 attr->data = inode->i_private;
943 attr->fmt = fmt;
944 mutex_init(&attr->mutex);
945
946 file->private_data = attr;
947
948 return nonseekable_open(inode, file);
949 }
950 EXPORT_SYMBOL_GPL(simple_attr_open);
951
simple_attr_release(struct inode * inode,struct file * file)952 int simple_attr_release(struct inode *inode, struct file *file)
953 {
954 kfree(file->private_data);
955 return 0;
956 }
957 EXPORT_SYMBOL_GPL(simple_attr_release); /* GPL-only? This? Really? */
958
959 /* read from the buffer that is filled with the get function */
simple_attr_read(struct file * file,char __user * buf,size_t len,loff_t * ppos)960 ssize_t simple_attr_read(struct file *file, char __user *buf,
961 size_t len, loff_t *ppos)
962 {
963 struct simple_attr *attr;
964 size_t size;
965 ssize_t ret;
966
967 attr = file->private_data;
968
969 if (!attr->get)
970 return -EACCES;
971
972 ret = mutex_lock_interruptible(&attr->mutex);
973 if (ret)
974 return ret;
975
976 if (*ppos && attr->get_buf[0]) {
977 /* continued read */
978 size = strlen(attr->get_buf);
979 } else {
980 /* first read */
981 u64 val;
982 ret = attr->get(attr->data, &val);
983 if (ret)
984 goto out;
985
986 size = scnprintf(attr->get_buf, sizeof(attr->get_buf),
987 attr->fmt, (unsigned long long)val);
988 }
989
990 ret = simple_read_from_buffer(buf, len, ppos, attr->get_buf, size);
991 out:
992 mutex_unlock(&attr->mutex);
993 return ret;
994 }
995 EXPORT_SYMBOL_GPL(simple_attr_read);
996
997 /* interpret the buffer as a number to call the set function with */
simple_attr_write(struct file * file,const char __user * buf,size_t len,loff_t * ppos)998 ssize_t simple_attr_write(struct file *file, const char __user *buf,
999 size_t len, loff_t *ppos)
1000 {
1001 struct simple_attr *attr;
1002 unsigned long long val;
1003 size_t size;
1004 ssize_t ret;
1005
1006 attr = file->private_data;
1007 if (!attr->set)
1008 return -EACCES;
1009
1010 ret = mutex_lock_interruptible(&attr->mutex);
1011 if (ret)
1012 return ret;
1013
1014 ret = -EFAULT;
1015 size = min(sizeof(attr->set_buf) - 1, len);
1016 if (copy_from_user(attr->set_buf, buf, size))
1017 goto out;
1018
1019 attr->set_buf[size] = '\0';
1020 ret = kstrtoull(attr->set_buf, 0, &val);
1021 if (ret)
1022 goto out;
1023 ret = attr->set(attr->data, val);
1024 if (ret == 0)
1025 ret = len; /* on success, claim we got the whole input */
1026 out:
1027 mutex_unlock(&attr->mutex);
1028 return ret;
1029 }
1030 EXPORT_SYMBOL_GPL(simple_attr_write);
1031
1032 /**
1033 * generic_fh_to_dentry - generic helper for the fh_to_dentry export operation
1034 * @sb: filesystem to do the file handle conversion on
1035 * @fid: file handle to convert
1036 * @fh_len: length of the file handle in bytes
1037 * @fh_type: type of file handle
1038 * @get_inode: filesystem callback to retrieve inode
1039 *
1040 * This function decodes @fid as long as it has one of the well-known
1041 * Linux filehandle types and calls @get_inode on it to retrieve the
1042 * inode for the object specified in the file handle.
1043 */
generic_fh_to_dentry(struct super_block * sb,struct fid * fid,int fh_len,int fh_type,struct inode * (* get_inode)(struct super_block * sb,u64 ino,u32 gen))1044 struct dentry *generic_fh_to_dentry(struct super_block *sb, struct fid *fid,
1045 int fh_len, int fh_type, struct inode *(*get_inode)
1046 (struct super_block *sb, u64 ino, u32 gen))
1047 {
1048 struct inode *inode = NULL;
1049
1050 if (fh_len < 2)
1051 return NULL;
1052
1053 switch (fh_type) {
1054 case FILEID_INO32_GEN:
1055 case FILEID_INO32_GEN_PARENT:
1056 inode = get_inode(sb, fid->i32.ino, fid->i32.gen);
1057 break;
1058 }
1059
1060 return d_obtain_alias(inode);
1061 }
1062 EXPORT_SYMBOL_GPL(generic_fh_to_dentry);
1063
1064 /**
1065 * generic_fh_to_parent - generic helper for the fh_to_parent export operation
1066 * @sb: filesystem to do the file handle conversion on
1067 * @fid: file handle to convert
1068 * @fh_len: length of the file handle in bytes
1069 * @fh_type: type of file handle
1070 * @get_inode: filesystem callback to retrieve inode
1071 *
1072 * This function decodes @fid as long as it has one of the well-known
1073 * Linux filehandle types and calls @get_inode on it to retrieve the
1074 * inode for the _parent_ object specified in the file handle if it
1075 * is specified in the file handle, or NULL otherwise.
1076 */
generic_fh_to_parent(struct super_block * sb,struct fid * fid,int fh_len,int fh_type,struct inode * (* get_inode)(struct super_block * sb,u64 ino,u32 gen))1077 struct dentry *generic_fh_to_parent(struct super_block *sb, struct fid *fid,
1078 int fh_len, int fh_type, struct inode *(*get_inode)
1079 (struct super_block *sb, u64 ino, u32 gen))
1080 {
1081 struct inode *inode = NULL;
1082
1083 if (fh_len <= 2)
1084 return NULL;
1085
1086 switch (fh_type) {
1087 case FILEID_INO32_GEN_PARENT:
1088 inode = get_inode(sb, fid->i32.parent_ino,
1089 (fh_len > 3 ? fid->i32.parent_gen : 0));
1090 break;
1091 }
1092
1093 return d_obtain_alias(inode);
1094 }
1095 EXPORT_SYMBOL_GPL(generic_fh_to_parent);
1096
1097 /**
1098 * __generic_file_fsync - generic fsync implementation for simple filesystems
1099 *
1100 * @file: file to synchronize
1101 * @start: start offset in bytes
1102 * @end: end offset in bytes (inclusive)
1103 * @datasync: only synchronize essential metadata if true
1104 *
1105 * This is a generic implementation of the fsync method for simple
1106 * filesystems which track all non-inode metadata in the buffers list
1107 * hanging off the address_space structure.
1108 */
__generic_file_fsync(struct file * file,loff_t start,loff_t end,int datasync)1109 int __generic_file_fsync(struct file *file, loff_t start, loff_t end,
1110 int datasync)
1111 {
1112 struct inode *inode = file->f_mapping->host;
1113 int err;
1114 int ret;
1115
1116 err = file_write_and_wait_range(file, start, end);
1117 if (err)
1118 return err;
1119
1120 inode_lock(inode);
1121 ret = sync_mapping_buffers(inode->i_mapping);
1122 if (!(inode->i_state & I_DIRTY_ALL))
1123 goto out;
1124 if (datasync && !(inode->i_state & I_DIRTY_DATASYNC))
1125 goto out;
1126
1127 err = sync_inode_metadata(inode, 1);
1128 if (ret == 0)
1129 ret = err;
1130
1131 out:
1132 inode_unlock(inode);
1133 /* check and advance again to catch errors after syncing out buffers */
1134 err = file_check_and_advance_wb_err(file);
1135 if (ret == 0)
1136 ret = err;
1137 return ret;
1138 }
1139 EXPORT_SYMBOL(__generic_file_fsync);
1140
1141 /**
1142 * generic_file_fsync - generic fsync implementation for simple filesystems
1143 * with flush
1144 * @file: file to synchronize
1145 * @start: start offset in bytes
1146 * @end: end offset in bytes (inclusive)
1147 * @datasync: only synchronize essential metadata if true
1148 *
1149 */
1150
generic_file_fsync(struct file * file,loff_t start,loff_t end,int datasync)1151 int generic_file_fsync(struct file *file, loff_t start, loff_t end,
1152 int datasync)
1153 {
1154 struct inode *inode = file->f_mapping->host;
1155 int err;
1156
1157 err = __generic_file_fsync(file, start, end, datasync);
1158 if (err)
1159 return err;
1160 return blkdev_issue_flush(inode->i_sb->s_bdev);
1161 }
1162 EXPORT_SYMBOL(generic_file_fsync);
1163
1164 /**
1165 * generic_check_addressable - Check addressability of file system
1166 * @blocksize_bits: log of file system block size
1167 * @num_blocks: number of blocks in file system
1168 *
1169 * Determine whether a file system with @num_blocks blocks (and a
1170 * block size of 2**@blocksize_bits) is addressable by the sector_t
1171 * and page cache of the system. Return 0 if so and -EFBIG otherwise.
1172 */
generic_check_addressable(unsigned blocksize_bits,u64 num_blocks)1173 int generic_check_addressable(unsigned blocksize_bits, u64 num_blocks)
1174 {
1175 u64 last_fs_block = num_blocks - 1;
1176 u64 last_fs_page =
1177 last_fs_block >> (PAGE_SHIFT - blocksize_bits);
1178
1179 if (unlikely(num_blocks == 0))
1180 return 0;
1181
1182 if ((blocksize_bits < 9) || (blocksize_bits > PAGE_SHIFT))
1183 return -EINVAL;
1184
1185 if ((last_fs_block > (sector_t)(~0ULL) >> (blocksize_bits - 9)) ||
1186 (last_fs_page > (pgoff_t)(~0ULL))) {
1187 return -EFBIG;
1188 }
1189 return 0;
1190 }
1191 EXPORT_SYMBOL(generic_check_addressable);
1192
1193 /*
1194 * No-op implementation of ->fsync for in-memory filesystems.
1195 */
noop_fsync(struct file * file,loff_t start,loff_t end,int datasync)1196 int noop_fsync(struct file *file, loff_t start, loff_t end, int datasync)
1197 {
1198 return 0;
1199 }
1200 EXPORT_SYMBOL(noop_fsync);
1201
noop_direct_IO(struct kiocb * iocb,struct iov_iter * iter)1202 ssize_t noop_direct_IO(struct kiocb *iocb, struct iov_iter *iter)
1203 {
1204 /*
1205 * iomap based filesystems support direct I/O without need for
1206 * this callback. However, it still needs to be set in
1207 * inode->a_ops so that open/fcntl know that direct I/O is
1208 * generally supported.
1209 */
1210 return -EINVAL;
1211 }
1212 EXPORT_SYMBOL_GPL(noop_direct_IO);
1213
1214 /* Because kfree isn't assignment-compatible with void(void*) ;-/ */
kfree_link(void * p)1215 void kfree_link(void *p)
1216 {
1217 kfree(p);
1218 }
1219 EXPORT_SYMBOL(kfree_link);
1220
alloc_anon_inode(struct super_block * s)1221 struct inode *alloc_anon_inode(struct super_block *s)
1222 {
1223 static const struct address_space_operations anon_aops = {
1224 .dirty_folio = noop_dirty_folio,
1225 };
1226 struct inode *inode = new_inode_pseudo(s);
1227
1228 if (!inode)
1229 return ERR_PTR(-ENOMEM);
1230
1231 inode->i_ino = get_next_ino();
1232 inode->i_mapping->a_ops = &anon_aops;
1233
1234 /*
1235 * Mark the inode dirty from the very beginning,
1236 * that way it will never be moved to the dirty
1237 * list because mark_inode_dirty() will think
1238 * that it already _is_ on the dirty list.
1239 */
1240 inode->i_state = I_DIRTY;
1241 inode->i_mode = S_IRUSR | S_IWUSR;
1242 inode->i_uid = current_fsuid();
1243 inode->i_gid = current_fsgid();
1244 inode->i_flags |= S_PRIVATE;
1245 inode->i_atime = inode->i_mtime = inode->i_ctime = current_time(inode);
1246 return inode;
1247 }
1248 EXPORT_SYMBOL(alloc_anon_inode);
1249
1250 /**
1251 * simple_nosetlease - generic helper for prohibiting leases
1252 * @filp: file pointer
1253 * @arg: type of lease to obtain
1254 * @flp: new lease supplied for insertion
1255 * @priv: private data for lm_setup operation
1256 *
1257 * Generic helper for filesystems that do not wish to allow leases to be set.
1258 * All arguments are ignored and it just returns -EINVAL.
1259 */
1260 int
simple_nosetlease(struct file * filp,long arg,struct file_lock ** flp,void ** priv)1261 simple_nosetlease(struct file *filp, long arg, struct file_lock **flp,
1262 void **priv)
1263 {
1264 return -EINVAL;
1265 }
1266 EXPORT_SYMBOL(simple_nosetlease);
1267
1268 /**
1269 * simple_get_link - generic helper to get the target of "fast" symlinks
1270 * @dentry: not used here
1271 * @inode: the symlink inode
1272 * @done: not used here
1273 *
1274 * Generic helper for filesystems to use for symlink inodes where a pointer to
1275 * the symlink target is stored in ->i_link. NOTE: this isn't normally called,
1276 * since as an optimization the path lookup code uses any non-NULL ->i_link
1277 * directly, without calling ->get_link(). But ->get_link() still must be set,
1278 * to mark the inode_operations as being for a symlink.
1279 *
1280 * Return: the symlink target
1281 */
simple_get_link(struct dentry * dentry,struct inode * inode,struct delayed_call * done)1282 const char *simple_get_link(struct dentry *dentry, struct inode *inode,
1283 struct delayed_call *done)
1284 {
1285 return inode->i_link;
1286 }
1287 EXPORT_SYMBOL(simple_get_link);
1288
1289 const struct inode_operations simple_symlink_inode_operations = {
1290 .get_link = simple_get_link,
1291 };
1292 EXPORT_SYMBOL(simple_symlink_inode_operations);
1293
1294 /*
1295 * Operations for a permanently empty directory.
1296 */
empty_dir_lookup(struct inode * dir,struct dentry * dentry,unsigned int flags)1297 static struct dentry *empty_dir_lookup(struct inode *dir, struct dentry *dentry, unsigned int flags)
1298 {
1299 return ERR_PTR(-ENOENT);
1300 }
1301
empty_dir_getattr(struct user_namespace * mnt_userns,const struct path * path,struct kstat * stat,u32 request_mask,unsigned int query_flags)1302 static int empty_dir_getattr(struct user_namespace *mnt_userns,
1303 const struct path *path, struct kstat *stat,
1304 u32 request_mask, unsigned int query_flags)
1305 {
1306 struct inode *inode = d_inode(path->dentry);
1307 generic_fillattr(&init_user_ns, inode, stat);
1308 return 0;
1309 }
1310
empty_dir_setattr(struct user_namespace * mnt_userns,struct dentry * dentry,struct iattr * attr)1311 static int empty_dir_setattr(struct user_namespace *mnt_userns,
1312 struct dentry *dentry, struct iattr *attr)
1313 {
1314 return -EPERM;
1315 }
1316
empty_dir_listxattr(struct dentry * dentry,char * list,size_t size)1317 static ssize_t empty_dir_listxattr(struct dentry *dentry, char *list, size_t size)
1318 {
1319 return -EOPNOTSUPP;
1320 }
1321
1322 static const struct inode_operations empty_dir_inode_operations = {
1323 .lookup = empty_dir_lookup,
1324 .permission = generic_permission,
1325 .setattr = empty_dir_setattr,
1326 .getattr = empty_dir_getattr,
1327 .listxattr = empty_dir_listxattr,
1328 };
1329
empty_dir_llseek(struct file * file,loff_t offset,int whence)1330 static loff_t empty_dir_llseek(struct file *file, loff_t offset, int whence)
1331 {
1332 /* An empty directory has two entries . and .. at offsets 0 and 1 */
1333 return generic_file_llseek_size(file, offset, whence, 2, 2);
1334 }
1335
empty_dir_readdir(struct file * file,struct dir_context * ctx)1336 static int empty_dir_readdir(struct file *file, struct dir_context *ctx)
1337 {
1338 dir_emit_dots(file, ctx);
1339 return 0;
1340 }
1341
1342 static const struct file_operations empty_dir_operations = {
1343 .llseek = empty_dir_llseek,
1344 .read = generic_read_dir,
1345 .iterate_shared = empty_dir_readdir,
1346 .fsync = noop_fsync,
1347 };
1348
1349
make_empty_dir_inode(struct inode * inode)1350 void make_empty_dir_inode(struct inode *inode)
1351 {
1352 set_nlink(inode, 2);
1353 inode->i_mode = S_IFDIR | S_IRUGO | S_IXUGO;
1354 inode->i_uid = GLOBAL_ROOT_UID;
1355 inode->i_gid = GLOBAL_ROOT_GID;
1356 inode->i_rdev = 0;
1357 inode->i_size = 0;
1358 inode->i_blkbits = PAGE_SHIFT;
1359 inode->i_blocks = 0;
1360
1361 inode->i_op = &empty_dir_inode_operations;
1362 inode->i_opflags &= ~IOP_XATTR;
1363 inode->i_fop = &empty_dir_operations;
1364 }
1365
is_empty_dir_inode(struct inode * inode)1366 bool is_empty_dir_inode(struct inode *inode)
1367 {
1368 return (inode->i_fop == &empty_dir_operations) &&
1369 (inode->i_op == &empty_dir_inode_operations);
1370 }
1371
1372 #if IS_ENABLED(CONFIG_UNICODE)
1373 /*
1374 * Determine if the name of a dentry should be casefolded.
1375 *
1376 * Return: if names will need casefolding
1377 */
needs_casefold(const struct inode * dir)1378 static bool needs_casefold(const struct inode *dir)
1379 {
1380 return IS_CASEFOLDED(dir) && dir->i_sb->s_encoding;
1381 }
1382
1383 /**
1384 * generic_ci_d_compare - generic d_compare implementation for casefolding filesystems
1385 * @dentry: dentry whose name we are checking against
1386 * @len: len of name of dentry
1387 * @str: str pointer to name of dentry
1388 * @name: Name to compare against
1389 *
1390 * Return: 0 if names match, 1 if mismatch, or -ERRNO
1391 */
generic_ci_d_compare(const struct dentry * dentry,unsigned int len,const char * str,const struct qstr * name)1392 static int generic_ci_d_compare(const struct dentry *dentry, unsigned int len,
1393 const char *str, const struct qstr *name)
1394 {
1395 const struct dentry *parent = READ_ONCE(dentry->d_parent);
1396 const struct inode *dir = READ_ONCE(parent->d_inode);
1397 const struct super_block *sb = dentry->d_sb;
1398 const struct unicode_map *um = sb->s_encoding;
1399 struct qstr qstr = QSTR_INIT(str, len);
1400 char strbuf[DNAME_INLINE_LEN];
1401 int ret;
1402
1403 if (!dir || !needs_casefold(dir))
1404 goto fallback;
1405 /*
1406 * If the dentry name is stored in-line, then it may be concurrently
1407 * modified by a rename. If this happens, the VFS will eventually retry
1408 * the lookup, so it doesn't matter what ->d_compare() returns.
1409 * However, it's unsafe to call utf8_strncasecmp() with an unstable
1410 * string. Therefore, we have to copy the name into a temporary buffer.
1411 */
1412 if (len <= DNAME_INLINE_LEN - 1) {
1413 memcpy(strbuf, str, len);
1414 strbuf[len] = 0;
1415 qstr.name = strbuf;
1416 /* prevent compiler from optimizing out the temporary buffer */
1417 barrier();
1418 }
1419 ret = utf8_strncasecmp(um, name, &qstr);
1420 if (ret >= 0)
1421 return ret;
1422
1423 if (sb_has_strict_encoding(sb))
1424 return -EINVAL;
1425 fallback:
1426 if (len != name->len)
1427 return 1;
1428 return !!memcmp(str, name->name, len);
1429 }
1430
1431 /**
1432 * generic_ci_d_hash - generic d_hash implementation for casefolding filesystems
1433 * @dentry: dentry of the parent directory
1434 * @str: qstr of name whose hash we should fill in
1435 *
1436 * Return: 0 if hash was successful or unchanged, and -EINVAL on error
1437 */
generic_ci_d_hash(const struct dentry * dentry,struct qstr * str)1438 static int generic_ci_d_hash(const struct dentry *dentry, struct qstr *str)
1439 {
1440 const struct inode *dir = READ_ONCE(dentry->d_inode);
1441 struct super_block *sb = dentry->d_sb;
1442 const struct unicode_map *um = sb->s_encoding;
1443 int ret = 0;
1444
1445 if (!dir || !needs_casefold(dir))
1446 return 0;
1447
1448 ret = utf8_casefold_hash(um, dentry, str);
1449 if (ret < 0 && sb_has_strict_encoding(sb))
1450 return -EINVAL;
1451 return 0;
1452 }
1453
1454 static const struct dentry_operations generic_ci_dentry_ops = {
1455 .d_hash = generic_ci_d_hash,
1456 .d_compare = generic_ci_d_compare,
1457 };
1458 #endif
1459
1460 #ifdef CONFIG_FS_ENCRYPTION
1461 static const struct dentry_operations generic_encrypted_dentry_ops = {
1462 .d_revalidate = fscrypt_d_revalidate,
1463 };
1464 #endif
1465
1466 #if defined(CONFIG_FS_ENCRYPTION) && IS_ENABLED(CONFIG_UNICODE)
1467 static const struct dentry_operations generic_encrypted_ci_dentry_ops = {
1468 .d_hash = generic_ci_d_hash,
1469 .d_compare = generic_ci_d_compare,
1470 .d_revalidate = fscrypt_d_revalidate,
1471 };
1472 #endif
1473
1474 /**
1475 * generic_set_encrypted_ci_d_ops - helper for setting d_ops for given dentry
1476 * @dentry: dentry to set ops on
1477 *
1478 * Casefolded directories need d_hash and d_compare set, so that the dentries
1479 * contained in them are handled case-insensitively. Note that these operations
1480 * are needed on the parent directory rather than on the dentries in it, and
1481 * while the casefolding flag can be toggled on and off on an empty directory,
1482 * dentry_operations can't be changed later. As a result, if the filesystem has
1483 * casefolding support enabled at all, we have to give all dentries the
1484 * casefolding operations even if their inode doesn't have the casefolding flag
1485 * currently (and thus the casefolding ops would be no-ops for now).
1486 *
1487 * Encryption works differently in that the only dentry operation it needs is
1488 * d_revalidate, which it only needs on dentries that have the no-key name flag.
1489 * The no-key flag can't be set "later", so we don't have to worry about that.
1490 *
1491 * Finally, to maximize compatibility with overlayfs (which isn't compatible
1492 * with certain dentry operations) and to avoid taking an unnecessary
1493 * performance hit, we use custom dentry_operations for each possible
1494 * combination rather than always installing all operations.
1495 */
generic_set_encrypted_ci_d_ops(struct dentry * dentry)1496 void generic_set_encrypted_ci_d_ops(struct dentry *dentry)
1497 {
1498 #ifdef CONFIG_FS_ENCRYPTION
1499 bool needs_encrypt_ops = dentry->d_flags & DCACHE_NOKEY_NAME;
1500 #endif
1501 #if IS_ENABLED(CONFIG_UNICODE)
1502 bool needs_ci_ops = dentry->d_sb->s_encoding;
1503 #endif
1504 #if defined(CONFIG_FS_ENCRYPTION) && IS_ENABLED(CONFIG_UNICODE)
1505 if (needs_encrypt_ops && needs_ci_ops) {
1506 d_set_d_op(dentry, &generic_encrypted_ci_dentry_ops);
1507 return;
1508 }
1509 #endif
1510 #ifdef CONFIG_FS_ENCRYPTION
1511 if (needs_encrypt_ops) {
1512 d_set_d_op(dentry, &generic_encrypted_dentry_ops);
1513 return;
1514 }
1515 #endif
1516 #if IS_ENABLED(CONFIG_UNICODE)
1517 if (needs_ci_ops) {
1518 d_set_d_op(dentry, &generic_ci_dentry_ops);
1519 return;
1520 }
1521 #endif
1522 }
1523 EXPORT_SYMBOL(generic_set_encrypted_ci_d_ops);
1524
1525 /**
1526 * inode_maybe_inc_iversion - increments i_version
1527 * @inode: inode with the i_version that should be updated
1528 * @force: increment the counter even if it's not necessary?
1529 *
1530 * Every time the inode is modified, the i_version field must be seen to have
1531 * changed by any observer.
1532 *
1533 * If "force" is set or the QUERIED flag is set, then ensure that we increment
1534 * the value, and clear the queried flag.
1535 *
1536 * In the common case where neither is set, then we can return "false" without
1537 * updating i_version.
1538 *
1539 * If this function returns false, and no other metadata has changed, then we
1540 * can avoid logging the metadata.
1541 */
inode_maybe_inc_iversion(struct inode * inode,bool force)1542 bool inode_maybe_inc_iversion(struct inode *inode, bool force)
1543 {
1544 u64 cur, new;
1545
1546 /*
1547 * The i_version field is not strictly ordered with any other inode
1548 * information, but the legacy inode_inc_iversion code used a spinlock
1549 * to serialize increments.
1550 *
1551 * Here, we add full memory barriers to ensure that any de-facto
1552 * ordering with other info is preserved.
1553 *
1554 * This barrier pairs with the barrier in inode_query_iversion()
1555 */
1556 smp_mb();
1557 cur = inode_peek_iversion_raw(inode);
1558 do {
1559 /* If flag is clear then we needn't do anything */
1560 if (!force && !(cur & I_VERSION_QUERIED))
1561 return false;
1562
1563 /* Since lowest bit is flag, add 2 to avoid it */
1564 new = (cur & ~I_VERSION_QUERIED) + I_VERSION_INCREMENT;
1565 } while (!atomic64_try_cmpxchg(&inode->i_version, &cur, new));
1566 return true;
1567 }
1568 EXPORT_SYMBOL(inode_maybe_inc_iversion);
1569