[PATCH] ceph: set DCACHE_NOKEY

All of lore.kernel.org
 help / color / mirror / Atom feed

* [PATCH] ceph: set DCACHE_NOKEY_NAME in atomic open
@ 2022-03-28 20:33 Jeff Layton
  2022-03-29  0:57 ` Xiubo Li
  2022-03-29  9:19 ` Luís Henriques
  0 siblings, 2 replies; 3+ messages in thread
From: Jeff Layton @ 2022-03-28 20:33 UTC (permalink / raw)
  To: ceph-devel; +Cc: idryomov, xiubli, lhenriques

Atomic open can act as a lookup if handed a dentry that is negative on
the MDS. Ensure that we set DCACHE_NOKEY_NAME on the dentry in
atomic_open, if we don't have the key for the parent. Otherwise, we can
end up validating the dentry inappropriately if someone later adds a
key.

Signed-off-by: Jeff Layton <jlayton@kernel.org>
---
 fs/ceph/file.c | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

Another patch for the fscrypt series.

A much less heavy-handed fix for generic/580 and generic/593. I'll
probably fold this into an earlier patch in the series since it appears
to be a straightforward bug.

diff --git a/fs/ceph/file.c b/fs/ceph/file.c
index eb04dc8f1f93..5072570c2203 100644
--- a/fs/ceph/file.c
+++ b/fs/ceph/file.c
@@ -765,8 +765,14 @@ int ceph_atomic_open(struct inode *dir, struct dentry *dentry,
 	req->r_args.open.mask = cpu_to_le32(mask);
 	req->r_parent = dir;
 	ihold(dir);
-	if (IS_ENCRYPTED(dir))
+	if (IS_ENCRYPTED(dir)) {
 		set_bit(CEPH_MDS_R_FSCRYPT_FILE, &req->r_req_flags);
+		if (!fscrypt_has_encryption_key(dir)) {
+			spin_lock(&dentry->d_lock);
+			dentry->d_flags |= DCACHE_NOKEY_NAME;
+			spin_unlock(&dentry->d_lock);
+		}
+	}
 
 	if (flags & O_CREAT) {
 		struct ceph_file_layout lo;
-- 
2.35.1


^ permalink raw reply related	[flat|nested] 3+ messages in thread

* Re: [PATCH] ceph: set DCACHE_NOKEY_NAME in atomic open
  2022-03-28 20:33 [PATCH] ceph: set DCACHE_NOKEY_NAME in atomic open Jeff Layton
@ 2022-03-29  0:57 ` Xiubo Li
  2022-03-29  9:19 ` Luís Henriques
  1 sibling, 0 replies; 3+ messages in thread
From: Xiubo Li @ 2022-03-29  0:57 UTC (permalink / raw)
  To: Jeff Layton, ceph-devel; +Cc: idryomov, lhenriques


On 3/29/22 4:33 AM, Jeff Layton wrote:
> Atomic open can act as a lookup if handed a dentry that is negative on
> the MDS. Ensure that we set DCACHE_NOKEY_NAME on the dentry in
> atomic_open, if we don't have the key for the parent. Otherwise, we can
> end up validating the dentry inappropriately if someone later adds a
> key.
>
> Signed-off-by: Jeff Layton <jlayton@kernel.org>
> ---
>   fs/ceph/file.c | 8 +++++++-
>   1 file changed, 7 insertions(+), 1 deletion(-)
>
> Another patch for the fscrypt series.
>
> A much less heavy-handed fix for generic/580 and generic/593. I'll
> probably fold this into an earlier patch in the series since it appears
> to be a straightforward bug.
>
> diff --git a/fs/ceph/file.c b/fs/ceph/file.c
> index eb04dc8f1f93..5072570c2203 100644
> --- a/fs/ceph/file.c
> +++ b/fs/ceph/file.c
> @@ -765,8 +765,14 @@ int ceph_atomic_open(struct inode *dir, struct dentry *dentry,
>   	req->r_args.open.mask = cpu_to_le32(mask);
>   	req->r_parent = dir;
>   	ihold(dir);
> -	if (IS_ENCRYPTED(dir))
> +	if (IS_ENCRYPTED(dir)) {
>   		set_bit(CEPH_MDS_R_FSCRYPT_FILE, &req->r_req_flags);
> +		if (!fscrypt_has_encryption_key(dir)) {
> +			spin_lock(&dentry->d_lock);
> +			dentry->d_flags |= DCACHE_NOKEY_NAME;
> +			spin_unlock(&dentry->d_lock);
> +		}
> +	}
>   
>   	if (flags & O_CREAT) {
>   		struct ceph_file_layout lo;
Reviewed-by: Xiubo Li <xiubli@redhat.com>


^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: [PATCH] ceph: set DCACHE_NOKEY_NAME in atomic open
  2022-03-28 20:33 [PATCH] ceph: set DCACHE_NOKEY_NAME in atomic open Jeff Layton
  2022-03-29  0:57 ` Xiubo Li
@ 2022-03-29  9:19 ` Luís Henriques
  1 sibling, 0 replies; 3+ messages in thread
From: Luís Henriques @ 2022-03-29  9:19 UTC (permalink / raw)
  To: Jeff Layton; +Cc: ceph-devel, idryomov, xiubli

Jeff Layton <jlayton@kernel.org> writes:

> Atomic open can act as a lookup if handed a dentry that is negative on
> the MDS. Ensure that we set DCACHE_NOKEY_NAME on the dentry in
> atomic_open, if we don't have the key for the parent. Otherwise, we can
> end up validating the dentry inappropriately if someone later adds a
> key.
>
> Signed-off-by: Jeff Layton <jlayton@kernel.org>
> ---
>  fs/ceph/file.c | 8 +++++++-
>  1 file changed, 7 insertions(+), 1 deletion(-)
>
> Another patch for the fscrypt series.
>
> A much less heavy-handed fix for generic/580 and generic/593. I'll
> probably fold this into an earlier patch in the series since it appears
> to be a straightforward bug.

Ah!  This seems to be it, thanks Jeff.  One thing that may be worth doing
is to turn this pattern into an inline function, as it is repeated in a
few other places.  But anyway:

Reviewed-by: Luís Henriques <lhenriques@suse.de>

Cheers,
-- 
Luís

> diff --git a/fs/ceph/file.c b/fs/ceph/file.c
> index eb04dc8f1f93..5072570c2203 100644
> --- a/fs/ceph/file.c
> +++ b/fs/ceph/file.c
> @@ -765,8 +765,14 @@ int ceph_atomic_open(struct inode *dir, struct dentry *dentry,
>  	req->r_args.open.mask = cpu_to_le32(mask);
>  	req->r_parent = dir;
>  	ihold(dir);
> -	if (IS_ENCRYPTED(dir))
> +	if (IS_ENCRYPTED(dir)) {
>  		set_bit(CEPH_MDS_R_FSCRYPT_FILE, &req->r_req_flags);
> +		if (!fscrypt_has_encryption_key(dir)) {
> +			spin_lock(&dentry->d_lock);
> +			dentry->d_flags |= DCACHE_NOKEY_NAME;
> +			spin_unlock(&dentry->d_lock);
> +		}
> +	}
>  
>  	if (flags & O_CREAT) {
>  		struct ceph_file_layout lo;
> -- 
>
> 2.35.1
>


^ permalink raw reply	[flat|nested] 3+ messages in thread

end of thread, other threads:[~2022-03-29  9:19 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2022-03-28 20:33 [PATCH] ceph: set DCACHE_NOKEY_NAME in atomic open Jeff Layton
2022-03-29  0:57 ` Xiubo Li
2022-03-29  9:19 ` Luís Henriques

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.