From patchwork Thu Mar 31 11:23:00 2022
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Christian Brauner <brauner@kernel.org>
X-Patchwork-Id: 12796985
Return-Path: <linux-fsdevel-owner@kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from vger.kernel.org (vger.kernel.org [23.128.96.18])
	by smtp.lore.kernel.org (Postfix) with ESMTP id A8842C433F5
	for <linux-fsdevel@archiver.kernel.org>;
 Thu, 31 Mar 2022 11:24:01 +0000 (UTC)
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S235098AbiCaLZq (ORCPT
        <rfc822;linux-fsdevel@archiver.kernel.org>);
        Thu, 31 Mar 2022 07:25:46 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:45044 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S235093AbiCaLZo (ORCPT
        <rfc822;linux-fsdevel@vger.kernel.org>);
        Thu, 31 Mar 2022 07:25:44 -0400
Received: from ams.source.kernel.org (ams.source.kernel.org [145.40.68.75])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id B672E647C;
        Thu, 31 Mar 2022 04:23:49 -0700 (PDT)
Received: from smtp.kernel.org (relay.kernel.org [52.25.139.140])
        (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
        (No client certificate requested)
        by ams.source.kernel.org (Postfix) with ESMTPS id 4AD68B81BE2;
        Thu, 31 Mar 2022 11:23:48 +0000 (UTC)
Received: by smtp.kernel.org (Postfix) with ESMTPSA id 361BFC340ED;
        Thu, 31 Mar 2022 11:23:42 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org;
        s=k20201202; t=1648725827;
        bh=HwFM2AHDJska7l0jW4kKAU7PP/QDhohkhcYMbwlAP34=;
        h=From:To:Cc:Subject:Date:In-Reply-To:References:From;
        b=VHZ6w53NOwGoc4aL7+/NoGZWOYS37jtoyc/bZuzLNNfw9qtEatrsYP9adoGws8Y/O
         08AT70Pkr49P6+YlvwaRBf3Fl/wKJIdK7LNmOSBjq12pVaYwEIVugPYxuhmIgd1M1o
         Ql/JtLYyJiUmWTZ6xupkkTLHwXLBtOxDbk9fbnsdbgzWVnNiPAQcRLOMIGeSwff9rT
         jFKFR6XraoflC5ySA0drb8bBEaeDyNFWiKnFHj6t2E1R7fZQo+12bTEFMsAYq3nqLu
         qlGqsZnJNPWorc1LqGLiOepHz1hx7BdGDRJ/zDJKGAaQQ+qgPdBoB1PmcbozhVd60l
         WsCsbvXXiNfFg==
From: Christian Brauner <brauner@kernel.org>
To: Amir Goldstein <amir73il@gmail.com>,
        Christoph Hellwig <hch@lst.de>,
        Miklos Szeredi <mszeredi@redhat.com>,
        Al Viro <viro@zeniv.linux.org.uk>
Cc: Christian Brauner <brauner@kernel.org>, linux-fsdevel@vger.kernel.org,
 linux-unionfs@vger.kernel.org, Aleksa Sarai <cyphar@cyphar.com>,
 Giuseppe Scrivano <gscrivan@redhat.com>,
 Rodrigo Campos Catelin <rodrigo@sdfg.com.ar>,
 Seth Forshee <sforshee@digitalocean.com>,
 Luca Bocassi <luca.boccassi@microsoft.com>,
 Lennart Poettering <mzxreary@0pointer.de>,
 =?utf-8?q?St=C3=A9phane_Graber?= <stgraber@ubuntu.com>,
 stable@vger.kernel.org
Subject: [PATCH v3 02/19] exportfs: support idmapped mounts
Date: Thu, 31 Mar 2022 13:23:00 +0200
Message-Id: <20220331112318.1377494-3-brauner@kernel.org>
X-Mailer: git-send-email 2.32.0
In-Reply-To: <20220331112318.1377494-1-brauner@kernel.org>
References: <20220331112318.1377494-1-brauner@kernel.org>
MIME-Version: 1.0
X-Developer-Signature: v=1; a=openpgp-sha256; l=1927; h=from:subject;
 bh=HwFM2AHDJska7l0jW4kKAU7PP/QDhohkhcYMbwlAP34=;
 b=owGbwMvMwCU28Zj0gdSKO4sYT6slMSS59ouf/L9sruKTxNrVXvGbV/786LJlxdH2ohTba0+7HrFN
 Nqrz7ChlYRDjYpAVU2RxaDcJl1vOU7HZKFMDZg4rE8gQBi5OAZjIlASGv9JT56vHSlaFau891+j+Qe
 FsyoR5K423lySc/NzYvO61Zx3DP0XJFXsT7s2ovLtvr+DyedlzX1eEfXoSy7VgrQ6v+ZpZ/TwA
X-Developer-Key: i=brauner@kernel.org; a=openpgp;
 fpr=4880B8C9BD0E5106FC070F4F7B3C391EFEA93624
Precedence: bulk
List-ID: <linux-fsdevel.vger.kernel.org>
X-Mailing-List: linux-fsdevel@vger.kernel.org

Make the two locations where exportfs helpers check permission to lookup
a given inode idmapped mount aware by switching it to the lookup_one()
helper. This is a bugfix for the open_by_handle_at() system call which
doesn't take idmapped mounts into account currently. It's not tied to a
specific commit so we'll just Cc stable.

In addition this is required to support idmapped base layers in overlay.
The overlay filesystem uses exportfs to encode and decode file handles
for its index=on mount option and when nfs_export=on.

Cc: <stable@vger.kernel.org>
Cc: <linux-fsdevel@vger.kernel.org>
Tested-by: Giuseppe Scrivano <gscrivan@redhat.com>
Reviewed-by: Amir Goldstein <amir73il@gmail.com>
Reviewed-by: Christoph Hellwig <hch@lst.de>
Signed-off-by: Christian Brauner (Microsoft) <brauner@kernel.org>
---
/* v2 */
unchanged

/* v3 */
unchanged
---
 fs/exportfs/expfs.c | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/fs/exportfs/expfs.c b/fs/exportfs/expfs.c
index 0106eba46d5a..3ef80d000e13 100644
--- a/fs/exportfs/expfs.c
+++ b/fs/exportfs/expfs.c
@@ -145,7 +145,7 @@ static struct dentry *reconnect_one(struct vfsmount *mnt,
 	if (err)
 		goto out_err;
 	dprintk("%s: found name: %s\n", __func__, nbuf);
-	tmp = lookup_one_len_unlocked(nbuf, parent, strlen(nbuf));
+	tmp = lookup_one_unlocked(mnt_user_ns(mnt), nbuf, parent, strlen(nbuf));
 	if (IS_ERR(tmp)) {
 		dprintk("%s: lookup failed: %d\n", __func__, PTR_ERR(tmp));
 		err = PTR_ERR(tmp);
@@ -525,7 +525,8 @@ exportfs_decode_fh_raw(struct vfsmount *mnt, struct fid *fid, int fh_len,
 		}
 
 		inode_lock(target_dir->d_inode);
-		nresult = lookup_one_len(nbuf, target_dir, strlen(nbuf));
+		nresult = lookup_one(mnt_user_ns(mnt), nbuf,
+				     target_dir, strlen(nbuf));
 		if (!IS_ERR(nresult)) {
 			if (unlikely(nresult->d_inode != result->d_inode)) {
 				dput(nresult);