[16/25] lustre: llite: avoid project quota overflow

Message ID	1627933851-7603-17-git-send-email-jsimmons@infradead.org (mailing list archive)
State	New, archived
Headers	show Return-Path: <SRS0=Kfxm=MZ=lists.lustre.org=lustre-devel-bounces@kernel.org> DMARC-Filter: OpenDMARC Filter v1.4.1 mail.kernel.org ADAD560F36 From: James Simmons <jsimmons@infradead.org> To: Andreas Dilger <adilger@whamcloud.com>, Oleg Drokin <green@whamcloud.com>, NeilBrown <neilb@suse.de> Date: Mon, 2 Aug 2021 15:50:36 -0400 Message-Id: <1627933851-7603-17-git-send-email-jsimmons@infradead.org> In-Reply-To: <1627933851-7603-1-git-send-email-jsimmons@infradead.org> References: <1627933851-7603-1-git-send-email-jsimmons@infradead.org> MIME-Version: 1.0 Subject: [lustre-devel] [PATCH 16/25] lustre: llite: avoid project quota overflow Precedence: list Cc: Wang Shilong <wshilong@ddn.com>, Lustre Development List <lustre-devel@lists.lustre.org> Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: lustre-devel-bounces@lists.lustre.org Sender: "lustre-devel" <lustre-devel-bounces@lists.lustre.org>
Series	Sync to OpenSFS tree as of Aug 2, 2021 \| expand [00/25] Sync to OpenSFS tree as of Aug 2, 2021 [01/25] lustre: llite: avoid stale data reading [02/25] lustre: llite: No locked parallel DIO [03/25] lnet: discard lnet_current_net_count [04/25] lnet: convert kiblnd/ksocknal_thread_start to vararg [05/25] lnet: print device status in net show command [06/25] lustre: lmv: getattr_name("..") under striped directory [07/25] lustre: llite: revert 'simplify callback handling for async getattr' [08/25] lnet: Protect lpni deref in lnet_health_check [09/25] lustre: uapi: remove MDS_SETATTR_PORTAL and service [10/25] lustre: llite: Modify AIO/DIO reference counting [11/25] lustre: llite: Remove transient page counting [12/25] lustre: lov: Improve DIO submit [13/25] lustre: llite: Adjust dio refcounting [14/25] lustre: clio: Skip prep for transients [15/25] lustre: osc: Improve osc_queue_sync_pages [16/25] lustre: llite: avoid project quota overflow [17/25] lnet: check memdup_user_nul using IS_ERR [18/25] lustre: osc: Remove lockless truncate [19/25] lustre: osc: Remove client contention support [20/25] lustre: osc: osc: Do not flush on lockless cancel [21/26] lustre: pcc: add LCM_FL_PCC_RDONLY layout flag [22/25] lustre: mdc: set default LMV on ROOT [23/25] lustre: llite: enable filesystem-wide default LMV [24/26] lustre: llite: enable filesystem-wide default LMV [25/25] lnet: add "stats reset" to lnetctl [26/26] lnet: add "stats reset" to lnetctl

Message ID

1627933851-7603-17-git-send-email-jsimmons@infradead.org (mailing list archive)

State

New, archived

Headers

DMARC-Filter: OpenDMARC Filter v1.4.1 mail.kernel.org ADAD560F36
From: James Simmons <jsimmons@infradead.org>
To: Andreas Dilger <adilger@whamcloud.com>, Oleg Drokin <green@whamcloud.com>,
 NeilBrown <neilb@suse.de>
Date: Mon,  2 Aug 2021 15:50:36 -0400
Message-Id: <1627933851-7603-17-git-send-email-jsimmons@infradead.org>
In-Reply-To: <1627933851-7603-1-git-send-email-jsimmons@infradead.org>
References: <1627933851-7603-1-git-send-email-jsimmons@infradead.org>
MIME-Version: 1.0
Subject: [lustre-devel] [PATCH 16/25] lustre: llite: avoid project quota
 overflow
Precedence: list
Cc: Wang Shilong <wshilong@ddn.com>,
 Lustre Development List <lustre-devel@lists.lustre.org>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
Errors-To: lustre-devel-bounces@lists.lustre.org
Sender: "lustre-devel" <lustre-devel-bounces@lists.lustre.org>

Series

Sync to OpenSFS tree as of Aug 2, 2021 | expand

Commit Message

James Simmons Aug. 2, 2021, 7:50 p.m. UTC

From: Wang Shilong <wshilong@ddn.com>

Currently, project ID is stored as u32, max possible
value for it is 4294967295.

However, VFS reserve max value for special usage, see
following function:

static inline bool
qid_has_mapping(struct user_namespace *ns, struct kqid qid)
{
        return from_kqid(ns, qid) != (qid_t) -1;
}

So qid_has_mapping() could return 0 for id 4294967295.
A further try on chown test:

$ chown 4294967295:4294967295 c.sh
  chown: invalid user: ‘4294967295:4294967295’
$ chown 4294967294:4294967294 c.sh

Fix to check max possible value for project ID in the
client kernel side, and add a test case for this.

WC-bug-id: https://jira.whamcloud.com/browse/LU-14740
Lustre-commit: 3ffa5d680f0092ae ("LU-14740 llite: avoid project quota overflow")
Signed-off-by: Wang Shilong <wshilong@ddn.com>
Reviewed-on: https://review.whamcloud.com/43939
Reviewed-by: Hongchao Zhang <hongchao@whamcloud.com>
Reviewed-by: Andreas Dilger <adilger@whamcloud.com>
Reviewed-by: Oleg Drokin <green@whamcloud.com>
Signed-off-by: James Simmons <jsimmons@infradead.org>
---
 fs/lustre/llite/file.c | 11 ++++++++++-
 1 file changed, 10 insertions(+), 1 deletion(-)

diff --git a/fs/lustre/llite/file.c b/fs/lustre/llite/file.c
index 1bf237b..a4e432e 100644
--- a/fs/lustre/llite/file.c
+++ b/fs/lustre/llite/file.c
@@ -3323,8 +3323,17 @@  int ll_ioctl_check_project(struct inode *inode, u32 xflags,
 	 * namespace. Enforce that restriction only if we are trying to change
 	 * the quota ID state. Everything else is allowed in user namespaces.
 	 */
-	if (current_user_ns() == &init_user_ns)
+	if (current_user_ns() == &init_user_ns) {
+		/*
+		 * Caller is allowed to change the project ID. if it is being
+		 * changed, make sure that the new value is valid.
+		 */
+		if (ll_i2info(inode)->lli_projid != projid &&
+		     !projid_valid(make_kprojid(&init_user_ns, projid)))
+			return -EINVAL;
+
 		return 0;
+	}
 
 	if (ll_i2info(inode)->lli_projid != projid)
 		return -EINVAL;

[16/25] lustre: llite: avoid project quota overflow

Commit Message

Patch