Loading...
1/*
2 FUSE: Filesystem in Userspace
3 Copyright (C) 2001-2008 Miklos Szeredi <miklos@szeredi.hu>
4
5 This program can be distributed under the terms of the GNU GPL.
6 See the file COPYING.
7*/
8
9#include "fuse_i.h"
10
11#include <linux/pagemap.h>
12#include <linux/slab.h>
13#include <linux/file.h>
14#include <linux/seq_file.h>
15#include <linux/init.h>
16#include <linux/module.h>
17#include <linux/moduleparam.h>
18#include <linux/parser.h>
19#include <linux/statfs.h>
20#include <linux/random.h>
21#include <linux/sched.h>
22#include <linux/exportfs.h>
23#include <linux/posix_acl.h>
24
25MODULE_AUTHOR("Miklos Szeredi <miklos@szeredi.hu>");
26MODULE_DESCRIPTION("Filesystem in Userspace");
27MODULE_LICENSE("GPL");
28
29static struct kmem_cache *fuse_inode_cachep;
30struct list_head fuse_conn_list;
31DEFINE_MUTEX(fuse_mutex);
32
33static int set_global_limit(const char *val, struct kernel_param *kp);
34
35unsigned max_user_bgreq;
36module_param_call(max_user_bgreq, set_global_limit, param_get_uint,
37 &max_user_bgreq, 0644);
38__MODULE_PARM_TYPE(max_user_bgreq, "uint");
39MODULE_PARM_DESC(max_user_bgreq,
40 "Global limit for the maximum number of backgrounded requests an "
41 "unprivileged user can set");
42
43unsigned max_user_congthresh;
44module_param_call(max_user_congthresh, set_global_limit, param_get_uint,
45 &max_user_congthresh, 0644);
46__MODULE_PARM_TYPE(max_user_congthresh, "uint");
47MODULE_PARM_DESC(max_user_congthresh,
48 "Global limit for the maximum congestion threshold an "
49 "unprivileged user can set");
50
51#define FUSE_SUPER_MAGIC 0x65735546
52
53#define FUSE_DEFAULT_BLKSIZE 512
54
55/** Maximum number of outstanding background requests */
56#define FUSE_DEFAULT_MAX_BACKGROUND 12
57
58/** Congestion starts at 75% of maximum */
59#define FUSE_DEFAULT_CONGESTION_THRESHOLD (FUSE_DEFAULT_MAX_BACKGROUND * 3 / 4)
60
61struct fuse_mount_data {
62 int fd;
63 unsigned rootmode;
64 kuid_t user_id;
65 kgid_t group_id;
66 unsigned fd_present:1;
67 unsigned rootmode_present:1;
68 unsigned user_id_present:1;
69 unsigned group_id_present:1;
70 unsigned default_permissions:1;
71 unsigned allow_other:1;
72 unsigned max_read;
73 unsigned blksize;
74};
75
76struct fuse_forget_link *fuse_alloc_forget(void)
77{
78 return kzalloc(sizeof(struct fuse_forget_link), GFP_KERNEL);
79}
80
81static struct inode *fuse_alloc_inode(struct super_block *sb)
82{
83 struct inode *inode;
84 struct fuse_inode *fi;
85
86 inode = kmem_cache_alloc(fuse_inode_cachep, GFP_KERNEL);
87 if (!inode)
88 return NULL;
89
90 fi = get_fuse_inode(inode);
91 fi->i_time = 0;
92 fi->nodeid = 0;
93 fi->nlookup = 0;
94 fi->attr_version = 0;
95 fi->writectr = 0;
96 fi->orig_ino = 0;
97 fi->state = 0;
98 INIT_LIST_HEAD(&fi->write_files);
99 INIT_LIST_HEAD(&fi->queued_writes);
100 INIT_LIST_HEAD(&fi->writepages);
101 init_waitqueue_head(&fi->page_waitq);
102 mutex_init(&fi->mutex);
103 fi->forget = fuse_alloc_forget();
104 if (!fi->forget) {
105 kmem_cache_free(fuse_inode_cachep, inode);
106 return NULL;
107 }
108
109 return inode;
110}
111
112static void fuse_i_callback(struct rcu_head *head)
113{
114 struct inode *inode = container_of(head, struct inode, i_rcu);
115 kmem_cache_free(fuse_inode_cachep, inode);
116}
117
118static void fuse_destroy_inode(struct inode *inode)
119{
120 struct fuse_inode *fi = get_fuse_inode(inode);
121 BUG_ON(!list_empty(&fi->write_files));
122 BUG_ON(!list_empty(&fi->queued_writes));
123 mutex_destroy(&fi->mutex);
124 kfree(fi->forget);
125 call_rcu(&inode->i_rcu, fuse_i_callback);
126}
127
128static void fuse_evict_inode(struct inode *inode)
129{
130 truncate_inode_pages_final(&inode->i_data);
131 clear_inode(inode);
132 if (inode->i_sb->s_flags & MS_ACTIVE) {
133 struct fuse_conn *fc = get_fuse_conn(inode);
134 struct fuse_inode *fi = get_fuse_inode(inode);
135 fuse_queue_forget(fc, fi->forget, fi->nodeid, fi->nlookup);
136 fi->forget = NULL;
137 }
138}
139
140static int fuse_remount_fs(struct super_block *sb, int *flags, char *data)
141{
142 sync_filesystem(sb);
143 if (*flags & MS_MANDLOCK)
144 return -EINVAL;
145
146 return 0;
147}
148
149/*
150 * ino_t is 32-bits on 32-bit arch. We have to squash the 64-bit value down
151 * so that it will fit.
152 */
153static ino_t fuse_squash_ino(u64 ino64)
154{
155 ino_t ino = (ino_t) ino64;
156 if (sizeof(ino_t) < sizeof(u64))
157 ino ^= ino64 >> (sizeof(u64) - sizeof(ino_t)) * 8;
158 return ino;
159}
160
161void fuse_change_attributes_common(struct inode *inode, struct fuse_attr *attr,
162 u64 attr_valid)
163{
164 struct fuse_conn *fc = get_fuse_conn(inode);
165 struct fuse_inode *fi = get_fuse_inode(inode);
166
167 fi->attr_version = ++fc->attr_version;
168 fi->i_time = attr_valid;
169
170 inode->i_ino = fuse_squash_ino(attr->ino);
171 inode->i_mode = (inode->i_mode & S_IFMT) | (attr->mode & 07777);
172 set_nlink(inode, attr->nlink);
173 inode->i_uid = make_kuid(&init_user_ns, attr->uid);
174 inode->i_gid = make_kgid(&init_user_ns, attr->gid);
175 inode->i_blocks = attr->blocks;
176 inode->i_atime.tv_sec = attr->atime;
177 inode->i_atime.tv_nsec = attr->atimensec;
178 /* mtime from server may be stale due to local buffered write */
179 if (!fc->writeback_cache || !S_ISREG(inode->i_mode)) {
180 inode->i_mtime.tv_sec = attr->mtime;
181 inode->i_mtime.tv_nsec = attr->mtimensec;
182 inode->i_ctime.tv_sec = attr->ctime;
183 inode->i_ctime.tv_nsec = attr->ctimensec;
184 }
185
186 if (attr->blksize != 0)
187 inode->i_blkbits = ilog2(attr->blksize);
188 else
189 inode->i_blkbits = inode->i_sb->s_blocksize_bits;
190
191 /*
192 * Don't set the sticky bit in i_mode, unless we want the VFS
193 * to check permissions. This prevents failures due to the
194 * check in may_delete().
195 */
196 fi->orig_i_mode = inode->i_mode;
197 if (!fc->default_permissions)
198 inode->i_mode &= ~S_ISVTX;
199
200 fi->orig_ino = attr->ino;
201}
202
203void fuse_change_attributes(struct inode *inode, struct fuse_attr *attr,
204 u64 attr_valid, u64 attr_version)
205{
206 struct fuse_conn *fc = get_fuse_conn(inode);
207 struct fuse_inode *fi = get_fuse_inode(inode);
208 bool is_wb = fc->writeback_cache;
209 loff_t oldsize;
210 struct timespec old_mtime;
211
212 spin_lock(&fc->lock);
213 if ((attr_version != 0 && fi->attr_version > attr_version) ||
214 test_bit(FUSE_I_SIZE_UNSTABLE, &fi->state)) {
215 spin_unlock(&fc->lock);
216 return;
217 }
218
219 old_mtime = inode->i_mtime;
220 fuse_change_attributes_common(inode, attr, attr_valid);
221
222 oldsize = inode->i_size;
223 /*
224 * In case of writeback_cache enabled, the cached writes beyond EOF
225 * extend local i_size without keeping userspace server in sync. So,
226 * attr->size coming from server can be stale. We cannot trust it.
227 */
228 if (!is_wb || !S_ISREG(inode->i_mode))
229 i_size_write(inode, attr->size);
230 spin_unlock(&fc->lock);
231
232 if (!is_wb && S_ISREG(inode->i_mode)) {
233 bool inval = false;
234
235 if (oldsize != attr->size) {
236 truncate_pagecache(inode, attr->size);
237 inval = true;
238 } else if (fc->auto_inval_data) {
239 struct timespec new_mtime = {
240 .tv_sec = attr->mtime,
241 .tv_nsec = attr->mtimensec,
242 };
243
244 /*
245 * Auto inval mode also checks and invalidates if mtime
246 * has changed.
247 */
248 if (!timespec_equal(&old_mtime, &new_mtime))
249 inval = true;
250 }
251
252 if (inval)
253 invalidate_inode_pages2(inode->i_mapping);
254 }
255}
256
257static void fuse_init_inode(struct inode *inode, struct fuse_attr *attr)
258{
259 inode->i_mode = attr->mode & S_IFMT;
260 inode->i_size = attr->size;
261 inode->i_mtime.tv_sec = attr->mtime;
262 inode->i_mtime.tv_nsec = attr->mtimensec;
263 inode->i_ctime.tv_sec = attr->ctime;
264 inode->i_ctime.tv_nsec = attr->ctimensec;
265 if (S_ISREG(inode->i_mode)) {
266 fuse_init_common(inode);
267 fuse_init_file_inode(inode);
268 } else if (S_ISDIR(inode->i_mode))
269 fuse_init_dir(inode);
270 else if (S_ISLNK(inode->i_mode))
271 fuse_init_symlink(inode);
272 else if (S_ISCHR(inode->i_mode) || S_ISBLK(inode->i_mode) ||
273 S_ISFIFO(inode->i_mode) || S_ISSOCK(inode->i_mode)) {
274 fuse_init_common(inode);
275 init_special_inode(inode, inode->i_mode,
276 new_decode_dev(attr->rdev));
277 } else
278 BUG();
279}
280
281int fuse_inode_eq(struct inode *inode, void *_nodeidp)
282{
283 u64 nodeid = *(u64 *) _nodeidp;
284 if (get_node_id(inode) == nodeid)
285 return 1;
286 else
287 return 0;
288}
289
290static int fuse_inode_set(struct inode *inode, void *_nodeidp)
291{
292 u64 nodeid = *(u64 *) _nodeidp;
293 get_fuse_inode(inode)->nodeid = nodeid;
294 return 0;
295}
296
297struct inode *fuse_iget(struct super_block *sb, u64 nodeid,
298 int generation, struct fuse_attr *attr,
299 u64 attr_valid, u64 attr_version)
300{
301 struct inode *inode;
302 struct fuse_inode *fi;
303 struct fuse_conn *fc = get_fuse_conn_super(sb);
304
305 retry:
306 inode = iget5_locked(sb, nodeid, fuse_inode_eq, fuse_inode_set, &nodeid);
307 if (!inode)
308 return NULL;
309
310 if ((inode->i_state & I_NEW)) {
311 inode->i_flags |= S_NOATIME;
312 if (!fc->writeback_cache || !S_ISREG(attr->mode))
313 inode->i_flags |= S_NOCMTIME;
314 inode->i_generation = generation;
315 fuse_init_inode(inode, attr);
316 unlock_new_inode(inode);
317 } else if ((inode->i_mode ^ attr->mode) & S_IFMT) {
318 /* Inode has changed type, any I/O on the old should fail */
319 make_bad_inode(inode);
320 iput(inode);
321 goto retry;
322 }
323
324 fi = get_fuse_inode(inode);
325 spin_lock(&fc->lock);
326 fi->nlookup++;
327 spin_unlock(&fc->lock);
328 fuse_change_attributes(inode, attr, attr_valid, attr_version);
329
330 return inode;
331}
332
333int fuse_reverse_inval_inode(struct super_block *sb, u64 nodeid,
334 loff_t offset, loff_t len)
335{
336 struct inode *inode;
337 pgoff_t pg_start;
338 pgoff_t pg_end;
339
340 inode = ilookup5(sb, nodeid, fuse_inode_eq, &nodeid);
341 if (!inode)
342 return -ENOENT;
343
344 fuse_invalidate_attr(inode);
345 forget_all_cached_acls(inode);
346 if (offset >= 0) {
347 pg_start = offset >> PAGE_SHIFT;
348 if (len <= 0)
349 pg_end = -1;
350 else
351 pg_end = (offset + len - 1) >> PAGE_SHIFT;
352 invalidate_inode_pages2_range(inode->i_mapping,
353 pg_start, pg_end);
354 }
355 iput(inode);
356 return 0;
357}
358
359void fuse_lock_inode(struct inode *inode)
360{
361 if (!get_fuse_conn(inode)->parallel_dirops)
362 mutex_lock(&get_fuse_inode(inode)->mutex);
363}
364
365void fuse_unlock_inode(struct inode *inode)
366{
367 if (!get_fuse_conn(inode)->parallel_dirops)
368 mutex_unlock(&get_fuse_inode(inode)->mutex);
369}
370
371static void fuse_umount_begin(struct super_block *sb)
372{
373 fuse_abort_conn(get_fuse_conn_super(sb));
374}
375
376static void fuse_send_destroy(struct fuse_conn *fc)
377{
378 struct fuse_req *req = fc->destroy_req;
379 if (req && fc->conn_init) {
380 fc->destroy_req = NULL;
381 req->in.h.opcode = FUSE_DESTROY;
382 __set_bit(FR_FORCE, &req->flags);
383 __clear_bit(FR_BACKGROUND, &req->flags);
384 fuse_request_send(fc, req);
385 fuse_put_request(fc, req);
386 }
387}
388
389static void fuse_bdi_destroy(struct fuse_conn *fc)
390{
391 if (fc->bdi_initialized)
392 bdi_destroy(&fc->bdi);
393}
394
395static void fuse_put_super(struct super_block *sb)
396{
397 struct fuse_conn *fc = get_fuse_conn_super(sb);
398
399 fuse_send_destroy(fc);
400
401 fuse_abort_conn(fc);
402 mutex_lock(&fuse_mutex);
403 list_del(&fc->entry);
404 fuse_ctl_remove_conn(fc);
405 mutex_unlock(&fuse_mutex);
406 fuse_bdi_destroy(fc);
407
408 fuse_conn_put(fc);
409}
410
411static void convert_fuse_statfs(struct kstatfs *stbuf, struct fuse_kstatfs *attr)
412{
413 stbuf->f_type = FUSE_SUPER_MAGIC;
414 stbuf->f_bsize = attr->bsize;
415 stbuf->f_frsize = attr->frsize;
416 stbuf->f_blocks = attr->blocks;
417 stbuf->f_bfree = attr->bfree;
418 stbuf->f_bavail = attr->bavail;
419 stbuf->f_files = attr->files;
420 stbuf->f_ffree = attr->ffree;
421 stbuf->f_namelen = attr->namelen;
422 /* fsid is left zero */
423}
424
425static int fuse_statfs(struct dentry *dentry, struct kstatfs *buf)
426{
427 struct super_block *sb = dentry->d_sb;
428 struct fuse_conn *fc = get_fuse_conn_super(sb);
429 FUSE_ARGS(args);
430 struct fuse_statfs_out outarg;
431 int err;
432
433 if (!fuse_allow_current_process(fc)) {
434 buf->f_type = FUSE_SUPER_MAGIC;
435 return 0;
436 }
437
438 memset(&outarg, 0, sizeof(outarg));
439 args.in.numargs = 0;
440 args.in.h.opcode = FUSE_STATFS;
441 args.in.h.nodeid = get_node_id(d_inode(dentry));
442 args.out.numargs = 1;
443 args.out.args[0].size = sizeof(outarg);
444 args.out.args[0].value = &outarg;
445 err = fuse_simple_request(fc, &args);
446 if (!err)
447 convert_fuse_statfs(buf, &outarg.st);
448 return err;
449}
450
451enum {
452 OPT_FD,
453 OPT_ROOTMODE,
454 OPT_USER_ID,
455 OPT_GROUP_ID,
456 OPT_DEFAULT_PERMISSIONS,
457 OPT_ALLOW_OTHER,
458 OPT_MAX_READ,
459 OPT_BLKSIZE,
460 OPT_ERR
461};
462
463static const match_table_t tokens = {
464 {OPT_FD, "fd=%u"},
465 {OPT_ROOTMODE, "rootmode=%o"},
466 {OPT_USER_ID, "user_id=%u"},
467 {OPT_GROUP_ID, "group_id=%u"},
468 {OPT_DEFAULT_PERMISSIONS, "default_permissions"},
469 {OPT_ALLOW_OTHER, "allow_other"},
470 {OPT_MAX_READ, "max_read=%u"},
471 {OPT_BLKSIZE, "blksize=%u"},
472 {OPT_ERR, NULL}
473};
474
475static int fuse_match_uint(substring_t *s, unsigned int *res)
476{
477 int err = -ENOMEM;
478 char *buf = match_strdup(s);
479 if (buf) {
480 err = kstrtouint(buf, 10, res);
481 kfree(buf);
482 }
483 return err;
484}
485
486static int parse_fuse_opt(char *opt, struct fuse_mount_data *d, int is_bdev)
487{
488 char *p;
489 memset(d, 0, sizeof(struct fuse_mount_data));
490 d->max_read = ~0;
491 d->blksize = FUSE_DEFAULT_BLKSIZE;
492
493 while ((p = strsep(&opt, ",")) != NULL) {
494 int token;
495 int value;
496 unsigned uv;
497 substring_t args[MAX_OPT_ARGS];
498 if (!*p)
499 continue;
500
501 token = match_token(p, tokens, args);
502 switch (token) {
503 case OPT_FD:
504 if (match_int(&args[0], &value))
505 return 0;
506 d->fd = value;
507 d->fd_present = 1;
508 break;
509
510 case OPT_ROOTMODE:
511 if (match_octal(&args[0], &value))
512 return 0;
513 if (!fuse_valid_type(value))
514 return 0;
515 d->rootmode = value;
516 d->rootmode_present = 1;
517 break;
518
519 case OPT_USER_ID:
520 if (fuse_match_uint(&args[0], &uv))
521 return 0;
522 d->user_id = make_kuid(current_user_ns(), uv);
523 if (!uid_valid(d->user_id))
524 return 0;
525 d->user_id_present = 1;
526 break;
527
528 case OPT_GROUP_ID:
529 if (fuse_match_uint(&args[0], &uv))
530 return 0;
531 d->group_id = make_kgid(current_user_ns(), uv);
532 if (!gid_valid(d->group_id))
533 return 0;
534 d->group_id_present = 1;
535 break;
536
537 case OPT_DEFAULT_PERMISSIONS:
538 d->default_permissions = 1;
539 break;
540
541 case OPT_ALLOW_OTHER:
542 d->allow_other = 1;
543 break;
544
545 case OPT_MAX_READ:
546 if (match_int(&args[0], &value))
547 return 0;
548 d->max_read = value;
549 break;
550
551 case OPT_BLKSIZE:
552 if (!is_bdev || match_int(&args[0], &value))
553 return 0;
554 d->blksize = value;
555 break;
556
557 default:
558 return 0;
559 }
560 }
561
562 if (!d->fd_present || !d->rootmode_present ||
563 !d->user_id_present || !d->group_id_present)
564 return 0;
565
566 return 1;
567}
568
569static int fuse_show_options(struct seq_file *m, struct dentry *root)
570{
571 struct super_block *sb = root->d_sb;
572 struct fuse_conn *fc = get_fuse_conn_super(sb);
573
574 seq_printf(m, ",user_id=%u", from_kuid_munged(&init_user_ns, fc->user_id));
575 seq_printf(m, ",group_id=%u", from_kgid_munged(&init_user_ns, fc->group_id));
576 if (fc->default_permissions)
577 seq_puts(m, ",default_permissions");
578 if (fc->allow_other)
579 seq_puts(m, ",allow_other");
580 if (fc->max_read != ~0)
581 seq_printf(m, ",max_read=%u", fc->max_read);
582 if (sb->s_bdev && sb->s_blocksize != FUSE_DEFAULT_BLKSIZE)
583 seq_printf(m, ",blksize=%lu", sb->s_blocksize);
584 return 0;
585}
586
587static void fuse_iqueue_init(struct fuse_iqueue *fiq)
588{
589 memset(fiq, 0, sizeof(struct fuse_iqueue));
590 init_waitqueue_head(&fiq->waitq);
591 INIT_LIST_HEAD(&fiq->pending);
592 INIT_LIST_HEAD(&fiq->interrupts);
593 fiq->forget_list_tail = &fiq->forget_list_head;
594 fiq->connected = 1;
595}
596
597static void fuse_pqueue_init(struct fuse_pqueue *fpq)
598{
599 memset(fpq, 0, sizeof(struct fuse_pqueue));
600 spin_lock_init(&fpq->lock);
601 INIT_LIST_HEAD(&fpq->processing);
602 INIT_LIST_HEAD(&fpq->io);
603 fpq->connected = 1;
604}
605
606void fuse_conn_init(struct fuse_conn *fc)
607{
608 memset(fc, 0, sizeof(*fc));
609 spin_lock_init(&fc->lock);
610 init_rwsem(&fc->killsb);
611 atomic_set(&fc->count, 1);
612 atomic_set(&fc->dev_count, 1);
613 init_waitqueue_head(&fc->blocked_waitq);
614 init_waitqueue_head(&fc->reserved_req_waitq);
615 fuse_iqueue_init(&fc->iq);
616 INIT_LIST_HEAD(&fc->bg_queue);
617 INIT_LIST_HEAD(&fc->entry);
618 INIT_LIST_HEAD(&fc->devices);
619 atomic_set(&fc->num_waiting, 0);
620 fc->max_background = FUSE_DEFAULT_MAX_BACKGROUND;
621 fc->congestion_threshold = FUSE_DEFAULT_CONGESTION_THRESHOLD;
622 fc->khctr = 0;
623 fc->polled_files = RB_ROOT;
624 fc->blocked = 0;
625 fc->initialized = 0;
626 fc->connected = 1;
627 fc->attr_version = 1;
628 get_random_bytes(&fc->scramble_key, sizeof(fc->scramble_key));
629}
630EXPORT_SYMBOL_GPL(fuse_conn_init);
631
632void fuse_conn_put(struct fuse_conn *fc)
633{
634 if (atomic_dec_and_test(&fc->count)) {
635 if (fc->destroy_req)
636 fuse_request_free(fc->destroy_req);
637 fc->release(fc);
638 }
639}
640EXPORT_SYMBOL_GPL(fuse_conn_put);
641
642struct fuse_conn *fuse_conn_get(struct fuse_conn *fc)
643{
644 atomic_inc(&fc->count);
645 return fc;
646}
647EXPORT_SYMBOL_GPL(fuse_conn_get);
648
649static struct inode *fuse_get_root_inode(struct super_block *sb, unsigned mode)
650{
651 struct fuse_attr attr;
652 memset(&attr, 0, sizeof(attr));
653
654 attr.mode = mode;
655 attr.ino = FUSE_ROOT_ID;
656 attr.nlink = 1;
657 return fuse_iget(sb, 1, 0, &attr, 0, 0);
658}
659
660struct fuse_inode_handle {
661 u64 nodeid;
662 u32 generation;
663};
664
665static struct dentry *fuse_get_dentry(struct super_block *sb,
666 struct fuse_inode_handle *handle)
667{
668 struct fuse_conn *fc = get_fuse_conn_super(sb);
669 struct inode *inode;
670 struct dentry *entry;
671 int err = -ESTALE;
672
673 if (handle->nodeid == 0)
674 goto out_err;
675
676 inode = ilookup5(sb, handle->nodeid, fuse_inode_eq, &handle->nodeid);
677 if (!inode) {
678 struct fuse_entry_out outarg;
679 const struct qstr name = QSTR_INIT(".", 1);
680
681 if (!fc->export_support)
682 goto out_err;
683
684 err = fuse_lookup_name(sb, handle->nodeid, &name, &outarg,
685 &inode);
686 if (err && err != -ENOENT)
687 goto out_err;
688 if (err || !inode) {
689 err = -ESTALE;
690 goto out_err;
691 }
692 err = -EIO;
693 if (get_node_id(inode) != handle->nodeid)
694 goto out_iput;
695 }
696 err = -ESTALE;
697 if (inode->i_generation != handle->generation)
698 goto out_iput;
699
700 entry = d_obtain_alias(inode);
701 if (!IS_ERR(entry) && get_node_id(inode) != FUSE_ROOT_ID)
702 fuse_invalidate_entry_cache(entry);
703
704 return entry;
705
706 out_iput:
707 iput(inode);
708 out_err:
709 return ERR_PTR(err);
710}
711
712static int fuse_encode_fh(struct inode *inode, u32 *fh, int *max_len,
713 struct inode *parent)
714{
715 int len = parent ? 6 : 3;
716 u64 nodeid;
717 u32 generation;
718
719 if (*max_len < len) {
720 *max_len = len;
721 return FILEID_INVALID;
722 }
723
724 nodeid = get_fuse_inode(inode)->nodeid;
725 generation = inode->i_generation;
726
727 fh[0] = (u32)(nodeid >> 32);
728 fh[1] = (u32)(nodeid & 0xffffffff);
729 fh[2] = generation;
730
731 if (parent) {
732 nodeid = get_fuse_inode(parent)->nodeid;
733 generation = parent->i_generation;
734
735 fh[3] = (u32)(nodeid >> 32);
736 fh[4] = (u32)(nodeid & 0xffffffff);
737 fh[5] = generation;
738 }
739
740 *max_len = len;
741 return parent ? 0x82 : 0x81;
742}
743
744static struct dentry *fuse_fh_to_dentry(struct super_block *sb,
745 struct fid *fid, int fh_len, int fh_type)
746{
747 struct fuse_inode_handle handle;
748
749 if ((fh_type != 0x81 && fh_type != 0x82) || fh_len < 3)
750 return NULL;
751
752 handle.nodeid = (u64) fid->raw[0] << 32;
753 handle.nodeid |= (u64) fid->raw[1];
754 handle.generation = fid->raw[2];
755 return fuse_get_dentry(sb, &handle);
756}
757
758static struct dentry *fuse_fh_to_parent(struct super_block *sb,
759 struct fid *fid, int fh_len, int fh_type)
760{
761 struct fuse_inode_handle parent;
762
763 if (fh_type != 0x82 || fh_len < 6)
764 return NULL;
765
766 parent.nodeid = (u64) fid->raw[3] << 32;
767 parent.nodeid |= (u64) fid->raw[4];
768 parent.generation = fid->raw[5];
769 return fuse_get_dentry(sb, &parent);
770}
771
772static struct dentry *fuse_get_parent(struct dentry *child)
773{
774 struct inode *child_inode = d_inode(child);
775 struct fuse_conn *fc = get_fuse_conn(child_inode);
776 struct inode *inode;
777 struct dentry *parent;
778 struct fuse_entry_out outarg;
779 const struct qstr name = QSTR_INIT("..", 2);
780 int err;
781
782 if (!fc->export_support)
783 return ERR_PTR(-ESTALE);
784
785 err = fuse_lookup_name(child_inode->i_sb, get_node_id(child_inode),
786 &name, &outarg, &inode);
787 if (err) {
788 if (err == -ENOENT)
789 return ERR_PTR(-ESTALE);
790 return ERR_PTR(err);
791 }
792
793 parent = d_obtain_alias(inode);
794 if (!IS_ERR(parent) && get_node_id(inode) != FUSE_ROOT_ID)
795 fuse_invalidate_entry_cache(parent);
796
797 return parent;
798}
799
800static const struct export_operations fuse_export_operations = {
801 .fh_to_dentry = fuse_fh_to_dentry,
802 .fh_to_parent = fuse_fh_to_parent,
803 .encode_fh = fuse_encode_fh,
804 .get_parent = fuse_get_parent,
805};
806
807static const struct super_operations fuse_super_operations = {
808 .alloc_inode = fuse_alloc_inode,
809 .destroy_inode = fuse_destroy_inode,
810 .evict_inode = fuse_evict_inode,
811 .write_inode = fuse_write_inode,
812 .drop_inode = generic_delete_inode,
813 .remount_fs = fuse_remount_fs,
814 .put_super = fuse_put_super,
815 .umount_begin = fuse_umount_begin,
816 .statfs = fuse_statfs,
817 .show_options = fuse_show_options,
818};
819
820static void sanitize_global_limit(unsigned *limit)
821{
822 if (*limit == 0)
823 *limit = ((totalram_pages << PAGE_SHIFT) >> 13) /
824 sizeof(struct fuse_req);
825
826 if (*limit >= 1 << 16)
827 *limit = (1 << 16) - 1;
828}
829
830static int set_global_limit(const char *val, struct kernel_param *kp)
831{
832 int rv;
833
834 rv = param_set_uint(val, kp);
835 if (rv)
836 return rv;
837
838 sanitize_global_limit((unsigned *)kp->arg);
839
840 return 0;
841}
842
843static void process_init_limits(struct fuse_conn *fc, struct fuse_init_out *arg)
844{
845 int cap_sys_admin = capable(CAP_SYS_ADMIN);
846
847 if (arg->minor < 13)
848 return;
849
850 sanitize_global_limit(&max_user_bgreq);
851 sanitize_global_limit(&max_user_congthresh);
852
853 if (arg->max_background) {
854 fc->max_background = arg->max_background;
855
856 if (!cap_sys_admin && fc->max_background > max_user_bgreq)
857 fc->max_background = max_user_bgreq;
858 }
859 if (arg->congestion_threshold) {
860 fc->congestion_threshold = arg->congestion_threshold;
861
862 if (!cap_sys_admin &&
863 fc->congestion_threshold > max_user_congthresh)
864 fc->congestion_threshold = max_user_congthresh;
865 }
866}
867
868static void process_init_reply(struct fuse_conn *fc, struct fuse_req *req)
869{
870 struct fuse_init_out *arg = &req->misc.init_out;
871
872 if (req->out.h.error || arg->major != FUSE_KERNEL_VERSION)
873 fc->conn_error = 1;
874 else {
875 unsigned long ra_pages;
876
877 process_init_limits(fc, arg);
878
879 if (arg->minor >= 6) {
880 ra_pages = arg->max_readahead / PAGE_SIZE;
881 if (arg->flags & FUSE_ASYNC_READ)
882 fc->async_read = 1;
883 if (!(arg->flags & FUSE_POSIX_LOCKS))
884 fc->no_lock = 1;
885 if (arg->minor >= 17) {
886 if (!(arg->flags & FUSE_FLOCK_LOCKS))
887 fc->no_flock = 1;
888 } else {
889 if (!(arg->flags & FUSE_POSIX_LOCKS))
890 fc->no_flock = 1;
891 }
892 if (arg->flags & FUSE_ATOMIC_O_TRUNC)
893 fc->atomic_o_trunc = 1;
894 if (arg->minor >= 9) {
895 /* LOOKUP has dependency on proto version */
896 if (arg->flags & FUSE_EXPORT_SUPPORT)
897 fc->export_support = 1;
898 }
899 if (arg->flags & FUSE_BIG_WRITES)
900 fc->big_writes = 1;
901 if (arg->flags & FUSE_DONT_MASK)
902 fc->dont_mask = 1;
903 if (arg->flags & FUSE_AUTO_INVAL_DATA)
904 fc->auto_inval_data = 1;
905 if (arg->flags & FUSE_DO_READDIRPLUS) {
906 fc->do_readdirplus = 1;
907 if (arg->flags & FUSE_READDIRPLUS_AUTO)
908 fc->readdirplus_auto = 1;
909 }
910 if (arg->flags & FUSE_ASYNC_DIO)
911 fc->async_dio = 1;
912 if (arg->flags & FUSE_WRITEBACK_CACHE)
913 fc->writeback_cache = 1;
914 if (arg->flags & FUSE_PARALLEL_DIROPS)
915 fc->parallel_dirops = 1;
916 if (arg->flags & FUSE_HANDLE_KILLPRIV)
917 fc->handle_killpriv = 1;
918 if (arg->time_gran && arg->time_gran <= 1000000000)
919 fc->sb->s_time_gran = arg->time_gran;
920 if ((arg->flags & FUSE_POSIX_ACL)) {
921 fc->default_permissions = 1;
922 fc->posix_acl = 1;
923 fc->sb->s_xattr = fuse_acl_xattr_handlers;
924 }
925 } else {
926 ra_pages = fc->max_read / PAGE_SIZE;
927 fc->no_lock = 1;
928 fc->no_flock = 1;
929 }
930
931 fc->bdi.ra_pages = min(fc->bdi.ra_pages, ra_pages);
932 fc->minor = arg->minor;
933 fc->max_write = arg->minor < 5 ? 4096 : arg->max_write;
934 fc->max_write = max_t(unsigned, 4096, fc->max_write);
935 fc->conn_init = 1;
936 }
937 fuse_set_initialized(fc);
938 wake_up_all(&fc->blocked_waitq);
939}
940
941static void fuse_send_init(struct fuse_conn *fc, struct fuse_req *req)
942{
943 struct fuse_init_in *arg = &req->misc.init_in;
944
945 arg->major = FUSE_KERNEL_VERSION;
946 arg->minor = FUSE_KERNEL_MINOR_VERSION;
947 arg->max_readahead = fc->bdi.ra_pages * PAGE_SIZE;
948 arg->flags |= FUSE_ASYNC_READ | FUSE_POSIX_LOCKS | FUSE_ATOMIC_O_TRUNC |
949 FUSE_EXPORT_SUPPORT | FUSE_BIG_WRITES | FUSE_DONT_MASK |
950 FUSE_SPLICE_WRITE | FUSE_SPLICE_MOVE | FUSE_SPLICE_READ |
951 FUSE_FLOCK_LOCKS | FUSE_HAS_IOCTL_DIR | FUSE_AUTO_INVAL_DATA |
952 FUSE_DO_READDIRPLUS | FUSE_READDIRPLUS_AUTO | FUSE_ASYNC_DIO |
953 FUSE_WRITEBACK_CACHE | FUSE_NO_OPEN_SUPPORT |
954 FUSE_PARALLEL_DIROPS | FUSE_HANDLE_KILLPRIV | FUSE_POSIX_ACL;
955 req->in.h.opcode = FUSE_INIT;
956 req->in.numargs = 1;
957 req->in.args[0].size = sizeof(*arg);
958 req->in.args[0].value = arg;
959 req->out.numargs = 1;
960 /* Variable length argument used for backward compatibility
961 with interface version < 7.5. Rest of init_out is zeroed
962 by do_get_request(), so a short reply is not a problem */
963 req->out.argvar = 1;
964 req->out.args[0].size = sizeof(struct fuse_init_out);
965 req->out.args[0].value = &req->misc.init_out;
966 req->end = process_init_reply;
967 fuse_request_send_background(fc, req);
968}
969
970static void fuse_free_conn(struct fuse_conn *fc)
971{
972 WARN_ON(!list_empty(&fc->devices));
973 kfree_rcu(fc, rcu);
974}
975
976static int fuse_bdi_init(struct fuse_conn *fc, struct super_block *sb)
977{
978 int err;
979
980 fc->bdi.name = "fuse";
981 fc->bdi.ra_pages = (VM_MAX_READAHEAD * 1024) / PAGE_SIZE;
982 /* fuse does it's own writeback accounting */
983 fc->bdi.capabilities = BDI_CAP_NO_ACCT_WB | BDI_CAP_STRICTLIMIT;
984
985 err = bdi_init(&fc->bdi);
986 if (err)
987 return err;
988
989 fc->bdi_initialized = 1;
990
991 if (sb->s_bdev) {
992 err = bdi_register(&fc->bdi, NULL, "%u:%u-fuseblk",
993 MAJOR(fc->dev), MINOR(fc->dev));
994 } else {
995 err = bdi_register_dev(&fc->bdi, fc->dev);
996 }
997
998 if (err)
999 return err;
1000
1001 /*
1002 * For a single fuse filesystem use max 1% of dirty +
1003 * writeback threshold.
1004 *
1005 * This gives about 1M of write buffer for memory maps on a
1006 * machine with 1G and 10% dirty_ratio, which should be more
1007 * than enough.
1008 *
1009 * Privileged users can raise it by writing to
1010 *
1011 * /sys/class/bdi/<bdi>/max_ratio
1012 */
1013 bdi_set_max_ratio(&fc->bdi, 1);
1014
1015 return 0;
1016}
1017
1018struct fuse_dev *fuse_dev_alloc(struct fuse_conn *fc)
1019{
1020 struct fuse_dev *fud;
1021
1022 fud = kzalloc(sizeof(struct fuse_dev), GFP_KERNEL);
1023 if (fud) {
1024 fud->fc = fuse_conn_get(fc);
1025 fuse_pqueue_init(&fud->pq);
1026
1027 spin_lock(&fc->lock);
1028 list_add_tail(&fud->entry, &fc->devices);
1029 spin_unlock(&fc->lock);
1030 }
1031
1032 return fud;
1033}
1034EXPORT_SYMBOL_GPL(fuse_dev_alloc);
1035
1036void fuse_dev_free(struct fuse_dev *fud)
1037{
1038 struct fuse_conn *fc = fud->fc;
1039
1040 if (fc) {
1041 spin_lock(&fc->lock);
1042 list_del(&fud->entry);
1043 spin_unlock(&fc->lock);
1044
1045 fuse_conn_put(fc);
1046 }
1047 kfree(fud);
1048}
1049EXPORT_SYMBOL_GPL(fuse_dev_free);
1050
1051static int fuse_fill_super(struct super_block *sb, void *data, int silent)
1052{
1053 struct fuse_dev *fud;
1054 struct fuse_conn *fc;
1055 struct inode *root;
1056 struct fuse_mount_data d;
1057 struct file *file;
1058 struct dentry *root_dentry;
1059 struct fuse_req *init_req;
1060 int err;
1061 int is_bdev = sb->s_bdev != NULL;
1062
1063 err = -EINVAL;
1064 if (sb->s_flags & MS_MANDLOCK)
1065 goto err;
1066
1067 sb->s_flags &= ~(MS_NOSEC | MS_I_VERSION);
1068
1069 if (!parse_fuse_opt(data, &d, is_bdev))
1070 goto err;
1071
1072 if (is_bdev) {
1073#ifdef CONFIG_BLOCK
1074 err = -EINVAL;
1075 if (!sb_set_blocksize(sb, d.blksize))
1076 goto err;
1077#endif
1078 } else {
1079 sb->s_blocksize = PAGE_SIZE;
1080 sb->s_blocksize_bits = PAGE_SHIFT;
1081 }
1082 sb->s_magic = FUSE_SUPER_MAGIC;
1083 sb->s_op = &fuse_super_operations;
1084 sb->s_xattr = fuse_xattr_handlers;
1085 sb->s_maxbytes = MAX_LFS_FILESIZE;
1086 sb->s_time_gran = 1;
1087 sb->s_export_op = &fuse_export_operations;
1088
1089 file = fget(d.fd);
1090 err = -EINVAL;
1091 if (!file)
1092 goto err;
1093
1094 if ((file->f_op != &fuse_dev_operations) ||
1095 (file->f_cred->user_ns != &init_user_ns))
1096 goto err_fput;
1097
1098 fc = kmalloc(sizeof(*fc), GFP_KERNEL);
1099 err = -ENOMEM;
1100 if (!fc)
1101 goto err_fput;
1102
1103 fuse_conn_init(fc);
1104 fc->release = fuse_free_conn;
1105
1106 fud = fuse_dev_alloc(fc);
1107 if (!fud)
1108 goto err_put_conn;
1109
1110 fc->dev = sb->s_dev;
1111 fc->sb = sb;
1112 err = fuse_bdi_init(fc, sb);
1113 if (err)
1114 goto err_dev_free;
1115
1116 sb->s_bdi = &fc->bdi;
1117
1118 /* Handle umasking inside the fuse code */
1119 if (sb->s_flags & MS_POSIXACL)
1120 fc->dont_mask = 1;
1121 sb->s_flags |= MS_POSIXACL;
1122
1123 fc->default_permissions = d.default_permissions;
1124 fc->allow_other = d.allow_other;
1125 fc->user_id = d.user_id;
1126 fc->group_id = d.group_id;
1127 fc->max_read = max_t(unsigned, 4096, d.max_read);
1128
1129 /* Used by get_root_inode() */
1130 sb->s_fs_info = fc;
1131
1132 err = -ENOMEM;
1133 root = fuse_get_root_inode(sb, d.rootmode);
1134 sb->s_d_op = &fuse_root_dentry_operations;
1135 root_dentry = d_make_root(root);
1136 if (!root_dentry)
1137 goto err_dev_free;
1138 /* Root dentry doesn't have .d_revalidate */
1139 sb->s_d_op = &fuse_dentry_operations;
1140
1141 init_req = fuse_request_alloc(0);
1142 if (!init_req)
1143 goto err_put_root;
1144 __set_bit(FR_BACKGROUND, &init_req->flags);
1145
1146 if (is_bdev) {
1147 fc->destroy_req = fuse_request_alloc(0);
1148 if (!fc->destroy_req)
1149 goto err_free_init_req;
1150 }
1151
1152 mutex_lock(&fuse_mutex);
1153 err = -EINVAL;
1154 if (file->private_data)
1155 goto err_unlock;
1156
1157 err = fuse_ctl_add_conn(fc);
1158 if (err)
1159 goto err_unlock;
1160
1161 list_add_tail(&fc->entry, &fuse_conn_list);
1162 sb->s_root = root_dentry;
1163 file->private_data = fud;
1164 mutex_unlock(&fuse_mutex);
1165 /*
1166 * atomic_dec_and_test() in fput() provides the necessary
1167 * memory barrier for file->private_data to be visible on all
1168 * CPUs after this
1169 */
1170 fput(file);
1171
1172 fuse_send_init(fc, init_req);
1173
1174 return 0;
1175
1176 err_unlock:
1177 mutex_unlock(&fuse_mutex);
1178 err_free_init_req:
1179 fuse_request_free(init_req);
1180 err_put_root:
1181 dput(root_dentry);
1182 err_dev_free:
1183 fuse_dev_free(fud);
1184 err_put_conn:
1185 fuse_bdi_destroy(fc);
1186 fuse_conn_put(fc);
1187 err_fput:
1188 fput(file);
1189 err:
1190 return err;
1191}
1192
1193static struct dentry *fuse_mount(struct file_system_type *fs_type,
1194 int flags, const char *dev_name,
1195 void *raw_data)
1196{
1197 return mount_nodev(fs_type, flags, raw_data, fuse_fill_super);
1198}
1199
1200static void fuse_kill_sb_anon(struct super_block *sb)
1201{
1202 struct fuse_conn *fc = get_fuse_conn_super(sb);
1203
1204 if (fc) {
1205 down_write(&fc->killsb);
1206 fc->sb = NULL;
1207 up_write(&fc->killsb);
1208 }
1209
1210 kill_anon_super(sb);
1211}
1212
1213static struct file_system_type fuse_fs_type = {
1214 .owner = THIS_MODULE,
1215 .name = "fuse",
1216 .fs_flags = FS_HAS_SUBTYPE,
1217 .mount = fuse_mount,
1218 .kill_sb = fuse_kill_sb_anon,
1219};
1220MODULE_ALIAS_FS("fuse");
1221
1222#ifdef CONFIG_BLOCK
1223static struct dentry *fuse_mount_blk(struct file_system_type *fs_type,
1224 int flags, const char *dev_name,
1225 void *raw_data)
1226{
1227 return mount_bdev(fs_type, flags, dev_name, raw_data, fuse_fill_super);
1228}
1229
1230static void fuse_kill_sb_blk(struct super_block *sb)
1231{
1232 struct fuse_conn *fc = get_fuse_conn_super(sb);
1233
1234 if (fc) {
1235 down_write(&fc->killsb);
1236 fc->sb = NULL;
1237 up_write(&fc->killsb);
1238 }
1239
1240 kill_block_super(sb);
1241}
1242
1243static struct file_system_type fuseblk_fs_type = {
1244 .owner = THIS_MODULE,
1245 .name = "fuseblk",
1246 .mount = fuse_mount_blk,
1247 .kill_sb = fuse_kill_sb_blk,
1248 .fs_flags = FS_REQUIRES_DEV | FS_HAS_SUBTYPE,
1249};
1250MODULE_ALIAS_FS("fuseblk");
1251
1252static inline int register_fuseblk(void)
1253{
1254 return register_filesystem(&fuseblk_fs_type);
1255}
1256
1257static inline void unregister_fuseblk(void)
1258{
1259 unregister_filesystem(&fuseblk_fs_type);
1260}
1261#else
1262static inline int register_fuseblk(void)
1263{
1264 return 0;
1265}
1266
1267static inline void unregister_fuseblk(void)
1268{
1269}
1270#endif
1271
1272static void fuse_inode_init_once(void *foo)
1273{
1274 struct inode *inode = foo;
1275
1276 inode_init_once(inode);
1277}
1278
1279static int __init fuse_fs_init(void)
1280{
1281 int err;
1282
1283 fuse_inode_cachep = kmem_cache_create("fuse_inode",
1284 sizeof(struct fuse_inode), 0,
1285 SLAB_HWCACHE_ALIGN|SLAB_ACCOUNT,
1286 fuse_inode_init_once);
1287 err = -ENOMEM;
1288 if (!fuse_inode_cachep)
1289 goto out;
1290
1291 err = register_fuseblk();
1292 if (err)
1293 goto out2;
1294
1295 err = register_filesystem(&fuse_fs_type);
1296 if (err)
1297 goto out3;
1298
1299 return 0;
1300
1301 out3:
1302 unregister_fuseblk();
1303 out2:
1304 kmem_cache_destroy(fuse_inode_cachep);
1305 out:
1306 return err;
1307}
1308
1309static void fuse_fs_cleanup(void)
1310{
1311 unregister_filesystem(&fuse_fs_type);
1312 unregister_fuseblk();
1313
1314 /*
1315 * Make sure all delayed rcu free inodes are flushed before we
1316 * destroy cache.
1317 */
1318 rcu_barrier();
1319 kmem_cache_destroy(fuse_inode_cachep);
1320}
1321
1322static struct kobject *fuse_kobj;
1323
1324static int fuse_sysfs_init(void)
1325{
1326 int err;
1327
1328 fuse_kobj = kobject_create_and_add("fuse", fs_kobj);
1329 if (!fuse_kobj) {
1330 err = -ENOMEM;
1331 goto out_err;
1332 }
1333
1334 err = sysfs_create_mount_point(fuse_kobj, "connections");
1335 if (err)
1336 goto out_fuse_unregister;
1337
1338 return 0;
1339
1340 out_fuse_unregister:
1341 kobject_put(fuse_kobj);
1342 out_err:
1343 return err;
1344}
1345
1346static void fuse_sysfs_cleanup(void)
1347{
1348 sysfs_remove_mount_point(fuse_kobj, "connections");
1349 kobject_put(fuse_kobj);
1350}
1351
1352static int __init fuse_init(void)
1353{
1354 int res;
1355
1356 printk(KERN_INFO "fuse init (API version %i.%i)\n",
1357 FUSE_KERNEL_VERSION, FUSE_KERNEL_MINOR_VERSION);
1358
1359 INIT_LIST_HEAD(&fuse_conn_list);
1360 res = fuse_fs_init();
1361 if (res)
1362 goto err;
1363
1364 res = fuse_dev_init();
1365 if (res)
1366 goto err_fs_cleanup;
1367
1368 res = fuse_sysfs_init();
1369 if (res)
1370 goto err_dev_cleanup;
1371
1372 res = fuse_ctl_init();
1373 if (res)
1374 goto err_sysfs_cleanup;
1375
1376 sanitize_global_limit(&max_user_bgreq);
1377 sanitize_global_limit(&max_user_congthresh);
1378
1379 return 0;
1380
1381 err_sysfs_cleanup:
1382 fuse_sysfs_cleanup();
1383 err_dev_cleanup:
1384 fuse_dev_cleanup();
1385 err_fs_cleanup:
1386 fuse_fs_cleanup();
1387 err:
1388 return res;
1389}
1390
1391static void __exit fuse_exit(void)
1392{
1393 printk(KERN_DEBUG "fuse exit\n");
1394
1395 fuse_ctl_cleanup();
1396 fuse_sysfs_cleanup();
1397 fuse_fs_cleanup();
1398 fuse_dev_cleanup();
1399}
1400
1401module_init(fuse_init);
1402module_exit(fuse_exit);
1/*
2 FUSE: Filesystem in Userspace
3 Copyright (C) 2001-2008 Miklos Szeredi <miklos@szeredi.hu>
4
5 This program can be distributed under the terms of the GNU GPL.
6 See the file COPYING.
7*/
8
9#include "fuse_i.h"
10
11#include <linux/pagemap.h>
12#include <linux/slab.h>
13#include <linux/file.h>
14#include <linux/seq_file.h>
15#include <linux/init.h>
16#include <linux/module.h>
17#include <linux/moduleparam.h>
18#include <linux/fs_context.h>
19#include <linux/fs_parser.h>
20#include <linux/statfs.h>
21#include <linux/random.h>
22#include <linux/sched.h>
23#include <linux/exportfs.h>
24#include <linux/posix_acl.h>
25#include <linux/pid_namespace.h>
26#include <uapi/linux/magic.h>
27
28MODULE_AUTHOR("Miklos Szeredi <miklos@szeredi.hu>");
29MODULE_DESCRIPTION("Filesystem in Userspace");
30MODULE_LICENSE("GPL");
31
32static struct kmem_cache *fuse_inode_cachep;
33struct list_head fuse_conn_list;
34DEFINE_MUTEX(fuse_mutex);
35
36static int set_global_limit(const char *val, const struct kernel_param *kp);
37
38unsigned int fuse_max_pages_limit = 256;
39
40unsigned max_user_bgreq;
41module_param_call(max_user_bgreq, set_global_limit, param_get_uint,
42 &max_user_bgreq, 0644);
43__MODULE_PARM_TYPE(max_user_bgreq, "uint");
44MODULE_PARM_DESC(max_user_bgreq,
45 "Global limit for the maximum number of backgrounded requests an "
46 "unprivileged user can set");
47
48unsigned max_user_congthresh;
49module_param_call(max_user_congthresh, set_global_limit, param_get_uint,
50 &max_user_congthresh, 0644);
51__MODULE_PARM_TYPE(max_user_congthresh, "uint");
52MODULE_PARM_DESC(max_user_congthresh,
53 "Global limit for the maximum congestion threshold an "
54 "unprivileged user can set");
55
56#define FUSE_DEFAULT_BLKSIZE 512
57
58/** Maximum number of outstanding background requests */
59#define FUSE_DEFAULT_MAX_BACKGROUND 12
60
61/** Congestion starts at 75% of maximum */
62#define FUSE_DEFAULT_CONGESTION_THRESHOLD (FUSE_DEFAULT_MAX_BACKGROUND * 3 / 4)
63
64#ifdef CONFIG_BLOCK
65static struct file_system_type fuseblk_fs_type;
66#endif
67
68struct fuse_forget_link *fuse_alloc_forget(void)
69{
70 return kzalloc(sizeof(struct fuse_forget_link), GFP_KERNEL_ACCOUNT);
71}
72
73static struct fuse_submount_lookup *fuse_alloc_submount_lookup(void)
74{
75 struct fuse_submount_lookup *sl;
76
77 sl = kzalloc(sizeof(struct fuse_submount_lookup), GFP_KERNEL_ACCOUNT);
78 if (!sl)
79 return NULL;
80 sl->forget = fuse_alloc_forget();
81 if (!sl->forget)
82 goto out_free;
83
84 return sl;
85
86out_free:
87 kfree(sl);
88 return NULL;
89}
90
91static struct inode *fuse_alloc_inode(struct super_block *sb)
92{
93 struct fuse_inode *fi;
94
95 fi = alloc_inode_sb(sb, fuse_inode_cachep, GFP_KERNEL);
96 if (!fi)
97 return NULL;
98
99 fi->i_time = 0;
100 fi->inval_mask = ~0;
101 fi->nodeid = 0;
102 fi->nlookup = 0;
103 fi->attr_version = 0;
104 fi->orig_ino = 0;
105 fi->state = 0;
106 fi->submount_lookup = NULL;
107 mutex_init(&fi->mutex);
108 spin_lock_init(&fi->lock);
109 fi->forget = fuse_alloc_forget();
110 if (!fi->forget)
111 goto out_free;
112
113 if (IS_ENABLED(CONFIG_FUSE_DAX) && !fuse_dax_inode_alloc(sb, fi))
114 goto out_free_forget;
115
116 if (IS_ENABLED(CONFIG_FUSE_PASSTHROUGH))
117 fuse_inode_backing_set(fi, NULL);
118
119 return &fi->inode;
120
121out_free_forget:
122 kfree(fi->forget);
123out_free:
124 kmem_cache_free(fuse_inode_cachep, fi);
125 return NULL;
126}
127
128static void fuse_free_inode(struct inode *inode)
129{
130 struct fuse_inode *fi = get_fuse_inode(inode);
131
132 mutex_destroy(&fi->mutex);
133 kfree(fi->forget);
134#ifdef CONFIG_FUSE_DAX
135 kfree(fi->dax);
136#endif
137 if (IS_ENABLED(CONFIG_FUSE_PASSTHROUGH))
138 fuse_backing_put(fuse_inode_backing(fi));
139
140 kmem_cache_free(fuse_inode_cachep, fi);
141}
142
143static void fuse_cleanup_submount_lookup(struct fuse_conn *fc,
144 struct fuse_submount_lookup *sl)
145{
146 if (!refcount_dec_and_test(&sl->count))
147 return;
148
149 fuse_queue_forget(fc, sl->forget, sl->nodeid, 1);
150 sl->forget = NULL;
151 kfree(sl);
152}
153
154static void fuse_evict_inode(struct inode *inode)
155{
156 struct fuse_inode *fi = get_fuse_inode(inode);
157
158 /* Will write inode on close/munmap and in all other dirtiers */
159 WARN_ON(inode->i_state & I_DIRTY_INODE);
160
161 truncate_inode_pages_final(&inode->i_data);
162 clear_inode(inode);
163 if (inode->i_sb->s_flags & SB_ACTIVE) {
164 struct fuse_conn *fc = get_fuse_conn(inode);
165
166 if (FUSE_IS_DAX(inode))
167 fuse_dax_inode_cleanup(inode);
168 if (fi->nlookup) {
169 fuse_queue_forget(fc, fi->forget, fi->nodeid,
170 fi->nlookup);
171 fi->forget = NULL;
172 }
173
174 if (fi->submount_lookup) {
175 fuse_cleanup_submount_lookup(fc, fi->submount_lookup);
176 fi->submount_lookup = NULL;
177 }
178 /*
179 * Evict of non-deleted inode may race with outstanding
180 * LOOKUP/READDIRPLUS requests and result in inconsistency when
181 * the request finishes. Deal with that here by bumping a
182 * counter that can be compared to the starting value.
183 */
184 if (inode->i_nlink > 0)
185 atomic64_inc(&fc->evict_ctr);
186 }
187 if (S_ISREG(inode->i_mode) && !fuse_is_bad(inode)) {
188 WARN_ON(fi->iocachectr != 0);
189 WARN_ON(!list_empty(&fi->write_files));
190 WARN_ON(!list_empty(&fi->queued_writes));
191 }
192}
193
194static int fuse_reconfigure(struct fs_context *fsc)
195{
196 struct super_block *sb = fsc->root->d_sb;
197
198 sync_filesystem(sb);
199 if (fsc->sb_flags & SB_MANDLOCK)
200 return -EINVAL;
201
202 return 0;
203}
204
205/*
206 * ino_t is 32-bits on 32-bit arch. We have to squash the 64-bit value down
207 * so that it will fit.
208 */
209static ino_t fuse_squash_ino(u64 ino64)
210{
211 ino_t ino = (ino_t) ino64;
212 if (sizeof(ino_t) < sizeof(u64))
213 ino ^= ino64 >> (sizeof(u64) - sizeof(ino_t)) * 8;
214 return ino;
215}
216
217void fuse_change_attributes_common(struct inode *inode, struct fuse_attr *attr,
218 struct fuse_statx *sx,
219 u64 attr_valid, u32 cache_mask,
220 u64 evict_ctr)
221{
222 struct fuse_conn *fc = get_fuse_conn(inode);
223 struct fuse_inode *fi = get_fuse_inode(inode);
224
225 lockdep_assert_held(&fi->lock);
226
227 /*
228 * Clear basic stats from invalid mask.
229 *
230 * Don't do this if this is coming from a fuse_iget() call and there
231 * might have been a racing evict which would've invalidated the result
232 * if the attr_version would've been preserved.
233 *
234 * !evict_ctr -> this is create
235 * fi->attr_version != 0 -> this is not a new inode
236 * evict_ctr == fuse_get_evict_ctr() -> no evicts while during request
237 */
238 if (!evict_ctr || fi->attr_version || evict_ctr == fuse_get_evict_ctr(fc))
239 set_mask_bits(&fi->inval_mask, STATX_BASIC_STATS, 0);
240
241 fi->attr_version = atomic64_inc_return(&fc->attr_version);
242 fi->i_time = attr_valid;
243
244 inode->i_ino = fuse_squash_ino(attr->ino);
245 inode->i_mode = (inode->i_mode & S_IFMT) | (attr->mode & 07777);
246 set_nlink(inode, attr->nlink);
247 inode->i_uid = make_kuid(fc->user_ns, attr->uid);
248 inode->i_gid = make_kgid(fc->user_ns, attr->gid);
249 inode->i_blocks = attr->blocks;
250
251 /* Sanitize nsecs */
252 attr->atimensec = min_t(u32, attr->atimensec, NSEC_PER_SEC - 1);
253 attr->mtimensec = min_t(u32, attr->mtimensec, NSEC_PER_SEC - 1);
254 attr->ctimensec = min_t(u32, attr->ctimensec, NSEC_PER_SEC - 1);
255
256 inode_set_atime(inode, attr->atime, attr->atimensec);
257 /* mtime from server may be stale due to local buffered write */
258 if (!(cache_mask & STATX_MTIME)) {
259 inode_set_mtime(inode, attr->mtime, attr->mtimensec);
260 }
261 if (!(cache_mask & STATX_CTIME)) {
262 inode_set_ctime(inode, attr->ctime, attr->ctimensec);
263 }
264 if (sx) {
265 /* Sanitize nsecs */
266 sx->btime.tv_nsec =
267 min_t(u32, sx->btime.tv_nsec, NSEC_PER_SEC - 1);
268
269 /*
270 * Btime has been queried, cache is valid (whether or not btime
271 * is available or not) so clear STATX_BTIME from inval_mask.
272 *
273 * Availability of the btime attribute is indicated in
274 * FUSE_I_BTIME
275 */
276 set_mask_bits(&fi->inval_mask, STATX_BTIME, 0);
277 if (sx->mask & STATX_BTIME) {
278 set_bit(FUSE_I_BTIME, &fi->state);
279 fi->i_btime.tv_sec = sx->btime.tv_sec;
280 fi->i_btime.tv_nsec = sx->btime.tv_nsec;
281 }
282 }
283
284 if (attr->blksize != 0)
285 inode->i_blkbits = ilog2(attr->blksize);
286 else
287 inode->i_blkbits = inode->i_sb->s_blocksize_bits;
288
289 /*
290 * Don't set the sticky bit in i_mode, unless we want the VFS
291 * to check permissions. This prevents failures due to the
292 * check in may_delete().
293 */
294 fi->orig_i_mode = inode->i_mode;
295 if (!fc->default_permissions)
296 inode->i_mode &= ~S_ISVTX;
297
298 fi->orig_ino = attr->ino;
299
300 /*
301 * We are refreshing inode data and it is possible that another
302 * client set suid/sgid or security.capability xattr. So clear
303 * S_NOSEC. Ideally, we could have cleared it only if suid/sgid
304 * was set or if security.capability xattr was set. But we don't
305 * know if security.capability has been set or not. So clear it
306 * anyway. Its less efficient but should be safe.
307 */
308 inode->i_flags &= ~S_NOSEC;
309}
310
311u32 fuse_get_cache_mask(struct inode *inode)
312{
313 struct fuse_conn *fc = get_fuse_conn(inode);
314
315 if (!fc->writeback_cache || !S_ISREG(inode->i_mode))
316 return 0;
317
318 return STATX_MTIME | STATX_CTIME | STATX_SIZE;
319}
320
321static void fuse_change_attributes_i(struct inode *inode, struct fuse_attr *attr,
322 struct fuse_statx *sx, u64 attr_valid,
323 u64 attr_version, u64 evict_ctr)
324{
325 struct fuse_conn *fc = get_fuse_conn(inode);
326 struct fuse_inode *fi = get_fuse_inode(inode);
327 u32 cache_mask;
328 loff_t oldsize;
329 struct timespec64 old_mtime;
330
331 spin_lock(&fi->lock);
332 /*
333 * In case of writeback_cache enabled, writes update mtime, ctime and
334 * may update i_size. In these cases trust the cached value in the
335 * inode.
336 */
337 cache_mask = fuse_get_cache_mask(inode);
338 if (cache_mask & STATX_SIZE)
339 attr->size = i_size_read(inode);
340
341 if (cache_mask & STATX_MTIME) {
342 attr->mtime = inode_get_mtime_sec(inode);
343 attr->mtimensec = inode_get_mtime_nsec(inode);
344 }
345 if (cache_mask & STATX_CTIME) {
346 attr->ctime = inode_get_ctime_sec(inode);
347 attr->ctimensec = inode_get_ctime_nsec(inode);
348 }
349
350 if ((attr_version != 0 && fi->attr_version > attr_version) ||
351 test_bit(FUSE_I_SIZE_UNSTABLE, &fi->state)) {
352 spin_unlock(&fi->lock);
353 return;
354 }
355
356 old_mtime = inode_get_mtime(inode);
357 fuse_change_attributes_common(inode, attr, sx, attr_valid, cache_mask,
358 evict_ctr);
359
360 oldsize = inode->i_size;
361 /*
362 * In case of writeback_cache enabled, the cached writes beyond EOF
363 * extend local i_size without keeping userspace server in sync. So,
364 * attr->size coming from server can be stale. We cannot trust it.
365 */
366 if (!(cache_mask & STATX_SIZE))
367 i_size_write(inode, attr->size);
368 spin_unlock(&fi->lock);
369
370 if (!cache_mask && S_ISREG(inode->i_mode)) {
371 bool inval = false;
372
373 if (oldsize != attr->size) {
374 truncate_pagecache(inode, attr->size);
375 if (!fc->explicit_inval_data)
376 inval = true;
377 } else if (fc->auto_inval_data) {
378 struct timespec64 new_mtime = {
379 .tv_sec = attr->mtime,
380 .tv_nsec = attr->mtimensec,
381 };
382
383 /*
384 * Auto inval mode also checks and invalidates if mtime
385 * has changed.
386 */
387 if (!timespec64_equal(&old_mtime, &new_mtime))
388 inval = true;
389 }
390
391 if (inval)
392 invalidate_inode_pages2(inode->i_mapping);
393 }
394
395 if (IS_ENABLED(CONFIG_FUSE_DAX))
396 fuse_dax_dontcache(inode, attr->flags);
397}
398
399void fuse_change_attributes(struct inode *inode, struct fuse_attr *attr,
400 struct fuse_statx *sx, u64 attr_valid,
401 u64 attr_version)
402{
403 fuse_change_attributes_i(inode, attr, sx, attr_valid, attr_version, 0);
404}
405
406static void fuse_init_submount_lookup(struct fuse_submount_lookup *sl,
407 u64 nodeid)
408{
409 sl->nodeid = nodeid;
410 refcount_set(&sl->count, 1);
411}
412
413static void fuse_init_inode(struct inode *inode, struct fuse_attr *attr,
414 struct fuse_conn *fc)
415{
416 inode->i_mode = attr->mode & S_IFMT;
417 inode->i_size = attr->size;
418 inode_set_mtime(inode, attr->mtime, attr->mtimensec);
419 inode_set_ctime(inode, attr->ctime, attr->ctimensec);
420 if (S_ISREG(inode->i_mode)) {
421 fuse_init_common(inode);
422 fuse_init_file_inode(inode, attr->flags);
423 } else if (S_ISDIR(inode->i_mode))
424 fuse_init_dir(inode);
425 else if (S_ISLNK(inode->i_mode))
426 fuse_init_symlink(inode);
427 else if (S_ISCHR(inode->i_mode) || S_ISBLK(inode->i_mode) ||
428 S_ISFIFO(inode->i_mode) || S_ISSOCK(inode->i_mode)) {
429 fuse_init_common(inode);
430 init_special_inode(inode, inode->i_mode,
431 new_decode_dev(attr->rdev));
432 } else
433 BUG();
434 /*
435 * Ensure that we don't cache acls for daemons without FUSE_POSIX_ACL
436 * so they see the exact same behavior as before.
437 */
438 if (!fc->posix_acl)
439 inode->i_acl = inode->i_default_acl = ACL_DONT_CACHE;
440}
441
442static int fuse_inode_eq(struct inode *inode, void *_nodeidp)
443{
444 u64 nodeid = *(u64 *) _nodeidp;
445 if (get_node_id(inode) == nodeid)
446 return 1;
447 else
448 return 0;
449}
450
451static int fuse_inode_set(struct inode *inode, void *_nodeidp)
452{
453 u64 nodeid = *(u64 *) _nodeidp;
454 get_fuse_inode(inode)->nodeid = nodeid;
455 return 0;
456}
457
458struct inode *fuse_iget(struct super_block *sb, u64 nodeid,
459 int generation, struct fuse_attr *attr,
460 u64 attr_valid, u64 attr_version,
461 u64 evict_ctr)
462{
463 struct inode *inode;
464 struct fuse_inode *fi;
465 struct fuse_conn *fc = get_fuse_conn_super(sb);
466
467 /*
468 * Auto mount points get their node id from the submount root, which is
469 * not a unique identifier within this filesystem.
470 *
471 * To avoid conflicts, do not place submount points into the inode hash
472 * table.
473 */
474 if (fc->auto_submounts && (attr->flags & FUSE_ATTR_SUBMOUNT) &&
475 S_ISDIR(attr->mode)) {
476 struct fuse_inode *fi;
477
478 inode = new_inode(sb);
479 if (!inode)
480 return NULL;
481
482 fuse_init_inode(inode, attr, fc);
483 fi = get_fuse_inode(inode);
484 fi->nodeid = nodeid;
485 fi->submount_lookup = fuse_alloc_submount_lookup();
486 if (!fi->submount_lookup) {
487 iput(inode);
488 return NULL;
489 }
490 /* Sets nlookup = 1 on fi->submount_lookup->nlookup */
491 fuse_init_submount_lookup(fi->submount_lookup, nodeid);
492 inode->i_flags |= S_AUTOMOUNT;
493 goto done;
494 }
495
496retry:
497 inode = iget5_locked(sb, nodeid, fuse_inode_eq, fuse_inode_set, &nodeid);
498 if (!inode)
499 return NULL;
500
501 if ((inode->i_state & I_NEW)) {
502 inode->i_flags |= S_NOATIME;
503 if (!fc->writeback_cache || !S_ISREG(attr->mode))
504 inode->i_flags |= S_NOCMTIME;
505 inode->i_generation = generation;
506 fuse_init_inode(inode, attr, fc);
507 unlock_new_inode(inode);
508 } else if (fuse_stale_inode(inode, generation, attr)) {
509 /* nodeid was reused, any I/O on the old inode should fail */
510 fuse_make_bad(inode);
511 if (inode != d_inode(sb->s_root)) {
512 remove_inode_hash(inode);
513 iput(inode);
514 goto retry;
515 }
516 }
517 fi = get_fuse_inode(inode);
518 spin_lock(&fi->lock);
519 fi->nlookup++;
520 spin_unlock(&fi->lock);
521done:
522 fuse_change_attributes_i(inode, attr, NULL, attr_valid, attr_version,
523 evict_ctr);
524 return inode;
525}
526
527struct inode *fuse_ilookup(struct fuse_conn *fc, u64 nodeid,
528 struct fuse_mount **fm)
529{
530 struct fuse_mount *fm_iter;
531 struct inode *inode;
532
533 WARN_ON(!rwsem_is_locked(&fc->killsb));
534 list_for_each_entry(fm_iter, &fc->mounts, fc_entry) {
535 if (!fm_iter->sb)
536 continue;
537
538 inode = ilookup5(fm_iter->sb, nodeid, fuse_inode_eq, &nodeid);
539 if (inode) {
540 if (fm)
541 *fm = fm_iter;
542 return inode;
543 }
544 }
545
546 return NULL;
547}
548
549int fuse_reverse_inval_inode(struct fuse_conn *fc, u64 nodeid,
550 loff_t offset, loff_t len)
551{
552 struct fuse_inode *fi;
553 struct inode *inode;
554 pgoff_t pg_start;
555 pgoff_t pg_end;
556
557 inode = fuse_ilookup(fc, nodeid, NULL);
558 if (!inode)
559 return -ENOENT;
560
561 fi = get_fuse_inode(inode);
562 spin_lock(&fi->lock);
563 fi->attr_version = atomic64_inc_return(&fc->attr_version);
564 spin_unlock(&fi->lock);
565
566 fuse_invalidate_attr(inode);
567 forget_all_cached_acls(inode);
568 if (offset >= 0) {
569 pg_start = offset >> PAGE_SHIFT;
570 if (len <= 0)
571 pg_end = -1;
572 else
573 pg_end = (offset + len - 1) >> PAGE_SHIFT;
574 invalidate_inode_pages2_range(inode->i_mapping,
575 pg_start, pg_end);
576 }
577 iput(inode);
578 return 0;
579}
580
581bool fuse_lock_inode(struct inode *inode)
582{
583 bool locked = false;
584
585 if (!get_fuse_conn(inode)->parallel_dirops) {
586 mutex_lock(&get_fuse_inode(inode)->mutex);
587 locked = true;
588 }
589
590 return locked;
591}
592
593void fuse_unlock_inode(struct inode *inode, bool locked)
594{
595 if (locked)
596 mutex_unlock(&get_fuse_inode(inode)->mutex);
597}
598
599static void fuse_umount_begin(struct super_block *sb)
600{
601 struct fuse_conn *fc = get_fuse_conn_super(sb);
602
603 if (fc->no_force_umount)
604 return;
605
606 fuse_abort_conn(fc);
607
608 // Only retire block-device-based superblocks.
609 if (sb->s_bdev != NULL)
610 retire_super(sb);
611}
612
613static void fuse_send_destroy(struct fuse_mount *fm)
614{
615 if (fm->fc->conn_init) {
616 FUSE_ARGS(args);
617
618 args.opcode = FUSE_DESTROY;
619 args.force = true;
620 args.nocreds = true;
621 fuse_simple_request(fm, &args);
622 }
623}
624
625static void convert_fuse_statfs(struct kstatfs *stbuf, struct fuse_kstatfs *attr)
626{
627 stbuf->f_type = FUSE_SUPER_MAGIC;
628 stbuf->f_bsize = attr->bsize;
629 stbuf->f_frsize = attr->frsize;
630 stbuf->f_blocks = attr->blocks;
631 stbuf->f_bfree = attr->bfree;
632 stbuf->f_bavail = attr->bavail;
633 stbuf->f_files = attr->files;
634 stbuf->f_ffree = attr->ffree;
635 stbuf->f_namelen = attr->namelen;
636 /* fsid is left zero */
637}
638
639static int fuse_statfs(struct dentry *dentry, struct kstatfs *buf)
640{
641 struct super_block *sb = dentry->d_sb;
642 struct fuse_mount *fm = get_fuse_mount_super(sb);
643 FUSE_ARGS(args);
644 struct fuse_statfs_out outarg;
645 int err;
646
647 if (!fuse_allow_current_process(fm->fc)) {
648 buf->f_type = FUSE_SUPER_MAGIC;
649 return 0;
650 }
651
652 memset(&outarg, 0, sizeof(outarg));
653 args.in_numargs = 0;
654 args.opcode = FUSE_STATFS;
655 args.nodeid = get_node_id(d_inode(dentry));
656 args.out_numargs = 1;
657 args.out_args[0].size = sizeof(outarg);
658 args.out_args[0].value = &outarg;
659 err = fuse_simple_request(fm, &args);
660 if (!err)
661 convert_fuse_statfs(buf, &outarg.st);
662 return err;
663}
664
665static struct fuse_sync_bucket *fuse_sync_bucket_alloc(void)
666{
667 struct fuse_sync_bucket *bucket;
668
669 bucket = kzalloc(sizeof(*bucket), GFP_KERNEL | __GFP_NOFAIL);
670 if (bucket) {
671 init_waitqueue_head(&bucket->waitq);
672 /* Initial active count */
673 atomic_set(&bucket->count, 1);
674 }
675 return bucket;
676}
677
678static void fuse_sync_fs_writes(struct fuse_conn *fc)
679{
680 struct fuse_sync_bucket *bucket, *new_bucket;
681 int count;
682
683 new_bucket = fuse_sync_bucket_alloc();
684 spin_lock(&fc->lock);
685 bucket = rcu_dereference_protected(fc->curr_bucket, 1);
686 count = atomic_read(&bucket->count);
687 WARN_ON(count < 1);
688 /* No outstanding writes? */
689 if (count == 1) {
690 spin_unlock(&fc->lock);
691 kfree(new_bucket);
692 return;
693 }
694
695 /*
696 * Completion of new bucket depends on completion of this bucket, so add
697 * one more count.
698 */
699 atomic_inc(&new_bucket->count);
700 rcu_assign_pointer(fc->curr_bucket, new_bucket);
701 spin_unlock(&fc->lock);
702 /*
703 * Drop initial active count. At this point if all writes in this and
704 * ancestor buckets complete, the count will go to zero and this task
705 * will be woken up.
706 */
707 atomic_dec(&bucket->count);
708
709 wait_event(bucket->waitq, atomic_read(&bucket->count) == 0);
710
711 /* Drop temp count on descendant bucket */
712 fuse_sync_bucket_dec(new_bucket);
713 kfree_rcu(bucket, rcu);
714}
715
716static int fuse_sync_fs(struct super_block *sb, int wait)
717{
718 struct fuse_mount *fm = get_fuse_mount_super(sb);
719 struct fuse_conn *fc = fm->fc;
720 struct fuse_syncfs_in inarg;
721 FUSE_ARGS(args);
722 int err;
723
724 /*
725 * Userspace cannot handle the wait == 0 case. Avoid a
726 * gratuitous roundtrip.
727 */
728 if (!wait)
729 return 0;
730
731 /* The filesystem is being unmounted. Nothing to do. */
732 if (!sb->s_root)
733 return 0;
734
735 if (!fc->sync_fs)
736 return 0;
737
738 fuse_sync_fs_writes(fc);
739
740 memset(&inarg, 0, sizeof(inarg));
741 args.in_numargs = 1;
742 args.in_args[0].size = sizeof(inarg);
743 args.in_args[0].value = &inarg;
744 args.opcode = FUSE_SYNCFS;
745 args.nodeid = get_node_id(sb->s_root->d_inode);
746 args.out_numargs = 0;
747
748 err = fuse_simple_request(fm, &args);
749 if (err == -ENOSYS) {
750 fc->sync_fs = 0;
751 err = 0;
752 }
753
754 return err;
755}
756
757enum {
758 OPT_SOURCE,
759 OPT_SUBTYPE,
760 OPT_FD,
761 OPT_ROOTMODE,
762 OPT_USER_ID,
763 OPT_GROUP_ID,
764 OPT_DEFAULT_PERMISSIONS,
765 OPT_ALLOW_OTHER,
766 OPT_MAX_READ,
767 OPT_BLKSIZE,
768 OPT_ERR
769};
770
771static const struct fs_parameter_spec fuse_fs_parameters[] = {
772 fsparam_string ("source", OPT_SOURCE),
773 fsparam_u32 ("fd", OPT_FD),
774 fsparam_u32oct ("rootmode", OPT_ROOTMODE),
775 fsparam_uid ("user_id", OPT_USER_ID),
776 fsparam_gid ("group_id", OPT_GROUP_ID),
777 fsparam_flag ("default_permissions", OPT_DEFAULT_PERMISSIONS),
778 fsparam_flag ("allow_other", OPT_ALLOW_OTHER),
779 fsparam_u32 ("max_read", OPT_MAX_READ),
780 fsparam_u32 ("blksize", OPT_BLKSIZE),
781 fsparam_string ("subtype", OPT_SUBTYPE),
782 {}
783};
784
785static int fuse_parse_param(struct fs_context *fsc, struct fs_parameter *param)
786{
787 struct fs_parse_result result;
788 struct fuse_fs_context *ctx = fsc->fs_private;
789 int opt;
790 kuid_t kuid;
791 kgid_t kgid;
792
793 if (fsc->purpose == FS_CONTEXT_FOR_RECONFIGURE) {
794 /*
795 * Ignore options coming from mount(MS_REMOUNT) for backward
796 * compatibility.
797 */
798 if (fsc->oldapi)
799 return 0;
800
801 return invalfc(fsc, "No changes allowed in reconfigure");
802 }
803
804 opt = fs_parse(fsc, fuse_fs_parameters, param, &result);
805 if (opt < 0)
806 return opt;
807
808 switch (opt) {
809 case OPT_SOURCE:
810 if (fsc->source)
811 return invalfc(fsc, "Multiple sources specified");
812 fsc->source = param->string;
813 param->string = NULL;
814 break;
815
816 case OPT_SUBTYPE:
817 if (ctx->subtype)
818 return invalfc(fsc, "Multiple subtypes specified");
819 ctx->subtype = param->string;
820 param->string = NULL;
821 return 0;
822
823 case OPT_FD:
824 ctx->fd = result.uint_32;
825 ctx->fd_present = true;
826 break;
827
828 case OPT_ROOTMODE:
829 if (!fuse_valid_type(result.uint_32))
830 return invalfc(fsc, "Invalid rootmode");
831 ctx->rootmode = result.uint_32;
832 ctx->rootmode_present = true;
833 break;
834
835 case OPT_USER_ID:
836 kuid = result.uid;
837 /*
838 * The requested uid must be representable in the
839 * filesystem's idmapping.
840 */
841 if (!kuid_has_mapping(fsc->user_ns, kuid))
842 return invalfc(fsc, "Invalid user_id");
843 ctx->user_id = kuid;
844 ctx->user_id_present = true;
845 break;
846
847 case OPT_GROUP_ID:
848 kgid = result.gid;
849 /*
850 * The requested gid must be representable in the
851 * filesystem's idmapping.
852 */
853 if (!kgid_has_mapping(fsc->user_ns, kgid))
854 return invalfc(fsc, "Invalid group_id");
855 ctx->group_id = kgid;
856 ctx->group_id_present = true;
857 break;
858
859 case OPT_DEFAULT_PERMISSIONS:
860 ctx->default_permissions = true;
861 break;
862
863 case OPT_ALLOW_OTHER:
864 ctx->allow_other = true;
865 break;
866
867 case OPT_MAX_READ:
868 ctx->max_read = result.uint_32;
869 break;
870
871 case OPT_BLKSIZE:
872 if (!ctx->is_bdev)
873 return invalfc(fsc, "blksize only supported for fuseblk");
874 ctx->blksize = result.uint_32;
875 break;
876
877 default:
878 return -EINVAL;
879 }
880
881 return 0;
882}
883
884static void fuse_free_fsc(struct fs_context *fsc)
885{
886 struct fuse_fs_context *ctx = fsc->fs_private;
887
888 if (ctx) {
889 kfree(ctx->subtype);
890 kfree(ctx);
891 }
892}
893
894static int fuse_show_options(struct seq_file *m, struct dentry *root)
895{
896 struct super_block *sb = root->d_sb;
897 struct fuse_conn *fc = get_fuse_conn_super(sb);
898
899 if (fc->legacy_opts_show) {
900 seq_printf(m, ",user_id=%u",
901 from_kuid_munged(fc->user_ns, fc->user_id));
902 seq_printf(m, ",group_id=%u",
903 from_kgid_munged(fc->user_ns, fc->group_id));
904 if (fc->default_permissions)
905 seq_puts(m, ",default_permissions");
906 if (fc->allow_other)
907 seq_puts(m, ",allow_other");
908 if (fc->max_read != ~0)
909 seq_printf(m, ",max_read=%u", fc->max_read);
910 if (sb->s_bdev && sb->s_blocksize != FUSE_DEFAULT_BLKSIZE)
911 seq_printf(m, ",blksize=%lu", sb->s_blocksize);
912 }
913#ifdef CONFIG_FUSE_DAX
914 if (fc->dax_mode == FUSE_DAX_ALWAYS)
915 seq_puts(m, ",dax=always");
916 else if (fc->dax_mode == FUSE_DAX_NEVER)
917 seq_puts(m, ",dax=never");
918 else if (fc->dax_mode == FUSE_DAX_INODE_USER)
919 seq_puts(m, ",dax=inode");
920#endif
921
922 return 0;
923}
924
925static void fuse_iqueue_init(struct fuse_iqueue *fiq,
926 const struct fuse_iqueue_ops *ops,
927 void *priv)
928{
929 memset(fiq, 0, sizeof(struct fuse_iqueue));
930 spin_lock_init(&fiq->lock);
931 init_waitqueue_head(&fiq->waitq);
932 INIT_LIST_HEAD(&fiq->pending);
933 INIT_LIST_HEAD(&fiq->interrupts);
934 fiq->forget_list_tail = &fiq->forget_list_head;
935 fiq->connected = 1;
936 fiq->ops = ops;
937 fiq->priv = priv;
938}
939
940static void fuse_pqueue_init(struct fuse_pqueue *fpq)
941{
942 unsigned int i;
943
944 spin_lock_init(&fpq->lock);
945 for (i = 0; i < FUSE_PQ_HASH_SIZE; i++)
946 INIT_LIST_HEAD(&fpq->processing[i]);
947 INIT_LIST_HEAD(&fpq->io);
948 fpq->connected = 1;
949}
950
951void fuse_conn_init(struct fuse_conn *fc, struct fuse_mount *fm,
952 struct user_namespace *user_ns,
953 const struct fuse_iqueue_ops *fiq_ops, void *fiq_priv)
954{
955 memset(fc, 0, sizeof(*fc));
956 spin_lock_init(&fc->lock);
957 spin_lock_init(&fc->bg_lock);
958 init_rwsem(&fc->killsb);
959 refcount_set(&fc->count, 1);
960 atomic_set(&fc->dev_count, 1);
961 init_waitqueue_head(&fc->blocked_waitq);
962 fuse_iqueue_init(&fc->iq, fiq_ops, fiq_priv);
963 INIT_LIST_HEAD(&fc->bg_queue);
964 INIT_LIST_HEAD(&fc->entry);
965 INIT_LIST_HEAD(&fc->devices);
966 atomic_set(&fc->num_waiting, 0);
967 fc->max_background = FUSE_DEFAULT_MAX_BACKGROUND;
968 fc->congestion_threshold = FUSE_DEFAULT_CONGESTION_THRESHOLD;
969 atomic64_set(&fc->khctr, 0);
970 fc->polled_files = RB_ROOT;
971 fc->blocked = 0;
972 fc->initialized = 0;
973 fc->connected = 1;
974 atomic64_set(&fc->attr_version, 1);
975 atomic64_set(&fc->evict_ctr, 1);
976 get_random_bytes(&fc->scramble_key, sizeof(fc->scramble_key));
977 fc->pid_ns = get_pid_ns(task_active_pid_ns(current));
978 fc->user_ns = get_user_ns(user_ns);
979 fc->max_pages = FUSE_DEFAULT_MAX_PAGES_PER_REQ;
980 fc->max_pages_limit = fuse_max_pages_limit;
981
982 if (IS_ENABLED(CONFIG_FUSE_PASSTHROUGH))
983 fuse_backing_files_init(fc);
984
985 INIT_LIST_HEAD(&fc->mounts);
986 list_add(&fm->fc_entry, &fc->mounts);
987 fm->fc = fc;
988}
989EXPORT_SYMBOL_GPL(fuse_conn_init);
990
991static void delayed_release(struct rcu_head *p)
992{
993 struct fuse_conn *fc = container_of(p, struct fuse_conn, rcu);
994
995 put_user_ns(fc->user_ns);
996 fc->release(fc);
997}
998
999void fuse_conn_put(struct fuse_conn *fc)
1000{
1001 if (refcount_dec_and_test(&fc->count)) {
1002 struct fuse_iqueue *fiq = &fc->iq;
1003 struct fuse_sync_bucket *bucket;
1004
1005 if (IS_ENABLED(CONFIG_FUSE_DAX))
1006 fuse_dax_conn_free(fc);
1007 if (fiq->ops->release)
1008 fiq->ops->release(fiq);
1009 put_pid_ns(fc->pid_ns);
1010 bucket = rcu_dereference_protected(fc->curr_bucket, 1);
1011 if (bucket) {
1012 WARN_ON(atomic_read(&bucket->count) != 1);
1013 kfree(bucket);
1014 }
1015 if (IS_ENABLED(CONFIG_FUSE_PASSTHROUGH))
1016 fuse_backing_files_free(fc);
1017 call_rcu(&fc->rcu, delayed_release);
1018 }
1019}
1020EXPORT_SYMBOL_GPL(fuse_conn_put);
1021
1022struct fuse_conn *fuse_conn_get(struct fuse_conn *fc)
1023{
1024 refcount_inc(&fc->count);
1025 return fc;
1026}
1027EXPORT_SYMBOL_GPL(fuse_conn_get);
1028
1029static struct inode *fuse_get_root_inode(struct super_block *sb, unsigned mode)
1030{
1031 struct fuse_attr attr;
1032 memset(&attr, 0, sizeof(attr));
1033
1034 attr.mode = mode;
1035 attr.ino = FUSE_ROOT_ID;
1036 attr.nlink = 1;
1037 return fuse_iget(sb, FUSE_ROOT_ID, 0, &attr, 0, 0, 0);
1038}
1039
1040struct fuse_inode_handle {
1041 u64 nodeid;
1042 u32 generation;
1043};
1044
1045static struct dentry *fuse_get_dentry(struct super_block *sb,
1046 struct fuse_inode_handle *handle)
1047{
1048 struct fuse_conn *fc = get_fuse_conn_super(sb);
1049 struct inode *inode;
1050 struct dentry *entry;
1051 int err = -ESTALE;
1052
1053 if (handle->nodeid == 0)
1054 goto out_err;
1055
1056 inode = ilookup5(sb, handle->nodeid, fuse_inode_eq, &handle->nodeid);
1057 if (!inode) {
1058 struct fuse_entry_out outarg;
1059 const struct qstr name = QSTR_INIT(".", 1);
1060
1061 if (!fc->export_support)
1062 goto out_err;
1063
1064 err = fuse_lookup_name(sb, handle->nodeid, &name, &outarg,
1065 &inode);
1066 if (err && err != -ENOENT)
1067 goto out_err;
1068 if (err || !inode) {
1069 err = -ESTALE;
1070 goto out_err;
1071 }
1072 err = -EIO;
1073 if (get_node_id(inode) != handle->nodeid)
1074 goto out_iput;
1075 }
1076 err = -ESTALE;
1077 if (inode->i_generation != handle->generation)
1078 goto out_iput;
1079
1080 entry = d_obtain_alias(inode);
1081 if (!IS_ERR(entry) && get_node_id(inode) != FUSE_ROOT_ID)
1082 fuse_invalidate_entry_cache(entry);
1083
1084 return entry;
1085
1086 out_iput:
1087 iput(inode);
1088 out_err:
1089 return ERR_PTR(err);
1090}
1091
1092static int fuse_encode_fh(struct inode *inode, u32 *fh, int *max_len,
1093 struct inode *parent)
1094{
1095 int len = parent ? 6 : 3;
1096 u64 nodeid;
1097 u32 generation;
1098
1099 if (*max_len < len) {
1100 *max_len = len;
1101 return FILEID_INVALID;
1102 }
1103
1104 nodeid = get_fuse_inode(inode)->nodeid;
1105 generation = inode->i_generation;
1106
1107 fh[0] = (u32)(nodeid >> 32);
1108 fh[1] = (u32)(nodeid & 0xffffffff);
1109 fh[2] = generation;
1110
1111 if (parent) {
1112 nodeid = get_fuse_inode(parent)->nodeid;
1113 generation = parent->i_generation;
1114
1115 fh[3] = (u32)(nodeid >> 32);
1116 fh[4] = (u32)(nodeid & 0xffffffff);
1117 fh[5] = generation;
1118 }
1119
1120 *max_len = len;
1121 return parent ? FILEID_INO64_GEN_PARENT : FILEID_INO64_GEN;
1122}
1123
1124static struct dentry *fuse_fh_to_dentry(struct super_block *sb,
1125 struct fid *fid, int fh_len, int fh_type)
1126{
1127 struct fuse_inode_handle handle;
1128
1129 if ((fh_type != FILEID_INO64_GEN &&
1130 fh_type != FILEID_INO64_GEN_PARENT) || fh_len < 3)
1131 return NULL;
1132
1133 handle.nodeid = (u64) fid->raw[0] << 32;
1134 handle.nodeid |= (u64) fid->raw[1];
1135 handle.generation = fid->raw[2];
1136 return fuse_get_dentry(sb, &handle);
1137}
1138
1139static struct dentry *fuse_fh_to_parent(struct super_block *sb,
1140 struct fid *fid, int fh_len, int fh_type)
1141{
1142 struct fuse_inode_handle parent;
1143
1144 if (fh_type != FILEID_INO64_GEN_PARENT || fh_len < 6)
1145 return NULL;
1146
1147 parent.nodeid = (u64) fid->raw[3] << 32;
1148 parent.nodeid |= (u64) fid->raw[4];
1149 parent.generation = fid->raw[5];
1150 return fuse_get_dentry(sb, &parent);
1151}
1152
1153static struct dentry *fuse_get_parent(struct dentry *child)
1154{
1155 struct inode *child_inode = d_inode(child);
1156 struct fuse_conn *fc = get_fuse_conn(child_inode);
1157 struct inode *inode;
1158 struct dentry *parent;
1159 struct fuse_entry_out outarg;
1160 int err;
1161
1162 if (!fc->export_support)
1163 return ERR_PTR(-ESTALE);
1164
1165 err = fuse_lookup_name(child_inode->i_sb, get_node_id(child_inode),
1166 &dotdot_name, &outarg, &inode);
1167 if (err) {
1168 if (err == -ENOENT)
1169 return ERR_PTR(-ESTALE);
1170 return ERR_PTR(err);
1171 }
1172
1173 parent = d_obtain_alias(inode);
1174 if (!IS_ERR(parent) && get_node_id(inode) != FUSE_ROOT_ID)
1175 fuse_invalidate_entry_cache(parent);
1176
1177 return parent;
1178}
1179
1180/* only for fid encoding; no support for file handle */
1181static const struct export_operations fuse_export_fid_operations = {
1182 .encode_fh = fuse_encode_fh,
1183};
1184
1185static const struct export_operations fuse_export_operations = {
1186 .fh_to_dentry = fuse_fh_to_dentry,
1187 .fh_to_parent = fuse_fh_to_parent,
1188 .encode_fh = fuse_encode_fh,
1189 .get_parent = fuse_get_parent,
1190};
1191
1192static const struct super_operations fuse_super_operations = {
1193 .alloc_inode = fuse_alloc_inode,
1194 .free_inode = fuse_free_inode,
1195 .evict_inode = fuse_evict_inode,
1196 .write_inode = fuse_write_inode,
1197 .drop_inode = generic_delete_inode,
1198 .umount_begin = fuse_umount_begin,
1199 .statfs = fuse_statfs,
1200 .sync_fs = fuse_sync_fs,
1201 .show_options = fuse_show_options,
1202};
1203
1204static void sanitize_global_limit(unsigned *limit)
1205{
1206 /*
1207 * The default maximum number of async requests is calculated to consume
1208 * 1/2^13 of the total memory, assuming 392 bytes per request.
1209 */
1210 if (*limit == 0)
1211 *limit = ((totalram_pages() << PAGE_SHIFT) >> 13) / 392;
1212
1213 if (*limit >= 1 << 16)
1214 *limit = (1 << 16) - 1;
1215}
1216
1217static int set_global_limit(const char *val, const struct kernel_param *kp)
1218{
1219 int rv;
1220
1221 rv = param_set_uint(val, kp);
1222 if (rv)
1223 return rv;
1224
1225 sanitize_global_limit((unsigned *)kp->arg);
1226
1227 return 0;
1228}
1229
1230static void process_init_limits(struct fuse_conn *fc, struct fuse_init_out *arg)
1231{
1232 int cap_sys_admin = capable(CAP_SYS_ADMIN);
1233
1234 if (arg->minor < 13)
1235 return;
1236
1237 sanitize_global_limit(&max_user_bgreq);
1238 sanitize_global_limit(&max_user_congthresh);
1239
1240 spin_lock(&fc->bg_lock);
1241 if (arg->max_background) {
1242 fc->max_background = arg->max_background;
1243
1244 if (!cap_sys_admin && fc->max_background > max_user_bgreq)
1245 fc->max_background = max_user_bgreq;
1246 }
1247 if (arg->congestion_threshold) {
1248 fc->congestion_threshold = arg->congestion_threshold;
1249
1250 if (!cap_sys_admin &&
1251 fc->congestion_threshold > max_user_congthresh)
1252 fc->congestion_threshold = max_user_congthresh;
1253 }
1254 spin_unlock(&fc->bg_lock);
1255}
1256
1257struct fuse_init_args {
1258 struct fuse_args args;
1259 struct fuse_init_in in;
1260 struct fuse_init_out out;
1261};
1262
1263static void process_init_reply(struct fuse_mount *fm, struct fuse_args *args,
1264 int error)
1265{
1266 struct fuse_conn *fc = fm->fc;
1267 struct fuse_init_args *ia = container_of(args, typeof(*ia), args);
1268 struct fuse_init_out *arg = &ia->out;
1269 bool ok = true;
1270
1271 if (error || arg->major != FUSE_KERNEL_VERSION)
1272 ok = false;
1273 else {
1274 unsigned long ra_pages;
1275
1276 process_init_limits(fc, arg);
1277
1278 if (arg->minor >= 6) {
1279 u64 flags = arg->flags;
1280
1281 if (flags & FUSE_INIT_EXT)
1282 flags |= (u64) arg->flags2 << 32;
1283
1284 ra_pages = arg->max_readahead / PAGE_SIZE;
1285 if (flags & FUSE_ASYNC_READ)
1286 fc->async_read = 1;
1287 if (!(flags & FUSE_POSIX_LOCKS))
1288 fc->no_lock = 1;
1289 if (arg->minor >= 17) {
1290 if (!(flags & FUSE_FLOCK_LOCKS))
1291 fc->no_flock = 1;
1292 } else {
1293 if (!(flags & FUSE_POSIX_LOCKS))
1294 fc->no_flock = 1;
1295 }
1296 if (flags & FUSE_ATOMIC_O_TRUNC)
1297 fc->atomic_o_trunc = 1;
1298 if (arg->minor >= 9) {
1299 /* LOOKUP has dependency on proto version */
1300 if (flags & FUSE_EXPORT_SUPPORT)
1301 fc->export_support = 1;
1302 }
1303 if (flags & FUSE_BIG_WRITES)
1304 fc->big_writes = 1;
1305 if (flags & FUSE_DONT_MASK)
1306 fc->dont_mask = 1;
1307 if (flags & FUSE_AUTO_INVAL_DATA)
1308 fc->auto_inval_data = 1;
1309 else if (flags & FUSE_EXPLICIT_INVAL_DATA)
1310 fc->explicit_inval_data = 1;
1311 if (flags & FUSE_DO_READDIRPLUS) {
1312 fc->do_readdirplus = 1;
1313 if (flags & FUSE_READDIRPLUS_AUTO)
1314 fc->readdirplus_auto = 1;
1315 }
1316 if (flags & FUSE_ASYNC_DIO)
1317 fc->async_dio = 1;
1318 if (flags & FUSE_WRITEBACK_CACHE)
1319 fc->writeback_cache = 1;
1320 if (flags & FUSE_PARALLEL_DIROPS)
1321 fc->parallel_dirops = 1;
1322 if (flags & FUSE_HANDLE_KILLPRIV)
1323 fc->handle_killpriv = 1;
1324 if (arg->time_gran && arg->time_gran <= 1000000000)
1325 fm->sb->s_time_gran = arg->time_gran;
1326 if ((flags & FUSE_POSIX_ACL)) {
1327 fc->default_permissions = 1;
1328 fc->posix_acl = 1;
1329 }
1330 if (flags & FUSE_CACHE_SYMLINKS)
1331 fc->cache_symlinks = 1;
1332 if (flags & FUSE_ABORT_ERROR)
1333 fc->abort_err = 1;
1334 if (flags & FUSE_MAX_PAGES) {
1335 fc->max_pages =
1336 min_t(unsigned int, fc->max_pages_limit,
1337 max_t(unsigned int, arg->max_pages, 1));
1338 }
1339 if (IS_ENABLED(CONFIG_FUSE_DAX)) {
1340 if (flags & FUSE_MAP_ALIGNMENT &&
1341 !fuse_dax_check_alignment(fc, arg->map_alignment)) {
1342 ok = false;
1343 }
1344 if (flags & FUSE_HAS_INODE_DAX)
1345 fc->inode_dax = 1;
1346 }
1347 if (flags & FUSE_HANDLE_KILLPRIV_V2) {
1348 fc->handle_killpriv_v2 = 1;
1349 fm->sb->s_flags |= SB_NOSEC;
1350 }
1351 if (flags & FUSE_SETXATTR_EXT)
1352 fc->setxattr_ext = 1;
1353 if (flags & FUSE_SECURITY_CTX)
1354 fc->init_security = 1;
1355 if (flags & FUSE_CREATE_SUPP_GROUP)
1356 fc->create_supp_group = 1;
1357 if (flags & FUSE_DIRECT_IO_ALLOW_MMAP)
1358 fc->direct_io_allow_mmap = 1;
1359 /*
1360 * max_stack_depth is the max stack depth of FUSE fs,
1361 * so it has to be at least 1 to support passthrough
1362 * to backing files.
1363 *
1364 * with max_stack_depth > 1, the backing files can be
1365 * on a stacked fs (e.g. overlayfs) themselves and with
1366 * max_stack_depth == 1, FUSE fs can be stacked as the
1367 * underlying fs of a stacked fs (e.g. overlayfs).
1368 *
1369 * Also don't allow the combination of FUSE_PASSTHROUGH
1370 * and FUSE_WRITEBACK_CACHE, current design doesn't handle
1371 * them together.
1372 */
1373 if (IS_ENABLED(CONFIG_FUSE_PASSTHROUGH) &&
1374 (flags & FUSE_PASSTHROUGH) &&
1375 arg->max_stack_depth > 0 &&
1376 arg->max_stack_depth <= FILESYSTEM_MAX_STACK_DEPTH &&
1377 !(flags & FUSE_WRITEBACK_CACHE)) {
1378 fc->passthrough = 1;
1379 fc->max_stack_depth = arg->max_stack_depth;
1380 fm->sb->s_stack_depth = arg->max_stack_depth;
1381 }
1382 if (flags & FUSE_NO_EXPORT_SUPPORT)
1383 fm->sb->s_export_op = &fuse_export_fid_operations;
1384 if (flags & FUSE_ALLOW_IDMAP) {
1385 if (fc->default_permissions)
1386 fm->sb->s_iflags &= ~SB_I_NOIDMAP;
1387 else
1388 ok = false;
1389 }
1390 } else {
1391 ra_pages = fc->max_read / PAGE_SIZE;
1392 fc->no_lock = 1;
1393 fc->no_flock = 1;
1394 }
1395
1396 fm->sb->s_bdi->ra_pages =
1397 min(fm->sb->s_bdi->ra_pages, ra_pages);
1398 fc->minor = arg->minor;
1399 fc->max_write = arg->minor < 5 ? 4096 : arg->max_write;
1400 fc->max_write = max_t(unsigned, 4096, fc->max_write);
1401 fc->conn_init = 1;
1402 }
1403 kfree(ia);
1404
1405 if (!ok) {
1406 fc->conn_init = 0;
1407 fc->conn_error = 1;
1408 }
1409
1410 fuse_set_initialized(fc);
1411 wake_up_all(&fc->blocked_waitq);
1412}
1413
1414void fuse_send_init(struct fuse_mount *fm)
1415{
1416 struct fuse_init_args *ia;
1417 u64 flags;
1418
1419 ia = kzalloc(sizeof(*ia), GFP_KERNEL | __GFP_NOFAIL);
1420
1421 ia->in.major = FUSE_KERNEL_VERSION;
1422 ia->in.minor = FUSE_KERNEL_MINOR_VERSION;
1423 ia->in.max_readahead = fm->sb->s_bdi->ra_pages * PAGE_SIZE;
1424 flags =
1425 FUSE_ASYNC_READ | FUSE_POSIX_LOCKS | FUSE_ATOMIC_O_TRUNC |
1426 FUSE_EXPORT_SUPPORT | FUSE_BIG_WRITES | FUSE_DONT_MASK |
1427 FUSE_SPLICE_WRITE | FUSE_SPLICE_MOVE | FUSE_SPLICE_READ |
1428 FUSE_FLOCK_LOCKS | FUSE_HAS_IOCTL_DIR | FUSE_AUTO_INVAL_DATA |
1429 FUSE_DO_READDIRPLUS | FUSE_READDIRPLUS_AUTO | FUSE_ASYNC_DIO |
1430 FUSE_WRITEBACK_CACHE | FUSE_NO_OPEN_SUPPORT |
1431 FUSE_PARALLEL_DIROPS | FUSE_HANDLE_KILLPRIV | FUSE_POSIX_ACL |
1432 FUSE_ABORT_ERROR | FUSE_MAX_PAGES | FUSE_CACHE_SYMLINKS |
1433 FUSE_NO_OPENDIR_SUPPORT | FUSE_EXPLICIT_INVAL_DATA |
1434 FUSE_HANDLE_KILLPRIV_V2 | FUSE_SETXATTR_EXT | FUSE_INIT_EXT |
1435 FUSE_SECURITY_CTX | FUSE_CREATE_SUPP_GROUP |
1436 FUSE_HAS_EXPIRE_ONLY | FUSE_DIRECT_IO_ALLOW_MMAP |
1437 FUSE_NO_EXPORT_SUPPORT | FUSE_HAS_RESEND | FUSE_ALLOW_IDMAP;
1438#ifdef CONFIG_FUSE_DAX
1439 if (fm->fc->dax)
1440 flags |= FUSE_MAP_ALIGNMENT;
1441 if (fuse_is_inode_dax_mode(fm->fc->dax_mode))
1442 flags |= FUSE_HAS_INODE_DAX;
1443#endif
1444 if (fm->fc->auto_submounts)
1445 flags |= FUSE_SUBMOUNTS;
1446 if (IS_ENABLED(CONFIG_FUSE_PASSTHROUGH))
1447 flags |= FUSE_PASSTHROUGH;
1448
1449 ia->in.flags = flags;
1450 ia->in.flags2 = flags >> 32;
1451
1452 ia->args.opcode = FUSE_INIT;
1453 ia->args.in_numargs = 1;
1454 ia->args.in_args[0].size = sizeof(ia->in);
1455 ia->args.in_args[0].value = &ia->in;
1456 ia->args.out_numargs = 1;
1457 /* Variable length argument used for backward compatibility
1458 with interface version < 7.5. Rest of init_out is zeroed
1459 by do_get_request(), so a short reply is not a problem */
1460 ia->args.out_argvar = true;
1461 ia->args.out_args[0].size = sizeof(ia->out);
1462 ia->args.out_args[0].value = &ia->out;
1463 ia->args.force = true;
1464 ia->args.nocreds = true;
1465 ia->args.end = process_init_reply;
1466
1467 if (fuse_simple_background(fm, &ia->args, GFP_KERNEL) != 0)
1468 process_init_reply(fm, &ia->args, -ENOTCONN);
1469}
1470EXPORT_SYMBOL_GPL(fuse_send_init);
1471
1472void fuse_free_conn(struct fuse_conn *fc)
1473{
1474 WARN_ON(!list_empty(&fc->devices));
1475 kfree(fc);
1476}
1477EXPORT_SYMBOL_GPL(fuse_free_conn);
1478
1479static int fuse_bdi_init(struct fuse_conn *fc, struct super_block *sb)
1480{
1481 int err;
1482 char *suffix = "";
1483
1484 if (sb->s_bdev) {
1485 suffix = "-fuseblk";
1486 /*
1487 * sb->s_bdi points to blkdev's bdi however we want to redirect
1488 * it to our private bdi...
1489 */
1490 bdi_put(sb->s_bdi);
1491 sb->s_bdi = &noop_backing_dev_info;
1492 }
1493 err = super_setup_bdi_name(sb, "%u:%u%s", MAJOR(fc->dev),
1494 MINOR(fc->dev), suffix);
1495 if (err)
1496 return err;
1497
1498 /* fuse does it's own writeback accounting */
1499 sb->s_bdi->capabilities &= ~BDI_CAP_WRITEBACK_ACCT;
1500 sb->s_bdi->capabilities |= BDI_CAP_STRICTLIMIT;
1501
1502 /*
1503 * For a single fuse filesystem use max 1% of dirty +
1504 * writeback threshold.
1505 *
1506 * This gives about 1M of write buffer for memory maps on a
1507 * machine with 1G and 10% dirty_ratio, which should be more
1508 * than enough.
1509 *
1510 * Privileged users can raise it by writing to
1511 *
1512 * /sys/class/bdi/<bdi>/max_ratio
1513 */
1514 bdi_set_max_ratio(sb->s_bdi, 1);
1515
1516 return 0;
1517}
1518
1519struct fuse_dev *fuse_dev_alloc(void)
1520{
1521 struct fuse_dev *fud;
1522 struct list_head *pq;
1523
1524 fud = kzalloc(sizeof(struct fuse_dev), GFP_KERNEL);
1525 if (!fud)
1526 return NULL;
1527
1528 pq = kcalloc(FUSE_PQ_HASH_SIZE, sizeof(struct list_head), GFP_KERNEL);
1529 if (!pq) {
1530 kfree(fud);
1531 return NULL;
1532 }
1533
1534 fud->pq.processing = pq;
1535 fuse_pqueue_init(&fud->pq);
1536
1537 return fud;
1538}
1539EXPORT_SYMBOL_GPL(fuse_dev_alloc);
1540
1541void fuse_dev_install(struct fuse_dev *fud, struct fuse_conn *fc)
1542{
1543 fud->fc = fuse_conn_get(fc);
1544 spin_lock(&fc->lock);
1545 list_add_tail(&fud->entry, &fc->devices);
1546 spin_unlock(&fc->lock);
1547}
1548EXPORT_SYMBOL_GPL(fuse_dev_install);
1549
1550struct fuse_dev *fuse_dev_alloc_install(struct fuse_conn *fc)
1551{
1552 struct fuse_dev *fud;
1553
1554 fud = fuse_dev_alloc();
1555 if (!fud)
1556 return NULL;
1557
1558 fuse_dev_install(fud, fc);
1559 return fud;
1560}
1561EXPORT_SYMBOL_GPL(fuse_dev_alloc_install);
1562
1563void fuse_dev_free(struct fuse_dev *fud)
1564{
1565 struct fuse_conn *fc = fud->fc;
1566
1567 if (fc) {
1568 spin_lock(&fc->lock);
1569 list_del(&fud->entry);
1570 spin_unlock(&fc->lock);
1571
1572 fuse_conn_put(fc);
1573 }
1574 kfree(fud->pq.processing);
1575 kfree(fud);
1576}
1577EXPORT_SYMBOL_GPL(fuse_dev_free);
1578
1579static void fuse_fill_attr_from_inode(struct fuse_attr *attr,
1580 const struct fuse_inode *fi)
1581{
1582 struct timespec64 atime = inode_get_atime(&fi->inode);
1583 struct timespec64 mtime = inode_get_mtime(&fi->inode);
1584 struct timespec64 ctime = inode_get_ctime(&fi->inode);
1585
1586 *attr = (struct fuse_attr){
1587 .ino = fi->inode.i_ino,
1588 .size = fi->inode.i_size,
1589 .blocks = fi->inode.i_blocks,
1590 .atime = atime.tv_sec,
1591 .mtime = mtime.tv_sec,
1592 .ctime = ctime.tv_sec,
1593 .atimensec = atime.tv_nsec,
1594 .mtimensec = mtime.tv_nsec,
1595 .ctimensec = ctime.tv_nsec,
1596 .mode = fi->inode.i_mode,
1597 .nlink = fi->inode.i_nlink,
1598 .uid = __kuid_val(fi->inode.i_uid),
1599 .gid = __kgid_val(fi->inode.i_gid),
1600 .rdev = fi->inode.i_rdev,
1601 .blksize = 1u << fi->inode.i_blkbits,
1602 };
1603}
1604
1605static void fuse_sb_defaults(struct super_block *sb)
1606{
1607 sb->s_magic = FUSE_SUPER_MAGIC;
1608 sb->s_op = &fuse_super_operations;
1609 sb->s_xattr = fuse_xattr_handlers;
1610 sb->s_maxbytes = MAX_LFS_FILESIZE;
1611 sb->s_time_gran = 1;
1612 sb->s_export_op = &fuse_export_operations;
1613 sb->s_iflags |= SB_I_IMA_UNVERIFIABLE_SIGNATURE;
1614 sb->s_iflags |= SB_I_NOIDMAP;
1615 if (sb->s_user_ns != &init_user_ns)
1616 sb->s_iflags |= SB_I_UNTRUSTED_MOUNTER;
1617 sb->s_flags &= ~(SB_NOSEC | SB_I_VERSION);
1618}
1619
1620static int fuse_fill_super_submount(struct super_block *sb,
1621 struct fuse_inode *parent_fi)
1622{
1623 struct fuse_mount *fm = get_fuse_mount_super(sb);
1624 struct super_block *parent_sb = parent_fi->inode.i_sb;
1625 struct fuse_attr root_attr;
1626 struct inode *root;
1627 struct fuse_submount_lookup *sl;
1628 struct fuse_inode *fi;
1629
1630 fuse_sb_defaults(sb);
1631 fm->sb = sb;
1632
1633 WARN_ON(sb->s_bdi != &noop_backing_dev_info);
1634 sb->s_bdi = bdi_get(parent_sb->s_bdi);
1635
1636 sb->s_xattr = parent_sb->s_xattr;
1637 sb->s_export_op = parent_sb->s_export_op;
1638 sb->s_time_gran = parent_sb->s_time_gran;
1639 sb->s_blocksize = parent_sb->s_blocksize;
1640 sb->s_blocksize_bits = parent_sb->s_blocksize_bits;
1641 sb->s_subtype = kstrdup(parent_sb->s_subtype, GFP_KERNEL);
1642 if (parent_sb->s_subtype && !sb->s_subtype)
1643 return -ENOMEM;
1644
1645 fuse_fill_attr_from_inode(&root_attr, parent_fi);
1646 root = fuse_iget(sb, parent_fi->nodeid, 0, &root_attr, 0, 0,
1647 fuse_get_evict_ctr(fm->fc));
1648 /*
1649 * This inode is just a duplicate, so it is not looked up and
1650 * its nlookup should not be incremented. fuse_iget() does
1651 * that, though, so undo it here.
1652 */
1653 fi = get_fuse_inode(root);
1654 fi->nlookup--;
1655
1656 sb->s_d_op = &fuse_dentry_operations;
1657 sb->s_root = d_make_root(root);
1658 if (!sb->s_root)
1659 return -ENOMEM;
1660
1661 /*
1662 * Grab the parent's submount_lookup pointer and take a
1663 * reference on the shared nlookup from the parent. This is to
1664 * prevent the last forget for this nodeid from getting
1665 * triggered until all users have finished with it.
1666 */
1667 sl = parent_fi->submount_lookup;
1668 WARN_ON(!sl);
1669 if (sl) {
1670 refcount_inc(&sl->count);
1671 fi->submount_lookup = sl;
1672 }
1673
1674 return 0;
1675}
1676
1677/* Filesystem context private data holds the FUSE inode of the mount point */
1678static int fuse_get_tree_submount(struct fs_context *fsc)
1679{
1680 struct fuse_mount *fm;
1681 struct fuse_inode *mp_fi = fsc->fs_private;
1682 struct fuse_conn *fc = get_fuse_conn(&mp_fi->inode);
1683 struct super_block *sb;
1684 int err;
1685
1686 fm = kzalloc(sizeof(struct fuse_mount), GFP_KERNEL);
1687 if (!fm)
1688 return -ENOMEM;
1689
1690 fm->fc = fuse_conn_get(fc);
1691 fsc->s_fs_info = fm;
1692 sb = sget_fc(fsc, NULL, set_anon_super_fc);
1693 if (fsc->s_fs_info)
1694 fuse_mount_destroy(fm);
1695 if (IS_ERR(sb))
1696 return PTR_ERR(sb);
1697
1698 /* Initialize superblock, making @mp_fi its root */
1699 err = fuse_fill_super_submount(sb, mp_fi);
1700 if (err) {
1701 deactivate_locked_super(sb);
1702 return err;
1703 }
1704
1705 down_write(&fc->killsb);
1706 list_add_tail(&fm->fc_entry, &fc->mounts);
1707 up_write(&fc->killsb);
1708
1709 sb->s_flags |= SB_ACTIVE;
1710 fsc->root = dget(sb->s_root);
1711
1712 return 0;
1713}
1714
1715static const struct fs_context_operations fuse_context_submount_ops = {
1716 .get_tree = fuse_get_tree_submount,
1717};
1718
1719int fuse_init_fs_context_submount(struct fs_context *fsc)
1720{
1721 fsc->ops = &fuse_context_submount_ops;
1722 return 0;
1723}
1724EXPORT_SYMBOL_GPL(fuse_init_fs_context_submount);
1725
1726int fuse_fill_super_common(struct super_block *sb, struct fuse_fs_context *ctx)
1727{
1728 struct fuse_dev *fud = NULL;
1729 struct fuse_mount *fm = get_fuse_mount_super(sb);
1730 struct fuse_conn *fc = fm->fc;
1731 struct inode *root;
1732 struct dentry *root_dentry;
1733 int err;
1734
1735 err = -EINVAL;
1736 if (sb->s_flags & SB_MANDLOCK)
1737 goto err;
1738
1739 rcu_assign_pointer(fc->curr_bucket, fuse_sync_bucket_alloc());
1740 fuse_sb_defaults(sb);
1741
1742 if (ctx->is_bdev) {
1743#ifdef CONFIG_BLOCK
1744 err = -EINVAL;
1745 if (!sb_set_blocksize(sb, ctx->blksize))
1746 goto err;
1747#endif
1748 } else {
1749 sb->s_blocksize = PAGE_SIZE;
1750 sb->s_blocksize_bits = PAGE_SHIFT;
1751 }
1752
1753 sb->s_subtype = ctx->subtype;
1754 ctx->subtype = NULL;
1755 if (IS_ENABLED(CONFIG_FUSE_DAX)) {
1756 err = fuse_dax_conn_alloc(fc, ctx->dax_mode, ctx->dax_dev);
1757 if (err)
1758 goto err;
1759 }
1760
1761 if (ctx->fudptr) {
1762 err = -ENOMEM;
1763 fud = fuse_dev_alloc_install(fc);
1764 if (!fud)
1765 goto err_free_dax;
1766 }
1767
1768 fc->dev = sb->s_dev;
1769 fm->sb = sb;
1770 err = fuse_bdi_init(fc, sb);
1771 if (err)
1772 goto err_dev_free;
1773
1774 /* Handle umasking inside the fuse code */
1775 if (sb->s_flags & SB_POSIXACL)
1776 fc->dont_mask = 1;
1777 sb->s_flags |= SB_POSIXACL;
1778
1779 fc->default_permissions = ctx->default_permissions;
1780 fc->allow_other = ctx->allow_other;
1781 fc->user_id = ctx->user_id;
1782 fc->group_id = ctx->group_id;
1783 fc->legacy_opts_show = ctx->legacy_opts_show;
1784 fc->max_read = max_t(unsigned int, 4096, ctx->max_read);
1785 fc->destroy = ctx->destroy;
1786 fc->no_control = ctx->no_control;
1787 fc->no_force_umount = ctx->no_force_umount;
1788
1789 err = -ENOMEM;
1790 root = fuse_get_root_inode(sb, ctx->rootmode);
1791 sb->s_d_op = &fuse_root_dentry_operations;
1792 root_dentry = d_make_root(root);
1793 if (!root_dentry)
1794 goto err_dev_free;
1795 /* Root dentry doesn't have .d_revalidate */
1796 sb->s_d_op = &fuse_dentry_operations;
1797
1798 mutex_lock(&fuse_mutex);
1799 err = -EINVAL;
1800 if (ctx->fudptr && *ctx->fudptr)
1801 goto err_unlock;
1802
1803 err = fuse_ctl_add_conn(fc);
1804 if (err)
1805 goto err_unlock;
1806
1807 list_add_tail(&fc->entry, &fuse_conn_list);
1808 sb->s_root = root_dentry;
1809 if (ctx->fudptr)
1810 *ctx->fudptr = fud;
1811 mutex_unlock(&fuse_mutex);
1812 return 0;
1813
1814 err_unlock:
1815 mutex_unlock(&fuse_mutex);
1816 dput(root_dentry);
1817 err_dev_free:
1818 if (fud)
1819 fuse_dev_free(fud);
1820 err_free_dax:
1821 if (IS_ENABLED(CONFIG_FUSE_DAX))
1822 fuse_dax_conn_free(fc);
1823 err:
1824 return err;
1825}
1826EXPORT_SYMBOL_GPL(fuse_fill_super_common);
1827
1828static int fuse_fill_super(struct super_block *sb, struct fs_context *fsc)
1829{
1830 struct fuse_fs_context *ctx = fsc->fs_private;
1831 int err;
1832
1833 if (!ctx->file || !ctx->rootmode_present ||
1834 !ctx->user_id_present || !ctx->group_id_present)
1835 return -EINVAL;
1836
1837 /*
1838 * Require mount to happen from the same user namespace which
1839 * opened /dev/fuse to prevent potential attacks.
1840 */
1841 if ((ctx->file->f_op != &fuse_dev_operations) ||
1842 (ctx->file->f_cred->user_ns != sb->s_user_ns))
1843 return -EINVAL;
1844 ctx->fudptr = &ctx->file->private_data;
1845
1846 err = fuse_fill_super_common(sb, ctx);
1847 if (err)
1848 return err;
1849 /* file->private_data shall be visible on all CPUs after this */
1850 smp_mb();
1851 fuse_send_init(get_fuse_mount_super(sb));
1852 return 0;
1853}
1854
1855/*
1856 * This is the path where user supplied an already initialized fuse dev. In
1857 * this case never create a new super if the old one is gone.
1858 */
1859static int fuse_set_no_super(struct super_block *sb, struct fs_context *fsc)
1860{
1861 return -ENOTCONN;
1862}
1863
1864static int fuse_test_super(struct super_block *sb, struct fs_context *fsc)
1865{
1866
1867 return fsc->sget_key == get_fuse_conn_super(sb);
1868}
1869
1870static int fuse_get_tree(struct fs_context *fsc)
1871{
1872 struct fuse_fs_context *ctx = fsc->fs_private;
1873 struct fuse_dev *fud;
1874 struct fuse_conn *fc;
1875 struct fuse_mount *fm;
1876 struct super_block *sb;
1877 int err;
1878
1879 fc = kmalloc(sizeof(*fc), GFP_KERNEL);
1880 if (!fc)
1881 return -ENOMEM;
1882
1883 fm = kzalloc(sizeof(*fm), GFP_KERNEL);
1884 if (!fm) {
1885 kfree(fc);
1886 return -ENOMEM;
1887 }
1888
1889 fuse_conn_init(fc, fm, fsc->user_ns, &fuse_dev_fiq_ops, NULL);
1890 fc->release = fuse_free_conn;
1891
1892 fsc->s_fs_info = fm;
1893
1894 if (ctx->fd_present)
1895 ctx->file = fget(ctx->fd);
1896
1897 if (IS_ENABLED(CONFIG_BLOCK) && ctx->is_bdev) {
1898 err = get_tree_bdev(fsc, fuse_fill_super);
1899 goto out;
1900 }
1901 /*
1902 * While block dev mount can be initialized with a dummy device fd
1903 * (found by device name), normal fuse mounts can't
1904 */
1905 err = -EINVAL;
1906 if (!ctx->file)
1907 goto out;
1908
1909 /*
1910 * Allow creating a fuse mount with an already initialized fuse
1911 * connection
1912 */
1913 fud = READ_ONCE(ctx->file->private_data);
1914 if (ctx->file->f_op == &fuse_dev_operations && fud) {
1915 fsc->sget_key = fud->fc;
1916 sb = sget_fc(fsc, fuse_test_super, fuse_set_no_super);
1917 err = PTR_ERR_OR_ZERO(sb);
1918 if (!IS_ERR(sb))
1919 fsc->root = dget(sb->s_root);
1920 } else {
1921 err = get_tree_nodev(fsc, fuse_fill_super);
1922 }
1923out:
1924 if (fsc->s_fs_info)
1925 fuse_mount_destroy(fm);
1926 if (ctx->file)
1927 fput(ctx->file);
1928 return err;
1929}
1930
1931static const struct fs_context_operations fuse_context_ops = {
1932 .free = fuse_free_fsc,
1933 .parse_param = fuse_parse_param,
1934 .reconfigure = fuse_reconfigure,
1935 .get_tree = fuse_get_tree,
1936};
1937
1938/*
1939 * Set up the filesystem mount context.
1940 */
1941static int fuse_init_fs_context(struct fs_context *fsc)
1942{
1943 struct fuse_fs_context *ctx;
1944
1945 ctx = kzalloc(sizeof(struct fuse_fs_context), GFP_KERNEL);
1946 if (!ctx)
1947 return -ENOMEM;
1948
1949 ctx->max_read = ~0;
1950 ctx->blksize = FUSE_DEFAULT_BLKSIZE;
1951 ctx->legacy_opts_show = true;
1952
1953#ifdef CONFIG_BLOCK
1954 if (fsc->fs_type == &fuseblk_fs_type) {
1955 ctx->is_bdev = true;
1956 ctx->destroy = true;
1957 }
1958#endif
1959
1960 fsc->fs_private = ctx;
1961 fsc->ops = &fuse_context_ops;
1962 return 0;
1963}
1964
1965bool fuse_mount_remove(struct fuse_mount *fm)
1966{
1967 struct fuse_conn *fc = fm->fc;
1968 bool last = false;
1969
1970 down_write(&fc->killsb);
1971 list_del_init(&fm->fc_entry);
1972 if (list_empty(&fc->mounts))
1973 last = true;
1974 up_write(&fc->killsb);
1975
1976 return last;
1977}
1978EXPORT_SYMBOL_GPL(fuse_mount_remove);
1979
1980void fuse_conn_destroy(struct fuse_mount *fm)
1981{
1982 struct fuse_conn *fc = fm->fc;
1983
1984 if (fc->destroy)
1985 fuse_send_destroy(fm);
1986
1987 fuse_abort_conn(fc);
1988 fuse_wait_aborted(fc);
1989
1990 if (!list_empty(&fc->entry)) {
1991 mutex_lock(&fuse_mutex);
1992 list_del(&fc->entry);
1993 fuse_ctl_remove_conn(fc);
1994 mutex_unlock(&fuse_mutex);
1995 }
1996}
1997EXPORT_SYMBOL_GPL(fuse_conn_destroy);
1998
1999static void fuse_sb_destroy(struct super_block *sb)
2000{
2001 struct fuse_mount *fm = get_fuse_mount_super(sb);
2002 bool last;
2003
2004 if (sb->s_root) {
2005 last = fuse_mount_remove(fm);
2006 if (last)
2007 fuse_conn_destroy(fm);
2008 }
2009}
2010
2011void fuse_mount_destroy(struct fuse_mount *fm)
2012{
2013 fuse_conn_put(fm->fc);
2014 kfree_rcu(fm, rcu);
2015}
2016EXPORT_SYMBOL(fuse_mount_destroy);
2017
2018static void fuse_kill_sb_anon(struct super_block *sb)
2019{
2020 fuse_sb_destroy(sb);
2021 kill_anon_super(sb);
2022 fuse_mount_destroy(get_fuse_mount_super(sb));
2023}
2024
2025static struct file_system_type fuse_fs_type = {
2026 .owner = THIS_MODULE,
2027 .name = "fuse",
2028 .fs_flags = FS_HAS_SUBTYPE | FS_USERNS_MOUNT | FS_ALLOW_IDMAP,
2029 .init_fs_context = fuse_init_fs_context,
2030 .parameters = fuse_fs_parameters,
2031 .kill_sb = fuse_kill_sb_anon,
2032};
2033MODULE_ALIAS_FS("fuse");
2034
2035#ifdef CONFIG_BLOCK
2036static void fuse_kill_sb_blk(struct super_block *sb)
2037{
2038 fuse_sb_destroy(sb);
2039 kill_block_super(sb);
2040 fuse_mount_destroy(get_fuse_mount_super(sb));
2041}
2042
2043static struct file_system_type fuseblk_fs_type = {
2044 .owner = THIS_MODULE,
2045 .name = "fuseblk",
2046 .init_fs_context = fuse_init_fs_context,
2047 .parameters = fuse_fs_parameters,
2048 .kill_sb = fuse_kill_sb_blk,
2049 .fs_flags = FS_REQUIRES_DEV | FS_HAS_SUBTYPE | FS_ALLOW_IDMAP,
2050};
2051MODULE_ALIAS_FS("fuseblk");
2052
2053static inline int register_fuseblk(void)
2054{
2055 return register_filesystem(&fuseblk_fs_type);
2056}
2057
2058static inline void unregister_fuseblk(void)
2059{
2060 unregister_filesystem(&fuseblk_fs_type);
2061}
2062#else
2063static inline int register_fuseblk(void)
2064{
2065 return 0;
2066}
2067
2068static inline void unregister_fuseblk(void)
2069{
2070}
2071#endif
2072
2073static void fuse_inode_init_once(void *foo)
2074{
2075 struct inode *inode = foo;
2076
2077 inode_init_once(inode);
2078}
2079
2080static int __init fuse_fs_init(void)
2081{
2082 int err;
2083
2084 fuse_inode_cachep = kmem_cache_create("fuse_inode",
2085 sizeof(struct fuse_inode), 0,
2086 SLAB_HWCACHE_ALIGN|SLAB_ACCOUNT|SLAB_RECLAIM_ACCOUNT,
2087 fuse_inode_init_once);
2088 err = -ENOMEM;
2089 if (!fuse_inode_cachep)
2090 goto out;
2091
2092 err = register_fuseblk();
2093 if (err)
2094 goto out2;
2095
2096 err = register_filesystem(&fuse_fs_type);
2097 if (err)
2098 goto out3;
2099
2100 err = fuse_sysctl_register();
2101 if (err)
2102 goto out4;
2103
2104 return 0;
2105
2106 out4:
2107 unregister_filesystem(&fuse_fs_type);
2108 out3:
2109 unregister_fuseblk();
2110 out2:
2111 kmem_cache_destroy(fuse_inode_cachep);
2112 out:
2113 return err;
2114}
2115
2116static void fuse_fs_cleanup(void)
2117{
2118 fuse_sysctl_unregister();
2119 unregister_filesystem(&fuse_fs_type);
2120 unregister_fuseblk();
2121
2122 /*
2123 * Make sure all delayed rcu free inodes are flushed before we
2124 * destroy cache.
2125 */
2126 rcu_barrier();
2127 kmem_cache_destroy(fuse_inode_cachep);
2128}
2129
2130static struct kobject *fuse_kobj;
2131
2132static int fuse_sysfs_init(void)
2133{
2134 int err;
2135
2136 fuse_kobj = kobject_create_and_add("fuse", fs_kobj);
2137 if (!fuse_kobj) {
2138 err = -ENOMEM;
2139 goto out_err;
2140 }
2141
2142 err = sysfs_create_mount_point(fuse_kobj, "connections");
2143 if (err)
2144 goto out_fuse_unregister;
2145
2146 return 0;
2147
2148 out_fuse_unregister:
2149 kobject_put(fuse_kobj);
2150 out_err:
2151 return err;
2152}
2153
2154static void fuse_sysfs_cleanup(void)
2155{
2156 sysfs_remove_mount_point(fuse_kobj, "connections");
2157 kobject_put(fuse_kobj);
2158}
2159
2160static int __init fuse_init(void)
2161{
2162 int res;
2163
2164 pr_info("init (API version %i.%i)\n",
2165 FUSE_KERNEL_VERSION, FUSE_KERNEL_MINOR_VERSION);
2166
2167 INIT_LIST_HEAD(&fuse_conn_list);
2168 res = fuse_fs_init();
2169 if (res)
2170 goto err;
2171
2172 res = fuse_dev_init();
2173 if (res)
2174 goto err_fs_cleanup;
2175
2176 res = fuse_sysfs_init();
2177 if (res)
2178 goto err_dev_cleanup;
2179
2180 res = fuse_ctl_init();
2181 if (res)
2182 goto err_sysfs_cleanup;
2183
2184 sanitize_global_limit(&max_user_bgreq);
2185 sanitize_global_limit(&max_user_congthresh);
2186
2187 return 0;
2188
2189 err_sysfs_cleanup:
2190 fuse_sysfs_cleanup();
2191 err_dev_cleanup:
2192 fuse_dev_cleanup();
2193 err_fs_cleanup:
2194 fuse_fs_cleanup();
2195 err:
2196 return res;
2197}
2198
2199static void __exit fuse_exit(void)
2200{
2201 pr_debug("exit\n");
2202
2203 fuse_ctl_cleanup();
2204 fuse_sysfs_cleanup();
2205 fuse_fs_cleanup();
2206 fuse_dev_cleanup();
2207}
2208
2209module_init(fuse_init);
2210module_exit(fuse_exit);