fs/overlayfs/super.c

d2912cb1SThomas Gleixner// SPDX-License-Identifier: GPL-2.0-only
e9be9d5eSMiklos Szeredi/*
e9be9d5eSMiklos Szeredi *
e9be9d5eSMiklos Szeredi * Copyright (C) 2011 Novell Inc.
e9be9d5eSMiklos Szeredi */
e9be9d5eSMiklos Szeredi
5b825c3aSIngo Molnar#include <uapi/linux/magic.h>
e9be9d5eSMiklos Szeredi#include <linux/fs.h>
e9be9d5eSMiklos Szeredi#include <linux/namei.h>
e9be9d5eSMiklos Szeredi#include <linux/xattr.h>
e9be9d5eSMiklos Szeredi#include <linux/mount.h>
e9be9d5eSMiklos Szeredi#include <linux/parser.h>
e9be9d5eSMiklos Szeredi#include <linux/module.h>
cc259639SAndy Whitcroft#include <linux/statfs.h>
f45827e8SErez Zadok#include <linux/seq_file.h>
d837a49bSMiklos Szeredi#include <linux/posix_acl_xattr.h>
e487d889SAmir Goldstein#include <linux/exportfs.h>
2b1a7746SMiklos Szeredi#include <linux/file.h>
1784fbc2SChristian Brauner#include <linux/fs_context.h>
dcb399deSAmir Goldstein#include <linux/fs_parser.h>
e9be9d5eSMiklos Szeredi#include "overlayfs.h"
e9be9d5eSMiklos Szeredi
e9be9d5eSMiklos SzerediMODULE_AUTHOR("Miklos Szeredi <miklos@szeredi.hu>");
e9be9d5eSMiklos SzerediMODULE_DESCRIPTION("Overlay filesystem");
e9be9d5eSMiklos SzerediMODULE_LICENSE("GPL");
e9be9d5eSMiklos Szeredi
e9be9d5eSMiklos Szeredi
e9be9d5eSMiklos Szeredistruct ovl_dir_cache;
e9be9d5eSMiklos Szeredi
688ea0e5SMiklos Szeredistatic bool ovl_redirect_dir_def = IS_ENABLED(CONFIG_OVERLAY_FS_REDIRECT_DIR);
688ea0e5SMiklos Szeredimodule_param_named(redirect_dir, ovl_redirect_dir_def, bool, 0644);
253e7483SNicolas SchierMODULE_PARM_DESC(redirect_dir,
688ea0e5SMiklos Szeredi		 "Default to on or off for the redirect_dir feature");
e9be9d5eSMiklos Szeredi
438c84c2SMiklos Szeredistatic bool ovl_redirect_always_follow =
438c84c2SMiklos Szeredi	IS_ENABLED(CONFIG_OVERLAY_FS_REDIRECT_ALWAYS_FOLLOW);
438c84c2SMiklos Szeredimodule_param_named(redirect_always_follow, ovl_redirect_always_follow,
438c84c2SMiklos Szeredi		   bool, 0644);
253e7483SNicolas SchierMODULE_PARM_DESC(redirect_always_follow,
438c84c2SMiklos Szeredi		 "Follow redirects even if redirect_dir feature is turned off");
438c84c2SMiklos Szeredi
02bcd157SAmir Goldsteinstatic bool ovl_index_def = IS_ENABLED(CONFIG_OVERLAY_FS_INDEX);
02bcd157SAmir Goldsteinmodule_param_named(index, ovl_index_def, bool, 0644);
253e7483SNicolas SchierMODULE_PARM_DESC(index,
02bcd157SAmir Goldstein		 "Default to on or off for the inodes index feature");
02bcd157SAmir Goldstein
f168f109SAmir Goldsteinstatic bool ovl_nfs_export_def = IS_ENABLED(CONFIG_OVERLAY_FS_NFS_EXPORT);
f168f109SAmir Goldsteinmodule_param_named(nfs_export, ovl_nfs_export_def, bool, 0644);
253e7483SNicolas SchierMODULE_PARM_DESC(nfs_export,
f168f109SAmir Goldstein		 "Default to on or off for the NFS export feature");
f168f109SAmir Goldstein
795939a9SAmir Goldsteinstatic bool ovl_xino_auto_def = IS_ENABLED(CONFIG_OVERLAY_FS_XINO_AUTO);
795939a9SAmir Goldsteinmodule_param_named(xino_auto, ovl_xino_auto_def, bool, 0644);
253e7483SNicolas SchierMODULE_PARM_DESC(xino_auto,
795939a9SAmir Goldstein		 "Auto enable xino feature");
795939a9SAmir Goldstein
d5791044SVivek Goyalstatic bool ovl_metacopy_def = IS_ENABLED(CONFIG_OVERLAY_FS_METACOPY);
d5791044SVivek Goyalmodule_param_named(metacopy, ovl_metacopy_def, bool, 0644);
253e7483SNicolas SchierMODULE_PARM_DESC(metacopy,
d5791044SVivek Goyal		 "Default to on or off for the metadata only copy up feature");
d5791044SVivek Goyal
2d902671SMiklos Szeredistatic struct dentry *ovl_d_real(struct dentry *dentry,
fb16043bSMiklos Szeredi				 const struct inode *inode)
d101a125SMiklos Szeredi{
cef4cbffSMiklos Szeredi	struct dentry *real = NULL, *lower;
d101a125SMiklos Szeredi
e8c985baSMiklos Szeredi	/* It's an overlay file */
e8c985baSMiklos Szeredi	if (inode && d_inode(dentry) == inode)
e8c985baSMiklos Szeredi		return dentry;
e8c985baSMiklos Szeredi
ca4c8a3aSMiklos Szeredi	if (!d_is_reg(dentry)) {
d101a125SMiklos Szeredi		if (!inode || inode == d_inode(dentry))
d101a125SMiklos Szeredi			return dentry;
d101a125SMiklos Szeredi		goto bug;
d101a125SMiklos Szeredi	}
d101a125SMiklos Szeredi
d101a125SMiklos Szeredi	real = ovl_dentry_upper(dentry);
2c3d7358SVivek Goyal	if (real && (inode == d_inode(real)))
d101a125SMiklos Szeredi		return real;
d101a125SMiklos Szeredi
2c3d7358SVivek Goyal	if (real && !inode && ovl_has_upperdata(d_inode(dentry)))
2c3d7358SVivek Goyal		return real;
2c3d7358SVivek Goyal
41665644SAmir Goldstein	/*
42dd69aeSAmir Goldstein	 * Best effort lazy lookup of lowerdata for !inode case to return
41665644SAmir Goldstein	 * the real lowerdata dentry.  The only current caller of d_real() with
41665644SAmir Goldstein	 * NULL inode is d_real_inode() from trace_uprobe and this caller is
41665644SAmir Goldstein	 * likely going to be followed reading from the file, before placing
41665644SAmir Goldstein	 * uprobes on offset within the file, so lowerdata should be available
41665644SAmir Goldstein	 * when setting the uprobe.
41665644SAmir Goldstein	 */
42dd69aeSAmir Goldstein	ovl_maybe_lookup_lowerdata(dentry);
cef4cbffSMiklos Szeredi	lower = ovl_dentry_lowerdata(dentry);
cef4cbffSMiklos Szeredi	if (!lower)
d101a125SMiklos Szeredi		goto bug;
cef4cbffSMiklos Szeredi	real = lower;
d101a125SMiklos Szeredi
c4fcfc16SMiklos Szeredi	/* Handle recursion */
fb16043bSMiklos Szeredi	real = d_real(real, inode);
c4fcfc16SMiklos Szeredi
d101a125SMiklos Szeredi	if (!inode || inode == d_inode(real))
d101a125SMiklos Szeredi		return real;
d101a125SMiklos Szeredibug:
cef4cbffSMiklos Szeredi	WARN(1, "%s(%pd4, %s:%lu): real dentry (%p/%lu) not found\n",
cef4cbffSMiklos Szeredi	     __func__, dentry, inode ? inode->i_sb->s_id : "NULL",
cef4cbffSMiklos Szeredi	     inode ? inode->i_ino : 0, real,
cef4cbffSMiklos Szeredi	     real && d_inode(real) ? d_inode(real)->i_ino : 0);
d101a125SMiklos Szeredi	return dentry;
d101a125SMiklos Szeredi}
d101a125SMiklos Szeredi
3bb7df92SMiklos Szeredistatic int ovl_revalidate_real(struct dentry *d, unsigned int flags, bool weak)
3bb7df92SMiklos Szeredi{
3bb7df92SMiklos Szeredi	int ret = 1;
3bb7df92SMiklos Szeredi
41665644SAmir Goldstein	if (!d)
41665644SAmir Goldstein		return 1;
41665644SAmir Goldstein
3bb7df92SMiklos Szeredi	if (weak) {
3bb7df92SMiklos Szeredi		if (d->d_flags & DCACHE_OP_WEAK_REVALIDATE)
3bb7df92SMiklos Szeredi			ret =  d->d_op->d_weak_revalidate(d, flags);
3bb7df92SMiklos Szeredi	} else if (d->d_flags & DCACHE_OP_REVALIDATE) {
3bb7df92SMiklos Szeredi		ret = d->d_op->d_revalidate(d, flags);
3bb7df92SMiklos Szeredi		if (!ret) {
3bb7df92SMiklos Szeredi			if (!(flags & LOOKUP_RCU))
3bb7df92SMiklos Szeredi				d_invalidate(d);
3bb7df92SMiklos Szeredi			ret = -ESTALE;
3bb7df92SMiklos Szeredi		}
3bb7df92SMiklos Szeredi	}
3bb7df92SMiklos Szeredi	return ret;
3bb7df92SMiklos Szeredi}
3bb7df92SMiklos Szeredi
3bb7df92SMiklos Szeredistatic int ovl_dentry_revalidate_common(struct dentry *dentry,
3bb7df92SMiklos Szeredi					unsigned int flags, bool weak)
7c03b5d4SMiklos Szeredi{
a6ff2bc0SAmir Goldstein	struct ovl_entry *oe = OVL_E(dentry);
5522c9c7SAmir Goldstein	struct ovl_path *lowerstack = ovl_lowerstack(oe);
672e4268SChen Zhongjin	struct inode *inode = d_inode_rcu(dentry);
bccece1eSMiklos Szeredi	struct dentry *upper;
7c03b5d4SMiklos Szeredi	unsigned int i;
7c03b5d4SMiklos Szeredi	int ret = 1;
7c03b5d4SMiklos Szeredi
672e4268SChen Zhongjin	/* Careful in RCU mode */
672e4268SChen Zhongjin	if (!inode)
672e4268SChen Zhongjin		return -ECHILD;
672e4268SChen Zhongjin
672e4268SChen Zhongjin	upper = ovl_i_dentry_upper(inode);
bccece1eSMiklos Szeredi	if (upper)
bccece1eSMiklos Szeredi		ret = ovl_revalidate_real(upper, flags, weak);
bccece1eSMiklos Szeredi
5522c9c7SAmir Goldstein	for (i = 0; ret > 0 && i < ovl_numlower(oe); i++)
5522c9c7SAmir Goldstein		ret = ovl_revalidate_real(lowerstack[i].dentry, flags, weak);
5522c9c7SAmir Goldstein
7c03b5d4SMiklos Szeredi	return ret;
7c03b5d4SMiklos Szeredi}
3bb7df92SMiklos Szeredi
3bb7df92SMiklos Szeredistatic int ovl_dentry_revalidate(struct dentry *dentry, unsigned int flags)
3bb7df92SMiklos Szeredi{
3bb7df92SMiklos Szeredi	return ovl_dentry_revalidate_common(dentry, flags, false);
7c03b5d4SMiklos Szeredi}
7c03b5d4SMiklos Szeredi
7c03b5d4SMiklos Szeredistatic int ovl_dentry_weak_revalidate(struct dentry *dentry, unsigned int flags)
7c03b5d4SMiklos Szeredi{
3bb7df92SMiklos Szeredi	return ovl_dentry_revalidate_common(dentry, flags, true);
7c03b5d4SMiklos Szeredi}
7c03b5d4SMiklos Szeredi
e9be9d5eSMiklos Szeredistatic const struct dentry_operations ovl_dentry_operations = {
d101a125SMiklos Szeredi	.d_real = ovl_d_real,
7c03b5d4SMiklos Szeredi	.d_revalidate = ovl_dentry_revalidate,
7c03b5d4SMiklos Szeredi	.d_weak_revalidate = ovl_dentry_weak_revalidate,
7c03b5d4SMiklos Szeredi};
7c03b5d4SMiklos Szeredi
13cf199dSAmir Goldsteinstatic struct kmem_cache *ovl_inode_cachep;
13cf199dSAmir Goldstein
13cf199dSAmir Goldsteinstatic struct inode *ovl_alloc_inode(struct super_block *sb)
13cf199dSAmir Goldstein{
fd60b288SMuchun Song	struct ovl_inode *oi = alloc_inode_sb(sb, ovl_inode_cachep, GFP_KERNEL);
13cf199dSAmir Goldstein
b3885bd6SHirofumi Nakagawa	if (!oi)
b3885bd6SHirofumi Nakagawa		return NULL;
b3885bd6SHirofumi Nakagawa
04a01ac7SMiklos Szeredi	oi->cache = NULL;
cf31c463SMiklos Szeredi	oi->redirect = NULL;
04a01ac7SMiklos Szeredi	oi->version = 0;
13c72075SMiklos Szeredi	oi->flags = 0;
09d8b586SMiklos Szeredi	oi->__upperdentry = NULL;
2b21da92SAmir Goldstein	oi->lowerdata_redirect = NULL;
0af950f5SAmir Goldstein	oi->oe = NULL;
a015dafcSAmir Goldstein	mutex_init(&oi->lock);
25b7713aSMiklos Szeredi
13cf199dSAmir Goldstein	return &oi->vfs_inode;
13cf199dSAmir Goldstein}
13cf199dSAmir Goldstein
0b269dedSAl Virostatic void ovl_free_inode(struct inode *inode)
13cf199dSAmir Goldstein{
0b269dedSAl Viro	struct ovl_inode *oi = OVL_I(inode);
13cf199dSAmir Goldstein
0b269dedSAl Viro	kfree(oi->redirect);
0b269dedSAl Viro	mutex_destroy(&oi->lock);
0b269dedSAl Viro	kmem_cache_free(ovl_inode_cachep, oi);
13cf199dSAmir Goldstein}
13cf199dSAmir Goldstein
13cf199dSAmir Goldsteinstatic void ovl_destroy_inode(struct inode *inode)
13cf199dSAmir Goldstein{
09d8b586SMiklos Szeredi	struct ovl_inode *oi = OVL_I(inode);
09d8b586SMiklos Szeredi
09d8b586SMiklos Szeredi	dput(oi->__upperdentry);
0af950f5SAmir Goldstein	ovl_free_entry(oi->oe);
2664bd08SVivek Goyal	if (S_ISDIR(inode->i_mode))
4edb83bbSMiklos Szeredi		ovl_dir_cache_free(inode);
2b21da92SAmir Goldstein	else
2b21da92SAmir Goldstein		kfree(oi->lowerdata_redirect);
13cf199dSAmir Goldstein}
13cf199dSAmir Goldstein
ad204488SMiklos Szeredistatic void ovl_free_fs(struct ovl_fs *ofs)
e9be9d5eSMiklos Szeredi{
df820f8dSMiklos Szeredi	struct vfsmount **mounts;
dd662667SMiklos Szeredi	unsigned i;
e9be9d5eSMiklos Szeredi
0be0bfd2SAmir Goldstein	iput(ofs->workbasedir_trap);
146d62e5SAmir Goldstein	iput(ofs->indexdir_trap);
146d62e5SAmir Goldstein	iput(ofs->workdir_trap);
c21c839bSChengguang Xu	dput(ofs->whiteout);
ad204488SMiklos Szeredi	dput(ofs->indexdir);
ad204488SMiklos Szeredi	dput(ofs->workdir);
ad204488SMiklos Szeredi	if (ofs->workdir_locked)
ad204488SMiklos Szeredi		ovl_inuse_unlock(ofs->workbasedir);
ad204488SMiklos Szeredi	dput(ofs->workbasedir);
ad204488SMiklos Szeredi	if (ofs->upperdir_locked)
08f4c7c8SMiklos Szeredi		ovl_inuse_unlock(ovl_upper_mnt(ofs)->mnt_root);
df820f8dSMiklos Szeredi
df820f8dSMiklos Szeredi	/* Hack!  Reuse ofs->layers as a vfsmount array before freeing it */
df820f8dSMiklos Szeredi	mounts = (struct vfsmount **) ofs->layers;
b8e42a65SMiklos Szeredi	for (i = 0; i < ofs->numlayer; i++) {
94375f9dSAmir Goldstein		iput(ofs->layers[i].trap);
df820f8dSMiklos Szeredi		mounts[i] = ofs->layers[i].mnt;
*b36a5780SChristian Brauner		kfree(ofs->layers[i].name);
146d62e5SAmir Goldstein	}
df820f8dSMiklos Szeredi	kern_unmount_array(mounts, ofs->numlayer);
94375f9dSAmir Goldstein	kfree(ofs->layers);
b7bf9908SAmir Goldstein	for (i = 0; i < ofs->numfs; i++)
07f1e596SAmir Goldstein		free_anon_bdev(ofs->fs[i].pseudo_dev);
07f1e596SAmir Goldstein	kfree(ofs->fs);
e9be9d5eSMiklos Szeredi
ad204488SMiklos Szeredi	kfree(ofs->config.upperdir);
ad204488SMiklos Szeredi	kfree(ofs->config.workdir);
ad204488SMiklos Szeredi	if (ofs->creator_cred)
ad204488SMiklos Szeredi		put_cred(ofs->creator_cred);
ad204488SMiklos Szeredi	kfree(ofs);
e9be9d5eSMiklos Szeredi}
e9be9d5eSMiklos Szeredi
a9075cdbSMiklos Szeredistatic void ovl_put_super(struct super_block *sb)
a9075cdbSMiklos Szeredi{
a9075cdbSMiklos Szeredi	struct ovl_fs *ofs = sb->s_fs_info;
a9075cdbSMiklos Szeredi
1784fbc2SChristian Brauner	if (ofs)
a9075cdbSMiklos Szeredi		ovl_free_fs(ofs);
a9075cdbSMiklos Szeredi}
a9075cdbSMiklos Szeredi
e8d4bfe3SChengguang Xu/* Sync real dirty inodes in upper filesystem (if it exists) */
e593b2bfSAmir Goldsteinstatic int ovl_sync_fs(struct super_block *sb, int wait)
e593b2bfSAmir Goldstein{
ad204488SMiklos Szeredi	struct ovl_fs *ofs = sb->s_fs_info;
e593b2bfSAmir Goldstein	struct super_block *upper_sb;
e593b2bfSAmir Goldstein	int ret;
e593b2bfSAmir Goldstein
335d3fc5SSargun Dhillon	ret = ovl_sync_status(ofs);
335d3fc5SSargun Dhillon	/*
335d3fc5SSargun Dhillon	 * We have to always set the err, because the return value isn't
335d3fc5SSargun Dhillon	 * checked in syncfs, and instead indirectly return an error via
335d3fc5SSargun Dhillon	 * the sb's writeback errseq, which VFS inspects after this call.
335d3fc5SSargun Dhillon	 */
335d3fc5SSargun Dhillon	if (ret < 0) {
335d3fc5SSargun Dhillon		errseq_set(&sb->s_wb_err, -EIO);
335d3fc5SSargun Dhillon		return -EIO;
335d3fc5SSargun Dhillon	}
e8d4bfe3SChengguang Xu
335d3fc5SSargun Dhillon	if (!ret)
335d3fc5SSargun Dhillon		return ret;
335d3fc5SSargun Dhillon
e8d4bfe3SChengguang Xu	/*
32b1924bSKonstantin Khlebnikov	 * Not called for sync(2) call or an emergency sync (SB_I_SKIP_SYNC).
32b1924bSKonstantin Khlebnikov	 * All the super blocks will be iterated, including upper_sb.
e8d4bfe3SChengguang Xu	 *
e8d4bfe3SChengguang Xu	 * If this is a syncfs(2) call, then we do need to call
e8d4bfe3SChengguang Xu	 * sync_filesystem() on upper_sb, but enough if we do it when being
e8d4bfe3SChengguang Xu	 * called with wait == 1.
e8d4bfe3SChengguang Xu	 */
e8d4bfe3SChengguang Xu	if (!wait)
e593b2bfSAmir Goldstein		return 0;
e593b2bfSAmir Goldstein
08f4c7c8SMiklos Szeredi	upper_sb = ovl_upper_mnt(ofs)->mnt_sb;
e8d4bfe3SChengguang Xu
e593b2bfSAmir Goldstein	down_read(&upper_sb->s_umount);
e8d4bfe3SChengguang Xu	ret = sync_filesystem(upper_sb);
e593b2bfSAmir Goldstein	up_read(&upper_sb->s_umount);
e8d4bfe3SChengguang Xu
e593b2bfSAmir Goldstein	return ret;
e593b2bfSAmir Goldstein}
e593b2bfSAmir Goldstein
cc259639SAndy Whitcroft/**
cc259639SAndy Whitcroft * ovl_statfs
9c5dd803SYang Li * @dentry: The dentry to query
cc259639SAndy Whitcroft * @buf: The struct kstatfs to fill in with stats
cc259639SAndy Whitcroft *
cc259639SAndy Whitcroft * Get the filesystem statistics.  As writes always target the upper layer
4ebc5818SMiklos Szeredi * filesystem pass the statfs to the upper filesystem (if it exists)
cc259639SAndy Whitcroft */
cc259639SAndy Whitcroftstatic int ovl_statfs(struct dentry *dentry, struct kstatfs *buf)
cc259639SAndy Whitcroft{
cc259639SAndy Whitcroft	struct ovl_fs *ofs = dentry->d_sb->s_fs_info;
cc259639SAndy Whitcroft	struct dentry *root_dentry = dentry->d_sb->s_root;
cc259639SAndy Whitcroft	struct path path;
cc259639SAndy Whitcroft	int err;
cc259639SAndy Whitcroft
4ebc5818SMiklos Szeredi	ovl_path_real(root_dentry, &path);
cc259639SAndy Whitcroft
cc259639SAndy Whitcroft	err = vfs_statfs(&path, buf);
cc259639SAndy Whitcroft	if (!err) {
6b2d5fe4SMiklos Szeredi		buf->f_namelen = ofs->namelen;
cc259639SAndy Whitcroft		buf->f_type = OVERLAYFS_SUPER_MAGIC;
cc259639SAndy Whitcroft	}
cc259639SAndy Whitcroft
cc259639SAndy Whitcroft	return err;
cc259639SAndy Whitcroft}
cc259639SAndy Whitcroft
02bcd157SAmir Goldstein/* Will this overlay be forced to mount/remount ro? */
ad204488SMiklos Szeredistatic bool ovl_force_readonly(struct ovl_fs *ofs)
02bcd157SAmir Goldstein{
08f4c7c8SMiklos Szeredi	return (!ovl_upper_mnt(ofs) || !ofs->workdir);
02bcd157SAmir Goldstein}
02bcd157SAmir Goldstein
af5f2396SAmir Goldsteinstatic const struct constant_table ovl_parameter_redirect_dir[] = {
af5f2396SAmir Goldstein	{ "off",	OVL_REDIRECT_OFF      },
af5f2396SAmir Goldstein	{ "follow",	OVL_REDIRECT_FOLLOW   },
af5f2396SAmir Goldstein	{ "nofollow",	OVL_REDIRECT_NOFOLLOW },
af5f2396SAmir Goldstein	{ "on",		OVL_REDIRECT_ON       },
af5f2396SAmir Goldstein	{}
af5f2396SAmir Goldstein};
af5f2396SAmir Goldstein
af5f2396SAmir Goldsteinstatic const char *ovl_redirect_mode(struct ovl_config *config)
438c84c2SMiklos Szeredi{
af5f2396SAmir Goldstein	return ovl_parameter_redirect_dir[config->redirect_mode].name;
af5f2396SAmir Goldstein}
af5f2396SAmir Goldstein
af5f2396SAmir Goldsteinstatic int ovl_redirect_mode_def(void)
af5f2396SAmir Goldstein{
af5f2396SAmir Goldstein	return ovl_redirect_dir_def ? OVL_REDIRECT_ON :
af5f2396SAmir Goldstein		ovl_redirect_always_follow ? OVL_REDIRECT_FOLLOW :
af5f2396SAmir Goldstein					     OVL_REDIRECT_NOFOLLOW;
438c84c2SMiklos Szeredi}
438c84c2SMiklos Szeredi
dcb399deSAmir Goldsteinstatic const struct constant_table ovl_parameter_xino[] = {
dcb399deSAmir Goldstein	{ "off",	OVL_XINO_OFF  },
dcb399deSAmir Goldstein	{ "auto",	OVL_XINO_AUTO },
dcb399deSAmir Goldstein	{ "on",		OVL_XINO_ON   },
dcb399deSAmir Goldstein	{}
795939a9SAmir Goldstein};
795939a9SAmir Goldstein
dcb399deSAmir Goldsteinstatic const char *ovl_xino_mode(struct ovl_config *config)
dcb399deSAmir Goldstein{
dcb399deSAmir Goldstein	return ovl_parameter_xino[config->xino].name;
dcb399deSAmir Goldstein}
dcb399deSAmir Goldstein
795939a9SAmir Goldsteinstatic inline int ovl_xino_def(void)
795939a9SAmir Goldstein{
795939a9SAmir Goldstein	return ovl_xino_auto_def ? OVL_XINO_AUTO : OVL_XINO_OFF;
795939a9SAmir Goldstein}
795939a9SAmir Goldstein
f45827e8SErez Zadok/**
f45827e8SErez Zadok * ovl_show_options
9c5dd803SYang Li * @m: the seq_file handle
9c5dd803SYang Li * @dentry: The dentry to query
f45827e8SErez Zadok *
f45827e8SErez Zadok * Prints the mount options for a given superblock.
f45827e8SErez Zadok * Returns zero; does not fail.
f45827e8SErez Zadok */
f45827e8SErez Zadokstatic int ovl_show_options(struct seq_file *m, struct dentry *dentry)
f45827e8SErez Zadok{
f45827e8SErez Zadok	struct super_block *sb = dentry->d_sb;
ad204488SMiklos Szeredi	struct ovl_fs *ofs = sb->s_fs_info;
*b36a5780SChristian Brauner	size_t nr, nr_merged_lower = ofs->numlayer - ofs->numdatalayer;
*b36a5780SChristian Brauner	const struct ovl_layer *data_layers = &ofs->layers[nr_merged_lower];
f45827e8SErez Zadok
*b36a5780SChristian Brauner	/* ofs->layers[0] is the upper layer */
*b36a5780SChristian Brauner	seq_printf(m, ",lowerdir=%s", ofs->layers[1].name);
*b36a5780SChristian Brauner	/* dump regular lower layers */
*b36a5780SChristian Brauner	for (nr = 2; nr < nr_merged_lower; nr++)
*b36a5780SChristian Brauner		seq_printf(m, ":%s", ofs->layers[nr].name);
*b36a5780SChristian Brauner	/* dump data lower layers */
*b36a5780SChristian Brauner	for (nr = 0; nr < ofs->numdatalayer; nr++)
*b36a5780SChristian Brauner		seq_printf(m, "::%s", data_layers[nr].name);
ad204488SMiklos Szeredi	if (ofs->config.upperdir) {
ad204488SMiklos Szeredi		seq_show_option(m, "upperdir", ofs->config.upperdir);
ad204488SMiklos Szeredi		seq_show_option(m, "workdir", ofs->config.workdir);
53a08cb9SMiklos Szeredi	}
ad204488SMiklos Szeredi	if (ofs->config.default_permissions)
8d3095f4SMiklos Szeredi		seq_puts(m, ",default_permissions");
af5f2396SAmir Goldstein	if (ofs->config.redirect_mode != ovl_redirect_mode_def())
af5f2396SAmir Goldstein		seq_printf(m, ",redirect_dir=%s",
af5f2396SAmir Goldstein			   ovl_redirect_mode(&ofs->config));
ad204488SMiklos Szeredi	if (ofs->config.index != ovl_index_def)
438c84c2SMiklos Szeredi		seq_printf(m, ",index=%s", ofs->config.index ? "on" : "off");
5830fb6bSPavel Tikhomirov	if (!ofs->config.uuid)
5830fb6bSPavel Tikhomirov		seq_puts(m, ",uuid=off");
f168f109SAmir Goldstein	if (ofs->config.nfs_export != ovl_nfs_export_def)
f168f109SAmir Goldstein		seq_printf(m, ",nfs_export=%s", ofs->config.nfs_export ?
f168f109SAmir Goldstein						"on" : "off");
dcb399deSAmir Goldstein	if (ofs->config.xino != ovl_xino_def() && !ovl_same_fs(ofs))
dcb399deSAmir Goldstein		seq_printf(m, ",xino=%s", ovl_xino_mode(&ofs->config));
d5791044SVivek Goyal	if (ofs->config.metacopy != ovl_metacopy_def)
d5791044SVivek Goyal		seq_printf(m, ",metacopy=%s",
d5791044SVivek Goyal			   ofs->config.metacopy ? "on" : "off");
c86243b0SVivek Goyal	if (ofs->config.ovl_volatile)
c86243b0SVivek Goyal		seq_puts(m, ",volatile");
321b46b9SGiuseppe Scrivano	if (ofs->config.userxattr)
321b46b9SGiuseppe Scrivano		seq_puts(m, ",userxattr");
f45827e8SErez Zadok	return 0;
f45827e8SErez Zadok}
f45827e8SErez Zadok
1784fbc2SChristian Braunerstatic int ovl_reconfigure(struct fs_context *fc)
3cdf6fe9SSeunghun Lee{
1784fbc2SChristian Brauner	struct super_block *sb = fc->root->d_sb;
ad204488SMiklos Szeredi	struct ovl_fs *ofs = sb->s_fs_info;
399c109dSChengguang Xu	struct super_block *upper_sb;
399c109dSChengguang Xu	int ret = 0;
3cdf6fe9SSeunghun Lee
1784fbc2SChristian Brauner	if (!(fc->sb_flags & SB_RDONLY) && ovl_force_readonly(ofs))
3cdf6fe9SSeunghun Lee		return -EROFS;
3cdf6fe9SSeunghun Lee
1784fbc2SChristian Brauner	if (fc->sb_flags & SB_RDONLY && !sb_rdonly(sb)) {
08f4c7c8SMiklos Szeredi		upper_sb = ovl_upper_mnt(ofs)->mnt_sb;
c86243b0SVivek Goyal		if (ovl_should_sync(ofs)) {
399c109dSChengguang Xu			down_read(&upper_sb->s_umount);
399c109dSChengguang Xu			ret = sync_filesystem(upper_sb);
399c109dSChengguang Xu			up_read(&upper_sb->s_umount);
399c109dSChengguang Xu		}
c86243b0SVivek Goyal	}
399c109dSChengguang Xu
399c109dSChengguang Xu	return ret;
3cdf6fe9SSeunghun Lee}
3cdf6fe9SSeunghun Lee
e9be9d5eSMiklos Szeredistatic const struct super_operations ovl_super_operations = {
13cf199dSAmir Goldstein	.alloc_inode	= ovl_alloc_inode,
0b269dedSAl Viro	.free_inode	= ovl_free_inode,
13cf199dSAmir Goldstein	.destroy_inode	= ovl_destroy_inode,
13cf199dSAmir Goldstein	.drop_inode	= generic_delete_inode,
e9be9d5eSMiklos Szeredi	.put_super	= ovl_put_super,
e593b2bfSAmir Goldstein	.sync_fs	= ovl_sync_fs,
cc259639SAndy Whitcroft	.statfs		= ovl_statfs,
f45827e8SErez Zadok	.show_options	= ovl_show_options,
e9be9d5eSMiklos Szeredi};
e9be9d5eSMiklos Szeredi
e9be9d5eSMiklos Szeredienum {
1784fbc2SChristian Brauner	Opt_lowerdir,
1784fbc2SChristian Brauner	Opt_upperdir,
1784fbc2SChristian Brauner	Opt_workdir,
1784fbc2SChristian Brauner	Opt_default_permissions,
1784fbc2SChristian Brauner	Opt_redirect_dir,
1784fbc2SChristian Brauner	Opt_index,
1784fbc2SChristian Brauner	Opt_uuid,
1784fbc2SChristian Brauner	Opt_nfs_export,
1784fbc2SChristian Brauner	Opt_userxattr,
1784fbc2SChristian Brauner	Opt_xino,
1784fbc2SChristian Brauner	Opt_metacopy,
1784fbc2SChristian Brauner	Opt_volatile,
e9be9d5eSMiklos Szeredi};
e9be9d5eSMiklos Szeredi
1784fbc2SChristian Braunerstatic const struct constant_table ovl_parameter_bool[] = {
1784fbc2SChristian Brauner	{ "on",		true  },
1784fbc2SChristian Brauner	{ "off",	false },
1784fbc2SChristian Brauner	{}
e9be9d5eSMiklos Szeredi};
e9be9d5eSMiklos Szeredi
*b36a5780SChristian Brauner#define fsparam_string_empty(NAME, OPT) \
*b36a5780SChristian Brauner	__fsparam(fs_param_is_string, NAME, OPT, fs_param_can_be_empty, NULL)
*b36a5780SChristian Brauner
1784fbc2SChristian Braunerstatic const struct fs_parameter_spec ovl_parameter_spec[] = {
*b36a5780SChristian Brauner	fsparam_string_empty("lowerdir",    Opt_lowerdir),
1784fbc2SChristian Brauner	fsparam_string("upperdir",          Opt_upperdir),
1784fbc2SChristian Brauner	fsparam_string("workdir",           Opt_workdir),
1784fbc2SChristian Brauner	fsparam_flag("default_permissions", Opt_default_permissions),
1784fbc2SChristian Brauner	fsparam_enum("redirect_dir",        Opt_redirect_dir, ovl_parameter_redirect_dir),
1784fbc2SChristian Brauner	fsparam_enum("index",               Opt_index, ovl_parameter_bool),
1784fbc2SChristian Brauner	fsparam_enum("uuid",                Opt_uuid, ovl_parameter_bool),
1784fbc2SChristian Brauner	fsparam_enum("nfs_export",          Opt_nfs_export, ovl_parameter_bool),
1784fbc2SChristian Brauner	fsparam_flag("userxattr",           Opt_userxattr),
1784fbc2SChristian Brauner	fsparam_enum("xino",                Opt_xino, ovl_parameter_xino),
1784fbc2SChristian Brauner	fsparam_enum("metacopy",            Opt_metacopy, ovl_parameter_bool),
1784fbc2SChristian Brauner	fsparam_flag("volatile",            Opt_volatile),
1784fbc2SChristian Brauner	{}
1784fbc2SChristian Brauner};
91c77947SMiklos Szeredi
1784fbc2SChristian Braunerstatic int ovl_parse_param(struct fs_context *fc, struct fs_parameter *param)
e9be9d5eSMiklos Szeredi{
ac519625SAmir Goldstein	int err = 0;
1784fbc2SChristian Brauner	struct fs_parse_result result;
1784fbc2SChristian Brauner	struct ovl_fs *ofs = fc->s_fs_info;
1784fbc2SChristian Brauner	struct ovl_config *config = &ofs->config;
1784fbc2SChristian Brauner	struct ovl_fs_context *ctx = fc->fs_private;
1784fbc2SChristian Brauner	int opt;
e9be9d5eSMiklos Szeredi
1784fbc2SChristian Brauner	/*
1784fbc2SChristian Brauner	 * On remount overlayfs has always ignored all mount options no
1784fbc2SChristian Brauner	 * matter if malformed or not so for backwards compatibility we
1784fbc2SChristian Brauner	 * do the same here.
1784fbc2SChristian Brauner	 */
1784fbc2SChristian Brauner	if (fc->purpose == FS_CONTEXT_FOR_RECONFIGURE)
ac519625SAmir Goldstein		return 0;
e9be9d5eSMiklos Szeredi
1784fbc2SChristian Brauner	opt = fs_parse(fc, ovl_parameter_spec, param, &result);
1784fbc2SChristian Brauner	if (opt < 0)
1784fbc2SChristian Brauner		return opt;
e9be9d5eSMiklos Szeredi
1784fbc2SChristian Brauner	switch (opt) {
1784fbc2SChristian Brauner	case Opt_lowerdir:
*b36a5780SChristian Brauner		err = ovl_parse_param_lowerdir(param->string, fc);
e9be9d5eSMiklos Szeredi		break;
1784fbc2SChristian Brauner	case Opt_upperdir:
*b36a5780SChristian Brauner		fallthrough;
1784fbc2SChristian Brauner	case Opt_workdir:
*b36a5780SChristian Brauner		err = ovl_parse_param_upperdir(param->string, fc,
*b36a5780SChristian Brauner					       (Opt_workdir == opt));
e9be9d5eSMiklos Szeredi		break;
1784fbc2SChristian Brauner	case Opt_default_permissions:
8d3095f4SMiklos Szeredi		config->default_permissions = true;
8d3095f4SMiklos Szeredi		break;
1784fbc2SChristian Brauner	case Opt_redirect_dir:
1784fbc2SChristian Brauner		config->redirect_mode = result.uint_32;
1784fbc2SChristian Brauner		if (config->redirect_mode == OVL_REDIRECT_OFF) {
af5f2396SAmir Goldstein			config->redirect_mode = ovl_redirect_always_follow ?
af5f2396SAmir Goldstein						OVL_REDIRECT_FOLLOW :
af5f2396SAmir Goldstein						OVL_REDIRECT_NOFOLLOW;
1784fbc2SChristian Brauner		}
1784fbc2SChristian Brauner		ctx->set.redirect = true;
af5f2396SAmir Goldstein		break;
1784fbc2SChristian Brauner	case Opt_index:
1784fbc2SChristian Brauner		config->index = result.uint_32;
1784fbc2SChristian Brauner		ctx->set.index = true;
af5f2396SAmir Goldstein		break;
1784fbc2SChristian Brauner	case Opt_uuid:
1784fbc2SChristian Brauner		config->uuid = result.uint_32;
a6c60655SMiklos Szeredi		break;
1784fbc2SChristian Brauner	case Opt_nfs_export:
1784fbc2SChristian Brauner		config->nfs_export = result.uint_32;
1784fbc2SChristian Brauner		ctx->set.nfs_export = true;
02bcd157SAmir Goldstein		break;
1784fbc2SChristian Brauner	case Opt_xino:
1784fbc2SChristian Brauner		config->xino = result.uint_32;
02bcd157SAmir Goldstein		break;
1784fbc2SChristian Brauner	case Opt_metacopy:
1784fbc2SChristian Brauner		config->metacopy = result.uint_32;
1784fbc2SChristian Brauner		ctx->set.metacopy = true;
5830fb6bSPavel Tikhomirov		break;
1784fbc2SChristian Brauner	case Opt_volatile:
c86243b0SVivek Goyal		config->ovl_volatile = true;
c86243b0SVivek Goyal		break;
1784fbc2SChristian Brauner	case Opt_userxattr:
2d2f2d73SMiklos Szeredi		config->userxattr = true;
2d2f2d73SMiklos Szeredi		break;
e9be9d5eSMiklos Szeredi	default:
1bd0a3aeSlijiazi		pr_err("unrecognized mount option \"%s\" or missing value\n",
1784fbc2SChristian Brauner		       param->key);
e9be9d5eSMiklos Szeredi		return -EINVAL;
e9be9d5eSMiklos Szeredi	}
ac519625SAmir Goldstein
ac519625SAmir Goldstein	return err;
ac519625SAmir Goldstein}
ac519625SAmir Goldstein
1784fbc2SChristian Braunerstatic int ovl_fs_params_verify(const struct ovl_fs_context *ctx,
1784fbc2SChristian Brauner				struct ovl_config *config)
ac519625SAmir Goldstein{
1784fbc2SChristian Brauner	struct ovl_opt_set set = ctx->set;
71cbad7eShujianyang
*b36a5780SChristian Brauner	if (ctx->nr_data > 0 && !config->metacopy) {
*b36a5780SChristian Brauner		pr_err("lower data-only dirs require metacopy support.\n");
*b36a5780SChristian Brauner		return -EINVAL;
*b36a5780SChristian Brauner	}
*b36a5780SChristian Brauner
f0e1266eSAmir Goldstein	/* Workdir/index are useless in non-upper mount */
f0e1266eSAmir Goldstein	if (!config->upperdir) {
f0e1266eSAmir Goldstein		if (config->workdir) {
1bd0a3aeSlijiazi			pr_info("option \"workdir=%s\" is useless in a non-upper mount, ignore\n",
71cbad7eShujianyang				config->workdir);
71cbad7eShujianyang			kfree(config->workdir);
71cbad7eShujianyang			config->workdir = NULL;
71cbad7eShujianyang		}
ac519625SAmir Goldstein		if (config->index && set.index) {
f0e1266eSAmir Goldstein			pr_info("option \"index=on\" is useless in a non-upper mount, ignore\n");
ac519625SAmir Goldstein			set.index = false;
f0e1266eSAmir Goldstein		}
f0e1266eSAmir Goldstein		config->index = false;
f0e1266eSAmir Goldstein	}
71cbad7eShujianyang
c86243b0SVivek Goyal	if (!config->upperdir && config->ovl_volatile) {
c86243b0SVivek Goyal		pr_info("option \"volatile\" is meaningless in a non-upper mount, ignoring it.\n");
c86243b0SVivek Goyal		config->ovl_volatile = false;
c86243b0SVivek Goyal	}
c86243b0SVivek Goyal
d47748e5SMiklos Szeredi	/*
d47748e5SMiklos Szeredi	 * This is to make the logic below simpler.  It doesn't make any other
af5f2396SAmir Goldstein	 * difference, since redirect_dir=on is only used for upper.
d47748e5SMiklos Szeredi	 */
af5f2396SAmir Goldstein	if (!config->upperdir && config->redirect_mode == OVL_REDIRECT_FOLLOW)
af5f2396SAmir Goldstein		config->redirect_mode = OVL_REDIRECT_ON;
d47748e5SMiklos Szeredi
d47748e5SMiklos Szeredi	/* Resolve metacopy -> redirect_dir dependency */
af5f2396SAmir Goldstein	if (config->metacopy && config->redirect_mode != OVL_REDIRECT_ON) {
ac519625SAmir Goldstein		if (set.metacopy && set.redirect) {
1bd0a3aeSlijiazi			pr_err("conflicting options: metacopy=on,redirect_dir=%s\n",
af5f2396SAmir Goldstein			       ovl_redirect_mode(config));
d47748e5SMiklos Szeredi			return -EINVAL;
d47748e5SMiklos Szeredi		}
ac519625SAmir Goldstein		if (set.redirect) {
d47748e5SMiklos Szeredi			/*
d47748e5SMiklos Szeredi			 * There was an explicit redirect_dir=... that resulted
d47748e5SMiklos Szeredi			 * in this conflict.
d47748e5SMiklos Szeredi			 */
1bd0a3aeSlijiazi			pr_info("disabling metacopy due to redirect_dir=%s\n",
af5f2396SAmir Goldstein				ovl_redirect_mode(config));
d5791044SVivek Goyal			config->metacopy = false;
d47748e5SMiklos Szeredi		} else {
d47748e5SMiklos Szeredi			/* Automatically enable redirect otherwise. */
af5f2396SAmir Goldstein			config->redirect_mode = OVL_REDIRECT_ON;
d47748e5SMiklos Szeredi		}
d5791044SVivek Goyal	}
d5791044SVivek Goyal
b0def88dSAmir Goldstein	/* Resolve nfs_export -> index dependency */
b0def88dSAmir Goldstein	if (config->nfs_export && !config->index) {
af5f2396SAmir Goldstein		if (!config->upperdir &&
af5f2396SAmir Goldstein		    config->redirect_mode != OVL_REDIRECT_NOFOLLOW) {
f0e1266eSAmir Goldstein			pr_info("NFS export requires \"redirect_dir=nofollow\" on non-upper mount, falling back to nfs_export=off.\n");
f0e1266eSAmir Goldstein			config->nfs_export = false;
ac519625SAmir Goldstein		} else if (set.nfs_export && set.index) {
b0def88dSAmir Goldstein			pr_err("conflicting options: nfs_export=on,index=off\n");
b0def88dSAmir Goldstein			return -EINVAL;
ac519625SAmir Goldstein		} else if (set.index) {
b0def88dSAmir Goldstein			/*
b0def88dSAmir Goldstein			 * There was an explicit index=off that resulted
b0def88dSAmir Goldstein			 * in this conflict.
b0def88dSAmir Goldstein			 */
b0def88dSAmir Goldstein			pr_info("disabling nfs_export due to index=off\n");
b0def88dSAmir Goldstein			config->nfs_export = false;
b0def88dSAmir Goldstein		} else {
b0def88dSAmir Goldstein			/* Automatically enable index otherwise. */
b0def88dSAmir Goldstein			config->index = true;
b0def88dSAmir Goldstein		}
b0def88dSAmir Goldstein	}
b0def88dSAmir Goldstein
b0def88dSAmir Goldstein	/* Resolve nfs_export -> !metacopy dependency */
b0def88dSAmir Goldstein	if (config->nfs_export && config->metacopy) {
ac519625SAmir Goldstein		if (set.nfs_export && set.metacopy) {
b0def88dSAmir Goldstein			pr_err("conflicting options: nfs_export=on,metacopy=on\n");
b0def88dSAmir Goldstein			return -EINVAL;
b0def88dSAmir Goldstein		}
ac519625SAmir Goldstein		if (set.metacopy) {
b0def88dSAmir Goldstein			/*
b0def88dSAmir Goldstein			 * There was an explicit metacopy=on that resulted
b0def88dSAmir Goldstein			 * in this conflict.
b0def88dSAmir Goldstein			 */
b0def88dSAmir Goldstein			pr_info("disabling nfs_export due to metacopy=on\n");
b0def88dSAmir Goldstein			config->nfs_export = false;
b0def88dSAmir Goldstein		} else {
b0def88dSAmir Goldstein			/*
b0def88dSAmir Goldstein			 * There was an explicit nfs_export=on that resulted
b0def88dSAmir Goldstein			 * in this conflict.
b0def88dSAmir Goldstein			 */
b0def88dSAmir Goldstein			pr_info("disabling metacopy due to nfs_export=on\n");
b0def88dSAmir Goldstein			config->metacopy = false;
b0def88dSAmir Goldstein		}
b0def88dSAmir Goldstein	}
b0def88dSAmir Goldstein
2d2f2d73SMiklos Szeredi
2d2f2d73SMiklos Szeredi	/* Resolve userxattr -> !redirect && !metacopy dependency */
2d2f2d73SMiklos Szeredi	if (config->userxattr) {
ac519625SAmir Goldstein		if (set.redirect &&
af5f2396SAmir Goldstein		    config->redirect_mode != OVL_REDIRECT_NOFOLLOW) {
2d2f2d73SMiklos Szeredi			pr_err("conflicting options: userxattr,redirect_dir=%s\n",
af5f2396SAmir Goldstein			       ovl_redirect_mode(config));
2d2f2d73SMiklos Szeredi			return -EINVAL;
2d2f2d73SMiklos Szeredi		}
ac519625SAmir Goldstein		if (config->metacopy && set.metacopy) {
2d2f2d73SMiklos Szeredi			pr_err("conflicting options: userxattr,metacopy=on\n");
2d2f2d73SMiklos Szeredi			return -EINVAL;
2d2f2d73SMiklos Szeredi		}
2d2f2d73SMiklos Szeredi		/*
2d2f2d73SMiklos Szeredi		 * Silently disable default setting of redirect and metacopy.
2d2f2d73SMiklos Szeredi		 * This shall be the default in the future as well: these
2d2f2d73SMiklos Szeredi		 * options must be explicitly enabled if used together with
2d2f2d73SMiklos Szeredi		 * userxattr.
2d2f2d73SMiklos Szeredi		 */
af5f2396SAmir Goldstein		config->redirect_mode = OVL_REDIRECT_NOFOLLOW;
2d2f2d73SMiklos Szeredi		config->metacopy = false;
2d2f2d73SMiklos Szeredi	}
2d2f2d73SMiklos Szeredi
d5791044SVivek Goyal	return 0;
e9be9d5eSMiklos Szeredi}
e9be9d5eSMiklos Szeredi
e9be9d5eSMiklos Szeredi#define OVL_WORKDIR_NAME "work"
02bcd157SAmir Goldstein#define OVL_INDEXDIR_NAME "index"
e9be9d5eSMiklos Szeredi
ad204488SMiklos Szeredistatic struct dentry *ovl_workdir_create(struct ovl_fs *ofs,
6b8aa129SAmir Goldstein					 const char *name, bool persist)
e9be9d5eSMiklos Szeredi{
ad204488SMiklos Szeredi	struct inode *dir =  ofs->workbasedir->d_inode;
08f4c7c8SMiklos Szeredi	struct vfsmount *mnt = ovl_upper_mnt(ofs);
e9be9d5eSMiklos Szeredi	struct dentry *work;
e9be9d5eSMiklos Szeredi	int err;
e9be9d5eSMiklos Szeredi	bool retried = false;
e9be9d5eSMiklos Szeredi
5955102cSAl Viro	inode_lock_nested(dir, I_MUTEX_PARENT);
e9be9d5eSMiklos Szerediretry:
22f289ceSChristian Brauner	work = ovl_lookup_upper(ofs, name, ofs->workbasedir, strlen(name));
e9be9d5eSMiklos Szeredi
e9be9d5eSMiklos Szeredi	if (!IS_ERR(work)) {
c11b9fddSMiklos Szeredi		struct iattr attr = {
c11b9fddSMiklos Szeredi			.ia_valid = ATTR_MODE,
32a3d848SAl Viro			.ia_mode = S_IFDIR | 0,
c11b9fddSMiklos Szeredi		};
e9be9d5eSMiklos Szeredi
e9be9d5eSMiklos Szeredi		if (work->d_inode) {
e9be9d5eSMiklos Szeredi			err = -EEXIST;
e9be9d5eSMiklos Szeredi			if (retried)
e9be9d5eSMiklos Szeredi				goto out_dput;
e9be9d5eSMiklos Szeredi
6b8aa129SAmir Goldstein			if (persist)
6b8aa129SAmir Goldstein				goto out_unlock;
6b8aa129SAmir Goldstein
e9be9d5eSMiklos Szeredi			retried = true;
576bb263SChristian Brauner			err = ovl_workdir_cleanup(ofs, dir, mnt, work, 0);
e9be9d5eSMiklos Szeredi			dput(work);
235ce9edSAmir Goldstein			if (err == -EINVAL) {
235ce9edSAmir Goldstein				work = ERR_PTR(err);
235ce9edSAmir Goldstein				goto out_unlock;
235ce9edSAmir Goldstein			}
e9be9d5eSMiklos Szeredi			goto retry;
e9be9d5eSMiklos Szeredi		}
e9be9d5eSMiklos Szeredi
576bb263SChristian Brauner		err = ovl_mkdir_real(ofs, dir, &work, attr.ia_mode);
1f5573cfSMiklos Szeredi		if (err)
1f5573cfSMiklos Szeredi			goto out_dput;
1f5573cfSMiklos Szeredi
1f5573cfSMiklos Szeredi		/* Weird filesystem returning with hashed negative (kernfs)? */
1f5573cfSMiklos Szeredi		err = -EINVAL;
1f5573cfSMiklos Szeredi		if (d_really_is_negative(work))
1f5573cfSMiklos Szeredi			goto out_dput;
c11b9fddSMiklos Szeredi
cb348edbSMiklos Szeredi		/*
cb348edbSMiklos Szeredi		 * Try to remove POSIX ACL xattrs from workdir.  We are good if:
cb348edbSMiklos Szeredi		 *
cb348edbSMiklos Szeredi		 * a) success (there was a POSIX ACL xattr and was removed)
cb348edbSMiklos Szeredi		 * b) -ENODATA (there was no POSIX ACL xattr)
cb348edbSMiklos Szeredi		 * c) -EOPNOTSUPP (POSIX ACL xattrs are not supported)
cb348edbSMiklos Szeredi		 *
cb348edbSMiklos Szeredi		 * There are various other error values that could effectively
cb348edbSMiklos Szeredi		 * mean that the xattr doesn't exist (e.g. -ERANGE is returned
cb348edbSMiklos Szeredi		 * if the xattr name is too long), but the set of filesystems
cb348edbSMiklos Szeredi		 * allowed as upper are limited to "normal" ones, where checking
cb348edbSMiklos Szeredi		 * for the above two errors is sufficient.
cb348edbSMiklos Szeredi		 */
31acceb9SChristian Brauner		err = ovl_do_remove_acl(ofs, work, XATTR_NAME_POSIX_ACL_DEFAULT);
e1ff3dd1SMiklos Szeredi		if (err && err != -ENODATA && err != -EOPNOTSUPP)
c11b9fddSMiklos Szeredi			goto out_dput;
c11b9fddSMiklos Szeredi
31acceb9SChristian Brauner		err = ovl_do_remove_acl(ofs, work, XATTR_NAME_POSIX_ACL_ACCESS);
e1ff3dd1SMiklos Szeredi		if (err && err != -ENODATA && err != -EOPNOTSUPP)
c11b9fddSMiklos Szeredi			goto out_dput;
c11b9fddSMiklos Szeredi
c11b9fddSMiklos Szeredi		/* Clear any inherited mode bits */
c11b9fddSMiklos Szeredi		inode_lock(work->d_inode);
a15506eaSChristian Brauner		err = ovl_do_notify_change(ofs, work, &attr);
c11b9fddSMiklos Szeredi		inode_unlock(work->d_inode);
c11b9fddSMiklos Szeredi		if (err)
c11b9fddSMiklos Szeredi			goto out_dput;
6b8aa129SAmir Goldstein	} else {
6b8aa129SAmir Goldstein		err = PTR_ERR(work);
6b8aa129SAmir Goldstein		goto out_err;
e9be9d5eSMiklos Szeredi	}
e9be9d5eSMiklos Szerediout_unlock:
6b8aa129SAmir Goldstein	inode_unlock(dir);
e9be9d5eSMiklos Szeredi	return work;
e9be9d5eSMiklos Szeredi
e9be9d5eSMiklos Szerediout_dput:
e9be9d5eSMiklos Szeredi	dput(work);
6b8aa129SAmir Goldsteinout_err:
1bd0a3aeSlijiazi	pr_warn("failed to create directory %s/%s (errno: %i); mounting read-only\n",
ad204488SMiklos Szeredi		ofs->config.workdir, name, -err);
6b8aa129SAmir Goldstein	work = NULL;
e9be9d5eSMiklos Szeredi	goto out_unlock;
e9be9d5eSMiklos Szeredi}
e9be9d5eSMiklos Szeredi
2d343087SAl Virostatic int ovl_check_namelen(const struct path *path, struct ovl_fs *ofs,
6b2d5fe4SMiklos Szeredi			     const char *name)
6b2d5fe4SMiklos Szeredi{
6b2d5fe4SMiklos Szeredi	struct kstatfs statfs;
6b2d5fe4SMiklos Szeredi	int err = vfs_statfs(path, &statfs);
6b2d5fe4SMiklos Szeredi
6b2d5fe4SMiklos Szeredi	if (err)
1bd0a3aeSlijiazi		pr_err("statfs failed on '%s'\n", name);
6b2d5fe4SMiklos Szeredi	else
6b2d5fe4SMiklos Szeredi		ofs->namelen = max(ofs->namelen, statfs.f_namelen);
6b2d5fe4SMiklos Szeredi
6b2d5fe4SMiklos Szeredi	return err;
6b2d5fe4SMiklos Szeredi}
6b2d5fe4SMiklos Szeredi
6b2d5fe4SMiklos Szeredistatic int ovl_lower_dir(const char *name, struct path *path,
f4288844SMiklos Szeredi			 struct ovl_fs *ofs, int *stack_depth)
ab508822SMiklos Szeredi{
e487d889SAmir Goldstein	int fh_type;
ab508822SMiklos Szeredi	int err;
ab508822SMiklos Szeredi
6b2d5fe4SMiklos Szeredi	err = ovl_check_namelen(path, ofs, name);
6b2d5fe4SMiklos Szeredi	if (err)
b8e42a65SMiklos Szeredi		return err;
6b2d5fe4SMiklos Szeredi
ab508822SMiklos Szeredi	*stack_depth = max(*stack_depth, path->mnt->mnt_sb->s_stack_depth);
ab508822SMiklos Szeredi
02bcd157SAmir Goldstein	/*
f168f109SAmir Goldstein	 * The inodes index feature and NFS export need to encode and decode
f168f109SAmir Goldstein	 * file handles, so they require that all layers support them.
02bcd157SAmir Goldstein	 */
e487d889SAmir Goldstein	fh_type = ovl_can_decode_fh(path->dentry->d_sb);
f168f109SAmir Goldstein	if ((ofs->config.nfs_export ||
e487d889SAmir Goldstein	     (ofs->config.index && ofs->config.upperdir)) && !fh_type) {
02bcd157SAmir Goldstein		ofs->config.index = false;
f168f109SAmir Goldstein		ofs->config.nfs_export = false;
1bd0a3aeSlijiazi		pr_warn("fs on '%s' does not support file handles, falling back to index=off,nfs_export=off.\n",
f168f109SAmir Goldstein			name);
02bcd157SAmir Goldstein	}
b0e0f697SAmir Goldstein	/*
b0e0f697SAmir Goldstein	 * Decoding origin file handle is required for persistent st_ino.
b0e0f697SAmir Goldstein	 * Without persistent st_ino, xino=auto falls back to xino=off.
b0e0f697SAmir Goldstein	 */
b0e0f697SAmir Goldstein	if (ofs->config.xino == OVL_XINO_AUTO &&
b0e0f697SAmir Goldstein	    ofs->config.upperdir && !fh_type) {
b0e0f697SAmir Goldstein		ofs->config.xino = OVL_XINO_OFF;
b0e0f697SAmir Goldstein		pr_warn("fs on '%s' does not support file handles, falling back to xino=off.\n",
b0e0f697SAmir Goldstein			name);
b0e0f697SAmir Goldstein	}
02bcd157SAmir Goldstein
e487d889SAmir Goldstein	/* Check if lower fs has 32bit inode numbers */
e487d889SAmir Goldstein	if (fh_type != FILEID_INO32_GEN)
0f831ec8SAmir Goldstein		ofs->xino_mode = -1;
e487d889SAmir Goldstein
ab508822SMiklos Szeredi	return 0;
ab508822SMiklos Szeredi}
ab508822SMiklos Szeredi
e9be9d5eSMiklos Szeredi/* Workdir should not be subdir of upperdir and vice versa */
e9be9d5eSMiklos Szeredistatic bool ovl_workdir_ok(struct dentry *workdir, struct dentry *upperdir)
e9be9d5eSMiklos Szeredi{
e9be9d5eSMiklos Szeredi	bool ok = false;
e9be9d5eSMiklos Szeredi
e9be9d5eSMiklos Szeredi	if (workdir != upperdir) {
e9be9d5eSMiklos Szeredi		ok = (lock_rename(workdir, upperdir) == NULL);
e9be9d5eSMiklos Szeredi		unlock_rename(workdir, upperdir);
e9be9d5eSMiklos Szeredi	}
e9be9d5eSMiklos Szeredi	return ok;
e9be9d5eSMiklos Szeredi}
e9be9d5eSMiklos Szeredi
0eb45fc3SAndreas Gruenbacherstatic int ovl_own_xattr_get(const struct xattr_handler *handler,
0eb45fc3SAndreas Gruenbacher			     struct dentry *dentry, struct inode *inode,
0eb45fc3SAndreas Gruenbacher			     const char *name, void *buffer, size_t size)
0eb45fc3SAndreas Gruenbacher{
48fab5d7SAmir Goldstein	return -EOPNOTSUPP;
0eb45fc3SAndreas Gruenbacher}
0eb45fc3SAndreas Gruenbacher
d837a49bSMiklos Szeredistatic int ovl_own_xattr_set(const struct xattr_handler *handler,
39f60c1cSChristian Brauner			     struct mnt_idmap *idmap,
d837a49bSMiklos Szeredi			     struct dentry *dentry, struct inode *inode,
d837a49bSMiklos Szeredi			     const char *name, const void *value,
d837a49bSMiklos Szeredi			     size_t size, int flags)
d837a49bSMiklos Szeredi{
48fab5d7SAmir Goldstein	return -EOPNOTSUPP;
d837a49bSMiklos Szeredi}
d837a49bSMiklos Szeredi
0eb45fc3SAndreas Gruenbacherstatic int ovl_other_xattr_get(const struct xattr_handler *handler,
0eb45fc3SAndreas Gruenbacher			       struct dentry *dentry, struct inode *inode,
0eb45fc3SAndreas Gruenbacher			       const char *name, void *buffer, size_t size)
0eb45fc3SAndreas Gruenbacher{
1d88f183SMiklos Szeredi	return ovl_xattr_get(dentry, inode, name, buffer, size);
0eb45fc3SAndreas Gruenbacher}
0eb45fc3SAndreas Gruenbacher
0e585cccSAndreas Gruenbacherstatic int ovl_other_xattr_set(const struct xattr_handler *handler,
39f60c1cSChristian Brauner			       struct mnt_idmap *idmap,
0e585cccSAndreas Gruenbacher			       struct dentry *dentry, struct inode *inode,
0e585cccSAndreas Gruenbacher			       const char *name, const void *value,
0e585cccSAndreas Gruenbacher			       size_t size, int flags)
0e585cccSAndreas Gruenbacher{
1d88f183SMiklos Szeredi	return ovl_xattr_set(dentry, inode, name, value, size, flags);
0e585cccSAndreas Gruenbacher}
0e585cccSAndreas Gruenbacher
2d2f2d73SMiklos Szeredistatic const struct xattr_handler ovl_own_trusted_xattr_handler = {
2d2f2d73SMiklos Szeredi	.prefix	= OVL_XATTR_TRUSTED_PREFIX,
2d2f2d73SMiklos Szeredi	.get = ovl_own_xattr_get,
2d2f2d73SMiklos Szeredi	.set = ovl_own_xattr_set,
2d2f2d73SMiklos Szeredi};
2d2f2d73SMiklos Szeredi
2d2f2d73SMiklos Szeredistatic const struct xattr_handler ovl_own_user_xattr_handler = {
2d2f2d73SMiklos Szeredi	.prefix	= OVL_XATTR_USER_PREFIX,
0eb45fc3SAndreas Gruenbacher	.get = ovl_own_xattr_get,
d837a49bSMiklos Szeredi	.set = ovl_own_xattr_set,
d837a49bSMiklos Szeredi};
d837a49bSMiklos Szeredi
d837a49bSMiklos Szeredistatic const struct xattr_handler ovl_other_xattr_handler = {
d837a49bSMiklos Szeredi	.prefix	= "", /* catch all */
0eb45fc3SAndreas Gruenbacher	.get = ovl_other_xattr_get,
d837a49bSMiklos Szeredi	.set = ovl_other_xattr_set,
d837a49bSMiklos Szeredi};
d837a49bSMiklos Szeredi
2d2f2d73SMiklos Szeredistatic const struct xattr_handler *ovl_trusted_xattr_handlers[] = {
2d2f2d73SMiklos Szeredi	&ovl_own_trusted_xattr_handler,
2d2f2d73SMiklos Szeredi	&ovl_other_xattr_handler,
2d2f2d73SMiklos Szeredi	NULL
2d2f2d73SMiklos Szeredi};
2d2f2d73SMiklos Szeredi
2d2f2d73SMiklos Szeredistatic const struct xattr_handler *ovl_user_xattr_handlers[] = {
2d2f2d73SMiklos Szeredi	&ovl_own_user_xattr_handler,
d837a49bSMiklos Szeredi	&ovl_other_xattr_handler,
d837a49bSMiklos Szeredi	NULL
d837a49bSMiklos Szeredi};
d837a49bSMiklos Szeredi
146d62e5SAmir Goldsteinstatic int ovl_setup_trap(struct super_block *sb, struct dentry *dir,
146d62e5SAmir Goldstein			  struct inode **ptrap, const char *name)
146d62e5SAmir Goldstein{
146d62e5SAmir Goldstein	struct inode *trap;
146d62e5SAmir Goldstein	int err;
146d62e5SAmir Goldstein
146d62e5SAmir Goldstein	trap = ovl_get_trap_inode(sb, dir);
1dac6f5bSArnd Bergmann	err = PTR_ERR_OR_ZERO(trap);
1dac6f5bSArnd Bergmann	if (err) {
146d62e5SAmir Goldstein		if (err == -ELOOP)
1bd0a3aeSlijiazi			pr_err("conflicting %s path\n", name);
146d62e5SAmir Goldstein		return err;
146d62e5SAmir Goldstein	}
146d62e5SAmir Goldstein
146d62e5SAmir Goldstein	*ptrap = trap;
146d62e5SAmir Goldstein	return 0;
146d62e5SAmir Goldstein}
146d62e5SAmir Goldstein
0be0bfd2SAmir Goldstein/*
0be0bfd2SAmir Goldstein * Determine how we treat concurrent use of upperdir/workdir based on the
0be0bfd2SAmir Goldstein * index feature. This is papering over mount leaks of container runtimes,
0be0bfd2SAmir Goldstein * for example, an old overlay mount is leaked and now its upperdir is
0be0bfd2SAmir Goldstein * attempted to be used as a lower layer in a new overlay mount.
0be0bfd2SAmir Goldstein */
0be0bfd2SAmir Goldsteinstatic int ovl_report_in_use(struct ovl_fs *ofs, const char *name)
0be0bfd2SAmir Goldstein{
0be0bfd2SAmir Goldstein	if (ofs->config.index) {
1bd0a3aeSlijiazi		pr_err("%s is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.\n",
0be0bfd2SAmir Goldstein		       name);
0be0bfd2SAmir Goldstein		return -EBUSY;
0be0bfd2SAmir Goldstein	} else {
1bd0a3aeSlijiazi		pr_warn("%s is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.\n",
0be0bfd2SAmir Goldstein			name);
0be0bfd2SAmir Goldstein		return 0;
0be0bfd2SAmir Goldstein	}
0be0bfd2SAmir Goldstein}
0be0bfd2SAmir Goldstein
146d62e5SAmir Goldsteinstatic int ovl_get_upper(struct super_block *sb, struct ovl_fs *ofs,
*b36a5780SChristian Brauner			 struct ovl_layer *upper_layer,
*b36a5780SChristian Brauner			 const struct path *upperpath)
6ee8acf0SMiklos Szeredi{
5064975eSMiklos Szeredi	struct vfsmount *upper_mnt;
6ee8acf0SMiklos Szeredi	int err;
6ee8acf0SMiklos Szeredi
e21a6c57SAmir Goldstein	/* Upperdir path should not be r/o */
e21a6c57SAmir Goldstein	if (__mnt_is_readonly(upperpath->mnt)) {
1bd0a3aeSlijiazi		pr_err("upper fs is r/o, try multi-lower layers mount\n");
6ee8acf0SMiklos Szeredi		err = -EINVAL;
6ee8acf0SMiklos Szeredi		goto out;
6ee8acf0SMiklos Szeredi	}
6ee8acf0SMiklos Szeredi
ad204488SMiklos Szeredi	err = ovl_check_namelen(upperpath, ofs, ofs->config.upperdir);
6ee8acf0SMiklos Szeredi	if (err)
6ee8acf0SMiklos Szeredi		goto out;
6ee8acf0SMiklos Szeredi
b8e42a65SMiklos Szeredi	err = ovl_setup_trap(sb, upperpath->dentry, &upper_layer->trap,
146d62e5SAmir Goldstein			     "upperdir");
146d62e5SAmir Goldstein	if (err)
146d62e5SAmir Goldstein		goto out;
146d62e5SAmir Goldstein
5064975eSMiklos Szeredi	upper_mnt = clone_private_mount(upperpath);
5064975eSMiklos Szeredi	err = PTR_ERR(upper_mnt);
5064975eSMiklos Szeredi	if (IS_ERR(upper_mnt)) {
1bd0a3aeSlijiazi		pr_err("failed to clone upperpath\n");
5064975eSMiklos Szeredi		goto out;
5064975eSMiklos Szeredi	}
5064975eSMiklos Szeredi
5064975eSMiklos Szeredi	/* Don't inherit atime flags */
5064975eSMiklos Szeredi	upper_mnt->mnt_flags &= ~(MNT_NOATIME | MNT_NODIRATIME | MNT_RELATIME);
b8e42a65SMiklos Szeredi	upper_layer->mnt = upper_mnt;
b8e42a65SMiklos Szeredi	upper_layer->idx = 0;
b8e42a65SMiklos Szeredi	upper_layer->fsid = 0;
8c25741aSMiklos Szeredi
*b36a5780SChristian Brauner	err = -ENOMEM;
*b36a5780SChristian Brauner	upper_layer->name = kstrdup(ofs->config.upperdir, GFP_KERNEL);
*b36a5780SChristian Brauner	if (!upper_layer->name)
*b36a5780SChristian Brauner		goto out;
*b36a5780SChristian Brauner
654255faSJeffle Xu	/*
654255faSJeffle Xu	 * Inherit SB_NOSEC flag from upperdir.
654255faSJeffle Xu	 *
654255faSJeffle Xu	 * This optimization changes behavior when a security related attribute
654255faSJeffle Xu	 * (suid/sgid/security.*) is changed on an underlying layer.  This is
654255faSJeffle Xu	 * okay because we don't yet have guarantees in that case, but it will
654255faSJeffle Xu	 * need careful treatment once we want to honour changes to underlying
654255faSJeffle Xu	 * filesystems.
654255faSJeffle Xu	 */
654255faSJeffle Xu	if (upper_mnt->mnt_sb->s_flags & SB_NOSEC)
654255faSJeffle Xu		sb->s_flags |= SB_NOSEC;
654255faSJeffle Xu
08f4c7c8SMiklos Szeredi	if (ovl_inuse_trylock(ovl_upper_mnt(ofs)->mnt_root)) {
8c25741aSMiklos Szeredi		ofs->upperdir_locked = true;
8c25741aSMiklos Szeredi	} else {
0be0bfd2SAmir Goldstein		err = ovl_report_in_use(ofs, "upperdir");
0be0bfd2SAmir Goldstein		if (err)
0be0bfd2SAmir Goldstein			goto out;
8c25741aSMiklos Szeredi	}
8c25741aSMiklos Szeredi
6ee8acf0SMiklos Szeredi	err = 0;
6ee8acf0SMiklos Szerediout:
6ee8acf0SMiklos Szeredi	return err;
6ee8acf0SMiklos Szeredi}
6ee8acf0SMiklos Szeredi
cad218abSAmir Goldstein/*
cad218abSAmir Goldstein * Returns 1 if RENAME_WHITEOUT is supported, 0 if not supported and
cad218abSAmir Goldstein * negative values if error is encountered.
cad218abSAmir Goldstein */
576bb263SChristian Braunerstatic int ovl_check_rename_whiteout(struct ovl_fs *ofs)
cad218abSAmir Goldstein{
576bb263SChristian Brauner	struct dentry *workdir = ofs->workdir;
cad218abSAmir Goldstein	struct inode *dir = d_inode(workdir);
cad218abSAmir Goldstein	struct dentry *temp;
cad218abSAmir Goldstein	struct dentry *dest;
cad218abSAmir Goldstein	struct dentry *whiteout;
cad218abSAmir Goldstein	struct name_snapshot name;
cad218abSAmir Goldstein	int err;
cad218abSAmir Goldstein
cad218abSAmir Goldstein	inode_lock_nested(dir, I_MUTEX_PARENT);
cad218abSAmir Goldstein
576bb263SChristian Brauner	temp = ovl_create_temp(ofs, workdir, OVL_CATTR(S_IFREG | 0));
cad218abSAmir Goldstein	err = PTR_ERR(temp);
cad218abSAmir Goldstein	if (IS_ERR(temp))
cad218abSAmir Goldstein		goto out_unlock;
cad218abSAmir Goldstein
576bb263SChristian Brauner	dest = ovl_lookup_temp(ofs, workdir);
cad218abSAmir Goldstein	err = PTR_ERR(dest);
cad218abSAmir Goldstein	if (IS_ERR(dest)) {
cad218abSAmir Goldstein		dput(temp);
cad218abSAmir Goldstein		goto out_unlock;
cad218abSAmir Goldstein	}
cad218abSAmir Goldstein
cad218abSAmir Goldstein	/* Name is inline and stable - using snapshot as a copy helper */
cad218abSAmir Goldstein	take_dentry_name_snapshot(&name, temp);
576bb263SChristian Brauner	err = ovl_do_rename(ofs, dir, temp, dir, dest, RENAME_WHITEOUT);
cad218abSAmir Goldstein	if (err) {
cad218abSAmir Goldstein		if (err == -EINVAL)
cad218abSAmir Goldstein			err = 0;
cad218abSAmir Goldstein		goto cleanup_temp;
cad218abSAmir Goldstein	}
cad218abSAmir Goldstein
22f289ceSChristian Brauner	whiteout = ovl_lookup_upper(ofs, name.name.name, workdir, name.name.len);
cad218abSAmir Goldstein	err = PTR_ERR(whiteout);
cad218abSAmir Goldstein	if (IS_ERR(whiteout))
cad218abSAmir Goldstein		goto cleanup_temp;
cad218abSAmir Goldstein
cad218abSAmir Goldstein	err = ovl_is_whiteout(whiteout);
cad218abSAmir Goldstein
cad218abSAmir Goldstein	/* Best effort cleanup of whiteout and temp file */
cad218abSAmir Goldstein	if (err)
576bb263SChristian Brauner		ovl_cleanup(ofs, dir, whiteout);
cad218abSAmir Goldstein	dput(whiteout);
cad218abSAmir Goldstein
cad218abSAmir Goldsteincleanup_temp:
576bb263SChristian Brauner	ovl_cleanup(ofs, dir, temp);
cad218abSAmir Goldstein	release_dentry_name_snapshot(&name);
cad218abSAmir Goldstein	dput(temp);
cad218abSAmir Goldstein	dput(dest);
cad218abSAmir Goldstein
cad218abSAmir Goldsteinout_unlock:
cad218abSAmir Goldstein	inode_unlock(dir);
cad218abSAmir Goldstein
cad218abSAmir Goldstein	return err;
cad218abSAmir Goldstein}
cad218abSAmir Goldstein
576bb263SChristian Braunerstatic struct dentry *ovl_lookup_or_create(struct ovl_fs *ofs,
576bb263SChristian Brauner					   struct dentry *parent,
c86243b0SVivek Goyal					   const char *name, umode_t mode)
c86243b0SVivek Goyal{
c86243b0SVivek Goyal	size_t len = strlen(name);
c86243b0SVivek Goyal	struct dentry *child;
c86243b0SVivek Goyal
c86243b0SVivek Goyal	inode_lock_nested(parent->d_inode, I_MUTEX_PARENT);
22f289ceSChristian Brauner	child = ovl_lookup_upper(ofs, name, parent, len);
c86243b0SVivek Goyal	if (!IS_ERR(child) && !child->d_inode)
576bb263SChristian Brauner		child = ovl_create_real(ofs, parent->d_inode, child,
c86243b0SVivek Goyal					OVL_CATTR(mode));
c86243b0SVivek Goyal	inode_unlock(parent->d_inode);
c86243b0SVivek Goyal	dput(parent);
c86243b0SVivek Goyal
c86243b0SVivek Goyal	return child;
c86243b0SVivek Goyal}
c86243b0SVivek Goyal
c86243b0SVivek Goyal/*
c86243b0SVivek Goyal * Creates $workdir/work/incompat/volatile/dirty file if it is not already
c86243b0SVivek Goyal * present.
c86243b0SVivek Goyal */
c86243b0SVivek Goyalstatic int ovl_create_volatile_dirty(struct ovl_fs *ofs)
c86243b0SVivek Goyal{
c86243b0SVivek Goyal	unsigned int ctr;
c86243b0SVivek Goyal	struct dentry *d = dget(ofs->workbasedir);
c86243b0SVivek Goyal	static const char *const volatile_path[] = {
c86243b0SVivek Goyal		OVL_WORKDIR_NAME, "incompat", "volatile", "dirty"
c86243b0SVivek Goyal	};
c86243b0SVivek Goyal	const char *const *name = volatile_path;
c86243b0SVivek Goyal
c86243b0SVivek Goyal	for (ctr = ARRAY_SIZE(volatile_path); ctr; ctr--, name++) {
576bb263SChristian Brauner		d = ovl_lookup_or_create(ofs, d, *name, ctr > 1 ? S_IFDIR : S_IFREG);
c86243b0SVivek Goyal		if (IS_ERR(d))
c86243b0SVivek Goyal			return PTR_ERR(d);
c86243b0SVivek Goyal	}
c86243b0SVivek Goyal	dput(d);
c86243b0SVivek Goyal	return 0;
c86243b0SVivek Goyal}
c86243b0SVivek Goyal
146d62e5SAmir Goldsteinstatic int ovl_make_workdir(struct super_block *sb, struct ovl_fs *ofs,
2d343087SAl Viro			    const struct path *workpath)
8ed61dc3SMiklos Szeredi{
08f4c7c8SMiklos Szeredi	struct vfsmount *mnt = ovl_upper_mnt(ofs);
2b1a7746SMiklos Szeredi	struct dentry *workdir;
2b1a7746SMiklos Szeredi	struct file *tmpfile;
d80172c2SAmir Goldstein	bool rename_whiteout;
d80172c2SAmir Goldstein	bool d_type;
e487d889SAmir Goldstein	int fh_type;
8ed61dc3SMiklos Szeredi	int err;
8ed61dc3SMiklos Szeredi
2ba9d57eSAmir Goldstein	err = mnt_want_write(mnt);
2ba9d57eSAmir Goldstein	if (err)
2ba9d57eSAmir Goldstein		return err;
2ba9d57eSAmir Goldstein
235ce9edSAmir Goldstein	workdir = ovl_workdir_create(ofs, OVL_WORKDIR_NAME, false);
235ce9edSAmir Goldstein	err = PTR_ERR(workdir);
235ce9edSAmir Goldstein	if (IS_ERR_OR_NULL(workdir))
2ba9d57eSAmir Goldstein		goto out;
8ed61dc3SMiklos Szeredi
235ce9edSAmir Goldstein	ofs->workdir = workdir;
235ce9edSAmir Goldstein
146d62e5SAmir Goldstein	err = ovl_setup_trap(sb, ofs->workdir, &ofs->workdir_trap, "workdir");
146d62e5SAmir Goldstein	if (err)
146d62e5SAmir Goldstein		goto out;
146d62e5SAmir Goldstein
8ed61dc3SMiklos Szeredi	/*
8ed61dc3SMiklos Szeredi	 * Upper should support d_type, else whiteouts are visible.  Given
8ed61dc3SMiklos Szeredi	 * workdir and upper are on same fs, we can do iterate_dir() on
8ed61dc3SMiklos Szeredi	 * workdir. This check requires successful creation of workdir in
8ed61dc3SMiklos Szeredi	 * previous step.
8ed61dc3SMiklos Szeredi	 */
8ed61dc3SMiklos Szeredi	err = ovl_check_d_type_supported(workpath);
8ed61dc3SMiklos Szeredi	if (err < 0)
2ba9d57eSAmir Goldstein		goto out;
8ed61dc3SMiklos Szeredi
d80172c2SAmir Goldstein	d_type = err;
d80172c2SAmir Goldstein	if (!d_type)
1bd0a3aeSlijiazi		pr_warn("upper fs needs to support d_type.\n");
8ed61dc3SMiklos Szeredi
8ed61dc3SMiklos Szeredi	/* Check if upper/work fs supports O_TMPFILE */
2b1a7746SMiklos Szeredi	tmpfile = ovl_do_tmpfile(ofs, ofs->workdir, S_IFREG | 0);
2b1a7746SMiklos Szeredi	ofs->tmpfile = !IS_ERR(tmpfile);
ad204488SMiklos Szeredi	if (ofs->tmpfile)
2b1a7746SMiklos Szeredi		fput(tmpfile);
8ed61dc3SMiklos Szeredi	else
1bd0a3aeSlijiazi		pr_warn("upper fs does not support tmpfile.\n");
8ed61dc3SMiklos Szeredi
cad218abSAmir Goldstein
cad218abSAmir Goldstein	/* Check if upper/work fs supports RENAME_WHITEOUT */
576bb263SChristian Brauner	err = ovl_check_rename_whiteout(ofs);
cad218abSAmir Goldstein	if (err < 0)
cad218abSAmir Goldstein		goto out;
cad218abSAmir Goldstein
d80172c2SAmir Goldstein	rename_whiteout = err;
d80172c2SAmir Goldstein	if (!rename_whiteout)
cad218abSAmir Goldstein		pr_warn("upper fs does not support RENAME_WHITEOUT.\n");
cad218abSAmir Goldstein
8ed61dc3SMiklos Szeredi	/*
2d2f2d73SMiklos Szeredi	 * Check if upper/work fs supports (trusted|user).overlay.* xattr
8ed61dc3SMiklos Szeredi	 */
c914c0e2SAmir Goldstein	err = ovl_setxattr(ofs, ofs->workdir, OVL_XATTR_OPAQUE, "0", 1);
8ed61dc3SMiklos Szeredi	if (err) {
b10b85feSMiklos Szeredi		pr_warn("failed to set xattr on upper\n");
ad204488SMiklos Szeredi		ofs->noxattr = true;
af5f2396SAmir Goldstein		if (ovl_redirect_follow(ofs)) {
af5f2396SAmir Goldstein			ofs->config.redirect_mode = OVL_REDIRECT_NOFOLLOW;
af5f2396SAmir Goldstein			pr_warn("...falling back to redirect_dir=nofollow.\n");
af5f2396SAmir Goldstein		}
af5f2396SAmir Goldstein		if (ofs->config.metacopy) {
d5791044SVivek Goyal			ofs->config.metacopy = false;
af5f2396SAmir Goldstein			pr_warn("...falling back to metacopy=off.\n");
af5f2396SAmir Goldstein		}
af5f2396SAmir Goldstein		if (ofs->config.index) {
af5f2396SAmir Goldstein			ofs->config.index = false;
af5f2396SAmir Goldstein			pr_warn("...falling back to index=off.\n");
b0e0f697SAmir Goldstein		}
b0e0f697SAmir Goldstein		/*
b0e0f697SAmir Goldstein		 * xattr support is required for persistent st_ino.
b0e0f697SAmir Goldstein		 * Without persistent st_ino, xino=auto falls back to xino=off.
b0e0f697SAmir Goldstein		 */
b0e0f697SAmir Goldstein		if (ofs->config.xino == OVL_XINO_AUTO) {
b0e0f697SAmir Goldstein			ofs->config.xino = OVL_XINO_OFF;
b10b85feSMiklos Szeredi			pr_warn("...falling back to xino=off.\n");
b0e0f697SAmir Goldstein		}
b10b85feSMiklos Szeredi		if (err == -EPERM && !ofs->config.userxattr)
b10b85feSMiklos Szeredi			pr_info("try mounting with 'userxattr' option\n");
2ba9d57eSAmir Goldstein		err = 0;
8ed61dc3SMiklos Szeredi	} else {
c914c0e2SAmir Goldstein		ovl_removexattr(ofs, ofs->workdir, OVL_XATTR_OPAQUE);
8ed61dc3SMiklos Szeredi	}
8ed61dc3SMiklos Szeredi
d80172c2SAmir Goldstein	/*
d80172c2SAmir Goldstein	 * We allowed sub-optimal upper fs configuration and don't want to break
d80172c2SAmir Goldstein	 * users over kernel upgrade, but we never allowed remote upper fs, so
d80172c2SAmir Goldstein	 * we can enforce strict requirements for remote upper fs.
d80172c2SAmir Goldstein	 */
d80172c2SAmir Goldstein	if (ovl_dentry_remote(ofs->workdir) &&
d80172c2SAmir Goldstein	    (!d_type || !rename_whiteout || ofs->noxattr)) {
d80172c2SAmir Goldstein		pr_err("upper fs missing required features.\n");
d80172c2SAmir Goldstein		err = -EINVAL;
d80172c2SAmir Goldstein		goto out;
d80172c2SAmir Goldstein	}
d80172c2SAmir Goldstein
c86243b0SVivek Goyal	/*
c86243b0SVivek Goyal	 * For volatile mount, create a incompat/volatile/dirty file to keep
c86243b0SVivek Goyal	 * track of it.
c86243b0SVivek Goyal	 */
c86243b0SVivek Goyal	if (ofs->config.ovl_volatile) {
c86243b0SVivek Goyal		err = ovl_create_volatile_dirty(ofs);
c86243b0SVivek Goyal		if (err < 0) {
c86243b0SVivek Goyal			pr_err("Failed to create volatile/dirty file.\n");
c86243b0SVivek Goyal			goto out;
c86243b0SVivek Goyal		}
c86243b0SVivek Goyal	}
c86243b0SVivek Goyal
8ed61dc3SMiklos Szeredi	/* Check if upper/work fs supports file handles */
e487d889SAmir Goldstein	fh_type = ovl_can_decode_fh(ofs->workdir->d_sb);
e487d889SAmir Goldstein	if (ofs->config.index && !fh_type) {
ad204488SMiklos Szeredi		ofs->config.index = false;
1bd0a3aeSlijiazi		pr_warn("upper fs does not support file handles, falling back to index=off.\n");
8ed61dc3SMiklos Szeredi	}
8ed61dc3SMiklos Szeredi
e487d889SAmir Goldstein	/* Check if upper fs has 32bit inode numbers */
e487d889SAmir Goldstein	if (fh_type != FILEID_INO32_GEN)
0f831ec8SAmir Goldstein		ofs->xino_mode = -1;
e487d889SAmir Goldstein
f168f109SAmir Goldstein	/* NFS export of r/w mount depends on index */
f168f109SAmir Goldstein	if (ofs->config.nfs_export && !ofs->config.index) {
1bd0a3aeSlijiazi		pr_warn("NFS export requires \"index=on\", falling back to nfs_export=off.\n");
f168f109SAmir Goldstein		ofs->config.nfs_export = false;
f168f109SAmir Goldstein	}
2ba9d57eSAmir Goldsteinout:
2ba9d57eSAmir Goldstein	mnt_drop_write(mnt);
2ba9d57eSAmir Goldstein	return err;
8ed61dc3SMiklos Szeredi}
8ed61dc3SMiklos Szeredi
146d62e5SAmir Goldsteinstatic int ovl_get_workdir(struct super_block *sb, struct ovl_fs *ofs,
*b36a5780SChristian Brauner			   const struct path *upperpath,
*b36a5780SChristian Brauner			   const struct path *workpath)
520d7c86SMiklos Szeredi{
520d7c86SMiklos Szeredi	int err;
520d7c86SMiklos Szeredi
520d7c86SMiklos Szeredi	err = -EINVAL;
*b36a5780SChristian Brauner	if (upperpath->mnt != workpath->mnt) {
1bd0a3aeSlijiazi		pr_err("workdir and upperdir must reside under the same mount\n");
*b36a5780SChristian Brauner		return err;
520d7c86SMiklos Szeredi	}
*b36a5780SChristian Brauner	if (!ovl_workdir_ok(workpath->dentry, upperpath->dentry)) {
1bd0a3aeSlijiazi		pr_err("workdir and upperdir must be separate subtrees\n");
*b36a5780SChristian Brauner		return err;
520d7c86SMiklos Szeredi	}
520d7c86SMiklos Szeredi
*b36a5780SChristian Brauner	ofs->workbasedir = dget(workpath->dentry);
8c25741aSMiklos Szeredi
8c25741aSMiklos Szeredi	if (ovl_inuse_trylock(ofs->workbasedir)) {
ad204488SMiklos Szeredi		ofs->workdir_locked = true;
520d7c86SMiklos Szeredi	} else {
0be0bfd2SAmir Goldstein		err = ovl_report_in_use(ofs, "workdir");
0be0bfd2SAmir Goldstein		if (err)
*b36a5780SChristian Brauner			return err;
520d7c86SMiklos Szeredi	}
520d7c86SMiklos Szeredi
0be0bfd2SAmir Goldstein	err = ovl_setup_trap(sb, ofs->workbasedir, &ofs->workbasedir_trap,
0be0bfd2SAmir Goldstein			     "workdir");
0be0bfd2SAmir Goldstein	if (err)
520d7c86SMiklos Szeredi		return err;
*b36a5780SChristian Brauner
*b36a5780SChristian Brauner	return ovl_make_workdir(sb, ofs, workpath);
520d7c86SMiklos Szeredi}
520d7c86SMiklos Szeredi
146d62e5SAmir Goldsteinstatic int ovl_get_indexdir(struct super_block *sb, struct ovl_fs *ofs,
2d343087SAl Viro			    struct ovl_entry *oe, const struct path *upperpath)
f7e3a7d9SMiklos Szeredi{
08f4c7c8SMiklos Szeredi	struct vfsmount *mnt = ovl_upper_mnt(ofs);
235ce9edSAmir Goldstein	struct dentry *indexdir;
f7e3a7d9SMiklos Szeredi	int err;
f7e3a7d9SMiklos Szeredi
2ba9d57eSAmir Goldstein	err = mnt_want_write(mnt);
2ba9d57eSAmir Goldstein	if (err)
2ba9d57eSAmir Goldstein		return err;
2ba9d57eSAmir Goldstein
f7e3a7d9SMiklos Szeredi	/* Verify lower root is upper root origin */
610afc0bSMiklos Szeredi	err = ovl_verify_origin(ofs, upperpath->dentry,
5522c9c7SAmir Goldstein				ovl_lowerstack(oe)->dentry, true);
f7e3a7d9SMiklos Szeredi	if (err) {
1bd0a3aeSlijiazi		pr_err("failed to verify upper root origin\n");
f7e3a7d9SMiklos Szeredi		goto out;
f7e3a7d9SMiklos Szeredi	}
f7e3a7d9SMiklos Szeredi
20396365SAmir Goldstein	/* index dir will act also as workdir */
20396365SAmir Goldstein	iput(ofs->workdir_trap);
20396365SAmir Goldstein	ofs->workdir_trap = NULL;
20396365SAmir Goldstein	dput(ofs->workdir);
470c1563SAmir Goldstein	ofs->workdir = NULL;
235ce9edSAmir Goldstein	indexdir = ovl_workdir_create(ofs, OVL_INDEXDIR_NAME, true);
235ce9edSAmir Goldstein	if (IS_ERR(indexdir)) {
235ce9edSAmir Goldstein		err = PTR_ERR(indexdir);
235ce9edSAmir Goldstein	} else if (indexdir) {
235ce9edSAmir Goldstein		ofs->indexdir = indexdir;
235ce9edSAmir Goldstein		ofs->workdir = dget(indexdir);
20396365SAmir Goldstein
146d62e5SAmir Goldstein		err = ovl_setup_trap(sb, ofs->indexdir, &ofs->indexdir_trap,
146d62e5SAmir Goldstein				     "indexdir");
146d62e5SAmir Goldstein		if (err)
146d62e5SAmir Goldstein			goto out;
146d62e5SAmir Goldstein
ad1d615cSAmir Goldstein		/*
ad1d615cSAmir Goldstein		 * Verify upper root is exclusively associated with index dir.
2d2f2d73SMiklos Szeredi		 * Older kernels stored upper fh in ".overlay.origin"
ad1d615cSAmir Goldstein		 * xattr. If that xattr exists, verify that it is a match to
ad1d615cSAmir Goldstein		 * upper dir file handle. In any case, verify or set xattr
2d2f2d73SMiklos Szeredi		 * ".overlay.upper" to indicate that index may have
ad1d615cSAmir Goldstein		 * directory entries.
ad1d615cSAmir Goldstein		 */
610afc0bSMiklos Szeredi		if (ovl_check_origin_xattr(ofs, ofs->indexdir)) {
610afc0bSMiklos Szeredi			err = ovl_verify_set_fh(ofs, ofs->indexdir,
610afc0bSMiklos Szeredi						OVL_XATTR_ORIGIN,
ad1d615cSAmir Goldstein						upperpath->dentry, true, false);
f7e3a7d9SMiklos Szeredi			if (err)
1bd0a3aeSlijiazi				pr_err("failed to verify index dir 'origin' xattr\n");
ad1d615cSAmir Goldstein		}
610afc0bSMiklos Szeredi		err = ovl_verify_upper(ofs, ofs->indexdir, upperpath->dentry,
610afc0bSMiklos Szeredi				       true);
ad1d615cSAmir Goldstein		if (err)
1bd0a3aeSlijiazi			pr_err("failed to verify index dir 'upper' xattr\n");
f7e3a7d9SMiklos Szeredi
f7e3a7d9SMiklos Szeredi		/* Cleanup bad/stale/orphan index entries */
f7e3a7d9SMiklos Szeredi		if (!err)
1eff1a1dSAmir Goldstein			err = ovl_indexdir_cleanup(ofs);
f7e3a7d9SMiklos Szeredi	}
ad204488SMiklos Szeredi	if (err || !ofs->indexdir)
1bd0a3aeSlijiazi		pr_warn("try deleting index dir or mounting with '-o index=off' to disable inodes index.\n");
f7e3a7d9SMiklos Szeredi
f7e3a7d9SMiklos Szerediout:
2ba9d57eSAmir Goldstein	mnt_drop_write(mnt);
f7e3a7d9SMiklos Szeredi	return err;
f7e3a7d9SMiklos Szeredi}
f7e3a7d9SMiklos Szeredi
9df085f3SAmir Goldsteinstatic bool ovl_lower_uuid_ok(struct ovl_fs *ofs, const uuid_t *uuid)
5148626bSAmir Goldstein{
5148626bSAmir Goldstein	unsigned int i;
9df085f3SAmir Goldstein
08f4c7c8SMiklos Szeredi	if (!ofs->config.nfs_export && !ovl_upper_mnt(ofs))
9df085f3SAmir Goldstein		return true;
9df085f3SAmir Goldstein
a888db31SAmir Goldstein	/*
a888db31SAmir Goldstein	 * We allow using single lower with null uuid for index and nfs_export
a888db31SAmir Goldstein	 * for example to support those features with single lower squashfs.
a888db31SAmir Goldstein	 * To avoid regressions in setups of overlay with re-formatted lower
a888db31SAmir Goldstein	 * squashfs, do not allow decoding origin with lower null uuid unless
a888db31SAmir Goldstein	 * user opted-in to one of the new features that require following the
a888db31SAmir Goldstein	 * lower inode of non-dir upper.
a888db31SAmir Goldstein	 */
ca45275cSVyacheslav Yurkov	if (ovl_allow_offline_changes(ofs) && uuid_is_null(uuid))
a888db31SAmir Goldstein		return false;
a888db31SAmir Goldstein
1b81ddddSAmir Goldstein	for (i = 0; i < ofs->numfs; i++) {
9df085f3SAmir Goldstein		/*
9df085f3SAmir Goldstein		 * We use uuid to associate an overlay lower file handle with a
9df085f3SAmir Goldstein		 * lower layer, so we can accept lower fs with null uuid as long
9df085f3SAmir Goldstein		 * as all lower layers with null uuid are on the same fs.
7e63c87fSAmir Goldstein		 * if we detect multiple lower fs with the same uuid, we
7e63c87fSAmir Goldstein		 * disable lower file handle decoding on all of them.
9df085f3SAmir Goldstein		 */
1b81ddddSAmir Goldstein		if (ofs->fs[i].is_lower &&
1b81ddddSAmir Goldstein		    uuid_equal(&ofs->fs[i].sb->s_uuid, uuid)) {
07f1e596SAmir Goldstein			ofs->fs[i].bad_uuid = true;
9df085f3SAmir Goldstein			return false;
9df085f3SAmir Goldstein		}
7e63c87fSAmir Goldstein	}
9df085f3SAmir Goldstein	return true;
9df085f3SAmir Goldstein}
9df085f3SAmir Goldstein
9df085f3SAmir Goldstein/* Get a unique fsid for the layer */
9df085f3SAmir Goldsteinstatic int ovl_get_fsid(struct ovl_fs *ofs, const struct path *path)
9df085f3SAmir Goldstein{
9df085f3SAmir Goldstein	struct super_block *sb = path->mnt->mnt_sb;
9df085f3SAmir Goldstein	unsigned int i;
5148626bSAmir Goldstein	dev_t dev;
5148626bSAmir Goldstein	int err;
7e63c87fSAmir Goldstein	bool bad_uuid = false;
b0e0f697SAmir Goldstein	bool warn = false;
5148626bSAmir Goldstein
07f1e596SAmir Goldstein	for (i = 0; i < ofs->numfs; i++) {
07f1e596SAmir Goldstein		if (ofs->fs[i].sb == sb)
07f1e596SAmir Goldstein			return i;
5148626bSAmir Goldstein	}
5148626bSAmir Goldstein
9df085f3SAmir Goldstein	if (!ovl_lower_uuid_ok(ofs, &sb->s_uuid)) {
7e63c87fSAmir Goldstein		bad_uuid = true;
b0e0f697SAmir Goldstein		if (ofs->config.xino == OVL_XINO_AUTO) {
b0e0f697SAmir Goldstein			ofs->config.xino = OVL_XINO_OFF;
b0e0f697SAmir Goldstein			warn = true;
b0e0f697SAmir Goldstein		}
7e63c87fSAmir Goldstein		if (ofs->config.index || ofs->config.nfs_export) {
9df085f3SAmir Goldstein			ofs->config.index = false;
9df085f3SAmir Goldstein			ofs->config.nfs_export = false;
b0e0f697SAmir Goldstein			warn = true;
b0e0f697SAmir Goldstein		}
b0e0f697SAmir Goldstein		if (warn) {
b0e0f697SAmir Goldstein			pr_warn("%s uuid detected in lower fs '%pd2', falling back to xino=%s,index=off,nfs_export=off.\n",
7e63c87fSAmir Goldstein				uuid_is_null(&sb->s_uuid) ? "null" :
7e63c87fSAmir Goldstein							    "conflicting",
dcb399deSAmir Goldstein				path->dentry, ovl_xino_mode(&ofs->config));
9df085f3SAmir Goldstein		}
7e63c87fSAmir Goldstein	}
9df085f3SAmir Goldstein
5148626bSAmir Goldstein	err = get_anon_bdev(&dev);
5148626bSAmir Goldstein	if (err) {
1bd0a3aeSlijiazi		pr_err("failed to get anonymous bdev for lowerpath\n");
5148626bSAmir Goldstein		return err;
5148626bSAmir Goldstein	}
5148626bSAmir Goldstein
07f1e596SAmir Goldstein	ofs->fs[ofs->numfs].sb = sb;
07f1e596SAmir Goldstein	ofs->fs[ofs->numfs].pseudo_dev = dev;
07f1e596SAmir Goldstein	ofs->fs[ofs->numfs].bad_uuid = bad_uuid;
5148626bSAmir Goldstein
07f1e596SAmir Goldstein	return ofs->numfs++;
5148626bSAmir Goldstein}
5148626bSAmir Goldstein
37ebf056SAmir Goldstein/*
37ebf056SAmir Goldstein * The fsid after the last lower fsid is used for the data layers.
37ebf056SAmir Goldstein * It is a "null fs" with a null sb, null uuid, and no pseudo dev.
37ebf056SAmir Goldstein */
37ebf056SAmir Goldsteinstatic int ovl_get_data_fsid(struct ovl_fs *ofs)
37ebf056SAmir Goldstein{
37ebf056SAmir Goldstein	return ofs->numfs;
37ebf056SAmir Goldstein}
37ebf056SAmir Goldstein
37ebf056SAmir Goldstein
94375f9dSAmir Goldsteinstatic int ovl_get_layers(struct super_block *sb, struct ovl_fs *ofs,
*b36a5780SChristian Brauner			  struct ovl_fs_context *ctx, struct ovl_layer *layers)
520d7c86SMiklos Szeredi{
520d7c86SMiklos Szeredi	int err;
520d7c86SMiklos Szeredi	unsigned int i;
*b36a5780SChristian Brauner	size_t nr_merged_lower;
520d7c86SMiklos Szeredi
*b36a5780SChristian Brauner	ofs->fs = kcalloc(ctx->nr + 2, sizeof(struct ovl_sb), GFP_KERNEL);
07f1e596SAmir Goldstein	if (ofs->fs == NULL)
9e88f905SAmir Goldstein		return -ENOMEM;
5148626bSAmir Goldstein
37ebf056SAmir Goldstein	/*
37ebf056SAmir Goldstein	 * idx/fsid 0 are reserved for upper fs even with lower only overlay
37ebf056SAmir Goldstein	 * and the last fsid is reserved for "null fs" of the data layers.
37ebf056SAmir Goldstein	 */
07f1e596SAmir Goldstein	ofs->numfs++;
07f1e596SAmir Goldstein
07f1e596SAmir Goldstein	/*
b7bf9908SAmir Goldstein	 * All lower layers that share the same fs as upper layer, use the same
b7bf9908SAmir Goldstein	 * pseudo_dev as upper layer.  Allocate fs[0].pseudo_dev even for lower
b7bf9908SAmir Goldstein	 * only overlay to simplify ovl_fs_free().
1b81ddddSAmir Goldstein	 * is_lower will be set if upper fs is shared with a lower layer.
07f1e596SAmir Goldstein	 */
b7bf9908SAmir Goldstein	err = get_anon_bdev(&ofs->fs[0].pseudo_dev);
b7bf9908SAmir Goldstein	if (err) {
b7bf9908SAmir Goldstein		pr_err("failed to get anonymous bdev for upper fs\n");
9e88f905SAmir Goldstein		return err;
b7bf9908SAmir Goldstein	}
b7bf9908SAmir Goldstein
08f4c7c8SMiklos Szeredi	if (ovl_upper_mnt(ofs)) {
08f4c7c8SMiklos Szeredi		ofs->fs[0].sb = ovl_upper_mnt(ofs)->mnt_sb;
1b81ddddSAmir Goldstein		ofs->fs[0].is_lower = false;
07f1e596SAmir Goldstein	}
07f1e596SAmir Goldstein
*b36a5780SChristian Brauner	nr_merged_lower = ctx->nr - ctx->nr_data;
*b36a5780SChristian Brauner	for (i = 0; i < ctx->nr; i++) {
*b36a5780SChristian Brauner		struct ovl_fs_context_layer *l = &ctx->lower[i];
520d7c86SMiklos Szeredi		struct vfsmount *mnt;
146d62e5SAmir Goldstein		struct inode *trap;
5148626bSAmir Goldstein		int fsid;
520d7c86SMiklos Szeredi
*b36a5780SChristian Brauner		if (i < nr_merged_lower)
*b36a5780SChristian Brauner			fsid = ovl_get_fsid(ofs, &l->path);
37ebf056SAmir Goldstein		else
37ebf056SAmir Goldstein			fsid = ovl_get_data_fsid(ofs);
9e88f905SAmir Goldstein		if (fsid < 0)
9e88f905SAmir Goldstein			return fsid;
520d7c86SMiklos Szeredi
24f14009Syoungjun		/*
24f14009Syoungjun		 * Check if lower root conflicts with this overlay layers before
24f14009Syoungjun		 * checking if it is in-use as upperdir/workdir of "another"
24f14009Syoungjun		 * mount, because we do not bother to check in ovl_is_inuse() if
24f14009Syoungjun		 * the upperdir/workdir is in fact in-use by our
24f14009Syoungjun		 * upperdir/workdir.
24f14009Syoungjun		 */
*b36a5780SChristian Brauner		err = ovl_setup_trap(sb, l->path.dentry, &trap, "lowerdir");
146d62e5SAmir Goldstein		if (err)
9e88f905SAmir Goldstein			return err;
146d62e5SAmir Goldstein
*b36a5780SChristian Brauner		if (ovl_is_inuse(l->path.dentry)) {
0be0bfd2SAmir Goldstein			err = ovl_report_in_use(ofs, "lowerdir");
24f14009Syoungjun			if (err) {
24f14009Syoungjun				iput(trap);
9e88f905SAmir Goldstein				return err;
0be0bfd2SAmir Goldstein			}
24f14009Syoungjun		}
0be0bfd2SAmir Goldstein
*b36a5780SChristian Brauner		mnt = clone_private_mount(&l->path);
520d7c86SMiklos Szeredi		err = PTR_ERR(mnt);
520d7c86SMiklos Szeredi		if (IS_ERR(mnt)) {
1bd0a3aeSlijiazi			pr_err("failed to clone lowerpath\n");
146d62e5SAmir Goldstein			iput(trap);
9e88f905SAmir Goldstein			return err;
520d7c86SMiklos Szeredi		}
5148626bSAmir Goldstein
520d7c86SMiklos Szeredi		/*
520d7c86SMiklos Szeredi		 * Make lower layers R/O.  That way fchmod/fchown on lower file
520d7c86SMiklos Szeredi		 * will fail instead of modifying lower fs.
520d7c86SMiklos Szeredi		 */
520d7c86SMiklos Szeredi		mnt->mnt_flags |= MNT_READONLY | MNT_NOATIME;
520d7c86SMiklos Szeredi
13464165SMiklos Szeredi		layers[ofs->numlayer].trap = trap;
13464165SMiklos Szeredi		layers[ofs->numlayer].mnt = mnt;
13464165SMiklos Szeredi		layers[ofs->numlayer].idx = ofs->numlayer;
13464165SMiklos Szeredi		layers[ofs->numlayer].fsid = fsid;
13464165SMiklos Szeredi		layers[ofs->numlayer].fs = &ofs->fs[fsid];
*b36a5780SChristian Brauner		layers[ofs->numlayer].name = l->name;
*b36a5780SChristian Brauner		l->name = NULL;
94375f9dSAmir Goldstein		ofs->numlayer++;
1b81ddddSAmir Goldstein		ofs->fs[fsid].is_lower = true;
520d7c86SMiklos Szeredi	}
e487d889SAmir Goldstein
795939a9SAmir Goldstein	/*
795939a9SAmir Goldstein	 * When all layers on same fs, overlay can use real inode numbers.
926e94d7SAmir Goldstein	 * With mount option "xino=<on|auto>", mounter declares that there are
926e94d7SAmir Goldstein	 * enough free high bits in underlying fs to hold the unique fsid.
795939a9SAmir Goldstein	 * If overlayfs does encounter underlying inodes using the high xino
795939a9SAmir Goldstein	 * bits reserved for fsid, it emits a warning and uses the original
dfe51d47SAmir Goldstein	 * inode number or a non persistent inode number allocated from a
dfe51d47SAmir Goldstein	 * dedicated range.
795939a9SAmir Goldstein	 */
08f4c7c8SMiklos Szeredi	if (ofs->numfs - !ovl_upper_mnt(ofs) == 1) {
0f831ec8SAmir Goldstein		if (ofs->config.xino == OVL_XINO_ON)
0f831ec8SAmir Goldstein			pr_info("\"xino=on\" is useless with all layers on same fs, ignore.\n");
0f831ec8SAmir Goldstein		ofs->xino_mode = 0;
53afcd31SAmir Goldstein	} else if (ofs->config.xino == OVL_XINO_OFF) {
53afcd31SAmir Goldstein		ofs->xino_mode = -1;
926e94d7SAmir Goldstein	} else if (ofs->xino_mode < 0) {
795939a9SAmir Goldstein		/*
07f1e596SAmir Goldstein		 * This is a roundup of number of bits needed for encoding
dfe51d47SAmir Goldstein		 * fsid, where fsid 0 is reserved for upper fs (even with
dfe51d47SAmir Goldstein		 * lower only overlay) +1 extra bit is reserved for the non
dfe51d47SAmir Goldstein		 * persistent inode number range that is used for resolving
dfe51d47SAmir Goldstein		 * xino lower bits overflow.
795939a9SAmir Goldstein		 */
dfe51d47SAmir Goldstein		BUILD_BUG_ON(ilog2(OVL_MAX_STACK) > 30);
dfe51d47SAmir Goldstein		ofs->xino_mode = ilog2(ofs->numfs - 1) + 2;
795939a9SAmir Goldstein	}
795939a9SAmir Goldstein
0f831ec8SAmir Goldstein	if (ofs->xino_mode > 0) {
1bd0a3aeSlijiazi		pr_info("\"xino\" feature enabled using %d upper inode bits.\n",
0f831ec8SAmir Goldstein			ofs->xino_mode);
795939a9SAmir Goldstein	}
e487d889SAmir Goldstein
9e88f905SAmir Goldstein	return 0;
520d7c86SMiklos Szeredi}
520d7c86SMiklos Szeredi
4155c10aSMiklos Szeredistatic struct ovl_entry *ovl_get_lowerstack(struct super_block *sb,
*b36a5780SChristian Brauner					    struct ovl_fs_context *ctx,
*b36a5780SChristian Brauner					    struct ovl_fs *ofs,
*b36a5780SChristian Brauner					    struct ovl_layer *layers)
53dbb0b4SMiklos Szeredi{
53dbb0b4SMiklos Szeredi	int err;
b8e42a65SMiklos Szeredi	unsigned int i;
*b36a5780SChristian Brauner	size_t nr_merged_lower;
4155c10aSMiklos Szeredi	struct ovl_entry *oe;
*b36a5780SChristian Brauner	struct ovl_path *lowerstack;
53dbb0b4SMiklos Szeredi
*b36a5780SChristian Brauner	struct ovl_fs_context_layer *l;
*b36a5780SChristian Brauner
*b36a5780SChristian Brauner	if (!ofs->config.upperdir && ctx->nr == 1) {
1bd0a3aeSlijiazi		pr_err("at least 2 lowerdir are needed while upperdir nonexistent\n");
b8e42a65SMiklos Szeredi		return ERR_PTR(-EINVAL);
53dbb0b4SMiklos Szeredi	}
53dbb0b4SMiklos Szeredi
37ebf056SAmir Goldstein	err = -EINVAL;
*b36a5780SChristian Brauner	for (i = 0; i < ctx->nr; i++) {
*b36a5780SChristian Brauner		l = &ctx->lower[i];
37ebf056SAmir Goldstein
*b36a5780SChristian Brauner		err = ovl_lower_dir(l->name, &l->path, ofs, &sb->s_stack_depth);
*b36a5780SChristian Brauner		if (err)
*b36a5780SChristian Brauner			return ERR_PTR(err);
53dbb0b4SMiklos Szeredi	}
53dbb0b4SMiklos Szeredi
53dbb0b4SMiklos Szeredi	err = -EINVAL;
53dbb0b4SMiklos Szeredi	sb->s_stack_depth++;
53dbb0b4SMiklos Szeredi	if (sb->s_stack_depth > FILESYSTEM_MAX_STACK_DEPTH) {
1bd0a3aeSlijiazi		pr_err("maximum fs stacking depth exceeded\n");
*b36a5780SChristian Brauner		return ERR_PTR(err);
53dbb0b4SMiklos Szeredi	}
53dbb0b4SMiklos Szeredi
*b36a5780SChristian Brauner	err = ovl_get_layers(sb, ofs, ctx, layers);
4155c10aSMiklos Szeredi	if (err)
*b36a5780SChristian Brauner		return ERR_PTR(err);
4155c10aSMiklos Szeredi
4155c10aSMiklos Szeredi	err = -ENOMEM;
37ebf056SAmir Goldstein	/* Data-only layers are not merged in root directory */
*b36a5780SChristian Brauner	nr_merged_lower = ctx->nr - ctx->nr_data;
*b36a5780SChristian Brauner	oe = ovl_alloc_entry(nr_merged_lower);
4155c10aSMiklos Szeredi	if (!oe)
*b36a5780SChristian Brauner		return ERR_PTR(err);
4155c10aSMiklos Szeredi
5522c9c7SAmir Goldstein	lowerstack = ovl_lowerstack(oe);
*b36a5780SChristian Brauner	for (i = 0; i < nr_merged_lower; i++) {
*b36a5780SChristian Brauner		l = &ctx->lower[i];
*b36a5780SChristian Brauner		lowerstack[i].dentry = dget(l->path.dentry);
5522c9c7SAmir Goldstein		lowerstack[i].layer = &ofs->layers[i + 1];
4155c10aSMiklos Szeredi	}
*b36a5780SChristian Brauner	ofs->numdatalayer = ctx->nr_data;
4155c10aSMiklos Szeredi
4155c10aSMiklos Szeredi	return oe;
53dbb0b4SMiklos Szeredi}
53dbb0b4SMiklos Szeredi
146d62e5SAmir Goldstein/*
146d62e5SAmir Goldstein * Check if this layer root is a descendant of:
146d62e5SAmir Goldstein * - another layer of this overlayfs instance
146d62e5SAmir Goldstein * - upper/work dir of any overlayfs instance
146d62e5SAmir Goldstein */
0be0bfd2SAmir Goldsteinstatic int ovl_check_layer(struct super_block *sb, struct ovl_fs *ofs,
708fa015SMiklos Szeredi			   struct dentry *dentry, const char *name,
708fa015SMiklos Szeredi			   bool is_lower)
146d62e5SAmir Goldstein{
9179c21dSMiklos Szeredi	struct dentry *next = dentry, *parent;
146d62e5SAmir Goldstein	int err = 0;
146d62e5SAmir Goldstein
9179c21dSMiklos Szeredi	if (!dentry)
146d62e5SAmir Goldstein		return 0;
146d62e5SAmir Goldstein
146d62e5SAmir Goldstein	parent = dget_parent(next);
9179c21dSMiklos Szeredi
9179c21dSMiklos Szeredi	/* Walk back ancestors to root (inclusive) looking for traps */
9179c21dSMiklos Szeredi	while (!err && parent != next) {
708fa015SMiklos Szeredi		if (is_lower && ovl_lookup_trap_inode(sb, parent)) {
146d62e5SAmir Goldstein			err = -ELOOP;
1bd0a3aeSlijiazi			pr_err("overlapping %s path\n", name);
0be0bfd2SAmir Goldstein		} else if (ovl_is_inuse(parent)) {
0be0bfd2SAmir Goldstein			err = ovl_report_in_use(ofs, name);
146d62e5SAmir Goldstein		}
146d62e5SAmir Goldstein		next = parent;
9179c21dSMiklos Szeredi		parent = dget_parent(next);
9179c21dSMiklos Szeredi		dput(next);
146d62e5SAmir Goldstein	}
146d62e5SAmir Goldstein
9179c21dSMiklos Szeredi	dput(parent);
146d62e5SAmir Goldstein
146d62e5SAmir Goldstein	return err;
146d62e5SAmir Goldstein}
146d62e5SAmir Goldstein
146d62e5SAmir Goldstein/*
146d62e5SAmir Goldstein * Check if any of the layers or work dirs overlap.
146d62e5SAmir Goldstein */
146d62e5SAmir Goldsteinstatic int ovl_check_overlapping_layers(struct super_block *sb,
146d62e5SAmir Goldstein					struct ovl_fs *ofs)
146d62e5SAmir Goldstein{
146d62e5SAmir Goldstein	int i, err;
146d62e5SAmir Goldstein
08f4c7c8SMiklos Szeredi	if (ovl_upper_mnt(ofs)) {
08f4c7c8SMiklos Szeredi		err = ovl_check_layer(sb, ofs, ovl_upper_mnt(ofs)->mnt_root,
708fa015SMiklos Szeredi				      "upperdir", false);
146d62e5SAmir Goldstein		if (err)
146d62e5SAmir Goldstein			return err;
146d62e5SAmir Goldstein
146d62e5SAmir Goldstein		/*
146d62e5SAmir Goldstein		 * Checking workbasedir avoids hitting ovl_is_inuse(parent) of
146d62e5SAmir Goldstein		 * this instance and covers overlapping work and index dirs,
146d62e5SAmir Goldstein		 * unless work or index dir have been moved since created inside
146d62e5SAmir Goldstein		 * workbasedir.  In that case, we already have their traps in
146d62e5SAmir Goldstein		 * inode cache and we will catch that case on lookup.
146d62e5SAmir Goldstein		 */
708fa015SMiklos Szeredi		err = ovl_check_layer(sb, ofs, ofs->workbasedir, "workdir",
708fa015SMiklos Szeredi				      false);
146d62e5SAmir Goldstein		if (err)
146d62e5SAmir Goldstein			return err;
146d62e5SAmir Goldstein	}
146d62e5SAmir Goldstein
94375f9dSAmir Goldstein	for (i = 1; i < ofs->numlayer; i++) {
0be0bfd2SAmir Goldstein		err = ovl_check_layer(sb, ofs,
94375f9dSAmir Goldstein				      ofs->layers[i].mnt->mnt_root,
708fa015SMiklos Szeredi				      "lowerdir", true);
146d62e5SAmir Goldstein		if (err)
146d62e5SAmir Goldstein			return err;
146d62e5SAmir Goldstein	}
146d62e5SAmir Goldstein
146d62e5SAmir Goldstein	return 0;
146d62e5SAmir Goldstein}
146d62e5SAmir Goldstein
2effc5c2SAmir Goldsteinstatic struct dentry *ovl_get_root(struct super_block *sb,
2effc5c2SAmir Goldstein				   struct dentry *upperdentry,
2effc5c2SAmir Goldstein				   struct ovl_entry *oe)
2effc5c2SAmir Goldstein{
2effc5c2SAmir Goldstein	struct dentry *root;
5522c9c7SAmir Goldstein	struct ovl_path *lowerpath = ovl_lowerstack(oe);
62c832edSAmir Goldstein	unsigned long ino = d_inode(lowerpath->dentry)->i_ino;
62c832edSAmir Goldstein	int fsid = lowerpath->layer->fsid;
62c832edSAmir Goldstein	struct ovl_inode_params oip = {
62c832edSAmir Goldstein		.upperdentry = upperdentry,
0af950f5SAmir Goldstein		.oe = oe,
62c832edSAmir Goldstein	};
2effc5c2SAmir Goldstein
2effc5c2SAmir Goldstein	root = d_make_root(ovl_new_inode(sb, S_IFDIR, 0));
2effc5c2SAmir Goldstein	if (!root)
2effc5c2SAmir Goldstein		return NULL;
2effc5c2SAmir Goldstein
2effc5c2SAmir Goldstein	if (upperdentry) {
62c832edSAmir Goldstein		/* Root inode uses upper st_ino/i_ino */
62c832edSAmir Goldstein		ino = d_inode(upperdentry)->i_ino;
62c832edSAmir Goldstein		fsid = 0;
2effc5c2SAmir Goldstein		ovl_dentry_set_upper_alias(root);
610afc0bSMiklos Szeredi		if (ovl_is_impuredir(sb, upperdentry))
2effc5c2SAmir Goldstein			ovl_set_flag(OVL_IMPURE, d_inode(root));
2effc5c2SAmir Goldstein	}
2effc5c2SAmir Goldstein
2effc5c2SAmir Goldstein	/* Root is always merge -> can have whiteouts */
2effc5c2SAmir Goldstein	ovl_set_flag(OVL_WHITEOUTS, d_inode(root));
2effc5c2SAmir Goldstein	ovl_dentry_set_flag(OVL_E_CONNECTED, root);
2effc5c2SAmir Goldstein	ovl_set_upperdata(d_inode(root));
62c832edSAmir Goldstein	ovl_inode_init(d_inode(root), &oip, ino, fsid);
0af950f5SAmir Goldstein	ovl_dentry_init_flags(root, upperdentry, oe, DCACHE_OP_WEAK_REVALIDATE);
367d002dSAmir Goldstein	/* root keeps a reference of upperdentry */
367d002dSAmir Goldstein	dget(upperdentry);
2effc5c2SAmir Goldstein
2effc5c2SAmir Goldstein	return root;
2effc5c2SAmir Goldstein}
2effc5c2SAmir Goldstein
1784fbc2SChristian Braunerstatic int ovl_fill_super(struct super_block *sb, struct fs_context *fc)
e9be9d5eSMiklos Szeredi{
1784fbc2SChristian Brauner	struct ovl_fs *ofs = sb->s_fs_info;
1784fbc2SChristian Brauner	struct ovl_fs_context *ctx = fc->fs_private;
e9be9d5eSMiklos Szeredi	struct dentry *root_dentry;
4155c10aSMiklos Szeredi	struct ovl_entry *oe;
b8e42a65SMiklos Szeredi	struct ovl_layer *layers;
51f8f3c4SKonstantin Khlebnikov	struct cred *cred;
e9be9d5eSMiklos Szeredi	int err;
e9be9d5eSMiklos Szeredi
9efb069dSMiklos Szeredi	err = -EIO;
1784fbc2SChristian Brauner	if (WARN_ON(fc->user_ns != current_user_ns()))
1784fbc2SChristian Brauner		goto out_err;
9efb069dSMiklos Szeredi
f4288844SMiklos Szeredi	sb->s_d_op = &ovl_dentry_operations;
f4288844SMiklos Szeredi
f45827e8SErez Zadok	err = -ENOMEM;
ad204488SMiklos Szeredi	ofs->creator_cred = cred = prepare_creds();
c6fe6254SMiklos Szeredi	if (!cred)
c6fe6254SMiklos Szeredi		goto out_err;
c6fe6254SMiklos Szeredi
1784fbc2SChristian Brauner	err = ovl_fs_params_verify(ctx, &ofs->config);
f45827e8SErez Zadok	if (err)
a9075cdbSMiklos Szeredi		goto out_err;
f45827e8SErez Zadok
e9be9d5eSMiklos Szeredi	err = -EINVAL;
*b36a5780SChristian Brauner	if (ctx->nr == 0) {
1784fbc2SChristian Brauner		if (!(fc->sb_flags & SB_SILENT))
1bd0a3aeSlijiazi			pr_err("missing 'lowerdir'\n");
a9075cdbSMiklos Szeredi		goto out_err;
53a08cb9SMiklos Szeredi	}
53a08cb9SMiklos Szeredi
b8e42a65SMiklos Szeredi	err = -ENOMEM;
*b36a5780SChristian Brauner	layers = kcalloc(ctx->nr + 1, sizeof(struct ovl_layer), GFP_KERNEL);
b8e42a65SMiklos Szeredi	if (!layers)
b8e42a65SMiklos Szeredi		goto out_err;
b8e42a65SMiklos Szeredi
b8e42a65SMiklos Szeredi	ofs->layers = layers;
b8e42a65SMiklos Szeredi	/* Layer 0 is reserved for upper even if there's no upper */
b8e42a65SMiklos Szeredi	ofs->numlayer = 1;
b8e42a65SMiklos Szeredi
53a08cb9SMiklos Szeredi	sb->s_stack_depth = 0;
cf9a6784SMiklos Szeredi	sb->s_maxbytes = MAX_LFS_FILESIZE;
4d314f78SAmir Goldstein	atomic_long_set(&ofs->last_ino, 1);
4f119628SWilliam Dean	/* Assume underlying fs uses 32bit inodes unless proven otherwise */
53afcd31SAmir Goldstein	if (ofs->config.xino != OVL_XINO_OFF) {
0f831ec8SAmir Goldstein		ofs->xino_mode = BITS_PER_LONG - 32;
53afcd31SAmir Goldstein		if (!ofs->xino_mode) {
53afcd31SAmir Goldstein			pr_warn("xino not supported on 32bit kernel, falling back to xino=off.\n");
53afcd31SAmir Goldstein			ofs->config.xino = OVL_XINO_OFF;
53afcd31SAmir Goldstein		}
53afcd31SAmir Goldstein	}
795939a9SAmir Goldstein
146d62e5SAmir Goldstein	/* alloc/destroy_inode needed for setting up traps in inode cache */
146d62e5SAmir Goldstein	sb->s_op = &ovl_super_operations;
146d62e5SAmir Goldstein
ad204488SMiklos Szeredi	if (ofs->config.upperdir) {
335d3fc5SSargun Dhillon		struct super_block *upper_sb;
335d3fc5SSargun Dhillon
d7b49b10SChengguang Xu		err = -EINVAL;
ad204488SMiklos Szeredi		if (!ofs->config.workdir) {
1bd0a3aeSlijiazi			pr_err("missing 'workdir'\n");
a9075cdbSMiklos Szeredi			goto out_err;
e9be9d5eSMiklos Szeredi		}
e9be9d5eSMiklos Szeredi
*b36a5780SChristian Brauner		err = ovl_get_upper(sb, ofs, &layers[0], &ctx->upper);
21a3b317SMiklos Szeredi		if (err)
a9075cdbSMiklos Szeredi			goto out_err;
d719e8f2SMiklos Szeredi
335d3fc5SSargun Dhillon		upper_sb = ovl_upper_mnt(ofs)->mnt_sb;
335d3fc5SSargun Dhillon		if (!ovl_should_sync(ofs)) {
335d3fc5SSargun Dhillon			ofs->errseq = errseq_sample(&upper_sb->s_wb_err);
335d3fc5SSargun Dhillon			if (errseq_check(&upper_sb->s_wb_err, ofs->errseq)) {
335d3fc5SSargun Dhillon				err = -EIO;
335d3fc5SSargun Dhillon				pr_err("Cannot mount volatile when upperdir has an unseen error. Sync upperdir fs to clear state.\n");
335d3fc5SSargun Dhillon				goto out_err;
335d3fc5SSargun Dhillon			}
335d3fc5SSargun Dhillon		}
335d3fc5SSargun Dhillon
*b36a5780SChristian Brauner		err = ovl_get_workdir(sb, ofs, &ctx->upper, &ctx->work);
8ed61dc3SMiklos Szeredi		if (err)
a9075cdbSMiklos Szeredi			goto out_err;
c6fe6254SMiklos Szeredi
ad204488SMiklos Szeredi		if (!ofs->workdir)
1751e8a6SLinus Torvalds			sb->s_flags |= SB_RDONLY;
6e88256eSMiklos Szeredi
335d3fc5SSargun Dhillon		sb->s_stack_depth = upper_sb->s_stack_depth;
335d3fc5SSargun Dhillon		sb->s_time_gran = upper_sb->s_time_gran;
21765194SVivek Goyal	}
*b36a5780SChristian Brauner	oe = ovl_get_lowerstack(sb, ctx, ofs, layers);
4155c10aSMiklos Szeredi	err = PTR_ERR(oe);
4155c10aSMiklos Szeredi	if (IS_ERR(oe))
a9075cdbSMiklos Szeredi		goto out_err;
e9be9d5eSMiklos Szeredi
71cbad7eShujianyang	/* If the upper fs is nonexistent, we mark overlayfs r/o too */
08f4c7c8SMiklos Szeredi	if (!ovl_upper_mnt(ofs))
1751e8a6SLinus Torvalds		sb->s_flags |= SB_RDONLY;
e9be9d5eSMiklos Szeredi
5830fb6bSPavel Tikhomirov	if (!ofs->config.uuid && ofs->numfs > 1) {
5830fb6bSPavel Tikhomirov		pr_warn("The uuid=off requires a single fs for lower and upper, falling back to uuid=on.\n");
5830fb6bSPavel Tikhomirov		ofs->config.uuid = true;
5830fb6bSPavel Tikhomirov	}
5830fb6bSPavel Tikhomirov
470c1563SAmir Goldstein	if (!ovl_force_readonly(ofs) && ofs->config.index) {
*b36a5780SChristian Brauner		err = ovl_get_indexdir(sb, ofs, oe, &ctx->upper);
54fb347eSAmir Goldstein		if (err)
4155c10aSMiklos Szeredi			goto out_free_oe;
6e88256eSMiklos Szeredi
972d0093SAmir Goldstein		/* Force r/o mount with no index dir */
20396365SAmir Goldstein		if (!ofs->indexdir)
1751e8a6SLinus Torvalds			sb->s_flags |= SB_RDONLY;
02bcd157SAmir Goldstein	}
02bcd157SAmir Goldstein
146d62e5SAmir Goldstein	err = ovl_check_overlapping_layers(sb, ofs);
146d62e5SAmir Goldstein	if (err)
146d62e5SAmir Goldstein		goto out_free_oe;
146d62e5SAmir Goldstein
972d0093SAmir Goldstein	/* Show index=off in /proc/mounts for forced r/o mount */
f168f109SAmir Goldstein	if (!ofs->indexdir) {
ad204488SMiklos Szeredi		ofs->config.index = false;
08f4c7c8SMiklos Szeredi		if (ovl_upper_mnt(ofs) && ofs->config.nfs_export) {
1bd0a3aeSlijiazi			pr_warn("NFS export requires an index dir, falling back to nfs_export=off.\n");
f168f109SAmir Goldstein			ofs->config.nfs_export = false;
f168f109SAmir Goldstein		}
f168f109SAmir Goldstein	}
02bcd157SAmir Goldstein
d5791044SVivek Goyal	if (ofs->config.metacopy && ofs->config.nfs_export) {
1bd0a3aeSlijiazi		pr_warn("NFS export is not supported with metadata only copy up, falling back to nfs_export=off.\n");
d5791044SVivek Goyal		ofs->config.nfs_export = false;
d5791044SVivek Goyal	}
d5791044SVivek Goyal
8383f174SAmir Goldstein	if (ofs->config.nfs_export)
8383f174SAmir Goldstein		sb->s_export_op = &ovl_export_operations;
8383f174SAmir Goldstein
51f8f3c4SKonstantin Khlebnikov	/* Never override disk quota limits or use reserved space */
51f8f3c4SKonstantin Khlebnikov	cap_lower(cred->cap_effective, CAP_SYS_RESOURCE);
51f8f3c4SKonstantin Khlebnikov
655042ccSVivek Goyal	sb->s_magic = OVERLAYFS_SUPER_MAGIC;
2d2f2d73SMiklos Szeredi	sb->s_xattr = ofs->config.userxattr ? ovl_user_xattr_handlers :
2d2f2d73SMiklos Szeredi		ovl_trusted_xattr_handlers;
ad204488SMiklos Szeredi	sb->s_fs_info = ofs;
de2a4a50SMiklos Szeredi	sb->s_flags |= SB_POSIXACL;
32b1924bSKonstantin Khlebnikov	sb->s_iflags |= SB_I_SKIP_SYNC;
655042ccSVivek Goyal
c6fe6254SMiklos Szeredi	err = -ENOMEM;
*b36a5780SChristian Brauner	root_dentry = ovl_get_root(sb, ctx->upper.dentry, oe);
e9be9d5eSMiklos Szeredi	if (!root_dentry)
4155c10aSMiklos Szeredi		goto out_free_oe;
e9be9d5eSMiklos Szeredi
e9be9d5eSMiklos Szeredi	sb->s_root = root_dentry;
e9be9d5eSMiklos Szeredi
e9be9d5eSMiklos Szeredi	return 0;
e9be9d5eSMiklos Szeredi
4155c10aSMiklos Szerediout_free_oe:
163db0daSAmir Goldstein	ovl_free_entry(oe);
4155c10aSMiklos Szerediout_err:
ad204488SMiklos Szeredi	ovl_free_fs(ofs);
1784fbc2SChristian Brauner	sb->s_fs_info = NULL;
e9be9d5eSMiklos Szeredi	return err;
e9be9d5eSMiklos Szeredi}
e9be9d5eSMiklos Szeredi
1784fbc2SChristian Braunerstatic int ovl_get_tree(struct fs_context *fc)
e9be9d5eSMiklos Szeredi{
1784fbc2SChristian Brauner	return get_tree_nodev(fc, ovl_fill_super);
1784fbc2SChristian Brauner}
1784fbc2SChristian Brauner
1784fbc2SChristian Braunerstatic inline void ovl_fs_context_free(struct ovl_fs_context *ctx)
1784fbc2SChristian Brauner{
*b36a5780SChristian Brauner	ovl_parse_param_drop_lowerdir(ctx);
*b36a5780SChristian Brauner	path_put(&ctx->upper);
*b36a5780SChristian Brauner	path_put(&ctx->work);
*b36a5780SChristian Brauner	kfree(ctx->lower);
1784fbc2SChristian Brauner	kfree(ctx);
1784fbc2SChristian Brauner}
1784fbc2SChristian Brauner
1784fbc2SChristian Braunerstatic void ovl_free(struct fs_context *fc)
1784fbc2SChristian Brauner{
1784fbc2SChristian Brauner	struct ovl_fs *ofs = fc->s_fs_info;
1784fbc2SChristian Brauner	struct ovl_fs_context *ctx = fc->fs_private;
1784fbc2SChristian Brauner
1784fbc2SChristian Brauner	/*
1784fbc2SChristian Brauner	 * ofs is stored in the fs_context when it is initialized.
1784fbc2SChristian Brauner	 * ofs is transferred to the superblock on a successful mount,
1784fbc2SChristian Brauner	 * but if an error occurs before the transfer we have to free
1784fbc2SChristian Brauner	 * it here.
1784fbc2SChristian Brauner	 */
1784fbc2SChristian Brauner	if (ofs)
1784fbc2SChristian Brauner		ovl_free_fs(ofs);
1784fbc2SChristian Brauner
1784fbc2SChristian Brauner	if (ctx)
1784fbc2SChristian Brauner		ovl_fs_context_free(ctx);
1784fbc2SChristian Brauner}
1784fbc2SChristian Brauner
1784fbc2SChristian Braunerstatic const struct fs_context_operations ovl_context_ops = {
1784fbc2SChristian Brauner	.parse_param = ovl_parse_param,
1784fbc2SChristian Brauner	.get_tree    = ovl_get_tree,
1784fbc2SChristian Brauner	.reconfigure = ovl_reconfigure,
1784fbc2SChristian Brauner	.free        = ovl_free,
1784fbc2SChristian Brauner};
1784fbc2SChristian Brauner
1784fbc2SChristian Brauner/*
1784fbc2SChristian Brauner * This is called during fsopen() and will record the user namespace of
1784fbc2SChristian Brauner * the caller in fc->user_ns since we've raised FS_USERNS_MOUNT. We'll
1784fbc2SChristian Brauner * need it when we actually create the superblock to verify that the
1784fbc2SChristian Brauner * process creating the superblock is in the same user namespace as
1784fbc2SChristian Brauner * process that called fsopen().
1784fbc2SChristian Brauner */
1784fbc2SChristian Braunerstatic int ovl_init_fs_context(struct fs_context *fc)
1784fbc2SChristian Brauner{
1784fbc2SChristian Brauner	struct ovl_fs_context *ctx;
1784fbc2SChristian Brauner	struct ovl_fs *ofs;
1784fbc2SChristian Brauner
1784fbc2SChristian Brauner	ctx = kzalloc(sizeof(*ctx), GFP_KERNEL_ACCOUNT);
1784fbc2SChristian Brauner	if (!ctx)
1784fbc2SChristian Brauner		return -ENOMEM;
1784fbc2SChristian Brauner
*b36a5780SChristian Brauner	/*
*b36a5780SChristian Brauner	 * By default we allocate for three lower layers. It's likely
*b36a5780SChristian Brauner	 * that it'll cover most users.
*b36a5780SChristian Brauner	 */
*b36a5780SChristian Brauner	ctx->lower = kmalloc_array(3, sizeof(*ctx->lower), GFP_KERNEL_ACCOUNT);
*b36a5780SChristian Brauner	if (!ctx->lower)
*b36a5780SChristian Brauner		goto out_err;
*b36a5780SChristian Brauner	ctx->capacity = 3;
*b36a5780SChristian Brauner
1784fbc2SChristian Brauner	ofs = kzalloc(sizeof(struct ovl_fs), GFP_KERNEL);
*b36a5780SChristian Brauner	if (!ofs)
*b36a5780SChristian Brauner		goto out_err;
1784fbc2SChristian Brauner
1784fbc2SChristian Brauner	ofs->config.redirect_mode = ovl_redirect_mode_def();
1784fbc2SChristian Brauner	ofs->config.index	= ovl_index_def;
1784fbc2SChristian Brauner	ofs->config.uuid	= true;
1784fbc2SChristian Brauner	ofs->config.nfs_export	= ovl_nfs_export_def;
1784fbc2SChristian Brauner	ofs->config.xino	= ovl_xino_def();
1784fbc2SChristian Brauner	ofs->config.metacopy	= ovl_metacopy_def;
1784fbc2SChristian Brauner
1784fbc2SChristian Brauner	fc->s_fs_info		= ofs;
1784fbc2SChristian Brauner	fc->fs_private		= ctx;
1784fbc2SChristian Brauner	fc->ops			= &ovl_context_ops;
1784fbc2SChristian Brauner	return 0;
*b36a5780SChristian Brauner
*b36a5780SChristian Braunerout_err:
*b36a5780SChristian Brauner	ovl_fs_context_free(ctx);
*b36a5780SChristian Brauner	return -ENOMEM;
*b36a5780SChristian Brauner
e9be9d5eSMiklos Szeredi}
e9be9d5eSMiklos Szeredi
e9be9d5eSMiklos Szeredistatic struct file_system_type ovl_fs_type = {
e9be9d5eSMiklos Szeredi	.owner			= THIS_MODULE,
ef94b186SMiklos Szeredi	.name			= "overlay",
1784fbc2SChristian Brauner	.init_fs_context	= ovl_init_fs_context,
1784fbc2SChristian Brauner	.parameters		= ovl_parameter_spec,
459c7c56SMiklos Szeredi	.fs_flags		= FS_USERNS_MOUNT,
e9be9d5eSMiklos Szeredi	.kill_sb		= kill_anon_super,
e9be9d5eSMiklos Szeredi};
ef94b186SMiklos SzerediMODULE_ALIAS_FS("overlay");
e9be9d5eSMiklos Szeredi
13cf199dSAmir Goldsteinstatic void ovl_inode_init_once(void *foo)
13cf199dSAmir Goldstein{
13cf199dSAmir Goldstein	struct ovl_inode *oi = foo;
13cf199dSAmir Goldstein
13cf199dSAmir Goldstein	inode_init_once(&oi->vfs_inode);
13cf199dSAmir Goldstein}
13cf199dSAmir Goldstein
e9be9d5eSMiklos Szeredistatic int __init ovl_init(void)
e9be9d5eSMiklos Szeredi{
13cf199dSAmir Goldstein	int err;
13cf199dSAmir Goldstein
13cf199dSAmir Goldstein	ovl_inode_cachep = kmem_cache_create("ovl_inode",
13cf199dSAmir Goldstein					     sizeof(struct ovl_inode), 0,
13cf199dSAmir Goldstein					     (SLAB_RECLAIM_ACCOUNT|
13cf199dSAmir Goldstein					      SLAB_MEM_SPREAD|SLAB_ACCOUNT),
13cf199dSAmir Goldstein					     ovl_inode_init_once);
13cf199dSAmir Goldstein	if (ovl_inode_cachep == NULL)
13cf199dSAmir Goldstein		return -ENOMEM;
13cf199dSAmir Goldstein
2406a307SJiufei Xue	err = ovl_aio_request_cache_init();
2406a307SJiufei Xue	if (!err) {
13cf199dSAmir Goldstein		err = register_filesystem(&ovl_fs_type);
2406a307SJiufei Xue		if (!err)
2406a307SJiufei Xue			return 0;
2406a307SJiufei Xue
2406a307SJiufei Xue		ovl_aio_request_cache_destroy();
2406a307SJiufei Xue	}
13cf199dSAmir Goldstein	kmem_cache_destroy(ovl_inode_cachep);
13cf199dSAmir Goldstein
13cf199dSAmir Goldstein	return err;
e9be9d5eSMiklos Szeredi}
e9be9d5eSMiklos Szeredi
e9be9d5eSMiklos Szeredistatic void __exit ovl_exit(void)
e9be9d5eSMiklos Szeredi{
e9be9d5eSMiklos Szeredi	unregister_filesystem(&ovl_fs_type);
13cf199dSAmir Goldstein
13cf199dSAmir Goldstein	/*
13cf199dSAmir Goldstein	 * Make sure all delayed rcu free inodes are flushed before we
13cf199dSAmir Goldstein	 * destroy cache.
13cf199dSAmir Goldstein	 */
13cf199dSAmir Goldstein	rcu_barrier();
13cf199dSAmir Goldstein	kmem_cache_destroy(ovl_inode_cachep);
2406a307SJiufei Xue	ovl_aio_request_cache_destroy();
e9be9d5eSMiklos Szeredi}
e9be9d5eSMiklos Szeredi
e9be9d5eSMiklos Szeredimodule_init(ovl_init);
e9be9d5eSMiklos Szeredimodule_exit(ovl_exit);