2 * FUSE: Filesystem in Userspace
3 * Copyright (C) 2016 Canonical Ltd. <seth.forshee@canonical.com>
5 * This program can be distributed under the terms of the GNU GPL.
6 * See the file COPYING.
11 #include <linux/posix_acl.h>
12 #include <linux/posix_acl_xattr.h>
14 static struct posix_acl *__fuse_get_acl(struct fuse_conn *fc,
15 struct mnt_idmap *idmap,
16 struct inode *inode, int type, bool rcu)
21 struct posix_acl *acl;
24 return ERR_PTR(-ECHILD);
26 if (fuse_is_bad(inode))
32 if (type == ACL_TYPE_ACCESS)
33 name = XATTR_NAME_POSIX_ACL_ACCESS;
34 else if (type == ACL_TYPE_DEFAULT)
35 name = XATTR_NAME_POSIX_ACL_DEFAULT;
37 return ERR_PTR(-EOPNOTSUPP);
39 value = kmalloc(PAGE_SIZE, GFP_KERNEL);
41 return ERR_PTR(-ENOMEM);
42 size = fuse_getxattr(inode, name, value, PAGE_SIZE);
44 acl = posix_acl_from_xattr(fc->user_ns, value, size);
45 else if ((size == 0) || (size == -ENODATA) ||
46 (size == -EOPNOTSUPP && fc->no_getxattr))
48 else if (size == -ERANGE)
49 acl = ERR_PTR(-E2BIG);
57 static inline bool fuse_no_acl(const struct fuse_conn *fc,
58 const struct inode *inode)
61 * Refuse interacting with POSIX ACLs for daemons that
62 * don't support FUSE_POSIX_ACL and are not mounted on
63 * the host to retain backwards compatibility.
65 return !fc->posix_acl && (i_user_ns(inode) != &init_user_ns);
68 struct posix_acl *fuse_get_acl(struct mnt_idmap *idmap,
69 struct dentry *dentry, int type)
71 struct inode *inode = d_inode(dentry);
72 struct fuse_conn *fc = get_fuse_conn(inode);
74 if (fuse_no_acl(fc, inode))
75 return ERR_PTR(-EOPNOTSUPP);
77 return __fuse_get_acl(fc, idmap, inode, type, false);
80 struct posix_acl *fuse_get_inode_acl(struct inode *inode, int type, bool rcu)
82 struct fuse_conn *fc = get_fuse_conn(inode);
85 * FUSE daemons before FUSE_POSIX_ACL was introduced could get and set
86 * POSIX ACLs without them being used for permission checking by the
87 * vfs. Retain that behavior for backwards compatibility as there are
88 * filesystems that do all permission checking for acls in the daemon
89 * and not in the kernel.
94 return __fuse_get_acl(fc, &nop_mnt_idmap, inode, type, rcu);
97 int fuse_set_acl(struct mnt_idmap *idmap, struct dentry *dentry,
98 struct posix_acl *acl, int type)
100 struct inode *inode = d_inode(dentry);
101 struct fuse_conn *fc = get_fuse_conn(inode);
105 if (fuse_is_bad(inode))
108 if (fc->no_setxattr || fuse_no_acl(fc, inode))
111 if (type == ACL_TYPE_ACCESS)
112 name = XATTR_NAME_POSIX_ACL_ACCESS;
113 else if (type == ACL_TYPE_DEFAULT)
114 name = XATTR_NAME_POSIX_ACL_DEFAULT;
119 unsigned int extra_flags = 0;
121 * Fuse userspace is responsible for updating access
122 * permissions in the inode, if needed. fuse_setxattr
123 * invalidates the inode attributes, which will force
124 * them to be refreshed the next time they are used,
125 * and it also updates i_ctime.
127 size_t size = posix_acl_xattr_size(acl->a_count);
130 if (size > PAGE_SIZE)
133 value = kmalloc(size, GFP_KERNEL);
137 ret = posix_acl_to_xattr(fc->user_ns, acl, value, size);
144 * Fuse daemons without FUSE_POSIX_ACL never changed the passed
145 * through POSIX ACLs. Such daemons don't expect setgid bits to
149 !vfsgid_in_group_p(i_gid_into_vfsgid(&nop_mnt_idmap, inode)) &&
150 !capable_wrt_inode_uidgid(&nop_mnt_idmap, inode, CAP_FSETID))
151 extra_flags |= FUSE_SETXATTR_ACL_KILL_SGID;
153 ret = fuse_setxattr(inode, name, value, size, 0, extra_flags);
156 ret = fuse_removexattr(inode, name);
161 * Fuse daemons without FUSE_POSIX_ACL never cached POSIX ACLs
162 * and didn't invalidate attributes. Retain that behavior.
164 forget_all_cached_acls(inode);
165 fuse_invalidate_attr(inode);
projects / releases.git / blob