2018-09-12 09:16:07 +08:00
// SPDX-License-Identifier: GPL-2.0
2012-11-29 13:28:09 +09:00
/*
2012-11-02 17:12:17 +09:00
* fs / f2fs / acl . c
*
* Copyright ( c ) 2012 Samsung Electronics Co . , Ltd .
* http : //www.samsung.com/
*
* Portions of this code from linux / fs / ext2 / acl . c
*
* Copyright ( C ) 2001 - 2003 Andreas Gruenbacher , < agruen @ suse . de >
*/
# include <linux/f2fs_fs.h>
# include "f2fs.h"
# include "xattr.h"
# include "acl.h"
static inline size_t f2fs_acl_size ( int count )
{
if ( count < = 4 ) {
return sizeof ( struct f2fs_acl_header ) +
count * sizeof ( struct f2fs_acl_entry_short ) ;
} else {
return sizeof ( struct f2fs_acl_header ) +
4 * sizeof ( struct f2fs_acl_entry_short ) +
( count - 4 ) * sizeof ( struct f2fs_acl_entry ) ;
}
}
static inline int f2fs_acl_count ( size_t size )
{
ssize_t s ;
2021-04-06 09:47:35 +08:00
2012-11-02 17:12:17 +09:00
size - = sizeof ( struct f2fs_acl_header ) ;
s = size - 4 * sizeof ( struct f2fs_acl_entry_short ) ;
if ( s < 0 ) {
if ( size % sizeof ( struct f2fs_acl_entry_short ) )
return - 1 ;
return size / sizeof ( struct f2fs_acl_entry_short ) ;
} else {
if ( s % sizeof ( struct f2fs_acl_entry ) )
return - 1 ;
return s / sizeof ( struct f2fs_acl_entry ) + 4 ;
}
}
static struct posix_acl * f2fs_acl_from_disk ( const char * value , size_t size )
{
int i , count ;
struct posix_acl * acl ;
struct f2fs_acl_header * hdr = ( struct f2fs_acl_header * ) value ;
struct f2fs_acl_entry * entry = ( struct f2fs_acl_entry * ) ( hdr + 1 ) ;
const char * end = value + size ;
2018-08-30 21:33:31 +08:00
if ( size < sizeof ( struct f2fs_acl_header ) )
return ERR_PTR ( - EINVAL ) ;
2012-11-02 17:12:17 +09:00
if ( hdr - > a_version ! = cpu_to_le32 ( F2FS_ACL_VERSION ) )
return ERR_PTR ( - EINVAL ) ;
count = f2fs_acl_count ( size ) ;
if ( count < 0 )
return ERR_PTR ( - EINVAL ) ;
if ( count = = 0 )
return NULL ;
2014-12-18 19:32:36 -08:00
acl = posix_acl_alloc ( count , GFP_NOFS ) ;
2012-11-02 17:12:17 +09:00
if ( ! acl )
return ERR_PTR ( - ENOMEM ) ;
for ( i = 0 ; i < count ; i + + ) {
if ( ( char * ) entry > end )
goto fail ;
acl - > a_entries [ i ] . e_tag = le16_to_cpu ( entry - > e_tag ) ;
acl - > a_entries [ i ] . e_perm = le16_to_cpu ( entry - > e_perm ) ;
switch ( acl - > a_entries [ i ] . e_tag ) {
case ACL_USER_OBJ :
case ACL_GROUP_OBJ :
case ACL_MASK :
case ACL_OTHER :
entry = ( struct f2fs_acl_entry * ) ( ( char * ) entry +
sizeof ( struct f2fs_acl_entry_short ) ) ;
break ;
case ACL_USER :
acl - > a_entries [ i ] . e_uid =
make_kuid ( & init_user_ns ,
le32_to_cpu ( entry - > e_id ) ) ;
entry = ( struct f2fs_acl_entry * ) ( ( char * ) entry +
sizeof ( struct f2fs_acl_entry ) ) ;
break ;
case ACL_GROUP :
acl - > a_entries [ i ] . e_gid =
make_kgid ( & init_user_ns ,
le32_to_cpu ( entry - > e_id ) ) ;
entry = ( struct f2fs_acl_entry * ) ( ( char * ) entry +
sizeof ( struct f2fs_acl_entry ) ) ;
break ;
default :
goto fail ;
}
}
if ( ( char * ) entry ! = end )
goto fail ;
return acl ;
fail :
posix_acl_release ( acl ) ;
return ERR_PTR ( - EINVAL ) ;
}
2016-09-23 21:30:09 +08:00
static void * f2fs_acl_to_disk ( struct f2fs_sb_info * sbi ,
const struct posix_acl * acl , size_t * size )
2012-11-02 17:12:17 +09:00
{
struct f2fs_acl_header * f2fs_acl ;
struct f2fs_acl_entry * entry ;
int i ;
2016-09-23 21:30:09 +08:00
f2fs_acl = f2fs_kmalloc ( sbi , sizeof ( struct f2fs_acl_header ) +
acl - > a_count * sizeof ( struct f2fs_acl_entry ) ,
GFP_NOFS ) ;
2012-11-02 17:12:17 +09:00
if ( ! f2fs_acl )
return ERR_PTR ( - ENOMEM ) ;
f2fs_acl - > a_version = cpu_to_le32 ( F2FS_ACL_VERSION ) ;
entry = ( struct f2fs_acl_entry * ) ( f2fs_acl + 1 ) ;
for ( i = 0 ; i < acl - > a_count ; i + + ) {
entry - > e_tag = cpu_to_le16 ( acl - > a_entries [ i ] . e_tag ) ;
entry - > e_perm = cpu_to_le16 ( acl - > a_entries [ i ] . e_perm ) ;
switch ( acl - > a_entries [ i ] . e_tag ) {
case ACL_USER :
entry - > e_id = cpu_to_le32 (
from_kuid ( & init_user_ns ,
acl - > a_entries [ i ] . e_uid ) ) ;
entry = ( struct f2fs_acl_entry * ) ( ( char * ) entry +
sizeof ( struct f2fs_acl_entry ) ) ;
break ;
case ACL_GROUP :
entry - > e_id = cpu_to_le32 (
from_kgid ( & init_user_ns ,
acl - > a_entries [ i ] . e_gid ) ) ;
entry = ( struct f2fs_acl_entry * ) ( ( char * ) entry +
sizeof ( struct f2fs_acl_entry ) ) ;
break ;
case ACL_USER_OBJ :
case ACL_GROUP_OBJ :
case ACL_MASK :
case ACL_OTHER :
entry = ( struct f2fs_acl_entry * ) ( ( char * ) entry +
sizeof ( struct f2fs_acl_entry_short ) ) ;
break ;
default :
goto fail ;
}
}
* size = f2fs_acl_size ( acl - > a_count ) ;
return ( void * ) f2fs_acl ;
fail :
2020-09-14 16:47:00 +08:00
kfree ( f2fs_acl ) ;
2012-11-02 17:12:17 +09:00
return ERR_PTR ( - EINVAL ) ;
}
2014-10-13 19:42:53 -07:00
static struct posix_acl * __f2fs_get_acl ( struct inode * inode , int type ,
struct page * dpage )
2012-11-02 17:12:17 +09:00
{
int name_index = F2FS_XATTR_INDEX_POSIX_ACL_DEFAULT ;
void * value = NULL ;
struct posix_acl * acl ;
int retval ;
if ( type = = ACL_TYPE_ACCESS )
name_index = F2FS_XATTR_INDEX_POSIX_ACL_ACCESS ;
2014-10-13 19:42:53 -07:00
retval = f2fs_getxattr ( inode , name_index , " " , NULL , 0 , dpage ) ;
2012-11-02 17:12:17 +09:00
if ( retval > 0 ) {
2016-09-23 21:30:09 +08:00
value = f2fs_kmalloc ( F2FS_I_SB ( inode ) , retval , GFP_F2FS_ZERO ) ;
2012-11-02 17:12:17 +09:00
if ( ! value )
return ERR_PTR ( - ENOMEM ) ;
2014-10-13 19:42:53 -07:00
retval = f2fs_getxattr ( inode , name_index , " " , value ,
retval , dpage ) ;
2012-11-02 17:12:17 +09:00
}
2013-01-03 09:24:28 +09:00
if ( retval > 0 )
2012-11-02 17:12:17 +09:00
acl = f2fs_acl_from_disk ( value , retval ) ;
2013-01-03 09:24:28 +09:00
else if ( retval = = - ENODATA )
acl = NULL ;
else
acl = ERR_PTR ( retval ) ;
2020-09-14 16:47:00 +08:00
kfree ( value ) ;
2013-01-03 09:24:28 +09:00
2012-11-02 17:12:17 +09:00
return acl ;
}
2021-08-18 22:08:24 +02:00
struct posix_acl * f2fs_get_acl ( struct inode * inode , int type , bool rcu )
2014-10-13 19:42:53 -07:00
{
2021-08-18 22:08:24 +02:00
if ( rcu )
return ERR_PTR ( - ECHILD ) ;
2014-10-13 19:42:53 -07:00
return __f2fs_get_acl ( inode , type , NULL ) ;
}
2023-01-13 12:49:27 +01:00
static int f2fs_acl_update_mode ( struct mnt_idmap * idmap ,
2022-02-04 13:24:56 +08:00
struct inode * inode , umode_t * mode_p ,
struct posix_acl * * acl )
2020-12-25 16:52:27 +08:00
{
umode_t mode = inode - > i_mode ;
int error ;
if ( is_inode_flag_set ( inode , FI_ACL_MODE ) )
mode = F2FS_I ( inode ) - > i_acl_mode ;
error = posix_acl_equiv_mode ( * acl , & mode ) ;
if ( error < 0 )
return error ;
if ( error = = 0 )
* acl = NULL ;
2023-01-13 12:49:30 +01:00
if ( ! vfsgid_in_group_p ( i_gid_into_vfsgid ( idmap , inode ) ) & &
2023-01-13 12:49:27 +01:00
! capable_wrt_inode_uidgid ( idmap , inode , CAP_FSETID ) )
2020-12-25 16:52:27 +08:00
mode & = ~ S_ISGID ;
* mode_p = mode ;
return 0 ;
}
2023-01-13 12:49:27 +01:00
static int __f2fs_set_acl ( struct mnt_idmap * idmap ,
2022-02-04 13:24:56 +08:00
struct inode * inode , int type ,
2013-10-28 13:17:54 +09:00
struct posix_acl * acl , struct page * ipage )
2012-11-02 17:12:17 +09:00
{
int name_index ;
void * value = NULL ;
size_t size = 0 ;
int error ;
2017-07-23 22:32:54 -03:00
umode_t mode = inode - > i_mode ;
2012-11-02 17:12:17 +09:00
switch ( type ) {
case ACL_TYPE_ACCESS :
name_index = F2FS_XATTR_INDEX_POSIX_ACL_ACCESS ;
2017-07-11 14:56:49 -07:00
if ( acl & & ! ipage ) {
2023-01-13 12:49:27 +01:00
error = f2fs_acl_update_mode ( idmap , inode ,
2022-02-04 13:24:56 +08:00
& mode , & acl ) ;
2016-09-19 17:39:09 +02:00
if ( error )
2012-11-02 17:12:17 +09:00
return error ;
2017-07-23 22:32:54 -03:00
set_acl_inode ( inode , mode ) ;
2012-11-02 17:12:17 +09:00
}
break ;
case ACL_TYPE_DEFAULT :
name_index = F2FS_XATTR_INDEX_POSIX_ACL_DEFAULT ;
if ( ! S_ISDIR ( inode - > i_mode ) )
return acl ? - EACCES : 0 ;
break ;
default :
return - EINVAL ;
}
if ( acl ) {
2016-09-23 21:30:09 +08:00
value = f2fs_acl_to_disk ( F2FS_I_SB ( inode ) , acl , & size ) ;
2012-11-02 17:12:17 +09:00
if ( IS_ERR ( value ) ) {
2016-05-20 10:13:22 -07:00
clear_inode_flag ( inode , FI_ACL_MODE ) ;
2017-06-01 16:50:10 +08:00
return PTR_ERR ( value ) ;
2012-11-02 17:12:17 +09:00
}
}
2014-04-23 12:23:14 +09:00
error = f2fs_setxattr ( inode , name_index , " " , value , size , ipage , 0 ) ;
2012-11-02 17:12:17 +09:00
2020-09-14 16:47:00 +08:00
kfree ( value ) ;
2012-11-02 17:12:17 +09:00
if ( ! error )
set_cached_acl ( inode , type , acl ) ;
2016-05-20 10:13:22 -07:00
clear_inode_flag ( inode , FI_ACL_MODE ) ;
2012-11-02 17:12:17 +09:00
return error ;
}
2023-01-13 12:49:20 +01:00
int f2fs_set_acl ( struct mnt_idmap * idmap , struct dentry * dentry ,
2021-01-21 14:19:43 +01:00
struct posix_acl * acl , int type )
2012-11-02 17:12:17 +09:00
{
2022-09-23 10:29:39 +02:00
struct inode * inode = d_inode ( dentry ) ;
2017-10-23 23:48:49 +02:00
if ( unlikely ( f2fs_cp_error ( F2FS_I_SB ( inode ) ) ) )
return - EIO ;
2023-01-13 12:49:27 +01:00
return __f2fs_set_acl ( idmap , inode , type , acl , NULL ) ;
2012-11-02 17:12:17 +09:00
}
2014-10-13 19:42:53 -07:00
/*
* Most part of f2fs_acl_clone , f2fs_acl_create_masq , f2fs_acl_create
* are copied from posix_acl . c
*/
static struct posix_acl * f2fs_acl_clone ( const struct posix_acl * acl ,
gfp_t flags )
{
struct posix_acl * clone = NULL ;
if ( acl ) {
int size = sizeof ( struct posix_acl ) + acl - > a_count *
sizeof ( struct posix_acl_entry ) ;
clone = kmemdup ( acl , size , flags ) ;
if ( clone )
2017-11-29 13:19:31 +02:00
refcount_set ( & clone - > a_refcount , 1 ) ;
2014-10-13 19:42:53 -07:00
}
return clone ;
}
static int f2fs_acl_create_masq ( struct posix_acl * acl , umode_t * mode_p )
{
struct posix_acl_entry * pa , * pe ;
struct posix_acl_entry * group_obj = NULL , * mask_obj = NULL ;
umode_t mode = * mode_p ;
int not_equiv = 0 ;
/* assert(atomic_read(acl->a_refcount) == 1); */
FOREACH_ACL_ENTRY ( pa , acl , pe ) {
2019-04-20 22:51:36 +09:00
switch ( pa - > e_tag ) {
2014-10-13 19:42:53 -07:00
case ACL_USER_OBJ :
pa - > e_perm & = ( mode > > 6 ) | ~ S_IRWXO ;
mode & = ( pa - > e_perm < < 6 ) | ~ S_IRWXU ;
break ;
case ACL_USER :
case ACL_GROUP :
not_equiv = 1 ;
break ;
case ACL_GROUP_OBJ :
group_obj = pa ;
break ;
case ACL_OTHER :
pa - > e_perm & = mode | ~ S_IRWXO ;
mode & = pa - > e_perm | ~ S_IRWXO ;
break ;
case ACL_MASK :
mask_obj = pa ;
not_equiv = 1 ;
break ;
default :
return - EIO ;
}
}
if ( mask_obj ) {
mask_obj - > e_perm & = ( mode > > 3 ) | ~ S_IRWXO ;
mode & = ( mask_obj - > e_perm < < 3 ) | ~ S_IRWXG ;
} else {
if ( ! group_obj )
return - EIO ;
group_obj - > e_perm & = ( mode > > 3 ) | ~ S_IRWXO ;
mode & = ( group_obj - > e_perm < < 3 ) | ~ S_IRWXG ;
}
* mode_p = ( * mode_p & ~ S_IRWXUGO ) | mode ;
2019-04-20 22:50:40 +09:00
return not_equiv ;
2014-10-13 19:42:53 -07:00
}
static int f2fs_acl_create ( struct inode * dir , umode_t * mode ,
struct posix_acl * * default_acl , struct posix_acl * * acl ,
struct page * dpage )
{
struct posix_acl * p ;
2015-04-18 18:03:58 +08:00
struct posix_acl * clone ;
2014-10-13 19:42:53 -07:00
int ret ;
2015-04-18 18:03:58 +08:00
* acl = NULL ;
* default_acl = NULL ;
2014-10-13 19:42:53 -07:00
if ( S_ISLNK ( * mode ) | | ! IS_POSIXACL ( dir ) )
2015-04-18 18:03:58 +08:00
return 0 ;
2014-10-13 19:42:53 -07:00
p = __f2fs_get_acl ( dir , ACL_TYPE_DEFAULT , dpage ) ;
2015-04-18 18:03:58 +08:00
if ( ! p | | p = = ERR_PTR ( - EOPNOTSUPP ) ) {
* mode & = ~ current_umask ( ) ;
return 0 ;
2014-10-13 19:42:53 -07:00
}
2015-04-18 18:03:58 +08:00
if ( IS_ERR ( p ) )
return PTR_ERR ( p ) ;
2014-10-13 19:42:53 -07:00
2015-04-18 18:03:58 +08:00
clone = f2fs_acl_clone ( p , GFP_NOFS ) ;
2018-11-21 07:21:38 +08:00
if ( ! clone ) {
ret = - ENOMEM ;
goto release_acl ;
}
2014-10-13 19:42:53 -07:00
2015-04-18 18:03:58 +08:00
ret = f2fs_acl_create_masq ( clone , mode ) ;
2015-03-09 18:18:19 +08:00
if ( ret < 0 )
2018-11-21 07:21:38 +08:00
goto release_clone ;
2014-10-13 19:42:53 -07:00
2015-04-18 18:03:58 +08:00
if ( ret = = 0 )
posix_acl_release ( clone ) ;
else
* acl = clone ;
2014-10-13 19:42:53 -07:00
2015-04-18 18:03:58 +08:00
if ( ! S_ISDIR ( * mode ) )
2014-10-13 19:42:53 -07:00
posix_acl_release ( p ) ;
2015-04-18 18:03:58 +08:00
else
2014-10-13 19:42:53 -07:00
* default_acl = p ;
return 0 ;
2015-03-09 18:18:19 +08:00
2018-11-21 07:21:38 +08:00
release_clone :
2015-04-18 18:03:58 +08:00
posix_acl_release ( clone ) ;
2018-11-21 07:21:38 +08:00
release_acl :
2015-03-09 18:18:19 +08:00
posix_acl_release ( p ) ;
2018-11-21 07:21:38 +08:00
return ret ;
2014-10-13 19:42:53 -07:00
}
int f2fs_init_acl ( struct inode * inode , struct inode * dir , struct page * ipage ,
struct page * dpage )
2012-11-02 17:12:17 +09:00
{
2014-10-13 19:42:53 -07:00
struct posix_acl * default_acl = NULL , * acl = NULL ;
2020-11-20 21:33:34 +08:00
int error ;
2012-11-02 17:12:17 +09:00
2014-10-13 19:42:53 -07:00
error = f2fs_acl_create ( dir , & inode - > i_mode , & default_acl , & acl , dpage ) ;
2012-11-02 17:12:17 +09:00
if ( error )
return error ;
2013-10-28 13:12:09 +09:00
2016-10-14 11:51:23 -07:00
f2fs_mark_inode_dirty_sync ( inode , true ) ;
2016-05-20 09:52:20 -07:00
2013-12-20 05:16:45 -08:00
if ( default_acl ) {
2022-02-04 13:24:56 +08:00
error = __f2fs_set_acl ( NULL , inode , ACL_TYPE_DEFAULT , default_acl ,
2013-12-20 05:16:45 -08:00
ipage ) ;
posix_acl_release ( default_acl ) ;
2018-08-31 22:33:50 +08:00
} else {
inode - > i_default_acl = NULL ;
2013-12-20 05:16:45 -08:00
}
if ( acl ) {
2015-01-24 17:06:25 +08:00
if ( ! error )
2022-02-04 13:24:56 +08:00
error = __f2fs_set_acl ( NULL , inode , ACL_TYPE_ACCESS , acl ,
2013-12-20 05:16:45 -08:00
ipage ) ;
posix_acl_release ( acl ) ;
2018-08-31 22:33:50 +08:00
} else {
inode - > i_acl = NULL ;
2012-11-02 17:12:17 +09:00
}
return error ;
}