// SPDX-License-Identifier: GPL-2.0 /* * FUSE passthrough to backing file. * * Copyright (c) 2023 CTERA Networks. */ #include "fuse_i.h" #include #include #include static void fuse_file_accessed(struct file *file) { struct inode *inode = file_inode(file); fuse_invalidate_atime(inode); } static void fuse_passthrough_end_write(struct file *file, loff_t pos, ssize_t ret) { struct inode *inode = file_inode(file); fuse_write_update_attr(inode, pos, ret); } ssize_t fuse_passthrough_read_iter(struct kiocb *iocb, struct iov_iter *iter) { struct file *file = iocb->ki_filp; struct fuse_file *ff = file->private_data; struct file *backing_file = fuse_file_passthrough(ff); size_t count = iov_iter_count(iter); ssize_t ret; struct backing_file_ctx ctx = { .cred = ff->cred, .user_file = file, .accessed = fuse_file_accessed, }; pr_debug("%s: backing_file=0x%p, pos=%lld, len=%zu\n", __func__, backing_file, iocb->ki_pos, count); if (!count) return 0; ret = backing_file_read_iter(backing_file, iter, iocb, iocb->ki_flags, &ctx); return ret; } ssize_t fuse_passthrough_write_iter(struct kiocb *iocb, struct iov_iter *iter) { struct file *file = iocb->ki_filp; struct inode *inode = file_inode(file); struct fuse_file *ff = file->private_data; struct file *backing_file = fuse_file_passthrough(ff); size_t count = iov_iter_count(iter); ssize_t ret; struct backing_file_ctx ctx = { .cred = ff->cred, .user_file = file, .end_write = fuse_passthrough_end_write, }; pr_debug("%s: backing_file=0x%p, pos=%lld, len=%zu\n", __func__, backing_file, iocb->ki_pos, count); if (!count) return 0; inode_lock(inode); ret = backing_file_write_iter(backing_file, iter, iocb, iocb->ki_flags, &ctx); inode_unlock(inode); return ret; } ssize_t fuse_passthrough_splice_read(struct file *in, loff_t *ppos, struct pipe_inode_info *pipe, size_t len, unsigned int flags) { struct fuse_file *ff = in->private_data; struct file *backing_file = fuse_file_passthrough(ff); struct backing_file_ctx ctx = { .cred = ff->cred, .user_file = in, .accessed = fuse_file_accessed, }; pr_debug("%s: backing_file=0x%p, pos=%lld, len=%zu, flags=0x%x\n", __func__, backing_file, ppos ? *ppos : 0, len, flags); return backing_file_splice_read(backing_file, ppos, pipe, len, flags, &ctx); } ssize_t fuse_passthrough_splice_write(struct pipe_inode_info *pipe, struct file *out, loff_t *ppos, size_t len, unsigned int flags) { struct fuse_file *ff = out->private_data; struct file *backing_file = fuse_file_passthrough(ff); struct inode *inode = file_inode(out); ssize_t ret; struct backing_file_ctx ctx = { .cred = ff->cred, .user_file = out, .end_write = fuse_passthrough_end_write, }; pr_debug("%s: backing_file=0x%p, pos=%lld, len=%zu, flags=0x%x\n", __func__, backing_file, ppos ? *ppos : 0, len, flags); inode_lock(inode); ret = backing_file_splice_write(pipe, backing_file, ppos, len, flags, &ctx); inode_unlock(inode); return ret; } ssize_t fuse_passthrough_mmap(struct file *file, struct vm_area_struct *vma) { struct fuse_file *ff = file->private_data; struct file *backing_file = fuse_file_passthrough(ff); struct backing_file_ctx ctx = { .cred = ff->cred, .user_file = file, .accessed = fuse_file_accessed, }; pr_debug("%s: backing_file=0x%p, start=%lu, end=%lu\n", __func__, backing_file, vma->vm_start, vma->vm_end); return backing_file_mmap(backing_file, vma, &ctx); } struct fuse_backing *fuse_backing_get(struct fuse_backing *fb) { if (fb && refcount_inc_not_zero(&fb->count)) return fb; return NULL; } static void fuse_backing_free(struct fuse_backing *fb) { pr_debug("%s: fb=0x%p\n", __func__, fb); if (fb->file) fput(fb->file); put_cred(fb->cred); kfree_rcu(fb, rcu); } void fuse_backing_put(struct fuse_backing *fb) { if (fb && refcount_dec_and_test(&fb->count)) fuse_backing_free(fb); } void fuse_backing_files_init(struct fuse_conn *fc) { idr_init(&fc->backing_files_map); } static int fuse_backing_id_alloc(struct fuse_conn *fc, struct fuse_backing *fb) { int id; idr_preload(GFP_KERNEL); spin_lock(&fc->lock); /* FIXME: xarray might be space inefficient */ id = idr_alloc_cyclic(&fc->backing_files_map, fb, 1, 0, GFP_ATOMIC); spin_unlock(&fc->lock); idr_preload_end(); WARN_ON_ONCE(id == 0); return id; } static struct fuse_backing *fuse_backing_id_remove(struct fuse_conn *fc, int id) { struct fuse_backing *fb; spin_lock(&fc->lock); fb = idr_remove(&fc->backing_files_map, id); spin_unlock(&fc->lock); return fb; } static int fuse_backing_id_free(int id, void *p, void *data) { struct fuse_backing *fb = p; WARN_ON_ONCE(refcount_read(&fb->count) != 1); fuse_backing_free(fb); return 0; } void fuse_backing_files_free(struct fuse_conn *fc) { idr_for_each(&fc->backing_files_map, fuse_backing_id_free, NULL); idr_destroy(&fc->backing_files_map); } int fuse_backing_open(struct fuse_conn *fc, struct fuse_backing_map *map) { struct file *file; struct super_block *backing_sb; struct fuse_backing *fb = NULL; int res; pr_debug("%s: fd=%d flags=0x%x\n", __func__, map->fd, map->flags); /* TODO: relax CAP_SYS_ADMIN once backing files are visible to lsof */ res = -EPERM; if (!fc->passthrough || !capable(CAP_SYS_ADMIN)) goto out; res = -EINVAL; if (map->flags || map->padding) goto out; file = fget_raw(map->fd); res = -EBADF; if (!file) goto out; backing_sb = file_inode(file)->i_sb; res = -ELOOP; if (backing_sb->s_stack_depth >= fc->max_stack_depth) goto out_fput; fb = kmalloc(sizeof(struct fuse_backing), GFP_KERNEL); res = -ENOMEM; if (!fb) goto out_fput; fb->file = file; fb->cred = prepare_creds(); refcount_set(&fb->count, 1); res = fuse_backing_id_alloc(fc, fb); if (res < 0) { fuse_backing_free(fb); fb = NULL; } out: pr_debug("%s: fb=0x%p, ret=%i\n", __func__, fb, res); return res; out_fput: fput(file); goto out; } int fuse_backing_close(struct fuse_conn *fc, int backing_id) { struct fuse_backing *fb = NULL; int err; pr_debug("%s: backing_id=%d\n", __func__, backing_id); /* TODO: relax CAP_SYS_ADMIN once backing files are visible to lsof */ err = -EPERM; if (!fc->passthrough || !capable(CAP_SYS_ADMIN)) goto out; err = -EINVAL; if (backing_id <= 0) goto out; err = -ENOENT; fb = fuse_backing_id_remove(fc, backing_id); if (!fb) goto out; fuse_backing_put(fb); err = 0; out: pr_debug("%s: fb=0x%p, err=%i\n", __func__, fb, err); return err; } /* * Setup passthrough to a backing file. * * Returns an fb object with elevated refcount to be stored in fuse inode. */ struct fuse_backing *fuse_passthrough_open(struct file *file, struct inode *inode, int backing_id) { struct fuse_file *ff = file->private_data; struct fuse_conn *fc = ff->fm->fc; struct fuse_backing *fb = NULL; struct file *backing_file; int err; err = -EINVAL; if (backing_id <= 0) goto out; rcu_read_lock(); fb = idr_find(&fc->backing_files_map, backing_id); fb = fuse_backing_get(fb); rcu_read_unlock(); err = -ENOENT; if (!fb) goto out; /* Allocate backing file per fuse file to store fuse path */ backing_file = backing_file_open(&file->f_path, file->f_flags, &fb->file->f_path, fb->cred); err = PTR_ERR(backing_file); if (IS_ERR(backing_file)) { fuse_backing_put(fb); goto out; } err = 0; ff->passthrough = backing_file; ff->cred = get_cred(fb->cred); out: pr_debug("%s: backing_id=%d, fb=0x%p, backing_file=0x%p, err=%i\n", __func__, backing_id, fb, ff->passthrough, err); return err ? ERR_PTR(err) : fb; } void fuse_passthrough_release(struct fuse_file *ff, struct fuse_backing *fb) { pr_debug("%s: fb=0x%p, backing_file=0x%p\n", __func__, fb, ff->passthrough); fput(ff->passthrough); ff->passthrough = NULL; put_cred(ff->cred); ff->cred = NULL; }