xref: /linux/fs/xfs/xfs_xattr.c (revision 497e6b37b0099dc415578488287fd84fb74433eb)
1 // SPDX-License-Identifier: GPL-2.0
2 /*
3  * Copyright (C) 2008 Christoph Hellwig.
4  * Portions Copyright (C) 2000-2008 Silicon Graphics, Inc.
5  */
6 
7 #include "xfs.h"
8 #include "xfs_shared.h"
9 #include "xfs_format.h"
10 #include "xfs_log_format.h"
11 #include "xfs_da_format.h"
12 #include "xfs_trans_resv.h"
13 #include "xfs_mount.h"
14 #include "xfs_inode.h"
15 #include "xfs_da_btree.h"
16 #include "xfs_attr.h"
17 #include "xfs_acl.h"
18 #include "xfs_log.h"
19 #include "xfs_xattr.h"
20 
21 #include <linux/posix_acl_xattr.h>
22 
23 /*
24  * Get permission to use log-assisted atomic exchange of file extents.
25  *
26  * Callers must not be running any transactions or hold any inode locks, and
27  * they must release the permission by calling xlog_drop_incompat_feat
28  * when they're done.
29  */
30 static inline int
31 xfs_attr_grab_log_assist(
32 	struct xfs_mount	*mp)
33 {
34 	int			error = 0;
35 
36 	/*
37 	 * Protect ourselves from an idle log clearing the logged xattrs log
38 	 * incompat feature bit.
39 	 */
40 	xlog_use_incompat_feat(mp->m_log);
41 
42 	/*
43 	 * If log-assisted xattrs are already enabled, the caller can use the
44 	 * log assisted swap functions with the log-incompat reference we got.
45 	 */
46 	if (xfs_sb_version_haslogxattrs(&mp->m_sb))
47 		return 0;
48 
49 	/* Enable log-assisted xattrs. */
50 	error = xfs_add_incompat_log_feature(mp,
51 			XFS_SB_FEAT_INCOMPAT_LOG_XATTRS);
52 	if (error)
53 		goto drop_incompat;
54 
55 	xfs_warn_mount(mp, XFS_OPSTATE_WARNED_LARP,
56  "EXPERIMENTAL logged extended attributes feature in use. Use at your own risk!");
57 
58 	return 0;
59 drop_incompat:
60 	xlog_drop_incompat_feat(mp->m_log);
61 	return error;
62 }
63 
64 static inline void
65 xfs_attr_rele_log_assist(
66 	struct xfs_mount	*mp)
67 {
68 	xlog_drop_incompat_feat(mp->m_log);
69 }
70 
71 static inline bool
72 xfs_attr_want_log_assist(
73 	struct xfs_mount	*mp)
74 {
75 #ifdef DEBUG
76 	/* Logged xattrs require a V5 super for log_incompat */
77 	return xfs_has_crc(mp) && xfs_globals.larp;
78 #else
79 	return false;
80 #endif
81 }
82 
83 /*
84  * Set or remove an xattr, having grabbed the appropriate logging resources
85  * prior to calling libxfs.
86  */
87 int
88 xfs_attr_change(
89 	struct xfs_da_args	*args)
90 {
91 	struct xfs_mount	*mp = args->dp->i_mount;
92 	bool			use_logging = false;
93 	int			error;
94 
95 	ASSERT(!(args->op_flags & XFS_DA_OP_LOGGED));
96 
97 	if (xfs_attr_want_log_assist(mp)) {
98 		error = xfs_attr_grab_log_assist(mp);
99 		if (error)
100 			return error;
101 
102 		args->op_flags |= XFS_DA_OP_LOGGED;
103 		use_logging = true;
104 	}
105 
106 	error = xfs_attr_set(args);
107 
108 	if (use_logging)
109 		xfs_attr_rele_log_assist(mp);
110 	return error;
111 }
112 
113 
114 static int
115 xfs_xattr_get(const struct xattr_handler *handler, struct dentry *unused,
116 		struct inode *inode, const char *name, void *value, size_t size)
117 {
118 	struct xfs_da_args	args = {
119 		.dp		= XFS_I(inode),
120 		.attr_filter	= handler->flags,
121 		.name		= name,
122 		.namelen	= strlen(name),
123 		.value		= value,
124 		.valuelen	= size,
125 	};
126 	int			error;
127 
128 	error = xfs_attr_get(&args);
129 	if (error)
130 		return error;
131 	return args.valuelen;
132 }
133 
134 static int
135 xfs_xattr_set(const struct xattr_handler *handler,
136 	      struct user_namespace *mnt_userns, struct dentry *unused,
137 	      struct inode *inode, const char *name, const void *value,
138 	      size_t size, int flags)
139 {
140 	struct xfs_da_args	args = {
141 		.dp		= XFS_I(inode),
142 		.attr_filter	= handler->flags,
143 		.attr_flags	= flags,
144 		.name		= name,
145 		.namelen	= strlen(name),
146 		.value		= (void *)value,
147 		.valuelen	= size,
148 	};
149 	int			error;
150 
151 	error = xfs_attr_change(&args);
152 	if (!error && (handler->flags & XFS_ATTR_ROOT))
153 		xfs_forget_acl(inode, name);
154 	return error;
155 }
156 
157 static const struct xattr_handler xfs_xattr_user_handler = {
158 	.prefix	= XATTR_USER_PREFIX,
159 	.flags	= 0, /* no flags implies user namespace */
160 	.get	= xfs_xattr_get,
161 	.set	= xfs_xattr_set,
162 };
163 
164 static const struct xattr_handler xfs_xattr_trusted_handler = {
165 	.prefix	= XATTR_TRUSTED_PREFIX,
166 	.flags	= XFS_ATTR_ROOT,
167 	.get	= xfs_xattr_get,
168 	.set	= xfs_xattr_set,
169 };
170 
171 static const struct xattr_handler xfs_xattr_security_handler = {
172 	.prefix	= XATTR_SECURITY_PREFIX,
173 	.flags	= XFS_ATTR_SECURE,
174 	.get	= xfs_xattr_get,
175 	.set	= xfs_xattr_set,
176 };
177 
178 const struct xattr_handler *xfs_xattr_handlers[] = {
179 	&xfs_xattr_user_handler,
180 	&xfs_xattr_trusted_handler,
181 	&xfs_xattr_security_handler,
182 #ifdef CONFIG_XFS_POSIX_ACL
183 	&posix_acl_access_xattr_handler,
184 	&posix_acl_default_xattr_handler,
185 #endif
186 	NULL
187 };
188 
189 static void
190 __xfs_xattr_put_listent(
191 	struct xfs_attr_list_context *context,
192 	char *prefix,
193 	int prefix_len,
194 	unsigned char *name,
195 	int namelen)
196 {
197 	char *offset;
198 	int arraytop;
199 
200 	if (context->count < 0 || context->seen_enough)
201 		return;
202 
203 	if (!context->buffer)
204 		goto compute_size;
205 
206 	arraytop = context->count + prefix_len + namelen + 1;
207 	if (arraytop > context->firstu) {
208 		context->count = -1;	/* insufficient space */
209 		context->seen_enough = 1;
210 		return;
211 	}
212 	offset = context->buffer + context->count;
213 	memcpy(offset, prefix, prefix_len);
214 	offset += prefix_len;
215 	strncpy(offset, (char *)name, namelen);			/* real name */
216 	offset += namelen;
217 	*offset = '\0';
218 
219 compute_size:
220 	context->count += prefix_len + namelen + 1;
221 	return;
222 }
223 
224 static void
225 xfs_xattr_put_listent(
226 	struct xfs_attr_list_context *context,
227 	int		flags,
228 	unsigned char	*name,
229 	int		namelen,
230 	int		valuelen)
231 {
232 	char *prefix;
233 	int prefix_len;
234 
235 	ASSERT(context->count >= 0);
236 
237 	if (flags & XFS_ATTR_ROOT) {
238 #ifdef CONFIG_XFS_POSIX_ACL
239 		if (namelen == SGI_ACL_FILE_SIZE &&
240 		    strncmp(name, SGI_ACL_FILE,
241 			    SGI_ACL_FILE_SIZE) == 0) {
242 			__xfs_xattr_put_listent(
243 					context, XATTR_SYSTEM_PREFIX,
244 					XATTR_SYSTEM_PREFIX_LEN,
245 					XATTR_POSIX_ACL_ACCESS,
246 					strlen(XATTR_POSIX_ACL_ACCESS));
247 		} else if (namelen == SGI_ACL_DEFAULT_SIZE &&
248 			 strncmp(name, SGI_ACL_DEFAULT,
249 				 SGI_ACL_DEFAULT_SIZE) == 0) {
250 			__xfs_xattr_put_listent(
251 					context, XATTR_SYSTEM_PREFIX,
252 					XATTR_SYSTEM_PREFIX_LEN,
253 					XATTR_POSIX_ACL_DEFAULT,
254 					strlen(XATTR_POSIX_ACL_DEFAULT));
255 		}
256 #endif
257 
258 		/*
259 		 * Only show root namespace entries if we are actually allowed to
260 		 * see them.
261 		 */
262 		if (!capable(CAP_SYS_ADMIN))
263 			return;
264 
265 		prefix = XATTR_TRUSTED_PREFIX;
266 		prefix_len = XATTR_TRUSTED_PREFIX_LEN;
267 	} else if (flags & XFS_ATTR_SECURE) {
268 		prefix = XATTR_SECURITY_PREFIX;
269 		prefix_len = XATTR_SECURITY_PREFIX_LEN;
270 	} else {
271 		prefix = XATTR_USER_PREFIX;
272 		prefix_len = XATTR_USER_PREFIX_LEN;
273 	}
274 
275 	__xfs_xattr_put_listent(context, prefix, prefix_len, name,
276 				namelen);
277 	return;
278 }
279 
280 ssize_t
281 xfs_vn_listxattr(
282 	struct dentry	*dentry,
283 	char		*data,
284 	size_t		size)
285 {
286 	struct xfs_attr_list_context context;
287 	struct inode	*inode = d_inode(dentry);
288 	int		error;
289 
290 	/*
291 	 * First read the regular on-disk attributes.
292 	 */
293 	memset(&context, 0, sizeof(context));
294 	context.dp = XFS_I(inode);
295 	context.resynch = 1;
296 	context.buffer = size ? data : NULL;
297 	context.bufsize = size;
298 	context.firstu = context.bufsize;
299 	context.put_listent = xfs_xattr_put_listent;
300 
301 	error = xfs_attr_list(&context);
302 	if (error)
303 		return error;
304 	if (context.count < 0)
305 		return -ERANGE;
306 
307 	return context.count;
308 }
309