Commit 10c64cea authored Apr 27, 2016 by Al Viro

atomic_open(): fix the handling of create_error



* if we have a hashed negative dentry and either CREAT|EXCL on
r/o filesystem, or CREAT|TRUNC on r/o filesystem, or CREAT|EXCL
with failing may_o_create(), we should fail with EROFS or the
error may_o_create() has returned, but not ENOENT.  Which is what
the current code ends up returning.

* if we have CREAT|TRUNC hitting a regular file on a read-only
filesystem, we can't fail with EROFS here.  At the very least,
not until we'd done follow_managed() - we might have a writable
file (or a device, for that matter) bound on top of that one.
Moreover, the code downstream will see that O_TRUNC and attempt
to grab the write access (*after* following possible mount), so
if we really should fail with EROFS, it will happen.  No need
to do that inside atomic_open().

The real logics is much simpler than what the current code is
trying to do - if we decided to go for simple lookup, ended
up with a negative dentry *and* had create_error set, fail with
create_error.  No matter whether we'd got that negative dentry
from lookup_real() or had found it in dcache.

Cc: stable@vger.kernel.org # v3.6+
Acked-by: Miklos Szeredi <mszeredi@redhat.com>
Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>

parent 357f435d

fs/namei.c

+4 −16

Original line number	Diff line number	Diff line
		@@ -2942,22 +2942,10 @@ no_open:
		dentry = lookup_real(dir, dentry, nd->flags);
		if (IS_ERR(dentry))
		return PTR_ERR(dentry);

		if (create_error) {
		int open_flag = op->open_flag;

		}
		if (create_error && !dentry->d_inode) {
		error = create_error;
		if ((open_flag & O_EXCL)) {
		if (!dentry->d_inode)
		goto out;
		} else if (!dentry->d_inode) {
		goto out;
		} else if ((open_flag & O_TRUNC) &&
		d_is_reg(dentry)) {
		goto out;
		}
		/* will fail later, go on to get the right error */
		}
		}
		looked_up:
		path->dentry = dentry;

Admin message