Re: race between vfs_rename and do_linkat (mv and link)

From: Al Viro
Date: Tue Feb 15 2022 - 11:18:49 EST

Next message: Brian Geffon: "Re: [PATCH] x86/fpu: Correct pkru/xstate inconsistency"
Previous message: Matthew Wilcox: "Re: race between vfs_rename and do_linkat (mv and link)"
In reply to: Al Viro: "Re: race between vfs_rename and do_linkat (mv and link)"
Next in thread: Xavier Roche: "Re: race between vfs_rename and do_linkat (mv and link)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Feb 15, 2022 at 04:06:06PM +0000, Al Viro wrote:

> Worse, you need to deal with the corner cases. "/" or anything ending on
> "." or ".." can be rejected (no links to directories) and thankfully we
> do not allow AT_EMPTY for linkat(2), but... procfs symlinks are in the

That'd be AT_EMPTY_PATH, obviously, and unfortunately we do allow that.
Which brings another fun case to deal with. Same problem with "what's the
parent of that thing and how do we make it stable?"...

Oh, and you need to cope with O_TMPFILE ones as well - both for that and
for procfs symlinks to them. Which is fine from the vfs_link() POV (see
I_LINKABLE check in there), but the locking is outside of that, so we
need to deal with that joy. And _there_ you have no parent at all - what
could it be, anyway? So we'd need to decide what to lock. *AND* we have
the possibility of another thread doing link(2) on what used to be
O_TMPFILE, which would give it a parent by the time we get to doing
the actual operation...

Next message: Brian Geffon: "Re: [PATCH] x86/fpu: Correct pkru/xstate inconsistency"
Previous message: Matthew Wilcox: "Re: race between vfs_rename and do_linkat (mv and link)"
In reply to: Al Viro: "Re: race between vfs_rename and do_linkat (mv and link)"
Next in thread: Xavier Roche: "Re: race between vfs_rename and do_linkat (mv and link)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]