1 // SPDX-License-Identifier: GPL-2.0
5 #include <linux/nfs3.h>
6 #include <linux/nfs_fs.h>
7 #include <linux/posix_acl_xattr.h>
8 #include <linux/nfsacl.h>
13 #define NFSDBG_FACILITY NFSDBG_PROC
16 * nfs3_prepare_get_acl, nfs3_complete_get_acl, nfs3_abort_get_acl: Helpers for
17 * caching get_acl results in a race-free way. See fs/posix_acl.c:get_acl()
20 static void nfs3_prepare_get_acl(struct posix_acl
**p
)
22 struct posix_acl
*sentinel
= uncached_acl_sentinel(current
);
24 if (cmpxchg(p
, ACL_NOT_CACHED
, sentinel
) != ACL_NOT_CACHED
) {
25 /* Not the first reader or sentinel already in place. */
29 static void nfs3_complete_get_acl(struct posix_acl
**p
, struct posix_acl
*acl
)
31 struct posix_acl
*sentinel
= uncached_acl_sentinel(current
);
33 /* Only cache the ACL if our sentinel is still in place. */
35 if (cmpxchg(p
, sentinel
, acl
) != sentinel
)
36 posix_acl_release(acl
);
39 static void nfs3_abort_get_acl(struct posix_acl
**p
)
41 struct posix_acl
*sentinel
= uncached_acl_sentinel(current
);
43 /* Remove our sentinel upon failure. */
44 cmpxchg(p
, sentinel
, ACL_NOT_CACHED
);
47 struct posix_acl
*nfs3_get_acl(struct inode
*inode
, int type
)
49 struct nfs_server
*server
= NFS_SERVER(inode
);
50 struct page
*pages
[NFSACL_MAXPAGES
] = { };
51 struct nfs3_getaclargs args
= {
53 /* The xdr layer may allocate pages here. */
56 struct nfs3_getaclres res
= {
59 struct rpc_message msg
= {
65 if (!nfs_server_capable(inode
, NFS_CAP_ACLS
))
66 return ERR_PTR(-EOPNOTSUPP
);
68 status
= nfs_revalidate_inode(server
, inode
);
70 return ERR_PTR(status
);
73 * Only get the access acl when explicitly requested: We don't
74 * need it for access decisions, and only some applications use
75 * it. Applications which request the access acl first are not
76 * penalized from this optimization.
78 if (type
== ACL_TYPE_ACCESS
)
79 args
.mask
|= NFS_ACLCNT
|NFS_ACL
;
80 if (S_ISDIR(inode
->i_mode
))
81 args
.mask
|= NFS_DFACLCNT
|NFS_DFACL
;
85 dprintk("NFS call getacl\n");
86 msg
.rpc_proc
= &server
->client_acl
->cl_procinfo
[ACLPROC3_GETACL
];
87 res
.fattr
= nfs_alloc_fattr();
88 if (res
.fattr
== NULL
)
89 return ERR_PTR(-ENOMEM
);
91 if (args
.mask
& NFS_ACL
)
92 nfs3_prepare_get_acl(&inode
->i_acl
);
93 if (args
.mask
& NFS_DFACL
)
94 nfs3_prepare_get_acl(&inode
->i_default_acl
);
96 status
= rpc_call_sync(server
->client_acl
, &msg
, 0);
97 dprintk("NFS reply getacl: %d\n", status
);
99 /* pages may have been allocated at the xdr layer. */
100 for (count
= 0; count
< NFSACL_MAXPAGES
&& args
.pages
[count
]; count
++)
101 __free_page(args
.pages
[count
]);
105 status
= nfs_refresh_inode(inode
, res
.fattr
);
108 case -EPROTONOSUPPORT
:
109 dprintk("NFS_V3_ACL extension not supported; disabling\n");
110 server
->caps
&= ~NFS_CAP_ACLS
;
113 status
= -EOPNOTSUPP
;
117 if ((args
.mask
& res
.mask
) != args
.mask
) {
122 if (res
.acl_access
!= NULL
) {
123 if ((posix_acl_equiv_mode(res
.acl_access
, NULL
) == 0) ||
124 res
.acl_access
->a_count
== 0) {
125 posix_acl_release(res
.acl_access
);
126 res
.acl_access
= NULL
;
130 if (res
.mask
& NFS_ACL
)
131 nfs3_complete_get_acl(&inode
->i_acl
, res
.acl_access
);
133 forget_cached_acl(inode
, ACL_TYPE_ACCESS
);
135 if (res
.mask
& NFS_DFACL
)
136 nfs3_complete_get_acl(&inode
->i_default_acl
, res
.acl_default
);
138 forget_cached_acl(inode
, ACL_TYPE_DEFAULT
);
140 nfs_free_fattr(res
.fattr
);
141 if (type
== ACL_TYPE_ACCESS
) {
142 posix_acl_release(res
.acl_default
);
143 return res
.acl_access
;
145 posix_acl_release(res
.acl_access
);
146 return res
.acl_default
;
150 nfs3_abort_get_acl(&inode
->i_acl
);
151 nfs3_abort_get_acl(&inode
->i_default_acl
);
152 posix_acl_release(res
.acl_access
);
153 posix_acl_release(res
.acl_default
);
154 nfs_free_fattr(res
.fattr
);
155 return ERR_PTR(status
);
158 static int __nfs3_proc_setacls(struct inode
*inode
, struct posix_acl
*acl
,
159 struct posix_acl
*dfacl
)
161 struct nfs_server
*server
= NFS_SERVER(inode
);
162 struct nfs_fattr
*fattr
;
163 struct page
*pages
[NFSACL_MAXPAGES
];
164 struct nfs3_setaclargs args
= {
170 struct rpc_message msg
= {
176 if (acl
== NULL
&& (!S_ISDIR(inode
->i_mode
) || dfacl
== NULL
))
179 status
= -EOPNOTSUPP
;
180 if (!nfs_server_capable(inode
, NFS_CAP_ACLS
))
183 /* We are doing this here because XDR marshalling does not
184 * return any results, it BUGs. */
186 if (acl
!= NULL
&& acl
->a_count
> NFS_ACL_MAX_ENTRIES
)
188 if (dfacl
!= NULL
&& dfacl
->a_count
> NFS_ACL_MAX_ENTRIES
)
190 if (S_ISDIR(inode
->i_mode
)) {
191 args
.mask
|= NFS_DFACL
;
192 args
.acl_default
= dfacl
;
193 args
.len
= nfsacl_size(acl
, dfacl
);
195 args
.len
= nfsacl_size(acl
, NULL
);
197 if (args
.len
> NFS_ACL_INLINE_BUFSIZE
) {
198 unsigned int npages
= 1 + ((args
.len
- 1) >> PAGE_SHIFT
);
202 args
.pages
[args
.npages
] = alloc_page(GFP_KERNEL
);
203 if (args
.pages
[args
.npages
] == NULL
)
206 } while (args
.npages
< npages
);
209 dprintk("NFS call setacl\n");
211 fattr
= nfs_alloc_fattr();
215 msg
.rpc_proc
= &server
->client_acl
->cl_procinfo
[ACLPROC3_SETACL
];
216 msg
.rpc_resp
= fattr
;
217 status
= rpc_call_sync(server
->client_acl
, &msg
, 0);
218 nfs_access_zap_cache(inode
);
219 nfs_zap_acl_cache(inode
);
220 dprintk("NFS reply setacl: %d\n", status
);
224 status
= nfs_refresh_inode(inode
, fattr
);
225 set_cached_acl(inode
, ACL_TYPE_ACCESS
, acl
);
226 set_cached_acl(inode
, ACL_TYPE_DEFAULT
, dfacl
);
229 case -EPROTONOSUPPORT
:
230 dprintk("NFS_V3_ACL SETACL RPC not supported"
231 "(will not retry)\n");
232 server
->caps
&= ~NFS_CAP_ACLS
;
235 status
= -EOPNOTSUPP
;
237 nfs_free_fattr(fattr
);
239 while (args
.npages
!= 0) {
241 __free_page(args
.pages
[args
.npages
]);
247 int nfs3_proc_setacls(struct inode
*inode
, struct posix_acl
*acl
,
248 struct posix_acl
*dfacl
)
251 ret
= __nfs3_proc_setacls(inode
, acl
, dfacl
);
252 return (ret
== -EOPNOTSUPP
) ? 0 : ret
;
256 int nfs3_set_acl(struct inode
*inode
, struct posix_acl
*acl
, int type
)
258 struct posix_acl
*orig
= acl
, *dfacl
= NULL
, *alloc
;
261 if (S_ISDIR(inode
->i_mode
)) {
263 case ACL_TYPE_ACCESS
:
264 alloc
= get_acl(inode
, ACL_TYPE_DEFAULT
);
270 case ACL_TYPE_DEFAULT
:
271 alloc
= get_acl(inode
, ACL_TYPE_ACCESS
);
281 alloc
= posix_acl_from_mode(inode
->i_mode
, GFP_KERNEL
);
286 status
= __nfs3_proc_setacls(inode
, acl
, dfacl
);
289 posix_acl_release(acl
);
291 posix_acl_release(dfacl
);
295 status
= PTR_ERR(alloc
);
299 const struct xattr_handler
*nfs3_xattr_handlers
[] = {
300 &posix_acl_access_xattr_handler
,
301 &posix_acl_default_xattr_handler
,
306 nfs3_list_one_acl(struct inode
*inode
, int type
, const char *name
, void *data
,
307 size_t size
, ssize_t
*result
)
309 struct posix_acl
*acl
;
310 char *p
= data
+ *result
;
312 acl
= get_acl(inode
, type
);
313 if (IS_ERR_OR_NULL(acl
))
316 posix_acl_release(acl
);
318 *result
+= strlen(name
);
330 nfs3_listxattr(struct dentry
*dentry
, char *data
, size_t size
)
332 struct inode
*inode
= d_inode(dentry
);
336 error
= nfs3_list_one_acl(inode
, ACL_TYPE_ACCESS
,
337 XATTR_NAME_POSIX_ACL_ACCESS
, data
, size
, &result
);
341 error
= nfs3_list_one_acl(inode
, ACL_TYPE_DEFAULT
,
342 XATTR_NAME_POSIX_ACL_DEFAULT
, data
, size
, &result
);