On Tue, 11 Feb 2025 at 13:01, Amir Goldstein <amir73il@xxxxxxxxx> wrote: > Really? I looked at the next patch before suggesting this > I did not see the breakage. Can you point it out? When lookup "falls off" of the normal lower layers while in metacopy mode with an absolute redirect, then it jumps to the data-only layers. The above suggestion imitates this falling off when it's really a permission problem, which would result in weird behavior, AFAICS. > BTW, this patch is adding consistency to following upperredirect > but the case of upperredirect and uppermetacopy read from > index still does not check metacopy/redirect config. True. Also that case should probably "loop back" to verifying that the redirection indeed results in the same origin as pointed to by the index, right? > Looking closer at ovl_maybe_validate_verity(), it's actually > worse - if you create an upper without metacopy above > a lower with metacopy, ovl_validate_verity() will only check > the metacopy xattr on metapath, which is the uppermost > and find no md5digest, so create an upper above a metacopy > lower is a way to avert verity check. I need to dig into how verity is supposed to work as I'm not seeing it clearly yet... > So I think lookup code needs to disallow finding metacopy > in middle layer and need to enforce that also when upper is found > via index. That's the hard link case. I.e. with metacopy=on,index=on it's possible that one link is metacopyied up, and the other one is then found through the index. Metacopy *should* work in this case, no? Thanks, Miklos
