> Said that, there is an unpleasant bug in that area - link_target of a live > inode can be overwritten, right under the pathname resolution walking the > old contents of that thing Figuring that out is on the list. This week I've been working on cleaning up orangefs_devreq_writev, and Martin even has a version that changes the protocol where userspace uses write instead of writev, getting rid of the 4-or-5 iovec scheme Al hates. If he still hates it after the code is readable, we'll probably go that direction... And we have an infant fuzzer that we've already crashed the kernel with (and made an easy and good fix, I think). And also this week I have tried to address Linus' concerns about our old fashioned waiting scheme where we used add_wait_queue and set_current_state instead of the wait_event() model. Yi Liu who is also working with us on this project has provided a patch that changes all the pvfs2 occurrences to orangefs. These patches will be in our kernel.org tree very soon I hope, but we won't be done yet... -Mike "you're never done..." On Wed, Dec 9, 2015 at 7:48 PM, Al Viro <viro@xxxxxxxxxxxxxxxxxx> wrote: > On Thu, Dec 10, 2015 at 11:23:22AM +1100, Stephen Rothwell wrote: >> [Just adding the origefs maintainer to the cc list] >> > -static const char *pvfs2_follow_link(struct dentry *dentry, void **cookie) >> > +static const char *pvfs2_get_link(struct dentry *dentry, struct inode *inode, >> > + void **cookie) >> > { >> > - char *target = PVFS2_I(dentry->d_inode)->link_target; > > Better fix is to have inode->link = PVFS2_I(dentry->d_inode)->link_target; > when we set the latter and use .get_link = simple_get_link... > > Said that, there is an unpleasant bug in that area - link_target of a live > inode can be overwritten, right under the pathname resolution walking the > old contents of that thing. > > copy_attributes_to_inode() is triggered by ->d_revalidate() and by ->getattr() > and it's really, really unsafe for a live inode. Just look what it does > to ->i_mode... Sure, normally a server won't return different symlink bodies > on subsequent getattr requests. As long as it's sane (and not compromised, > etc.), but relying upon that is not a good idea. -- To unsubscribe from this list: send the line "unsubscribe linux-next" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html