[PATCH v6 06/15] VFS: introduce start_creating_noperm() and start_removing_noperm()
Al Viro
viro at zeniv.linux.org.uk
Sun Nov 30 00:19:18 UTC 2025
On Sat, Nov 29, 2025 at 09:01:05PM -0300, Val Packett wrote:
> > diff --git a/fs/fuse/dir.c b/fs/fuse/dir.c
> > index 316922d5dd13..a0d5b302bcc2 100644
> > --- a/fs/fuse/dir.c
> > +++ b/fs/fuse/dir.c
> > @@ -1397,27 +1397,25 @@ int fuse_reverse_inval_entry(struct fuse_conn *fc, u64 parent_nodeid,
> > if (!parent)
> > return -ENOENT;
> > - inode_lock_nested(parent, I_MUTEX_PARENT);
> > if (!S_ISDIR(parent->i_mode))
> > - goto unlock;
> > + goto put_parent;
> > err = -ENOENT;
> > dir = d_find_alias(parent);
> > if (!dir)
> > - goto unlock;
> > + goto put_parent;
> > - name->hash = full_name_hash(dir, name->name, name->len);
> > - entry = d_lookup(dir, name);
> > + entry = start_removing_noperm(dir, name);
> > dput(dir);
> > - if (!entry)
> > - goto unlock;
> > + if (IS_ERR(entry))
> > + goto put_parent;
>
> This broke xdg-document-portal (and potentially other FUSE filesystems) by
> introducing a massive deadlock.
ACK. That chunk needs to be reverted - this is *not* "remove an object by
parent and name", it's "invalidate stuff under that parent with this
first name component" and I would like to understand what FUSE_EXPIRE_ONLY
thing is about.
Miklos, could you give some details on that thing? This chunk definitely
needs to go, the question is what that code is trying to do other than
d_invalidate()...
More information about the Linux-security-module-archive
mailing list