Commit 44367d15 authored by Andrew Morton's avatar Andrew Morton Committed by Linus Torvalds

[PATCH] autofs4: dnotify + autofs may create signal/restart syscall loop

From: Ian Kent <raven@themaw.net>

From: Jeff Mahoney <jeffm@suse.com>

I saw a recent bug report that showed when a process set up a dnotify
against the autofs root and then attempted an access(2) call inside the
autofs namespace on a mount that would fail, it would create a
signal/restart loop.

The cause is that the autofs code checks to see if any signals are pending
after it waits on a response from the autofs daemon.  If it finds any, it
assumes that autofs_wait was interrupted, and that it should return
-ERESTARTNOINTR.  The problem with this is that a signal_pending(current)
check will return true if *any* signals were received, not just if a signal
that interrupted the wait was received.  autofs_wait explicitly blocks all
signals except for SIGKILL, SIGQUIT, and SIGINT before calling
interruptible_sleep_on.

The effect is that if a dnotify is set against the autofs root, when the
autofs daemon creates the directory, a dnotify event will be sent to the
originating process.  Since the code in autofs_root_lookup doesn't check to
see what signals are actually pending, it bails early, telling the caller
to try again.  The loop goes on forever until interrupted via one of the
actual interrupting signals.

The following patch makes both autofs_root_lookup and autofs4_root_lookup
verify that one of its defined "shutdown" signals are pending before
bailing out early.  Any other signal should be delivered later, as
expected.  It doesn't matter if the signal occured outside of the sleep in
autofs_wait.  The calling process will either go away or try again.
parent 55faa529
...@@ -203,6 +203,7 @@ int autofs4_fill_super(struct super_block *s, void *data, int silent) ...@@ -203,6 +203,7 @@ int autofs4_fill_super(struct super_block *s, void *data, int silent)
sbi->oz_pgrp = process_group(current); sbi->oz_pgrp = process_group(current);
sbi->sb = s; sbi->sb = s;
sbi->version = 0; sbi->version = 0;
sbi->sub_version = 0;
sbi->queues = NULL; sbi->queues = NULL;
s->s_blocksize = 1024; s->s_blocksize = 1024;
s->s_blocksize_bits = 10; s->s_blocksize_bits = 10;
...@@ -244,6 +245,7 @@ int autofs4_fill_super(struct super_block *s, void *data, int silent) ...@@ -244,6 +245,7 @@ int autofs4_fill_super(struct super_block *s, void *data, int silent)
} }
sbi->version = maxproto > AUTOFS_MAX_PROTO_VERSION ? AUTOFS_MAX_PROTO_VERSION : maxproto; sbi->version = maxproto > AUTOFS_MAX_PROTO_VERSION ? AUTOFS_MAX_PROTO_VERSION : maxproto;
sbi->sub_version = AUTOFS_PROTO_SUBVERSION;
DPRINTK(("autofs: pipe fd = %d, pgrp = %u\n", pipefd, sbi->oz_pgrp)); DPRINTK(("autofs: pipe fd = %d, pgrp = %u\n", pipefd, sbi->oz_pgrp));
pipe = fget(pipefd); pipe = fget(pipefd);
......
...@@ -292,9 +292,15 @@ static struct dentry *autofs4_root_lookup(struct inode *dir, struct dentry *dent ...@@ -292,9 +292,15 @@ static struct dentry *autofs4_root_lookup(struct inode *dir, struct dentry *dent
* a signal. If so we can force a restart.. * a signal. If so we can force a restart..
*/ */
if (dentry->d_flags & DCACHE_AUTOFS_PENDING) { if (dentry->d_flags & DCACHE_AUTOFS_PENDING) {
/* See if we were interrupted */
if (signal_pending(current)) { if (signal_pending(current)) {
unlock_kernel(); sigset_t *sigset = &current->pending.signal;
return ERR_PTR(-ERESTARTNOINTR); if (sigismember (sigset, SIGKILL) ||
sigismember (sigset, SIGQUIT) ||
sigismember (sigset, SIGINT)) {
unlock_kernel();
return ERR_PTR(-ERESTARTNOINTR);
}
} }
} }
unlock_kernel(); unlock_kernel();
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment