From nobody Thu Dec 18 18:04:40 2025 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from vger.kernel.org (vger.kernel.org [23.128.96.18]) by smtp.lore.kernel.org (Postfix) with ESMTP id 1532DC072A2 for ; Sun, 19 Nov 2023 22:53:49 +0000 (UTC) Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S231614AbjKSWxu (ORCPT ); Sun, 19 Nov 2023 17:53:50 -0500 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:56790 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229665AbjKSWxs (ORCPT ); Sun, 19 Nov 2023 17:53:48 -0500 Received: from smtp01.aussiebb.com.au (smtp01.aussiebb.com.au [IPv6:2403:5800:3:25::1001]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 0E4749E; Sun, 19 Nov 2023 14:53:45 -0800 (PST) Received: from localhost (localhost.localdomain [127.0.0.1]) by smtp01.aussiebb.com.au (Postfix) with ESMTP id 6AF7F1002E8; Mon, 20 Nov 2023 09:53:40 +1100 (AEDT) X-Virus-Scanned: Debian amavisd-new at smtp01.aussiebb.com.au Received: from smtp01.aussiebb.com.au ([127.0.0.1]) by localhost (smtp01.aussiebb.com.au [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DzoD7MaJF9yt; Mon, 20 Nov 2023 09:53:40 +1100 (AEDT) Received: by smtp01.aussiebb.com.au (Postfix, from userid 116) id 5FD251002F5; Mon, 20 Nov 2023 09:53:40 +1100 (AEDT) Received: from donald.themaw.com (2403-580f-7fe0--101a.ip6.aussiebb.net [IPv6:2403:580f:7fe0::101a]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) (Authenticated sender: ian146@aussiebb.com.au) by smtp01.aussiebb.com.au (Postfix) with ESMTPSA id 957AD100282; Mon, 20 Nov 2023 09:53:38 +1100 (AEDT) From: Ian Kent To: Al Viro , Christian Brauner Cc: Bill O'Donnell , Kernel Mailing List , autofs mailing list , linux-fsdevel , Ian Kent , syzbot+662f87a8ef490f45fa64@syzkaller.appspotmail.com Subject: [PATCH v2] autofs: add: new_inode check in autofs_fill_super() Date: Mon, 20 Nov 2023 06:53:19 +0800 Message-ID: <20231119225319.331156-1-raven@themaw.net> X-Mailer: git-send-email 2.41.0 MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Content-Type: text/plain; charset="utf-8" Add missing NULL check of root_inode in autofs_fill_super(). While we are at it simplify the logic by taking advantage of the VFS cleanup procedures and get rid of the goto error handling, as suggested by Al Viro. Signed-off-by: Ian Kent Cc: Al Viro Cc: Christian Brauner Cc: Bill O'Donnell Reported-by: syzbot+662f87a8ef490f45fa64@syzkaller.appspotmail.com Reviewed-by: Bill O'Donnell --- fs/autofs/inode.c | 59 ++++++++++++++++++----------------------------- 1 file changed, 22 insertions(+), 37 deletions(-) diff --git a/fs/autofs/inode.c b/fs/autofs/inode.c index a5083d447a62..6ecf68536240 100644 --- a/fs/autofs/inode.c +++ b/fs/autofs/inode.c @@ -311,7 +311,6 @@ static int autofs_fill_super(struct super_block *s, str= uct fs_context *fc) struct inode *root_inode; struct dentry *root; struct autofs_info *ino; - int ret =3D -ENOMEM; =20 pr_debug("starting up, sbi =3D %p\n", sbi); =20 @@ -328,56 +327,42 @@ static int autofs_fill_super(struct super_block *s, s= truct fs_context *fc) */ ino =3D autofs_new_ino(sbi); if (!ino) - goto fail; + return -ENOMEM; =20 root_inode =3D autofs_get_inode(s, S_IFDIR | 0755); - root_inode->i_uid =3D ctx->uid; - root_inode->i_gid =3D ctx->gid; - - root =3D d_make_root(root_inode); - if (!root) - goto fail_ino; - - root->d_fsdata =3D ino; + if (root_inode) { + root_inode->i_uid =3D ctx->uid; + root_inode->i_gid =3D ctx->gid; + root_inode->i_fop =3D &autofs_root_operations; + root_inode->i_op =3D &autofs_dir_inode_operations; + } + s->s_root =3D d_make_root(root_inode); + if (unlikely(!s->s_root)) { + autofs_free_ino(ino); + return -ENOMEM; + } + s->s_root->d_fsdata =3D ino; =20 if (ctx->pgrp_set) { sbi->oz_pgrp =3D find_get_pid(ctx->pgrp); - if (!sbi->oz_pgrp) { - ret =3D invalf(fc, "Could not find process group %d", - ctx->pgrp); - goto fail_dput; - } - } else { + if (!sbi->oz_pgrp) + return invalf(fc, "Could not find process group %d", + ctx->pgrp); + } else sbi->oz_pgrp =3D get_task_pid(current, PIDTYPE_PGID); - } =20 if (autofs_type_trigger(sbi->type)) - __managed_dentry_set_managed(root); - - root_inode->i_fop =3D &autofs_root_operations; - root_inode->i_op =3D &autofs_dir_inode_operations; + /* s->s_root won't be contended so there's little to + * be gained by not taking the d_lock when setting + * d_flags, even when a lot mounts are being done. + */ + managed_dentry_set_managed(s->s_root); =20 pr_debug("pipe fd =3D %d, pgrp =3D %u\n", sbi->pipefd, pid_nr(sbi->oz_pgrp)); =20 sbi->flags &=3D ~AUTOFS_SBI_CATATONIC; - - /* - * Success! Install the root dentry now to indicate completion. - */ - s->s_root =3D root; return 0; - - /* - * Failure ... clean up. - */ -fail_dput: - dput(root); - goto fail; -fail_ino: - autofs_free_ino(ino); -fail: - return ret; } =20 /* --=20 2.41.0