fscrypt: Have filesystems handle their d_ops

This shifts the responsibility of setting up dentry operations from fscrypt to the individual filesystems, allowing them to have their own operations while still setting fscrypt's d_revalidate as appropriate. Most filesystems can just use generic_set_encrypted_ci_d_ops, unless they have their own specific dentry operations as well. That operation will set the minimal d_ops required under the circumstances. Since the fscrypt d_ops are set later on, we must set all d_ops there, since we cannot adjust those later on. This should not result in any change in behavior. Signed-off-by: Daniel Rosenberg <drosen@google.com> Acked-by: Theodore Ts'o <tytso@mit.edu> Acked-by: Eric Biggers <ebiggers@google.com> Signed-off-by: Jaegeuk Kim <jaegeuk@kernel.org>
2025-06-17 20:25:19 +00:00 · 2020-11-19 06:09:03 +00:00 · 2020-11-19 06:09:03 +00:00 · bb9cd9106b
commit bb9cd9106b
parent 608af70351
13 changed files with 8 additions and 35 deletions
--- a/include/linux/fscrypt.h
+++ b/include/linux/fscrypt.h
@ -741,8 +741,11 @@ static inline int fscrypt_prepare_rename(struct inode *old_dir,
 * directory's encryption key is available, then the lookup is assumed to be by
 * plaintext name; otherwise, it is assumed to be by no-key name.
 *
- * This also installs a custom ->d_revalidate() method which will invalidate the
- * dentry if it was created without the key and the key is later added.
+ * This will set DCACHE_NOKEY_NAME on the dentry if the lookup is by no-key
+ * name.  In this case the filesystem must assign the dentry a dentry_operations
+ * which contains fscrypt_d_revalidate (or contains a d_revalidate method that
+ * calls fscrypt_d_revalidate), so that the dentry will be invalidated if the
+ * directory's encryption key is later added.
 *
 * Return: 0 on success; -ENOENT if the directory's key is unavailable but the
 * filename isn't a valid no-key name, so a negative dentry should be created;