[Bug 1674868] Re: Fuse-ext2 deadlocks on creating symlinks

Simon Quigley tsimonq2 at ubuntu.com
Wed Aug 30 21:24:03 UTC 2017


** Description changed:

+ [Impact]
+ 
+  * Any attempt to create/overwrite symlinks in a partition mounted by
+ fuseext2 causes the fuseext2 process to deadlock, preventing the mounted
+ filesystem from being used at all until the userspace process is killed
+ and the filesystem is remounted.
+ 
+ [Test Case]
+ 
+  * dd if=/dev/zero of=partition bs=1M count=200
+  * mkfs.ext2 partition
+  * mkdir mount
+  * fuseext2 partition mount
+  * cd mount
+  * touch test
+  * ln -s test link - Doesn't complete
+  * In another shell try to do anything else in the mount directory (ls, touch, rm) - Don't complete
+ 
+ [Regression Potential]
+ 
+  * Since this changes the locking strategy of the code to hold locks less, the main risk is exposing a case where data can be accessed in a non-threadsafe manner, leading to unexpected behaviour.
+  * The places where the change has been made are at the exit points of the function, and match where similar unlocks are made in other places in the code.
+  * Since the program at risk is (by design) a userspace program, the risk of kernel data leakage is minimal.
+ 
+ [Other Info]
+ 
+  * I can't actually work out where the upstream code for this project lives, the only upstream I could find is https://github.com/alperakcan/fuse-ext2 but that doesn't have any locking code at all (even in the reentrant branch) so I can't see where this issue came from.
+  * This issue seems to apply to all versions of fuseext2 in the ubuntu repos (well, at least it's there in trusty, xenial and zesty)
+ 
+ [Original Description]
+ 
  Trying to create a symlink in a filesystem mounted by fuseext2 causes
  the fuseext2 userspace process to deadlock before responding to the fuse
  request.  This is simply due to a code bug in fuse-ext2/op_link.c (lines
  104 and 109) where the code calls FUSE_EXT2_LOCK rather than
  FUSE_EXT2_UNLOCK on exiting the function.
  
  I've confirmed that making that changes allows me to create symlinks
  happily on the mounted filesystem.  The bug appears to exist upstream
  too.
  
  System info:
  
  $ lsb_release -rd
  Description:	Linux Mint 18.1 Serena
  Release:	18.1
  
  Software version:
  
  $ apt show fuseext2
  Package: fuseext2
  Version: 0.4-1.1
  Priority: optional
  Section: universe/misc
  Source: fuse-umfuse-ext2
  Origin: Ubuntu
  Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
  Original-Maintainer: Debian VSquare Team <pkg-vsquare-devel at lists.alioth.debian.org>
  Bugs: https://bugs.launchpad.net/ubuntu/+filebug
  Installed-Size: 103 kB
  Depends: e2fslibs (>= 1.42), libc6 (>= 2.4), libfuse2 (>= 2.8.1), fuse
  Homepage: http://view-os.sourceforge.net
  Download-Size: 24.7 kB
  APT-Manual-Installed: yes
  APT-Sources: http://archive.ubuntu.com/ubuntu xenial/universe amd64 Packages

** Also affects: fuse-umfuse-ext2 (Ubuntu Trusty)
   Importance: Undecided
       Status: New

** Changed in: fuse-umfuse-ext2 (Ubuntu)
       Status: New => Fix Released

** Changed in: fuse-umfuse-ext2 (Ubuntu Trusty)
   Importance: Undecided => High

** Changed in: fuse-umfuse-ext2 (Ubuntu Trusty)
       Status: New => Confirmed

-- 
You received this bug notification because you are a member of Ubuntu
Sponsors Team, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1674868

Title:
  Fuse-ext2 deadlocks on creating symlinks

Status in fuse-umfuse-ext2 package in Ubuntu:
  Fix Released
Status in fuse-umfuse-ext2 source package in Trusty:
  Confirmed

Bug description:
  [Impact]

   * Any attempt to create/overwrite symlinks in a partition mounted by
  fuseext2 causes the fuseext2 process to deadlock, preventing the
  mounted filesystem from being used at all until the userspace process
  is killed and the filesystem is remounted.

  [Test Case]

   * dd if=/dev/zero of=partition bs=1M count=200
   * mkfs.ext2 partition
   * mkdir mount
   * fuseext2 partition mount
   * cd mount
   * touch test
   * ln -s test link - Doesn't complete
   * In another shell try to do anything else in the mount directory (ls, touch, rm) - Don't complete

  [Regression Potential]

   * Since this changes the locking strategy of the code to hold locks less, the main risk is exposing a case where data can be accessed in a non-threadsafe manner, leading to unexpected behaviour.
   * The places where the change has been made are at the exit points of the function, and match where similar unlocks are made in other places in the code.
   * Since the program at risk is (by design) a userspace program, the risk of kernel data leakage is minimal.

  [Other Info]

   * I can't actually work out where the upstream code for this project lives, the only upstream I could find is https://github.com/alperakcan/fuse-ext2 but that doesn't have any locking code at all (even in the reentrant branch) so I can't see where this issue came from.
   * This issue seems to apply to all versions of fuseext2 in the ubuntu repos (well, at least it's there in trusty, xenial and zesty)

  [Original Description]

  Trying to create a symlink in a filesystem mounted by fuseext2 causes
  the fuseext2 userspace process to deadlock before responding to the
  fuse request.  This is simply due to a code bug in fuse-ext2/op_link.c
  (lines 104 and 109) where the code calls FUSE_EXT2_LOCK rather than
  FUSE_EXT2_UNLOCK on exiting the function.

  I've confirmed that making that changes allows me to create symlinks
  happily on the mounted filesystem.  The bug appears to exist upstream
  too.

  System info:

  $ lsb_release -rd
  Description:	Linux Mint 18.1 Serena
  Release:	18.1

  Software version:

  $ apt show fuseext2
  Package: fuseext2
  Version: 0.4-1.1
  Priority: optional
  Section: universe/misc
  Source: fuse-umfuse-ext2
  Origin: Ubuntu
  Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
  Original-Maintainer: Debian VSquare Team <pkg-vsquare-devel at lists.alioth.debian.org>
  Bugs: https://bugs.launchpad.net/ubuntu/+filebug
  Installed-Size: 103 kB
  Depends: e2fslibs (>= 1.42), libc6 (>= 2.4), libfuse2 (>= 2.8.1), fuse
  Homepage: http://view-os.sourceforge.net
  Download-Size: 24.7 kB
  APT-Manual-Installed: yes
  APT-Sources: http://archive.ubuntu.com/ubuntu xenial/universe amd64 Packages

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/fuse-umfuse-ext2/+bug/1674868/+subscriptions



More information about the Ubuntu-sponsors mailing list