fsck: clean up log output

Make sure we get only 1 warning output per
problem.

Also, add new corruption types to broken_fs_v1.4.
This commit is contained in:
Jakob Unterwurzacher 2018-04-02 18:32:30 +02:00
parent e6caf56ea4
commit b6c8960b01
19 changed files with 64 additions and 61 deletions

30
fsck.go
View File

@ -16,8 +16,13 @@ import (
) )
type fsckObj struct { type fsckObj struct {
fs *fusefrontend.FS fs *fusefrontend.FS
errorCount int // List of corrupt files
corruptList []string
}
func (ck *fsckObj) markCorrupt(path string) {
ck.corruptList = append(ck.corruptList, path)
} }
// Recursively check dir for corruption // Recursively check dir for corruption
@ -25,8 +30,8 @@ func (ck *fsckObj) dir(path string) {
//fmt.Printf("ck.dir %q\n", path) //fmt.Printf("ck.dir %q\n", path)
entries, status := ck.fs.OpenDir(path, nil) entries, status := ck.fs.OpenDir(path, nil)
if !status.Ok() { if !status.Ok() {
ck.markCorrupt(path)
fmt.Printf("fsck: error opening dir %q: %v\n", path, status) fmt.Printf("fsck: error opening dir %q: %v\n", path, status)
ck.errorCount++
return return
} }
// Sort alphabetically // Sort alphabetically
@ -56,8 +61,8 @@ func (ck *fsckObj) dir(path string) {
func (ck *fsckObj) symlink(path string) { func (ck *fsckObj) symlink(path string) {
_, status := ck.fs.Readlink(path, nil) _, status := ck.fs.Readlink(path, nil)
if !status.Ok() { if !status.Ok() {
ck.markCorrupt(path)
fmt.Printf("fsck: error reading symlink %q: %v\n", path, status) fmt.Printf("fsck: error reading symlink %q: %v\n", path, status)
ck.errorCount++
} }
} }
@ -66,8 +71,8 @@ func (ck *fsckObj) file(path string) {
//fmt.Printf("ck.file %q\n", path) //fmt.Printf("ck.file %q\n", path)
f, status := ck.fs.Open(path, syscall.O_RDONLY, nil) f, status := ck.fs.Open(path, syscall.O_RDONLY, nil)
if !status.Ok() { if !status.Ok() {
ck.markCorrupt(path)
fmt.Printf("fsck: error opening file %q: %v\n", path, status) fmt.Printf("fsck: error opening file %q: %v\n", path, status)
ck.errorCount++
return return
} }
defer f.Release() defer f.Release()
@ -76,8 +81,8 @@ func (ck *fsckObj) file(path string) {
for { for {
result, status := f.Read(buf, off) result, status := f.Read(buf, off)
if !status.Ok() { if !status.Ok() {
ck.markCorrupt(path)
fmt.Printf("fsck: error reading file %q at offset %d: %v\n", path, off, status) fmt.Printf("fsck: error reading file %q at offset %d: %v\n", path, off, status)
ck.errorCount++
return return
} }
// EOF // EOF
@ -95,16 +100,21 @@ func fsck(args *argContainer) {
} }
args.allow_other = false args.allow_other = false
pfs, wipeKeys := initFuseFrontend(args) pfs, wipeKeys := initFuseFrontend(args)
defer wipeKeys()
fs := pfs.(*fusefrontend.FS) fs := pfs.(*fusefrontend.FS)
ck := fsckObj{ ck := fsckObj{
fs: fs, fs: fs,
} }
ck.dir("") ck.dir("")
fmt.Printf("fsck: found %d problems\n", ck.errorCount) wipeKeys()
if ck.errorCount != 0 { if len(ck.corruptList) == 0 {
os.Exit(exitcodes.FsckErrors) fmt.Printf("fsck summary: no problems found")
return
} }
fmt.Printf("fsck summary: found %d corrupt files:\n", len(ck.corruptList))
for _, path := range ck.corruptList {
fmt.Printf(" %q\n", path)
}
os.Exit(exitcodes.FsckErrors)
} }
type sortableDirEntries []fuse.DirEntry type sortableDirEntries []fuse.DirEntry

View File

@ -186,7 +186,7 @@ func (be *ContentEnc) DecryptBlock(ciphertext []byte, blockNo uint64, fileID []b
plaintext, err := be.cryptoCore.AEADCipher.Open(plaintext, nonce, ciphertext, aData) plaintext, err := be.cryptoCore.AEADCipher.Open(plaintext, nonce, ciphertext, aData)
if err != nil { if err != nil {
tlog.Warn.Printf("DecryptBlock: %s, len=%d", err.Error(), len(ciphertextOrig)) tlog.Debug.Printf("DecryptBlock: %s, len=%d", err.Error(), len(ciphertextOrig))
tlog.Debug.Println(hex.Dump(ciphertextOrig)) tlog.Debug.Println(hex.Dump(ciphertextOrig))
if be.forceDecode && err == stupidgcm.ErrAuth { if be.forceDecode && err == stupidgcm.ErrAuth {
return plaintext, err return plaintext, err

View File

@ -7,11 +7,10 @@ package contentenc
import ( import (
"bytes" "bytes"
"encoding/binary" "encoding/binary"
"fmt"
"log" "log"
"syscall"
"github.com/rfjakob/gocryptfs/internal/cryptocore" "github.com/rfjakob/gocryptfs/internal/cryptocore"
"github.com/rfjakob/gocryptfs/internal/tlog"
) )
const ( const (
@ -48,19 +47,16 @@ var allZeroFileID = make([]byte, headerIDLen)
// ParseHeader - parse "buf" into fileHeader object // ParseHeader - parse "buf" into fileHeader object
func ParseHeader(buf []byte) (*FileHeader, error) { func ParseHeader(buf []byte) (*FileHeader, error) {
if len(buf) != HeaderLen { if len(buf) != HeaderLen {
tlog.Warn.Printf("ParseHeader: invalid length: want %d bytes, got %d. Returning EINVAL.", HeaderLen, len(buf)) return nil, fmt.Errorf("ParseHeader: invalid length, want=%d have=%d", HeaderLen, len(buf))
return nil, syscall.EINVAL
} }
var h FileHeader var h FileHeader
h.Version = binary.BigEndian.Uint16(buf[0:headerVersionLen]) h.Version = binary.BigEndian.Uint16(buf[0:headerVersionLen])
if h.Version != CurrentVersion { if h.Version != CurrentVersion {
tlog.Warn.Printf("ParseHeader: invalid version: want %d, got %d. Returning EINVAL.", CurrentVersion, h.Version) return nil, fmt.Errorf("ParseHeader: invalid version, want=%d have=%d", CurrentVersion, h.Version)
return nil, syscall.EINVAL
} }
h.ID = buf[headerVersionLen:] h.ID = buf[headerVersionLen:]
if bytes.Equal(h.ID, allZeroFileID) { if bytes.Equal(h.ID, allZeroFileID) {
tlog.Warn.Printf("ParseHeader: file id is all-zero. Returning EINVAL.") return nil, fmt.Errorf("ParseHeader: file id is all-zero")
return nil, syscall.EINVAL
} }
return &h, nil return &h, nil
} }

View File

@ -167,6 +167,8 @@ func sendResponse(conn *net.UnixConn, err error, result string, warnText string)
if se, ok := pe.Err.(syscall.Errno); ok { if se, ok := pe.Err.(syscall.Errno); ok {
msg.ErrNo = int32(se) msg.ErrNo = int32(se)
} }
} else if err == syscall.ENOENT {
msg.ErrNo = int32(syscall.ENOENT)
} }
} }
jsonMsg, err := json.Marshal(msg) jsonMsg, err := json.Marshal(msg)

View File

@ -97,7 +97,7 @@ func (f *file) readFileID() ([]byte, error) {
n, err := f.fd.ReadAt(buf, 0) n, err := f.fd.ReadAt(buf, 0)
if err != nil { if err != nil {
if err == io.EOF && n != 0 { if err == io.EOF && n != 0 {
tlog.Warn.Printf("ino%d: readFileID: incomplete file, got %d instead of %d bytes", tlog.Warn.Printf("readFileID %d: incomplete file, got %d instead of %d bytes",
f.qIno.Ino, n, readLen) f.qIno.Ino, n, readLen)
} }
return nil, err return nil, err
@ -156,7 +156,8 @@ func (f *file) doRead(dst []byte, off uint64, length uint64) ([]byte, fuse.Statu
} }
if err != nil { if err != nil {
f.fileTableEntry.HeaderLock.Unlock() f.fileTableEntry.HeaderLock.Unlock()
return nil, fuse.ToStatus(err) tlog.Warn.Printf("doRead %d: corrupt header: %v", f.qIno.Ino, err)
return nil, fuse.EIO
} }
f.fileTableEntry.ID = tmpID f.fileTableEntry.ID = tmpID
// Downgrade the lock. // Downgrade the lock.
@ -200,11 +201,11 @@ func (f *file) doRead(dst []byte, off uint64, length uint64) ([]byte, fuse.Statu
if f.fs.args.ForceDecode && err == stupidgcm.ErrAuth { if f.fs.args.ForceDecode && err == stupidgcm.ErrAuth {
// We do not have the information which block was corrupt here anymore, // We do not have the information which block was corrupt here anymore,
// but DecryptBlocks() has already logged it anyway. // but DecryptBlocks() has already logged it anyway.
tlog.Warn.Printf("ino%d: doRead off=%d len=%d: returning corrupt data due to forcedecode", tlog.Warn.Printf("doRead %d: off=%d len=%d: returning corrupt data due to forcedecode",
f.qIno.Ino, off, length) f.qIno.Ino, off, length)
} else { } else {
curruptBlockNo := firstBlockNo + f.contentEnc.PlainOffToBlockNo(uint64(len(plaintext))) curruptBlockNo := firstBlockNo + f.contentEnc.PlainOffToBlockNo(uint64(len(plaintext)))
tlog.Warn.Printf("ino%d: doRead: corrupt block #%d: %v", f.qIno.Ino, curruptBlockNo, err) tlog.Warn.Printf("doRead %d: corrupt block #%d: %v", f.qIno.Ino, curruptBlockNo, err)
return nil, fuse.EIO return nil, fuse.EIO
} }
} }
@ -233,29 +234,20 @@ func (f *file) Read(buf []byte, off int64) (resultData fuse.ReadResult, code fus
tlog.Warn.Printf("Read: rejecting oversized request with EMSGSIZE, len=%d", len(buf)) tlog.Warn.Printf("Read: rejecting oversized request with EMSGSIZE, len=%d", len(buf))
return nil, fuse.Status(syscall.EMSGSIZE) return nil, fuse.Status(syscall.EMSGSIZE)
} }
f.fdLock.RLock() f.fdLock.RLock()
defer f.fdLock.RUnlock() defer f.fdLock.RUnlock()
tlog.Debug.Printf("ino%d: FUSE Read: offset=%d length=%d", f.qIno.Ino, len(buf), off) tlog.Debug.Printf("ino%d: FUSE Read: offset=%d length=%d", f.qIno.Ino, len(buf), off)
if f.fs.args.SerializeReads { if f.fs.args.SerializeReads {
serialize_reads.Wait(off, len(buf)) serialize_reads.Wait(off, len(buf))
} }
out, status := f.doRead(buf[:0], uint64(off), uint64(len(buf))) out, status := f.doRead(buf[:0], uint64(off), uint64(len(buf)))
if f.fs.args.SerializeReads { if f.fs.args.SerializeReads {
serialize_reads.Done() serialize_reads.Done()
} }
if status == fuse.EIO {
tlog.Warn.Printf("ino%d: Read: returning EIO, offset=%d, length=%d", f.qIno.Ino, len(buf), off)
}
if status != fuse.OK { if status != fuse.OK {
return nil, status return nil, status
} }
tlog.Debug.Printf("ino%d: Read: status %v, returning %d bytes", f.qIno.Ino, status, len(out)) tlog.Debug.Printf("ino%d: Read: status %v, returning %d bytes", f.qIno.Ino, status, len(out))
return fuse.ReadResultData(out), status return fuse.ReadResultData(out), status
} }

View File

@ -365,12 +365,13 @@ func (fs *FS) decryptSymlinkTarget(cData64 string) (string, error) {
} }
// Readlink implements pathfs.Filesystem. // Readlink implements pathfs.Filesystem.
func (fs *FS) Readlink(path string, context *fuse.Context) (out string, status fuse.Status) { func (fs *FS) Readlink(relPath string, context *fuse.Context) (out string, status fuse.Status) {
cPath, err := fs.getBackingPath(path) cPath, err := fs.encryptPath(relPath)
if err != nil { if err != nil {
return "", fuse.ToStatus(err) return "", fuse.ToStatus(err)
} }
cTarget, err := os.Readlink(cPath) cAbsPath := filepath.Join(fs.args.Cipherdir, cPath)
cTarget, err := os.Readlink(cAbsPath)
if err != nil { if err != nil {
return "", fuse.ToStatus(err) return "", fuse.ToStatus(err)
} }
@ -380,7 +381,7 @@ func (fs *FS) Readlink(path string, context *fuse.Context) (out string, status f
// Symlinks are encrypted like file contents (GCM) and base64-encoded // Symlinks are encrypted like file contents (GCM) and base64-encoded
target, err := fs.decryptSymlinkTarget(cTarget) target, err := fs.decryptSymlinkTarget(cTarget)
if err != nil { if err != nil {
tlog.Warn.Printf("Readlink: %v", err) tlog.Warn.Printf("Readlink %q: decrypting target failed: %v", cPath, err)
return "", fuse.EIO return "", fuse.EIO
} }
return string(target), fuse.OK return string(target), fuse.OK

View File

@ -286,12 +286,13 @@ func (fs *FS) OpenDir(dirName string, context *fuse.Context) ([]fuse.DirEntry, f
cachedIV, err = nametransform.ReadDirIV(cDirAbsPath) cachedIV, err = nametransform.ReadDirIV(cDirAbsPath)
if err != nil { if err != nil {
fs.dirIVLock.RUnlock() fs.dirIVLock.RUnlock()
// This can happen during normal operation when the directory has // The directory itself does not exist
// been deleted concurrently. But it can also mean that the if err == syscall.ENOENT {
// gocryptfs.diriv is missing due to an error, so log the event return nil, fuse.ENOENT
// at "info" level. }
tlog.Info.Printf("OpenDir: %v", err) // Any other problem warrants an error message
return nil, fuse.ToStatus(err) tlog.Warn.Printf("OpenDir %q: could not read gocryptfs.diriv: %v", cDirName, err)
return nil, fuse.EIO
} }
fs.nameTransform.DirIVCache.Store(dirName, cachedIV, cDirName) fs.nameTransform.DirIVCache.Store(dirName, cachedIV, cDirName)
fs.dirIVLock.RUnlock() fs.dirIVLock.RUnlock()

View File

@ -2,6 +2,7 @@ package nametransform
import ( import (
"bytes" "bytes"
"fmt"
"io" "io"
"log" "log"
"os" "os"
@ -26,11 +27,16 @@ const (
// ReadDirIV - read the "gocryptfs.diriv" file from "dir" (absolute ciphertext path) // ReadDirIV - read the "gocryptfs.diriv" file from "dir" (absolute ciphertext path)
// This function is exported because it allows for an efficient readdir implementation. // This function is exported because it allows for an efficient readdir implementation.
// If the directory itself cannot be opened, a syscall error will be returned.
// Otherwise, a fmt.Errorf() error value is returned with the details.
func ReadDirIV(dir string) (iv []byte, err error) { func ReadDirIV(dir string) (iv []byte, err error) {
fd, err := os.Open(filepath.Join(dir, DirIVFilename)) fd, err := os.Open(filepath.Join(dir, DirIVFilename))
if err != nil { if err != nil {
// Note: getting errors here is normal because of concurrent deletes. // Note: getting errors here is normal because of concurrent deletes.
return nil, err // Strip the useless annotation that os.Open has added and return
// the plain syscall error. The caller will log a nice message.
err2 := err.(*os.PathError)
return nil, err2.Err
} }
defer fd.Close() defer fd.Close()
return fdReadDirIV(fd) return fdReadDirIV(fd)
@ -42,9 +48,7 @@ func ReadDirIVAt(dirfd *os.File) (iv []byte, err error) {
fdRaw, err := syscallcompat.Openat(int(dirfd.Fd()), DirIVFilename, fdRaw, err := syscallcompat.Openat(int(dirfd.Fd()), DirIVFilename,
syscall.O_RDONLY|syscall.O_NOFOLLOW, 0) syscall.O_RDONLY|syscall.O_NOFOLLOW, 0)
if err != nil { if err != nil {
tlog.Warn.Printf("ReadDirIVAt: opening %q in dir %q failed: %v", return nil, fmt.Errorf("openat failed: %v", err)
DirIVFilename, dirfd.Name(), err)
return nil, err
} }
fd := os.NewFile(uintptr(fdRaw), DirIVFilename) fd := os.NewFile(uintptr(fdRaw), DirIVFilename)
defer fd.Close() defer fd.Close()
@ -61,17 +65,14 @@ func fdReadDirIV(fd *os.File) (iv []byte, err error) {
iv = make([]byte, DirIVLen+1) iv = make([]byte, DirIVLen+1)
n, err := fd.Read(iv) n, err := fd.Read(iv)
if err != nil && err != io.EOF { if err != nil && err != io.EOF {
tlog.Warn.Printf("ReadDirIVAt: Read failed: %v", err) return nil, fmt.Errorf("read failed: %v", err)
return nil, err
} }
iv = iv[0:n] iv = iv[0:n]
if len(iv) != DirIVLen { if len(iv) != DirIVLen {
tlog.Warn.Printf("ReadDirIVAt: wanted %d bytes, got %d. Returning EINVAL.", DirIVLen, len(iv)) return nil, fmt.Errorf("wanted %d bytes, got %d", DirIVLen, len(iv))
return nil, syscall.EINVAL
} }
if bytes.Equal(iv, allZeroDirIV) { if bytes.Equal(iv, allZeroDirIV) {
tlog.Warn.Printf("ReadDirIVAt: diriv is all-zero. Returning EINVAL.") return nil, fmt.Errorf("diriv is all-zero")
return nil, syscall.EINVAL
} }
return iv, nil return iv, nil
} }

View File

@ -110,6 +110,8 @@ func init() {
Warn = &toggledLogger{ Warn = &toggledLogger{
Enabled: true, Enabled: true,
Logger: log.New(os.Stderr, "", 0), Logger: log.New(os.Stderr, "", 0),
prefix: ColorYellow,
postfix: ColorReset,
} }
Fatal = &toggledLogger{ Fatal = &toggledLogger{
Enabled: true, Enabled: true,

View File

@ -25,7 +25,7 @@ func TestCtlSock(t *testing.T) {
req.EncryptPath = "not-existing-dir/xyz" req.EncryptPath = "not-existing-dir/xyz"
response = test_helpers.QueryCtlSock(t, sock, req) response = test_helpers.QueryCtlSock(t, sock, req)
if response.ErrNo != int32(syscall.ENOENT) || response.Result != "" { if response.ErrNo != int32(syscall.ENOENT) || response.Result != "" {
t.Errorf("incorrect error handling: %+v", response) t.Errorf("incorrect error handling: wanted ErrNo=%d, have %+v", syscall.ENOENT, response)
} }
// Strange paths should not cause a crash // Strange paths should not cause a crash
crashers := []string{"/foo", "foo/", "/foo/", ".", "/////", "/../../."} crashers := []string{"/foo", "foo/", "/foo/", ".", "/////", "/../../."}

View File

@ -0,0 +1 @@
%%%broken_symlink%%%

View File

@ -0,0 +1 @@
Wc

View File

@ -0,0 +1 @@
LO<EFBFBD>/;pl]<5D><>n<><6E><EFBFBD>fooo

View File

@ -2,7 +2,6 @@ package fsck
import ( import (
"os/exec" "os/exec"
"strings"
"testing" "testing"
"github.com/rfjakob/gocryptfs/internal/exitcodes" "github.com/rfjakob/gocryptfs/internal/exitcodes"
@ -18,9 +17,4 @@ func TestBrokenFsV14(t *testing.T) {
if code != exitcodes.FsckErrors { if code != exitcodes.FsckErrors {
t.Errorf("wrong exit code, have=%d want=%d", code, exitcodes.FsckErrors) t.Errorf("wrong exit code, have=%d want=%d", code, exitcodes.FsckErrors)
} }
lines := strings.Split(out, "\n")
summaryLine := lines[len(lines)-2]
if summaryLine != "fsck: found 5 problems" {
t.Errorf("wrong summary line: %q", summaryLine)
}
} }

View File

@ -2,6 +2,7 @@ package reverse_test
import ( import (
"io/ioutil" "io/ioutil"
"syscall"
"testing" "testing"
"github.com/rfjakob/gocryptfs/internal/ctlsock" "github.com/rfjakob/gocryptfs/internal/ctlsock"
@ -58,12 +59,12 @@ func TestCtlSockPathOps(t *testing.T) {
// Check that we do not mix up information for different directories. // Check that we do not mix up information for different directories.
req = ctlsock.RequestStruct{DecryptPath: "gocryptfs.longname.y6rxCn6Id8hIZL2t_STpdLZpu-aE2HpprJR25xD60mk="} req = ctlsock.RequestStruct{DecryptPath: "gocryptfs.longname.y6rxCn6Id8hIZL2t_STpdLZpu-aE2HpprJR25xD60mk="}
response = test_helpers.QueryCtlSock(t, sock, req) response = test_helpers.QueryCtlSock(t, sock, req)
if response.ErrNo != -1 { if response.ErrNo != int32(syscall.ENOENT) {
t.Errorf("File should not exist: ErrNo=%d ErrText=%s", response.ErrNo, response.ErrText) t.Errorf("File should not exist: ErrNo=%d ErrText=%s", response.ErrNo, response.ErrText)
} }
req = ctlsock.RequestStruct{DecryptPath: "v6puXntoQOk7Mhl8zJ4Idg==/gocryptfs.longname.ZQCAoi5li3xvDZRO8McBV0L_kzJc4IcAOEzuW-2S1Y4="} req = ctlsock.RequestStruct{DecryptPath: "v6puXntoQOk7Mhl8zJ4Idg==/gocryptfs.longname.ZQCAoi5li3xvDZRO8McBV0L_kzJc4IcAOEzuW-2S1Y4="}
response = test_helpers.QueryCtlSock(t, sock, req) response = test_helpers.QueryCtlSock(t, sock, req)
if response.ErrNo != -1 { if response.ErrNo != int32(syscall.ENOENT) {
t.Errorf("File should not exist: ErrNo=%d ErrText=%s", response.ErrNo, response.ErrText) t.Errorf("File should not exist: ErrNo=%d ErrText=%s", response.ErrNo, response.ErrText)
} }
} }