diff options
author | Trond Myklebust <Trond.Myklebust@netapp.com> | 2008-04-14 18:13:37 -0400 |
---|---|---|
committer | Trond Myklebust <Trond.Myklebust@netapp.com> | 2008-04-19 16:55:02 -0400 |
commit | d2b831416365e8b1f27809b62d5e4260883956cc (patch) | |
tree | f812eddfe29aed2d821b1d7f6d1fd9a64074a2d2 | |
parent | a2b2bb8822c78806930bbb4d4c5bb3ae69648fd0 (diff) |
SUNRPC: Protect creds against early garbage collection
Signed-off-by: Trond Myklebust <Trond.Myklebust@netapp.com>
-rw-r--r-- | net/sunrpc/auth.c | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/net/sunrpc/auth.c b/net/sunrpc/auth.c index 0632cd0a1ad7..6bfea9ed6869 100644 --- a/net/sunrpc/auth.c +++ b/net/sunrpc/auth.c | |||
@@ -220,6 +220,9 @@ rpcauth_destroy_credcache(struct rpc_auth *auth) | |||
220 | } | 220 | } |
221 | EXPORT_SYMBOL_GPL(rpcauth_destroy_credcache); | 221 | EXPORT_SYMBOL_GPL(rpcauth_destroy_credcache); |
222 | 222 | ||
223 | |||
224 | #define RPC_AUTH_EXPIRY_MORATORIUM (60 * HZ) | ||
225 | |||
223 | /* | 226 | /* |
224 | * Remove stale credentials. Avoid sleeping inside the loop. | 227 | * Remove stale credentials. Avoid sleeping inside the loop. |
225 | */ | 228 | */ |
@@ -228,6 +231,7 @@ rpcauth_prune_expired(struct list_head *free, int nr_to_scan) | |||
228 | { | 231 | { |
229 | spinlock_t *cache_lock; | 232 | spinlock_t *cache_lock; |
230 | struct rpc_cred *cred; | 233 | struct rpc_cred *cred; |
234 | unsigned long expired = jiffies - RPC_AUTH_EXPIRY_MORATORIUM; | ||
231 | 235 | ||
232 | while (!list_empty(&cred_unused)) { | 236 | while (!list_empty(&cred_unused)) { |
233 | cred = list_entry(cred_unused.next, struct rpc_cred, cr_lru); | 237 | cred = list_entry(cred_unused.next, struct rpc_cred, cr_lru); |
@@ -235,6 +239,10 @@ rpcauth_prune_expired(struct list_head *free, int nr_to_scan) | |||
235 | number_cred_unused--; | 239 | number_cred_unused--; |
236 | if (atomic_read(&cred->cr_count) != 0) | 240 | if (atomic_read(&cred->cr_count) != 0) |
237 | continue; | 241 | continue; |
242 | /* Enforce a 5 second garbage collection moratorium */ | ||
243 | if (time_in_range(cred->cr_expire, expired, jiffies) && | ||
244 | test_bit(RPCAUTH_CRED_UPTODATE, &cred->cr_flags) != 0) | ||
245 | continue; | ||
238 | cache_lock = &cred->cr_auth->au_credcache->lock; | 246 | cache_lock = &cred->cr_auth->au_credcache->lock; |
239 | spin_lock(cache_lock); | 247 | spin_lock(cache_lock); |
240 | if (atomic_read(&cred->cr_count) == 0) { | 248 | if (atomic_read(&cred->cr_count) == 0) { |