diff options
| author | Trond Myklebust <Trond.Myklebust@netapp.com> | 2008-04-14 18:13:37 -0400 |
|---|---|---|
| committer | Trond Myklebust <Trond.Myklebust@netapp.com> | 2008-04-19 16:55:02 -0400 |
| commit | d2b831416365e8b1f27809b62d5e4260883956cc (patch) | |
| tree | f812eddfe29aed2d821b1d7f6d1fd9a64074a2d2 /net | |
| parent | a2b2bb8822c78806930bbb4d4c5bb3ae69648fd0 (diff) | |
SUNRPC: Protect creds against early garbage collection
Signed-off-by: Trond Myklebust <Trond.Myklebust@netapp.com>
Diffstat (limited to 'net')
| -rw-r--r-- | net/sunrpc/auth.c | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/net/sunrpc/auth.c b/net/sunrpc/auth.c index 0632cd0a1ad7..6bfea9ed6869 100644 --- a/net/sunrpc/auth.c +++ b/net/sunrpc/auth.c | |||
| @@ -220,6 +220,9 @@ rpcauth_destroy_credcache(struct rpc_auth *auth) | |||
| 220 | } | 220 | } |
| 221 | EXPORT_SYMBOL_GPL(rpcauth_destroy_credcache); | 221 | EXPORT_SYMBOL_GPL(rpcauth_destroy_credcache); |
| 222 | 222 | ||
| 223 | |||
| 224 | #define RPC_AUTH_EXPIRY_MORATORIUM (60 * HZ) | ||
| 225 | |||
| 223 | /* | 226 | /* |
| 224 | * Remove stale credentials. Avoid sleeping inside the loop. | 227 | * Remove stale credentials. Avoid sleeping inside the loop. |
| 225 | */ | 228 | */ |
| @@ -228,6 +231,7 @@ rpcauth_prune_expired(struct list_head *free, int nr_to_scan) | |||
| 228 | { | 231 | { |
| 229 | spinlock_t *cache_lock; | 232 | spinlock_t *cache_lock; |
| 230 | struct rpc_cred *cred; | 233 | struct rpc_cred *cred; |
| 234 | unsigned long expired = jiffies - RPC_AUTH_EXPIRY_MORATORIUM; | ||
| 231 | 235 | ||
| 232 | while (!list_empty(&cred_unused)) { | 236 | while (!list_empty(&cred_unused)) { |
| 233 | cred = list_entry(cred_unused.next, struct rpc_cred, cr_lru); | 237 | cred = list_entry(cred_unused.next, struct rpc_cred, cr_lru); |
| @@ -235,6 +239,10 @@ rpcauth_prune_expired(struct list_head *free, int nr_to_scan) | |||
| 235 | number_cred_unused--; | 239 | number_cred_unused--; |
| 236 | if (atomic_read(&cred->cr_count) != 0) | 240 | if (atomic_read(&cred->cr_count) != 0) |
| 237 | continue; | 241 | continue; |
| 242 | /* Enforce a 5 second garbage collection moratorium */ | ||
| 243 | if (time_in_range(cred->cr_expire, expired, jiffies) && | ||
| 244 | test_bit(RPCAUTH_CRED_UPTODATE, &cred->cr_flags) != 0) | ||
| 245 | continue; | ||
| 238 | cache_lock = &cred->cr_auth->au_credcache->lock; | 246 | cache_lock = &cred->cr_auth->au_credcache->lock; |
| 239 | spin_lock(cache_lock); | 247 | spin_lock(cache_lock); |
| 240 | if (atomic_read(&cred->cr_count) == 0) { | 248 | if (atomic_read(&cred->cr_count) == 0) { |