aboutsummaryrefslogtreecommitdiffstats
path: root/net
diff options
context:
space:
mode:
authorStanislav Kinsbursky <skinsbursky@parallels.com>2013-06-24 03:52:38 -0400
committerTrond Myklebust <Trond.Myklebust@netapp.com>2013-06-28 15:41:18 -0400
commit384816051ca9125cd54750e59c780c2a2655fa4f (patch)
treeb7ef1f57a54d747f750c2ad8c8974b236ff9febf /net
parent52fcac988ae6d5a902e9c1d79fc11ba5ec9361e7 (diff)
SUNRPC: fix races on PipeFS MOUNT notifications
Below are races, when RPC client can be created without PiepFS dentries CPU#0 CPU#1 ----------------------------- ----------------------------- rpc_new_client rpc_fill_super rpc_setup_pipedir mutex_lock(&sn->pipefs_sb_lock) rpc_get_sb_net == NULL (no per-net PipeFS superblock) sn->pipefs_sb = sb; notifier_call_chain(MOUNT) (client is not in the list) rpc_register_client (client without pipes dentries) To fix this patch: 1) makes PipeFS mount notification call with pipefs_sb_lock being held. 2) releases pipefs_sb_lock on new SUNRPC client creation only after registration. Signed-off-by: Stanislav Kinsbursky <skinsbursky@parallels.com> Cc: stable@vger.kernel.org Signed-off-by: Trond Myklebust <Trond.Myklebust@netapp.com>
Diffstat (limited to 'net')
-rw-r--r--net/sunrpc/clnt.c26
-rw-r--r--net/sunrpc/rpc_pipe.c3
2 files changed, 18 insertions, 11 deletions
diff --git a/net/sunrpc/clnt.c b/net/sunrpc/clnt.c
index 5a750b9c3640..b827a4b91975 100644
--- a/net/sunrpc/clnt.c
+++ b/net/sunrpc/clnt.c
@@ -157,20 +157,15 @@ static struct dentry *rpc_setup_pipedir_sb(struct super_block *sb,
157} 157}
158 158
159static int 159static int
160rpc_setup_pipedir(struct rpc_clnt *clnt, const char *dir_name) 160rpc_setup_pipedir(struct rpc_clnt *clnt, const char *dir_name,
161 struct super_block *pipefs_sb)
161{ 162{
162 struct net *net = rpc_net_ns(clnt);
163 struct super_block *pipefs_sb;
164 struct dentry *dentry; 163 struct dentry *dentry;
165 164
166 clnt->cl_dentry = NULL; 165 clnt->cl_dentry = NULL;
167 if (dir_name == NULL) 166 if (dir_name == NULL)
168 return 0; 167 return 0;
169 pipefs_sb = rpc_get_sb_net(net);
170 if (!pipefs_sb)
171 return 0;
172 dentry = rpc_setup_pipedir_sb(pipefs_sb, clnt, dir_name); 168 dentry = rpc_setup_pipedir_sb(pipefs_sb, clnt, dir_name);
173 rpc_put_sb_net(net);
174 if (IS_ERR(dentry)) 169 if (IS_ERR(dentry))
175 return PTR_ERR(dentry); 170 return PTR_ERR(dentry);
176 clnt->cl_dentry = dentry; 171 clnt->cl_dentry = dentry;
@@ -296,6 +291,7 @@ static struct rpc_clnt * rpc_new_client(const struct rpc_create_args *args, stru
296 struct rpc_clnt *clnt = NULL; 291 struct rpc_clnt *clnt = NULL;
297 struct rpc_auth *auth; 292 struct rpc_auth *auth;
298 int err; 293 int err;
294 struct super_block *pipefs_sb;
299 295
300 /* sanity check the name before trying to print it */ 296 /* sanity check the name before trying to print it */
301 dprintk("RPC: creating %s client for %s (xprt %p)\n", 297 dprintk("RPC: creating %s client for %s (xprt %p)\n",
@@ -354,9 +350,12 @@ static struct rpc_clnt * rpc_new_client(const struct rpc_create_args *args, stru
354 350
355 atomic_set(&clnt->cl_count, 1); 351 atomic_set(&clnt->cl_count, 1);
356 352
357 err = rpc_setup_pipedir(clnt, program->pipe_dir_name); 353 pipefs_sb = rpc_get_sb_net(rpc_net_ns(clnt));
358 if (err < 0) 354 if (pipefs_sb) {
359 goto out_no_path; 355 err = rpc_setup_pipedir(clnt, program->pipe_dir_name, pipefs_sb);
356 if (err)
357 goto out_no_path;
358 }
360 359
361 auth = rpcauth_create(args->authflavor, clnt); 360 auth = rpcauth_create(args->authflavor, clnt);
362 if (IS_ERR(auth)) { 361 if (IS_ERR(auth)) {
@@ -369,11 +368,16 @@ static struct rpc_clnt * rpc_new_client(const struct rpc_create_args *args, stru
369 /* save the nodename */ 368 /* save the nodename */
370 rpc_clnt_set_nodename(clnt, utsname()->nodename); 369 rpc_clnt_set_nodename(clnt, utsname()->nodename);
371 rpc_register_client(clnt); 370 rpc_register_client(clnt);
371 if (pipefs_sb)
372 rpc_put_sb_net(rpc_net_ns(clnt));
372 return clnt; 373 return clnt;
373 374
374out_no_auth: 375out_no_auth:
375 rpc_clnt_remove_pipedir(clnt); 376 if (pipefs_sb)
377 __rpc_clnt_remove_pipedir(clnt);
376out_no_path: 378out_no_path:
379 if (pipefs_sb)
380 rpc_put_sb_net(rpc_net_ns(clnt));
377 kfree(clnt->cl_principal); 381 kfree(clnt->cl_principal);
378out_no_principal: 382out_no_principal:
379 rpc_free_iostats(clnt->cl_metrics); 383 rpc_free_iostats(clnt->cl_metrics);
diff --git a/net/sunrpc/rpc_pipe.c b/net/sunrpc/rpc_pipe.c
index a816b3a69059..e02823bdfe98 100644
--- a/net/sunrpc/rpc_pipe.c
+++ b/net/sunrpc/rpc_pipe.c
@@ -1127,6 +1127,7 @@ rpc_fill_super(struct super_block *sb, void *data, int silent)
1127 return -ENOMEM; 1127 return -ENOMEM;
1128 dprintk("RPC: sending pipefs MOUNT notification for net %p%s\n", 1128 dprintk("RPC: sending pipefs MOUNT notification for net %p%s\n",
1129 net, NET_NAME(net)); 1129 net, NET_NAME(net));
1130 mutex_lock(&sn->pipefs_sb_lock);
1130 sn->pipefs_sb = sb; 1131 sn->pipefs_sb = sb;
1131 err = blocking_notifier_call_chain(&rpc_pipefs_notifier_list, 1132 err = blocking_notifier_call_chain(&rpc_pipefs_notifier_list,
1132 RPC_PIPEFS_MOUNT, 1133 RPC_PIPEFS_MOUNT,
@@ -1134,6 +1135,7 @@ rpc_fill_super(struct super_block *sb, void *data, int silent)
1134 if (err) 1135 if (err)
1135 goto err_depopulate; 1136 goto err_depopulate;
1136 sb->s_fs_info = get_net(net); 1137 sb->s_fs_info = get_net(net);
1138 mutex_unlock(&sn->pipefs_sb_lock);
1137 return 0; 1139 return 0;
1138 1140
1139err_depopulate: 1141err_depopulate:
@@ -1142,6 +1144,7 @@ err_depopulate:
1142 sb); 1144 sb);
1143 sn->pipefs_sb = NULL; 1145 sn->pipefs_sb = NULL;
1144 __rpc_depopulate(root, files, RPCAUTH_lockd, RPCAUTH_RootEOF); 1146 __rpc_depopulate(root, files, RPCAUTH_lockd, RPCAUTH_RootEOF);
1147 mutex_unlock(&sn->pipefs_sb_lock);
1145 return err; 1148 return err;
1146} 1149}
1147 1150
generated by cgit v1.2.2 (git 2.25.0) at 2025-02-18 14:04:22 -0500