mirror of
https://github.com/versity/scoutfs.git
synced 2026-02-12 21:41:07 +00:00
090c795b7e
v4.1-rc4-22-g92cf211874e9 merges this into preempt.h, and on rhel7 kernels we don't need this include anymore either. Signed-off-by: Auke Kok <auke.kok@versity.com>
1738 lines
48 KiB
C
1738 lines
48 KiB
C
/*
|
|
* Copyright (C) 2019 Versity Software, Inc. All rights reserved.
|
|
*
|
|
* This program is free software; you can redistribute it and/or
|
|
* modify it under the terms of the GNU General Public
|
|
* License v2 as published by the Free Software Foundation.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
* General Public License for more details.
|
|
*/
|
|
#include <linux/kernel.h>
|
|
#include <linux/fs.h>
|
|
#include <linux/sched.h>
|
|
#include <linux/slab.h>
|
|
#include <linux/mm.h>
|
|
#include <linux/sort.h>
|
|
#include <linux/ctype.h>
|
|
#include <linux/posix_acl.h>
|
|
|
|
#include "super.h"
|
|
#include "lock.h"
|
|
#include "scoutfs_trace.h"
|
|
#include "msg.h"
|
|
#include "cmp.h"
|
|
#include "inode.h"
|
|
#include "trans.h"
|
|
#include "counters.h"
|
|
#include "endian_swap.h"
|
|
#include "triggers.h"
|
|
#include "tseq.h"
|
|
#include "client.h"
|
|
#include "data.h"
|
|
#include "xattr.h"
|
|
#include "item.h"
|
|
#include "omap.h"
|
|
|
|
/*
|
|
* scoutfs uses a lock service to manage item cache consistency between
|
|
* nodes. We map ranges of item keys to locks and use each lock's modes
|
|
* to govern what can be done with the items under the lock. Locks are
|
|
* held by mounts who populate, write out, and invalidate their caches
|
|
* as they acquire and release locks.
|
|
*
|
|
* The locking client in a mount sends lock requests to the server. The
|
|
* server eventually responds with a response that grants access to the
|
|
* lock. The server then sends a revoke request to the client which
|
|
* tells it the mode that it should reduce the lock to. If it removes
|
|
* all access to the lock (by revoking it down to a null mode) then the
|
|
* lock is freed.
|
|
*
|
|
* Memory pressure on the client can cause the client to request a null
|
|
* mode from the server so that once its granted the lock can be freed.
|
|
*
|
|
* So far we've only needed a minimal trylock. We return -EAGAIN if a
|
|
* lock attempt can't immediately match an existing granted lock. This
|
|
* is fine for the only rare user which can back out of its lock
|
|
* inversion and retry with a full blocking lock.
|
|
*
|
|
* Lock recovery is initiated by the server when it recognizes that
|
|
* we're reconnecting to it while a previous server left a persistenr
|
|
* record of us. We resend all our pending requests which are deferred
|
|
* until recovery finishes. The server sends us a recovery request and
|
|
* we respond with all our locks. Our resent requests are processed
|
|
* relative to that lock state we resend.
|
|
*/
|
|
|
|
/*
|
|
* allocated per-super, freed on unmount.
|
|
*/
|
|
struct lock_info {
|
|
struct super_block *sb;
|
|
spinlock_t lock;
|
|
bool shutdown;
|
|
bool unmounting;
|
|
struct rb_root lock_tree;
|
|
struct rb_root lock_range_tree;
|
|
struct shrinker shrinker;
|
|
struct list_head lru_list;
|
|
unsigned long long lru_nr;
|
|
struct workqueue_struct *workq;
|
|
struct work_struct inv_work;
|
|
struct list_head inv_list;
|
|
struct work_struct shrink_work;
|
|
struct list_head shrink_list;
|
|
atomic64_t next_refresh_gen;
|
|
|
|
struct dentry *tseq_dentry;
|
|
struct scoutfs_tseq_tree tseq_tree;
|
|
};
|
|
|
|
#define DECLARE_LOCK_INFO(sb, name) \
|
|
struct lock_info *name = SCOUTFS_SB(sb)->lock_info
|
|
|
|
static bool lock_mode_invalid(enum scoutfs_lock_mode mode)
|
|
{
|
|
return (unsigned)mode >= SCOUTFS_LOCK_INVALID;
|
|
}
|
|
|
|
static bool lock_mode_can_read(enum scoutfs_lock_mode mode)
|
|
{
|
|
return mode == SCOUTFS_LOCK_READ || mode == SCOUTFS_LOCK_WRITE;
|
|
}
|
|
|
|
static bool lock_mode_can_write(enum scoutfs_lock_mode mode)
|
|
{
|
|
return mode == SCOUTFS_LOCK_WRITE || mode == SCOUTFS_LOCK_WRITE_ONLY;
|
|
}
|
|
|
|
/*
|
|
* Returns true if a lock with the granted mode can satisfy a requested
|
|
* mode. This is directional. A read lock is satisfied by a write lock
|
|
* but not vice versa.
|
|
*/
|
|
static bool lock_modes_match(int granted, int requested)
|
|
{
|
|
return (granted == requested) ||
|
|
(granted == SCOUTFS_LOCK_WRITE &&
|
|
requested == SCOUTFS_LOCK_READ);
|
|
}
|
|
|
|
/*
|
|
* Invalidate cached data associated with an inode whose lock is going
|
|
* away.
|
|
*
|
|
* We try to drop cached dentries and inodes covered by the lock if they
|
|
* aren't referenced. This removes them from the mount's open map and
|
|
* allows deletions to be performed by unlink without having to wait for
|
|
* remote cached inodes to be dropped.
|
|
*
|
|
* We kick the d_prune and iput off to async work because they can end
|
|
* up in final iput and inode eviction item deletion which would
|
|
* deadlock. d_prune->dput can end up in iput on parents in different
|
|
* locks entirely.
|
|
*/
|
|
static void invalidate_inode(struct super_block *sb, u64 ino)
|
|
{
|
|
struct scoutfs_inode_info *si;
|
|
struct inode *inode;
|
|
|
|
inode = scoutfs_ilookup_nowait_nonewfree(sb, ino);
|
|
if (inode) {
|
|
si = SCOUTFS_I(inode);
|
|
|
|
scoutfs_inc_counter(sb, lock_invalidate_inode);
|
|
if (S_ISREG(inode->i_mode)) {
|
|
truncate_inode_pages(inode->i_mapping, 0);
|
|
scoutfs_data_wait_changed(inode);
|
|
}
|
|
|
|
forget_all_cached_acls(inode);
|
|
|
|
scoutfs_inode_queue_iput(inode, SI_IPUT_FLAG_PRUNE);
|
|
}
|
|
}
|
|
|
|
/*
|
|
* Invalidate caches associated with this lock. Either we're
|
|
* invalidating a write to a read or we're invalidating to null. We
|
|
* always have to write out dirty items if there are any. We can only
|
|
* leave cached items behind in the case of invalidating to a read lock.
|
|
*/
|
|
static int lock_invalidate(struct super_block *sb, struct scoutfs_lock *lock,
|
|
enum scoutfs_lock_mode prev, enum scoutfs_lock_mode mode)
|
|
{
|
|
struct scoutfs_lock_coverage *cov;
|
|
struct scoutfs_lock_coverage *tmp;
|
|
u64 ino, last;
|
|
int ret = 0;
|
|
|
|
trace_scoutfs_lock_invalidate(sb, lock);
|
|
|
|
/* verify assertion made by comment above */
|
|
BUG_ON(!(prev == SCOUTFS_LOCK_WRITE && mode == SCOUTFS_LOCK_READ) &&
|
|
mode != SCOUTFS_LOCK_NULL);
|
|
|
|
/* sync when a write lock could have dirtied the current transaction */
|
|
if (lock_mode_can_write(prev) &&
|
|
(lock->dirty_trans_seq == scoutfs_trans_sample_seq(sb))) {
|
|
scoutfs_inc_counter(sb, lock_invalidate_sync);
|
|
ret = scoutfs_trans_sync(sb, 1);
|
|
if (ret < 0)
|
|
return ret;
|
|
}
|
|
|
|
/* have to invalidate if we're not in the only usable case */
|
|
if (!(prev == SCOUTFS_LOCK_WRITE && mode == SCOUTFS_LOCK_READ)) {
|
|
retry:
|
|
/* remove cov items to tell users that their cache is stale */
|
|
spin_lock(&lock->cov_list_lock);
|
|
list_for_each_entry_safe(cov, tmp, &lock->cov_list, head) {
|
|
if (!spin_trylock(&cov->cov_lock)) {
|
|
spin_unlock(&lock->cov_list_lock);
|
|
cpu_relax();
|
|
goto retry;
|
|
}
|
|
list_del_init(&cov->head);
|
|
cov->lock = NULL;
|
|
spin_unlock(&cov->cov_lock);
|
|
scoutfs_inc_counter(sb, lock_invalidate_coverage);
|
|
}
|
|
spin_unlock(&lock->cov_list_lock);
|
|
|
|
/* invalidate inodes after removing coverage so drop/evict aren't covered */
|
|
if (lock->start.sk_zone == SCOUTFS_FS_ZONE) {
|
|
ino = le64_to_cpu(lock->start.ski_ino);
|
|
last = le64_to_cpu(lock->end.ski_ino);
|
|
while (ino <= last) {
|
|
invalidate_inode(sb, ino);
|
|
ino++;
|
|
}
|
|
}
|
|
|
|
scoutfs_item_invalidate(sb, &lock->start, &lock->end);
|
|
}
|
|
|
|
return ret;
|
|
}
|
|
|
|
static void lock_free(struct lock_info *linfo, struct scoutfs_lock *lock)
|
|
{
|
|
struct super_block *sb = lock->sb;
|
|
|
|
assert_spin_locked(&linfo->lock);
|
|
|
|
trace_scoutfs_lock_free(sb, lock);
|
|
scoutfs_inc_counter(sb, lock_free);
|
|
|
|
/* manually checking lock_idle gives identifying line numbers */
|
|
BUG_ON(lock->request_pending);
|
|
BUG_ON(lock->invalidate_pending);
|
|
BUG_ON(lock->waiters[SCOUTFS_LOCK_READ]);
|
|
BUG_ON(lock->waiters[SCOUTFS_LOCK_WRITE]);
|
|
BUG_ON(lock->waiters[SCOUTFS_LOCK_WRITE_ONLY]);
|
|
BUG_ON(lock->users[SCOUTFS_LOCK_READ]);
|
|
BUG_ON(lock->users[SCOUTFS_LOCK_WRITE]);
|
|
BUG_ON(lock->users[SCOUTFS_LOCK_WRITE_ONLY]);
|
|
BUG_ON(!linfo->shutdown && lock->mode != SCOUTFS_LOCK_NULL);
|
|
BUG_ON(!RB_EMPTY_NODE(&lock->node));
|
|
BUG_ON(!RB_EMPTY_NODE(&lock->range_node));
|
|
BUG_ON(!list_empty(&lock->lru_head));
|
|
BUG_ON(!list_empty(&lock->inv_head));
|
|
BUG_ON(!list_empty(&lock->shrink_head));
|
|
BUG_ON(!list_empty(&lock->cov_list));
|
|
|
|
kfree(lock->inode_deletion_data);
|
|
kfree(lock);
|
|
}
|
|
|
|
static struct scoutfs_lock *lock_alloc(struct super_block *sb,
|
|
struct scoutfs_key *start,
|
|
struct scoutfs_key *end)
|
|
|
|
{
|
|
struct scoutfs_lock *lock;
|
|
|
|
if (WARN_ON_ONCE(!start || !end))
|
|
return NULL;
|
|
|
|
lock = kzalloc(sizeof(struct scoutfs_lock), GFP_NOFS);
|
|
if (lock == NULL)
|
|
return NULL;
|
|
|
|
scoutfs_inc_counter(sb, lock_alloc);
|
|
|
|
RB_CLEAR_NODE(&lock->node);
|
|
RB_CLEAR_NODE(&lock->range_node);
|
|
INIT_LIST_HEAD(&lock->lru_head);
|
|
INIT_LIST_HEAD(&lock->inv_head);
|
|
INIT_LIST_HEAD(&lock->inv_list);
|
|
INIT_LIST_HEAD(&lock->shrink_head);
|
|
spin_lock_init(&lock->cov_list_lock);
|
|
INIT_LIST_HEAD(&lock->cov_list);
|
|
|
|
lock->start = *start;
|
|
lock->end = *end;
|
|
lock->sb = sb;
|
|
init_waitqueue_head(&lock->waitq);
|
|
lock->mode = SCOUTFS_LOCK_NULL;
|
|
lock->invalidating_mode = SCOUTFS_LOCK_NULL;
|
|
|
|
atomic64_set(&lock->forest_bloom_nr, 0);
|
|
|
|
trace_scoutfs_lock_alloc(sb, lock);
|
|
|
|
return lock;
|
|
}
|
|
|
|
static void lock_inc_count(unsigned int *counts, enum scoutfs_lock_mode mode)
|
|
{
|
|
BUG_ON(mode < 0 || mode >= SCOUTFS_LOCK_NR_MODES);
|
|
counts[mode]++;
|
|
}
|
|
|
|
static void lock_dec_count(unsigned int *counts, enum scoutfs_lock_mode mode)
|
|
{
|
|
BUG_ON(mode < 0 || mode >= SCOUTFS_LOCK_NR_MODES);
|
|
counts[mode]--;
|
|
}
|
|
|
|
/*
|
|
* Returns true if all the actively used modes are satisfied by a lock
|
|
* of the given granted mode.
|
|
*/
|
|
static bool lock_counts_match(int granted, unsigned int *counts)
|
|
{
|
|
enum scoutfs_lock_mode mode;
|
|
|
|
for (mode = 0; mode < SCOUTFS_LOCK_NR_MODES; mode++) {
|
|
if (counts[mode] && !lock_modes_match(granted, mode))
|
|
return false;
|
|
}
|
|
|
|
return true;
|
|
}
|
|
|
|
/*
|
|
* An idle lock has nothing going on. It can be present in the lru and
|
|
* can be freed by the final put when it has a null mode.
|
|
*/
|
|
static bool lock_idle(struct scoutfs_lock *lock)
|
|
{
|
|
enum scoutfs_lock_mode mode;
|
|
|
|
if (lock->request_pending || lock->invalidate_pending)
|
|
return false;
|
|
|
|
for (mode = 0; mode < SCOUTFS_LOCK_NR_MODES; mode++) {
|
|
if (lock->waiters[mode] || lock->users[mode])
|
|
return false;
|
|
}
|
|
|
|
return true;
|
|
}
|
|
|
|
static bool insert_range_node(struct super_block *sb, struct scoutfs_lock *ins)
|
|
{
|
|
DECLARE_LOCK_INFO(sb, linfo);
|
|
struct rb_root *root = &linfo->lock_range_tree;
|
|
struct rb_node **node = &root->rb_node;
|
|
struct rb_node *parent = NULL;
|
|
struct scoutfs_lock *lock;
|
|
int cmp;
|
|
|
|
while (*node) {
|
|
parent = *node;
|
|
lock = container_of(*node, struct scoutfs_lock, range_node);
|
|
|
|
cmp = scoutfs_key_compare_ranges(&ins->start, &ins->end,
|
|
&lock->start, &lock->end);
|
|
if (WARN_ON_ONCE(cmp == 0)) {
|
|
scoutfs_warn(sb, "inserting lock start "SK_FMT" end "SK_FMT" overlaps with existing lock start "SK_FMT" end "SK_FMT,
|
|
SK_ARG(&ins->start), SK_ARG(&ins->end),
|
|
SK_ARG(&lock->start), SK_ARG(&lock->end));
|
|
return false;
|
|
}
|
|
|
|
if (cmp < 0)
|
|
node = &(*node)->rb_left;
|
|
else
|
|
node = &(*node)->rb_right;
|
|
}
|
|
|
|
|
|
rb_link_node(&ins->range_node, parent, node);
|
|
rb_insert_color(&ins->range_node, root);
|
|
|
|
return true;
|
|
}
|
|
|
|
/* returns true if the lock was inserted at its start key */
|
|
static bool lock_insert(struct super_block *sb, struct scoutfs_lock *ins)
|
|
{
|
|
DECLARE_LOCK_INFO(sb, linfo);
|
|
struct scoutfs_lock *lock;
|
|
struct rb_node *parent;
|
|
struct rb_node **node;
|
|
int cmp;
|
|
|
|
assert_spin_locked(&linfo->lock);
|
|
|
|
node = &linfo->lock_tree.rb_node;
|
|
parent = NULL;
|
|
while (*node) {
|
|
parent = *node;
|
|
lock = container_of(*node, struct scoutfs_lock, node);
|
|
|
|
cmp = scoutfs_key_compare(&ins->start, &lock->start);
|
|
if (cmp < 0)
|
|
node = &(*node)->rb_left;
|
|
else if (cmp > 0)
|
|
node = &(*node)->rb_right;
|
|
else
|
|
return false;
|
|
}
|
|
|
|
if (!insert_range_node(sb, ins))
|
|
return false;
|
|
|
|
rb_link_node(&ins->node, parent, node);
|
|
rb_insert_color(&ins->node, &linfo->lock_tree);
|
|
|
|
scoutfs_tseq_add(&linfo->tseq_tree, &ins->tseq_entry);
|
|
|
|
return true;
|
|
}
|
|
|
|
static void lock_remove(struct lock_info *linfo, struct scoutfs_lock *lock)
|
|
{
|
|
assert_spin_locked(&linfo->lock);
|
|
|
|
rb_erase(&lock->node, &linfo->lock_tree);
|
|
RB_CLEAR_NODE(&lock->node);
|
|
rb_erase(&lock->range_node, &linfo->lock_range_tree);
|
|
RB_CLEAR_NODE(&lock->range_node);
|
|
|
|
scoutfs_tseq_del(&linfo->tseq_tree, &lock->tseq_entry);
|
|
}
|
|
|
|
static struct scoutfs_lock *lock_lookup(struct super_block *sb,
|
|
struct scoutfs_key *start,
|
|
struct scoutfs_lock **next)
|
|
{
|
|
DECLARE_LOCK_INFO(sb, linfo);
|
|
struct rb_node *node = linfo->lock_tree.rb_node;
|
|
struct scoutfs_lock *lock;
|
|
int cmp;
|
|
|
|
assert_spin_locked(&linfo->lock);
|
|
|
|
if (next)
|
|
*next = NULL;
|
|
|
|
while (node) {
|
|
lock = container_of(node, struct scoutfs_lock, node);
|
|
|
|
cmp = scoutfs_key_compare(start, &lock->start);
|
|
if (cmp < 0) {
|
|
if (next)
|
|
*next = lock;
|
|
node = node->rb_left;
|
|
} else if (cmp > 0) {
|
|
node = node->rb_right;
|
|
} else {
|
|
return lock;
|
|
}
|
|
}
|
|
|
|
return NULL;
|
|
}
|
|
|
|
static void __lock_del_lru(struct lock_info *linfo, struct scoutfs_lock *lock)
|
|
{
|
|
assert_spin_locked(&linfo->lock);
|
|
|
|
if (!list_empty(&lock->lru_head)) {
|
|
list_del_init(&lock->lru_head);
|
|
linfo->lru_nr--;
|
|
}
|
|
}
|
|
|
|
/*
|
|
* Get a lock and remove it from the lru. The caller must set state on
|
|
* the lock that indicates that it's busy before dropping the lock.
|
|
* Then later they call add_lru_or_free once they've cleared that state.
|
|
*/
|
|
static struct scoutfs_lock *get_lock(struct super_block *sb,
|
|
struct scoutfs_key *start)
|
|
{
|
|
DECLARE_LOCK_INFO(sb, linfo);
|
|
struct scoutfs_lock *lock;
|
|
|
|
assert_spin_locked(&linfo->lock);
|
|
|
|
lock = lock_lookup(sb, start, NULL);
|
|
if (lock)
|
|
__lock_del_lru(linfo, lock);
|
|
|
|
return lock;
|
|
}
|
|
|
|
/*
|
|
* Get a lock, creating it if it doesn't exist. The caller must treat
|
|
* the lock like it came from get lock (mark sate, drop lock, clear
|
|
* state, put lock). Allocated locks aren't on the lru.
|
|
*/
|
|
static struct scoutfs_lock *create_lock(struct super_block *sb,
|
|
struct scoutfs_key *start,
|
|
struct scoutfs_key *end)
|
|
{
|
|
DECLARE_LOCK_INFO(sb, linfo);
|
|
struct scoutfs_lock *lock;
|
|
|
|
assert_spin_locked(&linfo->lock);
|
|
|
|
lock = get_lock(sb, start);
|
|
if (!lock) {
|
|
spin_unlock(&linfo->lock);
|
|
lock = lock_alloc(sb, start, end);
|
|
spin_lock(&linfo->lock);
|
|
|
|
if (lock) {
|
|
if (!lock_insert(sb, lock)) {
|
|
lock_free(linfo, lock);
|
|
lock = get_lock(sb, start);
|
|
}
|
|
}
|
|
}
|
|
|
|
return lock;
|
|
}
|
|
|
|
/*
|
|
* The caller is done using a lock and has cleared state that used to
|
|
* indicate that the lock wasn't idle. If it really is idle then we
|
|
* either free it if it's null or put it back on the lru.
|
|
*/
|
|
static void put_lock(struct lock_info *linfo,struct scoutfs_lock *lock)
|
|
{
|
|
assert_spin_locked(&linfo->lock);
|
|
|
|
if (lock_idle(lock)) {
|
|
if (lock->mode != SCOUTFS_LOCK_NULL) {
|
|
list_add_tail(&lock->lru_head, &linfo->lru_list);
|
|
linfo->lru_nr++;
|
|
} else {
|
|
lock_remove(linfo, lock);
|
|
lock_free(linfo, lock);
|
|
}
|
|
}
|
|
}
|
|
|
|
/*
|
|
* The caller has made a change (set a lock mode) which can let one of the
|
|
* invalidating locks make forward progress.
|
|
*/
|
|
static void queue_inv_work(struct lock_info *linfo)
|
|
{
|
|
assert_spin_locked(&linfo->lock);
|
|
|
|
if (!list_empty(&linfo->inv_list))
|
|
queue_work(linfo->workq, &linfo->inv_work);
|
|
}
|
|
|
|
/*
|
|
* The given lock is processing a received a grant response. Trigger a
|
|
* bug if the cache is inconsistent.
|
|
*
|
|
* We only have two modes that can create dirty items. We can't have
|
|
* dirty items when transitioning from write_only to write because the
|
|
* writer can't trust the cached items in the cache for reading. And we
|
|
* don't currently transition directly from write to write_only, we
|
|
* first go through null. So if we have dirty items as we're granted a
|
|
* mode it's always incorrect.
|
|
*
|
|
* And we can't have cached items that we're going to use for reading if
|
|
* the previous mode didn't allow reading.
|
|
*
|
|
* Inconsistencies have come from all sorts of bugs: invalidation missed
|
|
* items, the cache was populated outside of locking coverage, lock
|
|
* holders performed the wrong item operations under their lock,
|
|
* overlapping locks, out of order granting or invalidating, etc.
|
|
*/
|
|
static void bug_on_inconsistent_grant_cache(struct super_block *sb,
|
|
struct scoutfs_lock *lock,
|
|
int old_mode, int new_mode)
|
|
{
|
|
bool cached;
|
|
bool dirty;
|
|
|
|
cached = scoutfs_item_range_cached(sb, &lock->start, &lock->end,
|
|
&dirty);
|
|
if (dirty ||
|
|
(cached && (!lock_mode_can_read(old_mode) ||
|
|
!lock_mode_can_read(new_mode)))) {
|
|
scoutfs_err(sb, "granted lock item cache inconsistency, cached %u dirty %u old_mode %d new_mode %d: start "SK_FMT" end "SK_FMT" refresh_gen %llu mode %u waiters: rd %u wr %u wo %u users: rd %u wr %u wo %u",
|
|
cached, dirty, old_mode, new_mode, SK_ARG(&lock->start),
|
|
SK_ARG(&lock->end), lock->refresh_gen, lock->mode,
|
|
lock->waiters[SCOUTFS_LOCK_READ],
|
|
lock->waiters[SCOUTFS_LOCK_WRITE],
|
|
lock->waiters[SCOUTFS_LOCK_WRITE_ONLY],
|
|
lock->users[SCOUTFS_LOCK_READ],
|
|
lock->users[SCOUTFS_LOCK_WRITE],
|
|
lock->users[SCOUTFS_LOCK_WRITE_ONLY]);
|
|
BUG();
|
|
}
|
|
}
|
|
|
|
/*
|
|
* The client is receiving a grant response message from the server.
|
|
* This is being called synchronously in the networking receive path so
|
|
* our work should be quick and reasonably non-blocking.
|
|
*
|
|
* The server's state machine can immediately send an invalidate request
|
|
* after sending this grant response. We won't process the incoming
|
|
* invalidate request until after processing this grant response.
|
|
*/
|
|
int scoutfs_lock_grant_response(struct super_block *sb,
|
|
struct scoutfs_net_lock *nl)
|
|
{
|
|
DECLARE_LOCK_INFO(sb, linfo);
|
|
struct scoutfs_lock *lock;
|
|
|
|
scoutfs_inc_counter(sb, lock_grant_response);
|
|
|
|
spin_lock(&linfo->lock);
|
|
|
|
/* lock must already be busy with request_pending */
|
|
lock = lock_lookup(sb, &nl->key, NULL);
|
|
BUG_ON(!lock);
|
|
trace_scoutfs_lock_grant_response(sb, lock);
|
|
BUG_ON(!lock->request_pending);
|
|
|
|
bug_on_inconsistent_grant_cache(sb, lock, nl->old_mode, nl->new_mode);
|
|
|
|
if (!lock_mode_can_read(nl->old_mode) && lock_mode_can_read(nl->new_mode))
|
|
lock->refresh_gen = atomic64_inc_return(&linfo->next_refresh_gen);
|
|
|
|
lock->request_pending = 0;
|
|
lock->mode = nl->new_mode;
|
|
lock->write_seq = le64_to_cpu(nl->write_seq);
|
|
|
|
trace_scoutfs_lock_granted(sb, lock);
|
|
wake_up(&lock->waitq);
|
|
put_lock(linfo, lock);
|
|
|
|
spin_unlock(&linfo->lock);
|
|
|
|
return 0;
|
|
}
|
|
|
|
struct inv_req {
|
|
struct list_head head;
|
|
struct scoutfs_lock *lock;
|
|
u64 net_id;
|
|
struct scoutfs_net_lock nl;
|
|
};
|
|
|
|
/*
|
|
* Each lock has received a lock invalidation request from the server
|
|
* which specifies a new mode for the lock. Our processing state
|
|
* machine and server failover and lock recovery can both conspire to
|
|
* give us triplicate invalidation requests. The incoming requests for
|
|
* a given lock need to be processed in order, but we can process locks
|
|
* in any order.
|
|
*
|
|
* This is an unsolicited request from the server so it can arrive at
|
|
* any time after we make the server aware of the lock. We wait for
|
|
* users of the current mode to unlock before invalidating.
|
|
*
|
|
* This can arrive on behalf of our request for a mode that conflicts
|
|
* with our current mode. We have to proceed while we have a request
|
|
* pending. We can also be racing with shrink requests being sent while
|
|
* we're invalidating.
|
|
*
|
|
* Before we start invalidating the lock we set the lock to the new
|
|
* mode, preventing further incompatible users of the old mode from
|
|
* using the lock while we're invalidating. We record the previously
|
|
* granted mode so that we can send lock recover responses with the old
|
|
* granted mode during invalidation.
|
|
*/
|
|
static void lock_invalidate_worker(struct work_struct *work)
|
|
{
|
|
struct lock_info *linfo = container_of(work, struct lock_info, inv_work);
|
|
struct super_block *sb = linfo->sb;
|
|
struct scoutfs_net_lock *nl;
|
|
struct scoutfs_lock *lock;
|
|
struct scoutfs_lock *tmp;
|
|
struct inv_req *ireq;
|
|
LIST_HEAD(ready);
|
|
int ret;
|
|
|
|
scoutfs_inc_counter(sb, lock_invalidate_work);
|
|
|
|
spin_lock(&linfo->lock);
|
|
|
|
list_for_each_entry_safe(lock, tmp, &linfo->inv_list, inv_head) {
|
|
ireq = list_first_entry(&lock->inv_list, struct inv_req, head);
|
|
nl = &ireq->nl;
|
|
|
|
/* wait until incompatible holders unlock */
|
|
if (!lock_counts_match(nl->new_mode, lock->users))
|
|
continue;
|
|
|
|
/* set the new mode, no incompatible users during inval, recov needs old */
|
|
lock->invalidating_mode = lock->mode;
|
|
lock->mode = nl->new_mode;
|
|
|
|
/* move everyone that's ready to our private list */
|
|
list_move_tail(&lock->inv_head, &ready);
|
|
}
|
|
|
|
spin_unlock(&linfo->lock);
|
|
|
|
if (list_empty(&ready))
|
|
return;
|
|
|
|
/* invalidate once the lock is read */
|
|
list_for_each_entry(lock, &ready, inv_head) {
|
|
ireq = list_first_entry(&lock->inv_list, struct inv_req, head);
|
|
nl = &ireq->nl;
|
|
|
|
/* only lock protocol, inv can't call subsystems after shutdown */
|
|
if (!linfo->shutdown) {
|
|
ret = lock_invalidate(sb, lock, nl->old_mode, nl->new_mode);
|
|
BUG_ON(ret);
|
|
}
|
|
|
|
/* respond with the key and modes from the request, server might have died */
|
|
ret = scoutfs_client_lock_response(sb, ireq->net_id, nl);
|
|
if (ret == -ENOTCONN)
|
|
ret = 0;
|
|
BUG_ON(ret);
|
|
|
|
scoutfs_inc_counter(sb, lock_invalidate_response);
|
|
}
|
|
|
|
/* and finish all the invalidated locks */
|
|
spin_lock(&linfo->lock);
|
|
|
|
list_for_each_entry_safe(lock, tmp, &ready, inv_head) {
|
|
ireq = list_first_entry(&lock->inv_list, struct inv_req, head);
|
|
|
|
trace_scoutfs_lock_invalidated(sb, lock);
|
|
|
|
list_del(&ireq->head);
|
|
kfree(ireq);
|
|
|
|
lock->invalidating_mode = SCOUTFS_LOCK_NULL;
|
|
|
|
if (list_empty(&lock->inv_list)) {
|
|
/* finish if another request didn't arrive */
|
|
list_del_init(&lock->inv_head);
|
|
lock->invalidate_pending = 0;
|
|
wake_up(&lock->waitq);
|
|
} else {
|
|
/* another request arrived, back on the list and requeue */
|
|
list_move_tail(&lock->inv_head, &linfo->inv_list);
|
|
queue_inv_work(linfo);
|
|
}
|
|
|
|
put_lock(linfo, lock);
|
|
}
|
|
|
|
spin_unlock(&linfo->lock);
|
|
}
|
|
|
|
/*
|
|
* Add an incoming invalidation request to the end of the list on the
|
|
* lock and queue it for blocking invalidation work. This is being
|
|
* called synchronously in the net recv path to avoid reordering with
|
|
* grants that were sent immediately before the server sent this
|
|
* invalidation.
|
|
*
|
|
* Incoming invalidation requests are a function of the remote lock
|
|
* server's state machine and are slightly decoupled from our lock
|
|
* state. We can receive duplicate requests if the server is quick
|
|
* enough to send the next request after we send a previous reply, or if
|
|
* pending invalidation spans server failover and lock recovery.
|
|
*
|
|
* Similarly, we can get a request to invalidate a lock we don't have if
|
|
* invalidation finished just after lock recovery to a new server.
|
|
* Happily we can just reply because we satisfy the invalidation
|
|
* response promise to not be using the old lock's mode if the lock
|
|
* doesn't exist.
|
|
*/
|
|
int scoutfs_lock_invalidate_request(struct super_block *sb, u64 net_id,
|
|
struct scoutfs_net_lock *nl)
|
|
{
|
|
DECLARE_LOCK_INFO(sb, linfo);
|
|
struct scoutfs_lock *lock = NULL;
|
|
struct inv_req *ireq;
|
|
int ret = 0;
|
|
|
|
scoutfs_inc_counter(sb, lock_invalidate_request);
|
|
|
|
ireq = kmalloc(sizeof(struct inv_req), GFP_NOFS);
|
|
BUG_ON(!ireq); /* lock server doesn't handle response errors */
|
|
if (ireq == NULL) {
|
|
ret = -ENOMEM;
|
|
goto out;
|
|
}
|
|
|
|
spin_lock(&linfo->lock);
|
|
lock = get_lock(sb, &nl->key);
|
|
if (lock) {
|
|
trace_scoutfs_lock_invalidate_request(sb, lock);
|
|
ireq->lock = lock;
|
|
ireq->net_id = net_id;
|
|
ireq->nl = *nl;
|
|
if (list_empty(&lock->inv_list)) {
|
|
list_add_tail(&lock->inv_head, &linfo->inv_list);
|
|
lock->invalidate_pending = 1;
|
|
queue_inv_work(linfo);
|
|
}
|
|
list_add_tail(&ireq->head, &lock->inv_list);
|
|
}
|
|
spin_unlock(&linfo->lock);
|
|
|
|
out:
|
|
if (!lock) {
|
|
ret = scoutfs_client_lock_response(sb, net_id, nl);
|
|
BUG_ON(ret); /* lock server doesn't fence timed out client requests */
|
|
}
|
|
|
|
return ret;
|
|
}
|
|
|
|
/*
|
|
* The server is asking us to send them as many locks as we can starting
|
|
* with the given key. We'll send a response with 0 locks to indicate
|
|
* that we've sent all our locks. This is called in client processing
|
|
* so the client won't try to reconnect to another server until we
|
|
* return.
|
|
*/
|
|
int scoutfs_lock_recover_request(struct super_block *sb, u64 net_id,
|
|
struct scoutfs_key *key)
|
|
{
|
|
DECLARE_LOCK_INFO(sb, linfo);
|
|
struct scoutfs_net_lock_recover *nlr;
|
|
enum scoutfs_lock_mode mode;
|
|
struct scoutfs_lock *lock;
|
|
struct scoutfs_lock *next;
|
|
struct rb_node *node;
|
|
int ret;
|
|
int i;
|
|
|
|
scoutfs_inc_counter(sb, lock_recover_request);
|
|
|
|
nlr = kmalloc(offsetof(struct scoutfs_net_lock_recover,
|
|
locks[SCOUTFS_NET_LOCK_MAX_RECOVER_NR]),
|
|
GFP_NOFS);
|
|
if (!nlr)
|
|
return -ENOMEM;
|
|
|
|
spin_lock(&linfo->lock);
|
|
|
|
lock = lock_lookup(sb, key, &next) ?: next;
|
|
|
|
for (i = 0; lock && i < SCOUTFS_NET_LOCK_MAX_RECOVER_NR; i++) {
|
|
|
|
if (lock->invalidating_mode != SCOUTFS_LOCK_NULL)
|
|
mode = lock->invalidating_mode;
|
|
else
|
|
mode = lock->mode;
|
|
|
|
nlr->locks[i].key = lock->start;
|
|
nlr->locks[i].write_seq = cpu_to_le64(lock->write_seq);
|
|
nlr->locks[i].old_mode = mode;
|
|
nlr->locks[i].new_mode = mode;
|
|
|
|
node = rb_next(&lock->node);
|
|
if (node)
|
|
lock = rb_entry(node, struct scoutfs_lock, node);
|
|
else
|
|
lock = NULL;
|
|
}
|
|
|
|
nlr->nr = cpu_to_le16(i);
|
|
|
|
spin_unlock(&linfo->lock);
|
|
|
|
ret = scoutfs_client_lock_recover_response(sb, net_id, nlr);
|
|
kfree(nlr);
|
|
return ret;
|
|
}
|
|
|
|
static bool lock_wait_cond(struct super_block *sb, struct scoutfs_lock *lock,
|
|
enum scoutfs_lock_mode mode)
|
|
{
|
|
DECLARE_LOCK_INFO(sb, linfo);
|
|
bool wake;
|
|
|
|
spin_lock(&linfo->lock);
|
|
wake = linfo->shutdown || lock_modes_match(lock->mode, mode) ||
|
|
!lock->request_pending;
|
|
spin_unlock(&linfo->lock);
|
|
|
|
if (!wake)
|
|
scoutfs_inc_counter(sb, lock_wait);
|
|
|
|
return wake;
|
|
}
|
|
|
|
static bool lock_flags_invalid(int flags)
|
|
{
|
|
return flags & SCOUTFS_LKF_INVALID;
|
|
}
|
|
|
|
/*
|
|
* Acquire a coherent lock on the given range of keys. On success the
|
|
* caller can use the given mode to interact with the item cache. While
|
|
* holding the lock the cache won't be invalidated and other conflicting
|
|
* lock users will be serialized. The item cache can be invalidated
|
|
* once the lock is unlocked.
|
|
*
|
|
* If we don't have a granted lock then we send a request for our
|
|
* desired mode if there isn't one in flight already. This can be
|
|
* racing with an invalidation request from the server. The server
|
|
* won't process our request until it receives our invalidation
|
|
* response.
|
|
*/
|
|
static int lock_key_range(struct super_block *sb, enum scoutfs_lock_mode mode, int flags,
|
|
struct scoutfs_key *start, struct scoutfs_key *end,
|
|
struct scoutfs_lock **ret_lock)
|
|
{
|
|
DECLARE_LOCK_INFO(sb, linfo);
|
|
struct scoutfs_lock *lock;
|
|
struct scoutfs_net_lock nl;
|
|
bool should_send;
|
|
int ret;
|
|
|
|
scoutfs_inc_counter(sb, lock_lock);
|
|
|
|
*ret_lock = NULL;
|
|
|
|
if (WARN_ON_ONCE(!start || !end) ||
|
|
WARN_ON_ONCE(lock_mode_invalid(mode)) ||
|
|
WARN_ON_ONCE(lock_flags_invalid(flags)))
|
|
return -EINVAL;
|
|
|
|
/* maybe catch _setup() and _shutdown order mistakes */
|
|
if (WARN_ON_ONCE(!linfo || linfo->shutdown))
|
|
return -ENOLCK;
|
|
|
|
/* have to lock before entering transactions */
|
|
if (WARN_ON_ONCE(scoutfs_trans_held()))
|
|
return -EDEADLK;
|
|
|
|
spin_lock(&linfo->lock);
|
|
|
|
/* drops and re-acquires lock if it allocates */
|
|
lock = create_lock(sb, start, end);
|
|
if (!lock) {
|
|
ret = -ENOMEM;
|
|
goto out_unlock;
|
|
}
|
|
|
|
/* the waiters count is only used by debugging output */
|
|
lock_inc_count(lock->waiters, mode);
|
|
|
|
for (;;) {
|
|
if (WARN_ON_ONCE(linfo->shutdown)) {
|
|
ret = -ESHUTDOWN;
|
|
break;
|
|
}
|
|
|
|
/* the fast path where we can use the granted mode */
|
|
if (lock_modes_match(lock->mode, mode)) {
|
|
lock_inc_count(lock->users, mode);
|
|
*ret_lock = lock;
|
|
ret = 0;
|
|
break;
|
|
}
|
|
|
|
/* non-blocking callers don't wait or send requests */
|
|
if (flags & SCOUTFS_LKF_NONBLOCK) {
|
|
scoutfs_inc_counter(sb, lock_nonblock_eagain);
|
|
ret = -EAGAIN;
|
|
break;
|
|
}
|
|
|
|
if (!lock->request_pending) {
|
|
lock->request_pending = 1;
|
|
should_send = true;
|
|
} else {
|
|
should_send = false;
|
|
}
|
|
|
|
spin_unlock(&linfo->lock);
|
|
|
|
if (should_send) {
|
|
nl.key = lock->start;
|
|
nl.old_mode = lock->mode;
|
|
nl.new_mode = mode;
|
|
|
|
ret = scoutfs_client_lock_request(sb, &nl);
|
|
if (ret) {
|
|
spin_lock(&linfo->lock);
|
|
lock->request_pending = 0;
|
|
break;
|
|
}
|
|
scoutfs_inc_counter(sb, lock_grant_request);
|
|
}
|
|
|
|
trace_scoutfs_lock_wait(sb, lock);
|
|
|
|
if (flags & SCOUTFS_LKF_INTERRUPTIBLE) {
|
|
ret = wait_event_interruptible(lock->waitq,
|
|
lock_wait_cond(sb, lock, mode));
|
|
} else {
|
|
wait_event(lock->waitq, lock_wait_cond(sb, lock, mode));
|
|
ret = 0;
|
|
}
|
|
|
|
spin_lock(&linfo->lock);
|
|
if (ret)
|
|
break;
|
|
}
|
|
|
|
lock_dec_count(lock->waiters, mode);
|
|
|
|
if (ret == 0)
|
|
trace_scoutfs_lock_locked(sb, lock);
|
|
wake_up(&lock->waitq);
|
|
put_lock(linfo, lock);
|
|
|
|
out_unlock:
|
|
spin_unlock(&linfo->lock);
|
|
|
|
if (ret && ret != -EAGAIN && ret != -ERESTARTSYS)
|
|
scoutfs_inc_counter(sb, lock_lock_error);
|
|
|
|
return ret;
|
|
}
|
|
|
|
int scoutfs_lock_ino(struct super_block *sb, enum scoutfs_lock_mode mode, int flags, u64 ino,
|
|
struct scoutfs_lock **ret_lock)
|
|
{
|
|
struct scoutfs_key start;
|
|
struct scoutfs_key end;
|
|
|
|
scoutfs_key_set_zeros(&start);
|
|
start.sk_zone = SCOUTFS_FS_ZONE;
|
|
start.ski_ino = cpu_to_le64(ino & ~(u64)SCOUTFS_LOCK_INODE_GROUP_MASK);
|
|
|
|
scoutfs_key_set_ones(&end);
|
|
end.sk_zone = SCOUTFS_FS_ZONE;
|
|
end.ski_ino = cpu_to_le64(ino | SCOUTFS_LOCK_INODE_GROUP_MASK);
|
|
|
|
return lock_key_range(sb, mode, flags, &start, &end, ret_lock);
|
|
}
|
|
|
|
/*
|
|
* Acquire a lock on an inode.
|
|
*
|
|
* _REFRESH_INODE indicates that the caller needs to have the vfs inode
|
|
* fields current with respect to lock coverage. The lock's refresh_gen
|
|
* is incremented as new locks are acquired and then indicates that an
|
|
* old inode with a smaller refresh_gen needs to be refreshed.
|
|
*/
|
|
int scoutfs_lock_inode(struct super_block *sb, enum scoutfs_lock_mode mode, int flags,
|
|
struct inode *inode, struct scoutfs_lock **lock)
|
|
{
|
|
int ret;
|
|
|
|
ret = scoutfs_lock_ino(sb, mode, flags, scoutfs_ino(inode), lock);
|
|
if (ret < 0)
|
|
goto out;
|
|
|
|
if (flags & SCOUTFS_LKF_REFRESH_INODE) {
|
|
ret = scoutfs_inode_refresh(inode, *lock);
|
|
if (ret < 0) {
|
|
scoutfs_unlock(sb, *lock, mode);
|
|
*lock = NULL;
|
|
}
|
|
}
|
|
|
|
out:
|
|
return ret;
|
|
}
|
|
|
|
struct lock_inodes_arg {
|
|
struct inode *inode;
|
|
struct scoutfs_lock **lockp;
|
|
};
|
|
|
|
/*
|
|
* All args with inodes go to the front of the array and are then sorted
|
|
* by their inode number.
|
|
*/
|
|
static int cmp_arg(const void *A, const void *B)
|
|
{
|
|
const struct lock_inodes_arg *a = A;
|
|
const struct lock_inodes_arg *b = B;
|
|
|
|
if (a->inode && b->inode)
|
|
return scoutfs_cmp_u64s(scoutfs_ino(a->inode),
|
|
scoutfs_ino(b->inode));
|
|
|
|
return a->inode ? -1 : b->inode ? 1 : 0;
|
|
}
|
|
|
|
static void swap_arg(void *A, void *B, int size)
|
|
{
|
|
struct lock_inodes_arg *a = A;
|
|
struct lock_inodes_arg *b = B;
|
|
|
|
swap(*a, *b);
|
|
}
|
|
|
|
/*
|
|
* Lock all the inodes in inode number order. The inode arguments can
|
|
* be in any order and can be duplicated or null. This relies on core
|
|
* lock matching to efficiently handle duplicate lock attempts of the
|
|
* same group. Callers can try to use the lock range keys for all the
|
|
* locks they attempt to acquire without knowing that they map to the
|
|
* same groups.
|
|
*
|
|
* On error no locks are held and all pointers are set to null. Lock
|
|
* pointers for null inodes are always set to null.
|
|
*
|
|
* (pretty great collision with d_lock() here)
|
|
*/
|
|
int scoutfs_lock_inodes(struct super_block *sb, enum scoutfs_lock_mode mode, int flags,
|
|
struct inode *a, struct scoutfs_lock **a_lock,
|
|
struct inode *b, struct scoutfs_lock **b_lock,
|
|
struct inode *c, struct scoutfs_lock **c_lock,
|
|
struct inode *d, struct scoutfs_lock **D_lock)
|
|
{
|
|
struct lock_inodes_arg args[] = {
|
|
{a, a_lock}, {b, b_lock}, {c, c_lock}, {d, D_lock},
|
|
};
|
|
int ret;
|
|
int i;
|
|
|
|
/* set all lock pointers to null and validating input */
|
|
ret = 0;
|
|
for (i = 0; i < ARRAY_SIZE(args); i++) {
|
|
if (WARN_ON_ONCE(args[i].inode && !args[i].lockp))
|
|
ret = -EINVAL;
|
|
if (args[i].lockp)
|
|
*args[i].lockp = NULL;
|
|
}
|
|
if (ret)
|
|
return ret;
|
|
|
|
/* sort by having an inode then inode number */
|
|
sort(args, ARRAY_SIZE(args), sizeof(args[0]), cmp_arg, swap_arg);
|
|
|
|
/* lock unique inodes */
|
|
for (i = 0; i < ARRAY_SIZE(args) && args[i].inode; i++) {
|
|
ret = scoutfs_lock_inode(sb, mode, flags, args[i].inode,
|
|
args[i].lockp);
|
|
if (ret)
|
|
break;
|
|
}
|
|
|
|
/* unlock on error */
|
|
for (i = ARRAY_SIZE(args) - 1; ret < 0 && i >= 0; i--) {
|
|
if (args[i].lockp && *args[i].lockp) {
|
|
scoutfs_unlock(sb, *args[i].lockp, mode);
|
|
*args[i].lockp = NULL;
|
|
}
|
|
}
|
|
|
|
return ret;
|
|
}
|
|
|
|
/*
|
|
* The rename lock is magical because it's global.
|
|
*/
|
|
int scoutfs_lock_rename(struct super_block *sb, enum scoutfs_lock_mode mode, int flags,
|
|
struct scoutfs_lock **lock)
|
|
{
|
|
struct scoutfs_key key = {
|
|
.sk_zone = SCOUTFS_LOCK_ZONE,
|
|
.sk_type = SCOUTFS_RENAME_TYPE,
|
|
};
|
|
|
|
return lock_key_range(sb, mode, flags, &key, &key, lock);
|
|
}
|
|
|
|
/*
|
|
* Set the caller's keys to the range of index item keys that are
|
|
* covered by the lock which covers the given index item.
|
|
*
|
|
* We're trying to strike a balance between minimizing lock
|
|
* communication by locking a large number of items and minimizing
|
|
* contention and hold times by locking a small number of items.
|
|
*
|
|
* The seq indexes have natural batching and limits on the number of
|
|
* keys per major value.
|
|
*
|
|
* This can also be used to find items that are covered by the same lock
|
|
* because their starting keys are the same.
|
|
*/
|
|
void scoutfs_lock_get_index_item_range(u8 type, u64 major, u64 ino,
|
|
struct scoutfs_key *start,
|
|
struct scoutfs_key *end)
|
|
{
|
|
u64 start_major = major & ~SCOUTFS_LOCK_SEQ_GROUP_MASK;
|
|
u64 end_major = major | SCOUTFS_LOCK_SEQ_GROUP_MASK;
|
|
|
|
BUG_ON(type != SCOUTFS_INODE_INDEX_META_SEQ_TYPE &&
|
|
type != SCOUTFS_INODE_INDEX_DATA_SEQ_TYPE);
|
|
|
|
if (start)
|
|
scoutfs_inode_init_index_key(start, type, start_major, 0, 0);
|
|
|
|
if (end)
|
|
scoutfs_inode_init_index_key(end, type, end_major, U32_MAX,
|
|
U64_MAX);
|
|
}
|
|
|
|
/*
|
|
* Lock the given index item. We use the index masks to calculate the
|
|
* start and end key values that are covered by the lock.
|
|
*/
|
|
int scoutfs_lock_inode_index(struct super_block *sb, enum scoutfs_lock_mode mode,
|
|
u8 type, u64 major, u64 ino,
|
|
struct scoutfs_lock **ret_lock)
|
|
{
|
|
struct scoutfs_key start;
|
|
struct scoutfs_key end;
|
|
|
|
scoutfs_lock_get_index_item_range(type, major, ino, &start, &end);
|
|
|
|
return lock_key_range(sb, mode, 0, &start, &end, ret_lock);
|
|
}
|
|
|
|
/*
|
|
* Orphan items are stored in their own zone which are modified with
|
|
* shared write_only locks and are read inconsistently without locks by
|
|
* background scanning work.
|
|
*
|
|
* Since we only use write_only locks we just lock the entire zone, but
|
|
* the api provides the inode in case we ever change the locking scheme.
|
|
*/
|
|
int scoutfs_lock_orphan(struct super_block *sb, enum scoutfs_lock_mode mode, int flags, u64 ino,
|
|
struct scoutfs_lock **lock)
|
|
{
|
|
struct scoutfs_key start;
|
|
struct scoutfs_key end;
|
|
|
|
scoutfs_key_set_zeros(&start);
|
|
start.sk_zone = SCOUTFS_ORPHAN_ZONE;
|
|
start.sko_ino = 0;
|
|
start.sk_type = SCOUTFS_ORPHAN_TYPE;
|
|
|
|
scoutfs_key_set_zeros(&end);
|
|
end.sk_zone = SCOUTFS_ORPHAN_ZONE;
|
|
end.sko_ino = cpu_to_le64(U64_MAX);
|
|
end.sk_type = SCOUTFS_ORPHAN_TYPE;
|
|
|
|
return lock_key_range(sb, mode, flags, &start, &end, lock);
|
|
}
|
|
|
|
int scoutfs_lock_xattr_totl(struct super_block *sb, enum scoutfs_lock_mode mode, int flags,
|
|
struct scoutfs_lock **lock)
|
|
{
|
|
struct scoutfs_key start;
|
|
struct scoutfs_key end;
|
|
|
|
scoutfs_key_set_zeros(&start);
|
|
start.sk_zone = SCOUTFS_XATTR_TOTL_ZONE;
|
|
scoutfs_key_set_ones(&end);
|
|
end.sk_zone = SCOUTFS_XATTR_TOTL_ZONE;
|
|
|
|
return lock_key_range(sb, mode, flags, &start, &end, lock);
|
|
}
|
|
|
|
void scoutfs_unlock(struct super_block *sb, struct scoutfs_lock *lock, enum scoutfs_lock_mode mode)
|
|
{
|
|
DECLARE_LOCK_INFO(sb, linfo);
|
|
|
|
if (IS_ERR_OR_NULL(lock))
|
|
return;
|
|
|
|
scoutfs_inc_counter(sb, lock_unlock);
|
|
|
|
spin_lock(&linfo->lock);
|
|
|
|
lock_dec_count(lock->users, mode);
|
|
if (lock_mode_can_write(mode))
|
|
lock->dirty_trans_seq = scoutfs_trans_sample_seq(sb);
|
|
|
|
trace_scoutfs_lock_unlock(sb, lock);
|
|
wake_up(&lock->waitq);
|
|
queue_inv_work(linfo);
|
|
put_lock(linfo, lock);
|
|
|
|
spin_unlock(&linfo->lock);
|
|
}
|
|
|
|
void scoutfs_lock_init_coverage(struct scoutfs_lock_coverage *cov)
|
|
{
|
|
spin_lock_init(&cov->cov_lock);
|
|
cov->lock = NULL;
|
|
INIT_LIST_HEAD(&cov->head);
|
|
}
|
|
|
|
/*
|
|
* Record that the given coverage struct is protected by the given lock.
|
|
* Once the lock is dropped the coverage list head will be removed and
|
|
* callers can use that to see that the cov isn't covered any more. The
|
|
* cov might be on another lock so we're careful to remove it.
|
|
*/
|
|
void scoutfs_lock_add_coverage(struct super_block *sb,
|
|
struct scoutfs_lock *lock,
|
|
struct scoutfs_lock_coverage *cov)
|
|
{
|
|
spin_lock(&cov->cov_lock);
|
|
|
|
if (cov->lock) {
|
|
spin_lock(&cov->lock->cov_list_lock);
|
|
list_del_init(&cov->head);
|
|
spin_unlock(&cov->lock->cov_list_lock);
|
|
cov->lock = NULL;
|
|
}
|
|
|
|
cov->lock = lock;
|
|
spin_lock(&cov->lock->cov_list_lock);
|
|
list_add(&cov->head, &lock->cov_list);
|
|
spin_unlock(&cov->lock->cov_list_lock);
|
|
|
|
spin_unlock(&cov->cov_lock);
|
|
}
|
|
|
|
bool scoutfs_lock_is_covered(struct super_block *sb,
|
|
struct scoutfs_lock_coverage *cov)
|
|
{
|
|
bool covered;
|
|
|
|
spin_lock(&cov->cov_lock);
|
|
covered = !list_empty_careful(&cov->head);
|
|
spin_unlock(&cov->cov_lock);
|
|
|
|
return covered;
|
|
}
|
|
|
|
void scoutfs_lock_del_coverage(struct super_block *sb,
|
|
struct scoutfs_lock_coverage *cov)
|
|
{
|
|
spin_lock(&cov->cov_lock);
|
|
if (cov->lock) {
|
|
spin_lock(&cov->lock->cov_list_lock);
|
|
list_del_init(&cov->head);
|
|
spin_unlock(&cov->lock->cov_list_lock);
|
|
cov->lock = NULL;
|
|
}
|
|
spin_unlock(&cov->cov_lock);
|
|
}
|
|
|
|
/*
|
|
* Returns true if the given lock protects the given access of the given
|
|
* key. The lock must have a current granted mode that is compatible
|
|
* with the access mode and the access key must be in the lock's key
|
|
* range.
|
|
*
|
|
* This is called by lock holders who's use of the lock must be preventing
|
|
* the mode and keys from changing.
|
|
*/
|
|
bool scoutfs_lock_protected(struct scoutfs_lock *lock, struct scoutfs_key *key,
|
|
enum scoutfs_lock_mode mode)
|
|
{
|
|
signed char lock_mode = READ_ONCE(lock->mode);
|
|
|
|
return lock_modes_match(lock_mode, mode) &&
|
|
scoutfs_key_compare_ranges(key, key,
|
|
&lock->start, &lock->end) == 0;
|
|
}
|
|
|
|
/*
|
|
* The shrink callback got the lock, marked it request_pending, and put
|
|
* it on the shrink list. We send a null request and the lock will be
|
|
* freed by the response once all users drain. If this races with
|
|
* invalidation then the server will only send the grant response once
|
|
* the invalidation is finished.
|
|
*/
|
|
static void lock_shrink_worker(struct work_struct *work)
|
|
{
|
|
struct lock_info *linfo = container_of(work, struct lock_info,
|
|
shrink_work);
|
|
struct super_block *sb = linfo->sb;
|
|
struct scoutfs_net_lock nl;
|
|
struct scoutfs_lock *lock;
|
|
struct scoutfs_lock *tmp;
|
|
LIST_HEAD(list);
|
|
int ret;
|
|
|
|
scoutfs_inc_counter(sb, lock_shrink_work);
|
|
|
|
spin_lock(&linfo->lock);
|
|
list_splice_init(&linfo->shrink_list, &list);
|
|
spin_unlock(&linfo->lock);
|
|
|
|
list_for_each_entry_safe(lock, tmp, &list, shrink_head) {
|
|
list_del_init(&lock->shrink_head);
|
|
|
|
/* unlocked lock access, but should be stable since we queued */
|
|
nl.key = lock->start;
|
|
nl.old_mode = lock->mode;
|
|
nl.new_mode = SCOUTFS_LOCK_NULL;
|
|
|
|
ret = scoutfs_client_lock_request(sb, &nl);
|
|
if (ret) {
|
|
/* oh well, not freeing */
|
|
scoutfs_inc_counter(sb, lock_shrink_aborted);
|
|
|
|
spin_lock(&linfo->lock);
|
|
|
|
lock->request_pending = 0;
|
|
wake_up(&lock->waitq);
|
|
put_lock(linfo, lock);
|
|
|
|
spin_unlock(&linfo->lock);
|
|
}
|
|
}
|
|
}
|
|
|
|
/*
|
|
* Start the shrinking process for locks on the lru. If a lock is on
|
|
* the lru then it can't have any active users. We don't want to block
|
|
* or allocate here so all we do is get the lock, mark it request
|
|
* pending, and kick off the work. The work sends a null request and
|
|
* eventually the lock is freed by its response.
|
|
*
|
|
* Only a racing lock attempt that isn't matched can prevent the lock
|
|
* from being freed. It'll block waiting to send its request for its
|
|
* mode which will prevent the lock from being freed when the null
|
|
* response arrives.
|
|
*/
|
|
static int scoutfs_lock_shrink(struct shrinker *shrink,
|
|
struct shrink_control *sc)
|
|
{
|
|
struct lock_info *linfo = container_of(shrink, struct lock_info,
|
|
shrinker);
|
|
struct super_block *sb = linfo->sb;
|
|
struct scoutfs_lock *lock;
|
|
struct scoutfs_lock *tmp;
|
|
unsigned long nr;
|
|
bool added = false;
|
|
int ret;
|
|
|
|
nr = sc->nr_to_scan;
|
|
if (nr == 0)
|
|
goto out;
|
|
|
|
spin_lock(&linfo->lock);
|
|
|
|
restart:
|
|
list_for_each_entry_safe(lock, tmp, &linfo->lru_list, lru_head) {
|
|
|
|
BUG_ON(!lock_idle(lock));
|
|
BUG_ON(lock->mode == SCOUTFS_LOCK_NULL);
|
|
BUG_ON(!list_empty(&lock->shrink_head));
|
|
|
|
if (nr-- == 0)
|
|
break;
|
|
|
|
__lock_del_lru(linfo, lock);
|
|
lock->request_pending = 1;
|
|
list_add_tail(&lock->shrink_head, &linfo->shrink_list);
|
|
added = true;
|
|
|
|
scoutfs_inc_counter(sb, lock_shrink_attempted);
|
|
trace_scoutfs_lock_shrink(sb, lock);
|
|
|
|
/* could have bazillions of idle locks */
|
|
if (cond_resched_lock(&linfo->lock))
|
|
goto restart;
|
|
}
|
|
|
|
spin_unlock(&linfo->lock);
|
|
|
|
if (added)
|
|
queue_work(linfo->workq, &linfo->shrink_work);
|
|
|
|
out:
|
|
ret = min_t(unsigned long, linfo->lru_nr, INT_MAX);
|
|
trace_scoutfs_lock_shrink_exit(sb, sc->nr_to_scan, ret);
|
|
return ret;
|
|
}
|
|
|
|
void scoutfs_free_unused_locks(struct super_block *sb)
|
|
{
|
|
struct lock_info *linfo = SCOUTFS_SB(sb)->lock_info;
|
|
struct shrink_control sc = {
|
|
.gfp_mask = GFP_NOFS,
|
|
.nr_to_scan = INT_MAX,
|
|
};
|
|
|
|
linfo->shrinker.shrink(&linfo->shrinker, &sc);
|
|
}
|
|
|
|
static void lock_tseq_show(struct seq_file *m, struct scoutfs_tseq_entry *ent)
|
|
{
|
|
struct scoutfs_lock *lock =
|
|
container_of(ent, struct scoutfs_lock, tseq_entry);
|
|
|
|
seq_printf(m, "start "SK_FMT" end "SK_FMT" refresh_gen %llu mode %d waiters: rd %u wr %u wo %u users: rd %u wr %u wo %u\n",
|
|
SK_ARG(&lock->start), SK_ARG(&lock->end),
|
|
lock->refresh_gen, lock->mode,
|
|
lock->waiters[SCOUTFS_LOCK_READ],
|
|
lock->waiters[SCOUTFS_LOCK_WRITE],
|
|
lock->waiters[SCOUTFS_LOCK_WRITE_ONLY],
|
|
lock->users[SCOUTFS_LOCK_READ],
|
|
lock->users[SCOUTFS_LOCK_WRITE],
|
|
lock->users[SCOUTFS_LOCK_WRITE_ONLY]);
|
|
}
|
|
|
|
/*
|
|
* shrink_dcache_for_umount() tears down dentries with no locking. We
|
|
* need to make sure that our invalidation won't touch dentries before
|
|
* we return and the caller calls the generic vfs unmount path.
|
|
*/
|
|
void scoutfs_lock_unmount_begin(struct super_block *sb)
|
|
{
|
|
DECLARE_LOCK_INFO(sb, linfo);
|
|
|
|
if (linfo) {
|
|
linfo->unmounting = true;
|
|
flush_work(&linfo->inv_work);
|
|
}
|
|
}
|
|
|
|
void scoutfs_lock_flush_invalidate(struct super_block *sb)
|
|
{
|
|
DECLARE_LOCK_INFO(sb, linfo);
|
|
|
|
if (linfo)
|
|
flush_work(&linfo->inv_work);
|
|
}
|
|
|
|
static u64 get_held_lock_refresh_gen(struct super_block *sb, struct scoutfs_key *start)
|
|
{
|
|
DECLARE_LOCK_INFO(sb, linfo);
|
|
struct scoutfs_lock *lock;
|
|
u64 refresh_gen = 0;
|
|
|
|
/* this can be called from all manner of places */
|
|
if (!linfo)
|
|
return 0;
|
|
|
|
spin_lock(&linfo->lock);
|
|
lock = lock_lookup(sb, start, NULL);
|
|
if (lock) {
|
|
if (lock_mode_can_read(lock->mode))
|
|
refresh_gen = lock->refresh_gen;
|
|
}
|
|
spin_unlock(&linfo->lock);
|
|
|
|
return refresh_gen;
|
|
}
|
|
|
|
u64 scoutfs_lock_ino_refresh_gen(struct super_block *sb, u64 ino)
|
|
{
|
|
struct scoutfs_key start;
|
|
|
|
scoutfs_key_set_zeros(&start);
|
|
start.sk_zone = SCOUTFS_FS_ZONE;
|
|
start.ski_ino = cpu_to_le64(ino & ~(u64)SCOUTFS_LOCK_INODE_GROUP_MASK);
|
|
|
|
return get_held_lock_refresh_gen(sb, &start);
|
|
}
|
|
|
|
/*
|
|
* The caller is going to be shutting down transactions and the client.
|
|
* We need to make sure that locking won't call either after we return.
|
|
*
|
|
* At this point all fs callers and internal services that use locks
|
|
* should have stopped. We won't have any callers initiating lock
|
|
* transitions and sending requests. We set the shutdown flag to catch
|
|
* anyone who breaks this rule.
|
|
*
|
|
* We unregister the shrinker so that we won't try and send null
|
|
* requests in response to memory pressure. The locks will all be
|
|
* unceremoniously dropped once we get a farewell response from the
|
|
* server which indicates that they destroyed our locking state.
|
|
*
|
|
* We will still respond to invalidation requests that have to be
|
|
* processed to let unmount in other mounts acquire locks and make
|
|
* progress. However, we don't fully process the invalidation because
|
|
* we're shutting down. We only update the lock state and send the
|
|
* response. We shouldn't have any users of locking that require
|
|
* invalidation correctness at this point.
|
|
*/
|
|
void scoutfs_lock_shutdown(struct super_block *sb)
|
|
{
|
|
DECLARE_LOCK_INFO(sb, linfo);
|
|
struct scoutfs_lock *lock;
|
|
struct rb_node *node;
|
|
|
|
if (!linfo)
|
|
return;
|
|
|
|
trace_scoutfs_lock_shutdown(sb, linfo);
|
|
|
|
/* stop the shrinker from queueing work */
|
|
unregister_shrinker(&linfo->shrinker);
|
|
flush_work(&linfo->shrink_work);
|
|
|
|
/* cause current and future lock calls to return errors */
|
|
spin_lock(&linfo->lock);
|
|
linfo->shutdown = true;
|
|
for (node = rb_first(&linfo->lock_tree); node; node = rb_next(node)) {
|
|
lock = rb_entry(node, struct scoutfs_lock, node);
|
|
wake_up(&lock->waitq);
|
|
}
|
|
spin_unlock(&linfo->lock);
|
|
}
|
|
|
|
/*
|
|
* By the time we get here the caller should have called _shutdown() and
|
|
* then called into all the subsystems that held locks to drop them.
|
|
* There should be no active users of locks and all future lock calls
|
|
* should fail.
|
|
*
|
|
* The client networking connection will have been shutdown so we don't
|
|
* get any request or response processing calls.
|
|
*
|
|
* Our job is to make sure nothing references the remaining locks and
|
|
* free them.
|
|
*/
|
|
void scoutfs_lock_destroy(struct super_block *sb)
|
|
{
|
|
struct scoutfs_sb_info *sbi = SCOUTFS_SB(sb);
|
|
DECLARE_LOCK_INFO(sb, linfo);
|
|
struct scoutfs_lock *lock;
|
|
struct inv_req *ireq_tmp;
|
|
struct inv_req *ireq;
|
|
struct rb_node *node;
|
|
enum scoutfs_lock_mode mode;
|
|
|
|
if (!linfo)
|
|
return;
|
|
|
|
trace_scoutfs_lock_destroy(sb, linfo);
|
|
|
|
|
|
/* make sure that no one's actively using locks */
|
|
spin_lock(&linfo->lock);
|
|
for (node = rb_first(&linfo->lock_tree); node; node = rb_next(node)) {
|
|
lock = rb_entry(node, struct scoutfs_lock, node);
|
|
|
|
for (mode = 0; mode < SCOUTFS_LOCK_NR_MODES; mode++) {
|
|
if (lock->waiters[mode] || lock->users[mode]) {
|
|
scoutfs_warn(sb, "lock start "SK_FMT" end "SK_FMT" has mode %d user after shutdown",
|
|
SK_ARG(&lock->start),
|
|
SK_ARG(&lock->end), mode);
|
|
break;
|
|
}
|
|
}
|
|
}
|
|
spin_unlock(&linfo->lock);
|
|
|
|
if (linfo->workq) {
|
|
/* now all work won't queue itself */
|
|
destroy_workqueue(linfo->workq);
|
|
}
|
|
|
|
/* XXX does anything synchronize with open debugfs fds? */
|
|
debugfs_remove(linfo->tseq_dentry);
|
|
|
|
/*
|
|
* Usually lock_free is only called once locks are idle but all
|
|
* locks are idle by definition during shutdown. We need to
|
|
* manually update the lock's state to reflect that we've given
|
|
* up on pending work that would otherwise prevent free from
|
|
* being called (and would trip assertions in our manual calling
|
|
* of free).
|
|
*/
|
|
spin_lock(&linfo->lock);
|
|
|
|
node = rb_first(&linfo->lock_tree);
|
|
while (node) {
|
|
lock = rb_entry(node, struct scoutfs_lock, node);
|
|
node = rb_next(node);
|
|
|
|
list_for_each_entry_safe(ireq, ireq_tmp, &lock->inv_list, head) {
|
|
list_del_init(&ireq->head);
|
|
put_lock(linfo, ireq->lock);
|
|
kfree(ireq);
|
|
}
|
|
|
|
lock->request_pending = 0;
|
|
if (!list_empty(&lock->lru_head))
|
|
__lock_del_lru(linfo, lock);
|
|
if (!list_empty(&lock->inv_head)) {
|
|
list_del_init(&lock->inv_head);
|
|
lock->invalidate_pending = 0;
|
|
}
|
|
if (!list_empty(&lock->shrink_head))
|
|
list_del_init(&lock->shrink_head);
|
|
lock_remove(linfo, lock);
|
|
lock_free(linfo, lock);
|
|
}
|
|
|
|
spin_unlock(&linfo->lock);
|
|
|
|
kfree(linfo);
|
|
sbi->lock_info = NULL;
|
|
}
|
|
|
|
int scoutfs_lock_setup(struct super_block *sb)
|
|
{
|
|
struct scoutfs_sb_info *sbi = SCOUTFS_SB(sb);
|
|
struct lock_info *linfo;
|
|
int ret;
|
|
|
|
linfo = kzalloc(sizeof(struct lock_info), GFP_KERNEL);
|
|
if (!linfo)
|
|
return -ENOMEM;
|
|
|
|
linfo->sb = sb;
|
|
spin_lock_init(&linfo->lock);
|
|
linfo->lock_tree = RB_ROOT;
|
|
linfo->lock_range_tree = RB_ROOT;
|
|
linfo->shrinker.shrink = scoutfs_lock_shrink;
|
|
linfo->shrinker.seeks = DEFAULT_SEEKS;
|
|
register_shrinker(&linfo->shrinker);
|
|
INIT_LIST_HEAD(&linfo->lru_list);
|
|
INIT_WORK(&linfo->inv_work, lock_invalidate_worker);
|
|
INIT_LIST_HEAD(&linfo->inv_list);
|
|
INIT_WORK(&linfo->shrink_work, lock_shrink_worker);
|
|
INIT_LIST_HEAD(&linfo->shrink_list);
|
|
atomic64_set(&linfo->next_refresh_gen, 0);
|
|
scoutfs_tseq_tree_init(&linfo->tseq_tree, lock_tseq_show);
|
|
|
|
sbi->lock_info = linfo;
|
|
trace_scoutfs_lock_setup(sb, linfo);
|
|
|
|
linfo->tseq_dentry = scoutfs_tseq_create("client_locks",
|
|
sbi->debug_root,
|
|
&linfo->tseq_tree);
|
|
if (!linfo->tseq_dentry) {
|
|
ret = -ENOMEM;
|
|
goto out;
|
|
}
|
|
|
|
linfo->workq = alloc_workqueue("scoutfs_lock_client_work",
|
|
WQ_NON_REENTRANT | WQ_UNBOUND |
|
|
WQ_HIGHPRI, 0);
|
|
if (!linfo->workq) {
|
|
ret = -ENOMEM;
|
|
goto out;
|
|
}
|
|
|
|
ret = 0;
|
|
out:
|
|
if (ret)
|
|
scoutfs_lock_destroy(sb);
|
|
|
|
return ret;
|
|
}
|