mirror of
https://github.com/versity/scoutfs.git
synced 2026-01-03 10:55:20 +00:00
8efb30afbc
As a regular file reader first acquires a cluster lock it checks the file's extents to see if the region it is reading contains offline extents. When this was written the extent operations didn't have their own internal locking. It was up to callers to use vfs mechanisms to serialize readers and writers. The aio_read data_wait_check extent caller tried to use dio_count and an i_mutex acquisition to ensure that our ioctls wouldn't modify extents. This creates a bad inversion between the vfs i_mutex and our cluster inode lock. There are lots of fs methods which are called by the vfs with i_mutex held which acquire a lock. This read case was holding a cluster lock and then acquiring i_mutex. Since the data waiting was written the file data extent operations have added their own extent_sem to protect the extent items from concurrent callers. We can rely on that internal locking and drop the bad i_mutex use which causes the inversion. Not surprisingly, this was trivial to deadlock by racing simple utilities like cat and touch. Signed-off-by: Zach Brown <zab@versity.com>
208 lines
5.1 KiB
C
208 lines
5.1 KiB
C
/*
|
|
* Copyright (C) 2017 Versity Software, Inc. All rights reserved.
|
|
*
|
|
* This program is free software; you can redistribute it and/or
|
|
* modify it under the terms of the GNU General Public
|
|
* License v2 as published by the Free Software Foundation.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
* General Public License for more details.
|
|
*/
|
|
|
|
#include <linux/kernel.h>
|
|
#include <linux/fs.h>
|
|
#include <linux/slab.h>
|
|
#include <linux/pagemap.h>
|
|
#include <linux/mpage.h>
|
|
#include <linux/sched.h>
|
|
#include <linux/aio.h>
|
|
|
|
#include "format.h"
|
|
#include "super.h"
|
|
#include "data.h"
|
|
#include "scoutfs_trace.h"
|
|
#include "lock.h"
|
|
#include "file.h"
|
|
#include "inode.h"
|
|
#include "per_task.h"
|
|
#include "omap.h"
|
|
|
|
/*
|
|
* Start a high level file read. We check for offline extents in the
|
|
* read region here so that we only check the extents once. We use the
|
|
* dio count to prevent releasing while we're reading after we've
|
|
* checked the extents.
|
|
*/
|
|
ssize_t scoutfs_file_aio_read(struct kiocb *iocb, const struct iovec *iov,
|
|
unsigned long nr_segs, loff_t pos)
|
|
{
|
|
struct file *file = iocb->ki_filp;
|
|
struct inode *inode = file_inode(file);
|
|
struct scoutfs_inode_info *si = SCOUTFS_I(inode);
|
|
struct super_block *sb = inode->i_sb;
|
|
struct scoutfs_lock *inode_lock = NULL;
|
|
SCOUTFS_DECLARE_PER_TASK_ENTRY(pt_ent);
|
|
DECLARE_DATA_WAIT(dw);
|
|
int ret;
|
|
|
|
retry:
|
|
/* protect checked extents from release */
|
|
mutex_lock(&inode->i_mutex);
|
|
atomic_inc(&inode->i_dio_count);
|
|
mutex_unlock(&inode->i_mutex);
|
|
|
|
ret = scoutfs_lock_inode(sb, SCOUTFS_LOCK_READ,
|
|
SCOUTFS_LKF_REFRESH_INODE, inode, &inode_lock);
|
|
if (ret)
|
|
goto out;
|
|
|
|
if (scoutfs_per_task_add_excl(&si->pt_data_lock, &pt_ent, inode_lock)) {
|
|
ret = scoutfs_data_wait_check_iov(inode, iov, nr_segs, pos,
|
|
SEF_OFFLINE,
|
|
SCOUTFS_IOC_DWO_READ,
|
|
&dw, inode_lock);
|
|
if (ret != 0)
|
|
goto out;
|
|
} else {
|
|
WARN_ON_ONCE(true);
|
|
}
|
|
|
|
ret = generic_file_aio_read(iocb, iov, nr_segs, pos);
|
|
|
|
out:
|
|
inode_dio_done(inode);
|
|
scoutfs_per_task_del(&si->pt_data_lock, &pt_ent);
|
|
scoutfs_unlock(sb, inode_lock, SCOUTFS_LOCK_READ);
|
|
|
|
if (scoutfs_data_wait_found(&dw)) {
|
|
ret = scoutfs_data_wait(inode, &dw);
|
|
if (ret == 0)
|
|
goto retry;
|
|
}
|
|
|
|
return ret;
|
|
}
|
|
|
|
ssize_t scoutfs_file_aio_write(struct kiocb *iocb, const struct iovec *iov,
|
|
unsigned long nr_segs, loff_t pos)
|
|
{
|
|
struct file *file = iocb->ki_filp;
|
|
struct inode *inode = file_inode(file);
|
|
struct scoutfs_inode_info *si = SCOUTFS_I(inode);
|
|
struct super_block *sb = inode->i_sb;
|
|
struct scoutfs_lock *inode_lock = NULL;
|
|
SCOUTFS_DECLARE_PER_TASK_ENTRY(pt_ent);
|
|
DECLARE_DATA_WAIT(dw);
|
|
int ret;
|
|
|
|
if (iocb->ki_left == 0) /* Does this even happen? */
|
|
return 0;
|
|
|
|
retry:
|
|
mutex_lock(&inode->i_mutex);
|
|
ret = scoutfs_lock_inode(sb, SCOUTFS_LOCK_WRITE,
|
|
SCOUTFS_LKF_REFRESH_INODE, inode, &inode_lock);
|
|
if (ret)
|
|
goto out;
|
|
|
|
ret = scoutfs_complete_truncate(inode, inode_lock);
|
|
if (ret)
|
|
goto out;
|
|
|
|
if (scoutfs_per_task_add_excl(&si->pt_data_lock, &pt_ent, inode_lock)) {
|
|
/* data_version is per inode, whole file must be online */
|
|
ret = scoutfs_data_wait_check(inode, 0, i_size_read(inode),
|
|
SEF_OFFLINE,
|
|
SCOUTFS_IOC_DWO_WRITE,
|
|
&dw, inode_lock);
|
|
if (ret != 0)
|
|
goto out;
|
|
}
|
|
|
|
/* XXX: remove SUID bit */
|
|
|
|
ret = __generic_file_aio_write(iocb, iov, nr_segs, &iocb->ki_pos);
|
|
|
|
out:
|
|
scoutfs_per_task_del(&si->pt_data_lock, &pt_ent);
|
|
scoutfs_unlock(sb, inode_lock, SCOUTFS_LOCK_WRITE);
|
|
mutex_unlock(&inode->i_mutex);
|
|
|
|
if (scoutfs_data_wait_found(&dw)) {
|
|
ret = scoutfs_data_wait(inode, &dw);
|
|
if (ret == 0)
|
|
goto retry;
|
|
}
|
|
|
|
if (ret > 0 || ret == -EIOCBQUEUED) {
|
|
ssize_t err;
|
|
|
|
err = generic_write_sync(file, pos, ret);
|
|
if (err < 0 && ret > 0)
|
|
ret = err;
|
|
}
|
|
|
|
return ret;
|
|
}
|
|
|
|
int scoutfs_permission(struct inode *inode, int mask)
|
|
{
|
|
struct super_block *sb = inode->i_sb;
|
|
struct scoutfs_lock *inode_lock = NULL;
|
|
int ret;
|
|
|
|
if (mask & MAY_NOT_BLOCK)
|
|
return -ECHILD;
|
|
|
|
ret = scoutfs_lock_inode(sb, SCOUTFS_LOCK_READ,
|
|
SCOUTFS_LKF_REFRESH_INODE, inode, &inode_lock);
|
|
if (ret)
|
|
return ret;
|
|
|
|
ret = generic_permission(inode, mask);
|
|
|
|
scoutfs_unlock(sb, inode_lock, SCOUTFS_LOCK_READ);
|
|
|
|
return ret;
|
|
}
|
|
|
|
loff_t scoutfs_file_llseek(struct file *file, loff_t offset, int whence)
|
|
{
|
|
struct inode *inode = file->f_mapping->host;
|
|
struct super_block *sb = inode->i_sb;
|
|
struct scoutfs_lock *lock = NULL;
|
|
int ret = 0;
|
|
|
|
switch (whence) {
|
|
case SEEK_END:
|
|
case SEEK_DATA:
|
|
case SEEK_HOLE:
|
|
/*
|
|
* These require a lock and inode refresh as they
|
|
* reference i_size.
|
|
*
|
|
* XXX: SEEK_DATA/SEEK_HOLE can search our extent
|
|
* items instead of relying on generic_file_llseek()
|
|
* trickery.
|
|
*/
|
|
ret = scoutfs_lock_inode(sb, SCOUTFS_LOCK_READ,
|
|
SCOUTFS_LKF_REFRESH_INODE, inode,
|
|
&lock);
|
|
case SEEK_SET:
|
|
case SEEK_CUR:
|
|
/* No lock required, fall through to the generic helper */
|
|
break;
|
|
default:
|
|
ret = -EINVAL;
|
|
}
|
|
|
|
if (ret == 0)
|
|
offset = generic_file_llseek(file, offset, whence);
|
|
|
|
scoutfs_unlock(sb, lock, SCOUTFS_LOCK_READ);
|
|
|
|
return ret ? ret : offset;
|
|
}
|