Re: [PATCH] fix race in mark_mounts_for_expiry()

From: Miklos Szeredi
Date: Thu May 19 2005 - 07:57:21 EST

Next message: Peter Staubach: "Re: why nfs server delay 10ms in nfsd_write()?"
Previous message: Richard B. Johnson: "Re: Sync option destroys flash! Now I'm confused..."
In reply to: Ram: "Re: [PATCH] fix race in mark_mounts_for_expiry()"
Next in thread: Ram: "Re: [PATCH] namespace.c: fix bind mount from foreign namespace"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> Ok. One more attempt to be clear.
>
> All the places where get_namespace() is called currently except
> in mark_mounts_for_expiry() are safe because they are called in
> places where it is guaranteed that they will not race with
> __put_namespace().
>
> For example in clone_namespace(), get_namespace() will not race
> because the task that called the clone has a refcount on the
> namespace and since that task is currently in the kernel, there is
> no chance for the task to go away decrementing the refcount
> on that namespace.
>
> But the case where the call to get_namespace() is buggy in
> mark_mounts_for_expiry() is because:
> it is called in a timer context, and the last process referring
> the namespace may just disapper right than.
> So what I am proposing is:
> in automouter, while the automount takes place in
> afs_mntpt_follow_link() increment the refcount of the namespace,
> by calling get_namespace(). This call will not race with __put_namespace
> because the process that is trying to access the
> mountpoint already has a refcount on the namespace and it won't be
> able to decrement the refcount currently. agree?
>
> Now later when the automounter tries to unmount the mount
> call put_namespace() after unmounting. I mean do it in
> mark_mounts_for_expiry(). Also delete the call to get_namespace())
>
> So the race will not happen at all.
>
> Makes sense?

Well I imagine it could work, but again it's just a special case for
the automounter stuff.

It still won't solve the recursive mount problem that this discussion
(and your discovery of the race) originated from.

My second patch solves the problem generally (though I'm sure that
it's full of bugs yet), by keeping a reference to the namespace from
each vfsmount in that namespace. That way, until the vfsmount remains
in the namespace (i.e. until it's unmounted) mnt_namespace can be
safely used for whatever reason (recursive bind, atomount, etc).

So why does it make sense to solve this problem only for the
automounter?

Miklos
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Peter Staubach: "Re: why nfs server delay 10ms in nfsd_write()?"
Previous message: Richard B. Johnson: "Re: Sync option destroys flash! Now I'm confused..."
In reply to: Ram: "Re: [PATCH] fix race in mark_mounts_for_expiry()"
Next in thread: Ram: "Re: [PATCH] namespace.c: fix bind mount from foreign namespace"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]