android_kernel_google_msm/fs/fscache
David Howells 1bccf513ac FS-Cache: Fix lock misorder in fscache_write_op()
FS-Cache has two structs internally for keeping track of the internal state of
a cached file: the fscache_cookie struct, which represents the netfs's state,
and fscache_object struct, which represents the cache's state.  Each has a
pointer that points to the other (when both are in existence), and each has a
spinlock for pointer maintenance.

Since netfs operations approach these structures from the cookie side, they get
the cookie lock first, then the object lock.  Cache operations, on the other
hand, approach from the object side, and get the object lock first.  It is not
then permitted for a cache operation to get the cookie lock whilst it is
holding the object lock lest deadlock occur; instead, it must do one of two
things:

 (1) increment the cookie usage counter, drop the object lock and then get both
     locks in order, or

 (2) simply hold the object lock as certain parts of the cookie may not be
     altered whilst the object lock is held.

It is also not permitted to follow either pointer without holding the lock at
the end you start with.  To break the pointers between the cookie and the
object, both locks must be held.

fscache_write_op(), however, violates the locking rules: It attempts to get the
cookie lock without (a) checking that the cookie pointer is a valid pointer,
and (b) holding the object lock to protect the cookie pointer whilst it follows
it.  This is so that it can access the pending page store tree without
interference from __fscache_write_page().

This is fixed by splitting the cookie lock, such that the page store tracking
tree is protected by its own lock, and checking that the cookie pointer is
non-NULL before we attempt to follow it whilst holding the object lock.

The new lock is subordinate to both the cookie lock and the object lock, and so
should be taken after those.

Signed-off-by: David Howells <dhowells@redhat.com>
2009-11-19 18:11:25 +00:00
..
cache.c FS-Cache: Add counters for entry/exit to/from cache operation functions 2009-11-19 18:11:08 +00:00
cookie.c FS-Cache: Fix lock misorder in fscache_write_op() 2009-11-19 18:11:25 +00:00
fsdef.c FS-Cache: Root index definition 2009-04-03 16:42:37 +01:00
histogram.c
internal.h FS-Cache: Fix lock misorder in fscache_write_op() 2009-11-19 18:11:25 +00:00
Kconfig FS-Cache: Allow the current state of all objects to be dumped 2009-11-19 18:11:04 +00:00
main.c SLOW_WORK: Wait for outstanding work items belonging to a module to clear 2009-11-19 18:10:23 +00:00
Makefile FS-Cache: Allow the current state of all objects to be dumped 2009-11-19 18:11:04 +00:00
netfs.c FS-Cache: Add netfs registration 2009-04-03 16:42:38 +01:00
object-list.c FS-Cache: Allow the current state of all objects to be dumped 2009-11-19 18:11:04 +00:00
object.c FS-Cache: The object-available state can't rely on the cookie to be available 2009-11-19 18:11:22 +00:00
operation.c FS-Cache: Permit cache retrieval ops to be interrupted in the initial wait phase 2009-11-19 18:11:19 +00:00
page.c FS-Cache: Fix lock misorder in fscache_write_op() 2009-11-19 18:11:25 +00:00
proc.c FS-Cache: Allow the current state of all objects to be dumped 2009-11-19 18:11:04 +00:00
stats.c FS-Cache: Fix lock misorder in fscache_write_op() 2009-11-19 18:11:25 +00:00