leases: fix write-open/read-lease race

In setlease, we use i_writecount to decide whether we can give out a read lease. In open, we break leases before incrementing i_writecount. There is therefore a window between the break lease and the i_writecount increment when setlease could add a new read lease. This would leave us with a simultaneous write open and read lease, which shouldn't happen. Signed-off-by: N J. Bruce Fields <bfields@redhat.com> Signed-off-by: N Christoph Hellwig <hch@lst.de>

leases: fix write-open/read-lease race
In setlease, we use i_writecount to decide whether we can give out a read lease. In open, we break leases before incrementing i_writecount. There is therefore a window between the break lease and the i_writecount increment when setlease could add a new read lease. This would leave us with a simultaneous write open and read lease, which shouldn't happen. Signed-off-by: N J. Bruce Fields <bfields@redhat.com> Signed-off-by: N Christoph Hellwig <hch@lst.de>
f3c7691e · J. Bruce Fields · root · 79835a71 · f3c7691e · f3c7691e
隐藏空白更改
内联并排

Showing with 5 addition and 4 deletion

fs/namei.c fs/namei.c +1 -4

fs/open.c fs/open.c +4 -0

未找到文件。
--- a/fs/namei.c
+++ b/fs/namei.c
@@ -2035,10 +2035,7 @@ static int may_open(struct path *path, int acc_mode, int flag)
 	if (flag & O_NOATIME && !inode_owner_or_capable(inode))
 		return -EPERM;
-	/*
+	return 0;
-	 * Ensure there are no outstanding leases on the file.
-	 */
-	return break_lease(inode, flag);
 }
 static int handle_truncate(struct file *filp)

--- a/fs/open.c
+++ b/fs/open.c
@@ -685,6 +685,10 @@ static struct file *__dentry_open(struct dentry *dentry, struct vfsmount *mnt,
 	if (error)
 		goto cleanup_all;
+	error = break_lease(inode, f->f_flags);
+	if (error)
+		goto cleanup_all;
 	if (!open && f->f_op)
 		open = f->f_op->open;
 	if (open) {