Page MenuHomeFreeBSD
Differential D30401

Add a generic mechanism for preventing forced unmount
ClosedPublic
Actions

Authored by jah on May 23 2021, 3:32 AM.
Tags
None
Referenced Files
Unknown Object (File)
Mar 7 2024, 3:51 PM
Unknown Object (File)
Feb 9 2024, 2:50 AM
Unknown Object (File)
Dec 22 2023, 9:18 PM
Unknown Object (File)
Dec 22 2023, 1:30 PM
Unknown Object (File)
Oct 25 2023, 6:50 AM
Unknown Object (File)
Sep 16 2023, 4:27 PM
Unknown Object (File)
Sep 14 2023, 4:51 AM
Unknown Object (File)
Sep 5 2023, 8:17 PM
View All 26 Files
Subscribers
imp

Details

Reviewers
kib
markj
mjg
Commits
rG59409cb90fc0: Add a generic mechanism for preventing forced unmount
Summary

This is aimed at preventing stacked filesystems like nullfs and unionfs
from "losing" their lower mounts due to forced unmount. Otherwise,
VFS operations that are passed through to the lower filesystem(s) may
crash or otherwise cause unpredictable behavior.

Introduce two new functions: vfs_pin_from_vp() and vfs_unpin().
which are intended to be called on the lower mount(s) when the stacked
filesystem is mounted and unmounted, respectively.
Much as registration in the mnt_uppers list previously did, pinning
will prevent even forced unmount of the lower FS and will allow the
stacked FS to freely operate on the lower mount either by direct
use of the struct mount* or indirect use through a properly-referenced
vnode's v_mount field.

vfs_pin_from_vp() is modeled after vfs_ref_from_vp() in that it uses
the mount interlock coupled with re-checking vp->v_mount to ensure
that it will fail in the face of a pending unmount request, even if
the concurrent unmount fully completes.

Adopt these new functions in both nullfs and unionfs.

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

jah created this revision.May 23 2021, 3:32 AM
Herald added a subscriber: imp. · View Herald TranscriptMay 23 2021, 3:32 AM
jah requested review of this revision.May 23 2021, 3:32 AM
Harbormaster completed remote builds in B39359: Diff 89676.May 23 2021, 3:32 AM
kib added a comment.May 24 2021, 3:35 PM

Should pin imply normal reference on the mp? I suspect that it would simplify reasoning about the mp state.

Should we add some asserts, like MNTK_UNMOUNT implies mnt_pinned_count == 0? E.g., vfs_busy()/vfs_unbusy() might be a good place for the check.

sys/kern/vfs_mount.c
517

Extra () in the expression before ||.

521

It might be worth to add the check that we do not overflow there.

529

We usually do not assert that pointers are not NULL, leaving it to hw to do the check.

532

It makes more sense to assert that count >= 1 before decrement, IMO.

jah updated this revision to Diff 89795.May 25 2021, 3:14 AM

Add and tweak various asserts

Harbormaster completed remote builds in B39431: Diff 89795.May 25 2021, 3:14 AM
kib accepted this revision.May 25 2021, 7:23 AM
This revision is now accepted and ready to land.May 25 2021, 7:23 AM
markj accepted this revision.May 25 2021, 1:25 PM
markj added inline comments.
sys/fs/nullfs/null_vfsops.c
176

Stray newline?

jah updated this revision to Diff 89834.May 25 2021, 5:39 PM

Remove stray newline

This revision now requires review to proceed.May 25 2021, 5:39 PM
Harbormaster completed remote builds in B39448: Diff 89834.May 25 2021, 5:39 PM
jah mentioned this in D30152: unionfs: reference the underlying FS' mount objects when using them.May 25 2021, 6:04 PM
jah mentioned this in D30263: nullfs: busy the lower mount before calling VFS_* operations on it.
This revision was not accepted when it landed; it landed in state Needs Review.Jun 6 2021, 1:18 AM
Closed by commit rG59409cb90fc0: Add a generic mechanism for preventing forced unmount (authored by jah). · Explain Why
This revision was automatically updated to reflect the committed changes.
jah added a commit: rG59409cb90fc0: Add a generic mechanism for preventing forced unmount.

Revision Contents
Changeset List

PathSize
sys/
fs/
nullfs/
9 lines
unionfs/
22 lines
kern/
39 lines
3 lines
sys/
3 lines

Diff 90475

View Options

sys/fs/nullfs/null_vfsops.c

Loading...
View Options

sys/fs/unionfs/union_vfsops.c

Loading...
View Options

sys/kern/vfs_mount.c

Loading...
View Options

sys/kern/vfs_subr.c

Loading...
View Options

sys/sys/mount.h

Loading...