| blob | 4bfb058b88a9f51723925525d348c6a8412b454b |
1 /*
2 * Copyright (c) 1997-1999 Erez Zadok
3 * Copyright (c) 1990 Jan-Simon Pendry
4 * Copyright (c) 1990 Imperial College of Science, Technology & Medicine
5 * Copyright (c) 1990 The Regents of the University of California.
6 * All rights reserved.
7 *
8 * This code is derived from software contributed to Berkeley by
9 * Jan-Simon Pendry at Imperial College, London.
10 *
11 * Redistribution and use in source and binary forms, with or without
12 * modification, are permitted provided that the following conditions
13 * are met:
14 * 1. Redistributions of source code must retain the above copyright
15 * notice, this list of conditions and the following disclaimer.
16 * 2. Redistributions in binary form must reproduce the above copyright
17 * notice, this list of conditions and the following disclaimer in the
18 * documentation and/or other materials provided with the distribution.
19 * 3. All advertising materials mentioning features or use of this software
20 * must display the following acknowledgment:
21 * This product includes software developed by the University of
22 * California, Berkeley and its contributors.
23 * 4. Neither the name of the University nor the names of its contributors
24 * may be used to endorse or promote products derived from this software
25 * without specific prior written permission.
26 *
27 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
28 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
29 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
30 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
31 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
32 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
33 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
34 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
35 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
36 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
37 * SUCH DAMAGE.
38 *
39 * %W% (Berkeley) %G%
40 *
41 * $Id: map.c,v 1.5 1999/08/22 05:12:51 ezk Exp $
42 *
43 */
45 #ifdef HAVE_CONFIG_H
46 # include <config.h>
48 #include <am_defs.h>
49 #include <amd.h>
51 #define smallest_t(t1, t2) (t1 != NEVER ? (t2 != NEVER ? (t1 < t2 ? t1 : t2) : t1) : t2)
52 #define IGNORE_FLAGS (MFF_MOUNTING|MFF_UNMOUNTING|MFF_RESTART)
53 #define NEVER (time_t) 0
54 #define new_gen() (am_gen++)
56 /*
57 * Generation Numbers.
58 *
59 * Generation numbers are allocated to every node created
60 * by amd. When a filehandle is computed and sent to the
61 * kernel, the generation number makes sure that it is safe
62 * to reallocate a node slot even when the kernel has a cached
63 * reference to its old incarnation.
64 * No garbage collection is done, since it is assumed that
65 * there is no way that 2^32 generation numbers could ever
66 * be allocated by a single run of amd - there is simply
67 * not enough cpu time available.
68 */
79 /*
80 * This is the default attributes field which
81 * is copied into every new node to be created.
82 * The individual filesystem fs_init() routines
83 * patch the copy to represent the particular
84 * details for the relevant filesystem type
85 */
87 {
102 };
104 /* forward declarations */
110 /*
111 * Resize exported_ap map
112 */
113 static int
115 {
116 /*
117 * this shouldn't happen, but...
118 */
130 }
133 /*
134 * Allocate a new mount slot and create
135 * a new node.
136 * Fills in the map number of the node,
137 * but leaves everything else uninitialized.
138 */
139 am_node *
141 {
144 /*
145 * First check if there are any slots left, realloc if needed
146 */
151 /*
152 * Grab the next free slot
153 */
160 /*
161 * Update free pointer
162 */
164 first_free_map++;
170 }
173 /*
174 * Free a mount slot
175 */
176 static void
178 {
179 /*
180 * Sanity check
181 */
185 /*
186 * Zero the slot pointer to avoid double free's
187 */
190 /*
191 * Update the free and last_used indices
192 */
200 /*
201 * Free the mount node
202 */
204 }
207 /*
208 * Insert mp into the correct place,
209 * where p_mp is its parent node.
210 * A new node gets placed as the youngest sibling
211 * of any other children, and the parent's child
212 * pointer is adjusted to point to the new child node.
213 */
214 void
216 {
217 /*
218 * If this is going in at the root then flag it
219 * so that it cannot be unmounted by amq.
220 */
223 /*
224 * Fill in n-way links
225 */
231 }
234 /*
235 * Remove am from its place in the mount tree
236 */
237 static void
239 {
240 /*
241 * 1. Consistency check
242 */
245 }
247 /*
248 * 2. Update parent's child pointer
249 */
253 /*
254 * 3. Unlink from sibling chain
255 */
260 }
263 /*
264 * Compute a new time to live value for a node.
265 */
266 void
268 {
273 }
276 void
278 {
295 }
296 }
299 /*
300 * Initialize an allocated mount node.
301 * It is assumed that the mount node was b-zero'd
302 * before getting here so anything that would
303 * be set to zero isn't done here.
304 */
305 void
307 {
308 /*
309 * mp->am_mapno is initialized by exported_ap_alloc
310 * other fields don't need to be set to zero.
311 */
328 }
331 /*
332 * Free a mount node.
333 * The node must be already unmounted.
334 */
335 void
337 {
356 }
359 /*
360 * Convert from file handle to automount node.
361 */
362 am_node *
364 {
368 /*
369 * Check process id matches
370 * If it doesn't then it is probably
371 * from an old kernel cached filehandle
372 * which is now out of date.
373 */
377 /*
378 * Make sure the index is valid before
379 * exported_ap is referenced.
380 */
384 /*
385 * Get hold of the supposed mount node
386 */
389 /*
390 * If it exists then maybe...
391 */
393 /*
394 * Check the generation number in the node
395 * matches the one from the kernel. If not
396 * then the old node has been timed out and
397 * a new one allocated.
398 */
402 }
403 /*
404 * If the node is hung then locate a new node
405 * for it. This implements the replicated filesystem
406 * retries.
407 */
412 #ifdef DEBUG
417 /*
418 * Update modify time of parent node.
419 * With any luck the kernel will re-stat
420 * the child node and get new information.
421 */
424 /*
425 * Call the parent's lookup routine for an object
426 * with the same name. This may return -1 in error
427 * if a mount is in progress. In any case, if no
428 * mount node is returned the error code is propagated
429 * to the caller.
430 */
437 }
443 }
445 /*
446 * Update last access to original node. This
447 * avoids timing it out and so sending ESTALE
448 * back to the kernel.
449 * XXX - Not sure we need this anymore (jsp, 90/10/6).
450 */
453 }
455 /*
456 * Disallow references to objects being unmounted, unless
457 * they are automount points.
458 */
463 else
466 }
468 }
470 drop:
472 /*
473 * If we are shutting down then it is likely
474 * that this node has disappeared because of
475 * a fast timeout. To avoid things thrashing
476 * just pretend it doesn't exist at all. If
477 * ESTALE is returned, some NFS clients just
478 * keep retrying (stupid or what - if it's
479 * stale now, what's it going to be in 5 minutes?)
480 */
483 else
486 }
489 }
492 am_node *
494 {
498 }
501 /*
502 * Convert from automount node to file handle.
503 */
504 void
506 {
511 /*
512 * Take the process id
513 */
516 /*
517 * ... the map number
518 */
521 /*
522 * ... and the generation number
523 */
526 /*
527 * ... to make a "unique" triple that will never
528 * be reallocated except across reboots (which doesn't matter)
529 * or if we are unlucky enough to be given the same
530 * pid as a previous amd (very unlikely).
531 */
532 }
535 am_node *
537 {
551 }
554 }
557 /*
558 * Find the mount node corresponding to dir. dir can match either the
559 * automount path or, if the node is mounted, the mount location.
560 */
561 am_node *
563 {
572 }
573 }
574 }
577 }
580 /*
581 * Find the mount node corresponding
582 * to the mntfs structure.
583 */
584 am_node *
586 {
593 }
596 }
599 /*
600 * Get the filehandle for a particular named directory.
601 * This is used during the bootstrap to tell the kernel
602 * the filehandles of the initial automount points.
603 */
604 am_nfs_fh *
606 {
611 /*
612 * Patch up PID to match main server...
613 */
617 #ifdef DEBUG
620 }
622 }
624 /*
625 * Should never get here...
626 */
630 }
633 am_node *
635 {
642 }
645 /*
646 * Timeout all nodes waiting on
647 * a given Fserver.
648 */
649 void
651 {
661 }
662 }
665 }
668 /*
669 * Mount a top level automount node
670 * by calling lookup in the parent
671 * (root) node which will cause the
672 * automount node to be automounted.
673 */
674 int
676 {
683 }
685 }
688 /*
689 * Cause all the top-level mount nodes
690 * to be automounted
691 */
692 int
694 {
695 /*
696 * Iterate over all the nodes to be started
697 */
699 }
702 /*
703 * Construct top-level node
704 */
705 void
707 {
712 /*
713 * Allocate a new map
714 */
717 /*
718 * Allocate a new mounted filesystem
719 */
722 /*
723 * Replace the initial null reference
724 */
728 /*
729 * Initialize the root
730 */
734 /*
735 * Mount the root
736 */
738 }
741 /*
742 * Cause all the nodes to be unmounted by timing
743 * them out.
744 */
745 void
747 {
756 /*
757 * If this node is being unmounted then just ignore it. However,
758 * this could prevent amd from finishing if the unmount gets blocked
759 * since the am_node will never be free'd. am_unmounted needs
760 * telling about this possibility. - XXX
761 */
763 }
766 /*
767 * When shutting down this had better
768 * look like a directory, otherwise it
769 * can't be unmounted!
770 */
772 }
778 /*
779 * Just throw this node away without bothering to unmount it. If
780 * the server is not known to be up then don't discard the mounted
781 * on directory or Amd might hang...
782 */
789 }
793 /*
794 * Any other node gets forcibly timed out.
795 */
801 }
802 }
803 }
804 }
807 static int
809 {
814 /*
815 * Just unlink
816 */
817 #ifdef DEBUG
823 #ifdef DEBUG
827 }
831 #ifdef DEBUG
834 }
837 }
840 static int
842 {
845 /*
846 * Below is the comment left from the old code
847 * that was dependent on the macro FLUSH_KERNEL_NAME_CACHE
848 */
849 /*
850 * This code should just say:
851 * return unmount_node((am_node *) vp);
852 *
853 * However...
854 * The kernel keeps a cached copy of filehandles,
855 * and doesn't ever uncache them (apparently). So
856 * when Amd times out a node the kernel will have a
857 * stale filehandle. When the kernel next uses the
858 * filehandle it gets ESTALE.
859 *
860 * The workaround:
861 * Arrange that when a node is removed an unlink or
862 * rmdir is done on that path so that the kernel
863 * cache is done. Yes - yuck.
864 *
865 * This can all be removed (and the background
866 * unmount flag in amfs_link_ops) if/when the kernel does
867 * something smarter.
868 *
869 * If the unlink or rmdir failed then just log a warning,
870 * don't fail the unmount. This can occur if the kernel
871 * client code decides that the object is still referenced
872 * and should be renamed rather than discarded.
873 *
874 * There is still a race condition here...
875 * if another process is trying to access the same
876 * filesystem at the time we get here, then
877 * it will block, since the MF_UNMOUNTING flag will
878 * be set. That may, or may not, cause the entire
879 * system to deadlock. Hmmm...
880 */
881 }
884 static void
886 {
890 /*
891 * Not unmounting any more
892 */
895 /*
896 * If a timeout was deferred because the underlying filesystem
897 * was busy then arrange for a timeout as soon as possible.
898 */
902 }
905 #if defined(DEBUG) && defined(SIGTRAP)
906 /*
907 * dbx likes to put a trap on exit().
908 * Pretend it succeeded for now...
909 */
912 }
921 }
925 }
927 /*
928 * Wakeup anything waiting for this mount
929 */
931 }
934 static int
936 {
940 #ifdef notdef
947 /*
948 * Don't try to unmount from a server that is known to be down
949 */
951 /* Only log this once, otherwise gets a bit boring */
952 plog(XLOG_STATS, "file server %s is down - timeout of \"%s\" ignored", mf->mf_server->fs_host, mp->am_path);
954 }
956 /* Clear logdown flag - since the server must be up */
958 #ifdef DEBUG
960 /* dlog("Will background the unmount attempt"); */
962 /*
963 * Note that we are unmounting this node
964 */
969 #ifdef DEBUG
972 }
974 #ifdef DEBUG
980 #ifdef DEBUG
983 }
986 }
989 void
991 {
997 #ifdef DEBUG
1005 /*
1006 * Just continue if nothing mounted, or can't be timed out.
1007 */
1011 /*
1012 * Pick up mounted filesystem
1013 */
1018 /*
1019 * Don't delete last reference to a restarted filesystem.
1020 */
1024 /*
1025 * If there is action on this filesystem then ignore it
1026 */
1034 /*
1035 * Move the ttl forward to avoid thrashing effects
1036 * on the next call to timeout!
1037 */
1038 /* sun's -tw option */
1044 /*
1045 * Just backoff this unmount for
1046 * a couple of seconds to avoid
1047 * many multiple unmounts being
1048 * started in parallel.
1049 */
1051 }
1052 }
1054 /*
1055 * If the next ttl is smallest, use that
1056 */
1060 /*
1061 * If the unmount was backgrounded then
1062 * bump the backoff counter.
1063 */
1066 }
1067 }
1070 }
1071 }
1074 #ifdef DEBUG
1078 }
1080 /*
1081 * Sanity check to avoid runaways.
1082 * Absolutely should never get this but
1083 * if you do without this trap amd will thrash.
1084 */
1088 }
1090 /*
1091 * XXX - when shutting down, make things happen faster
1092 */
1095 #ifdef DEBUG
1100 }
1103 /*
1104 * Cause timeout_mp to be called soonest
1105 */
1106 void
1108 {
1112 }