git.dujemihanovic.xyz Git - linux.git/commit

author	NeilBrown <neilb@suse.de>
	Sun, 15 Sep 2024 23:45:40 +0000 (09:45 +1000)
committer	Chuck Lever <chuck.lever@oracle.com>
	Fri, 20 Sep 2024 23:31:03 +0000 (19:31 -0400)
commit	3391fc92db8e761f1a2df5612fcb999dac6bc00a
tree	68d81667cf7cb6ce876f58b39a7cf4729f87cf38	tree \| snapshot
parent	59f3b138160d37435b353e95c62d9ebf7f80b117	commit \| diff

sunrpc: allow svc threads to fail initialisation cleanly

If an svc thread needs to perform some initialisation that might fail,
it has no good way to handle the failure.

Before the thread can exit it must call svc_exit_thread(), but that
requires the service mutex to be held.  The thread cannot simply take
the mutex as that could deadlock if there is a concurrent attempt to
shut down all threads (which is unlikely, but not impossible).

nfsd currently call svc_exit_thread() unprotected in the unlikely event
that unshare_fs_struct() fails.

We can clean this up by introducing svc_thread_init_status() by which an
svc thread can report whether initialisation has succeeded.  If it has,
it continues normally into the action loop.  If it has not,
svc_thread_init_status() immediately aborts the thread.
svc_start_kthread() waits for either of these to happen, and calls
svc_exit_thread() (under the mutex) if the thread aborted.

Signed-off-by: NeilBrown <neilb@suse.de>
Reviewed-by: Jeff Layton <jlayton@kernel.org>
Signed-off-by: Chuck Lever <chuck.lever@oracle.com>

fs/lockd/svc.c		diff \| blob \| history
fs/nfs/callback.c		diff \| blob \| history
fs/nfsd/nfssvc.c		diff \| blob \| history
include/linux/sunrpc/svc.h		diff \| blob \| history
net/sunrpc/svc.c		diff \| blob \| history