From: Al Viro <viro@ZenIV.linux.org.uk>
To: Rajat Jain <rajatxjain@gmail.com>
Cc: linux-fsdevel@vger.kernel.org,
Davide Libenzi <davidel@xmailserver.org>,
"linux-kernel@vger.kernel.org" <linux-kernel@vger.kernel.org>
Subject: Re: Anonymous inode cleanup?
Date: Fri, 13 Nov 2015 06:31:04 +0000 [thread overview]
Message-ID: <20151113063103.GO22011@ZenIV.linux.org.uk> (raw)
In-Reply-To: <CAA93t1pFoXnpcCry5VV6_ZceBg9JYSr+kWfc7ztK0iAjp+_rBA@mail.gmail.com>
On Thu, Nov 12, 2015 at 09:43:00PM -0800, Rajat Jain wrote:
> Hello,
>
> I'm writing a module that wants to get anonymous fd [using
> anon_inode_getfd()] and my code looks like this:
>
> fd = anon_inode_getfd(...)
> if (fd < 0)
> return -EINVAL;
>
> if (foobar_fail()) {
> /* undo everything */
> return -EINVAL;
> }
>
> My question is that in case of a failure after the anon_inode_getfd(),
> I want to cleanup and undo whatever needs to be done w.r.t. anodnymous
> fd I just allocated. (May be put a reference, or return the fd to the
> free pool or whatever). Can some one please let me know what cleanup
> needs to be done?
>
> However neither I see a cleanup function, nor I see any of the drivers
> attempting
> to free the fd in case of failure.
You can't. As soon as it's in descriptor table, you'd better be *done*
with it. No "I need more setup done", no "I just need to do one final
check" - the moment it hits the descriptor table, another thread might
be issuing syscalls on it. Including dup2(), so there's no way to take
it back. Moreover, another thread might've done dup2() over your
descriptor, so you can't even decide to close the one you'd just installed.
Yes, even in cases when the failed action would be to report the resulting
descriptor to userland. Generally you should try to return descriptors to
userland only via the syscall return value.
_If_ you are returning them via a sucky API, the right sequence is
reserve the descriptor(s)
set the file(s) up
fill whatever structure you'll be using to report descriptors to
userland and copy it to userland memory
use fd_install() to put files into descriptor table.
See e.g. fs/pipe.c and look for pipe2 in there for example of dealing with
such APIs.
"Set the file up" primitive in case of anon_inode is anon_inode_getfile();
grep and you shall see...
Again, fd_install() is the equivalent of hitting "send" - there's no way
to make what you've published disappear. It's the point of no return.
next prev parent reply other threads:[~2015-11-13 6:31 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2015-11-13 5:43 Anonymous inode cleanup? Rajat Jain
2015-11-13 5:52 ` Mateusz Guzik
2015-11-13 6:31 ` Al Viro [this message]
2015-11-18 20:28 ` Rajat Jain
2015-11-18 21:06 ` Al Viro
2015-11-18 21:10 ` Rajat Jain
2015-11-18 21:24 ` Al Viro
2015-11-18 21:25 ` Rajat Jain
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20151113063103.GO22011@ZenIV.linux.org.uk \
--to=viro@zeniv.linux.org.uk \
--cc=davidel@xmailserver.org \
--cc=linux-fsdevel@vger.kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=rajatxjain@gmail.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).