Re: [RFC PATCH] cifs: Fix credit handling in cifs_io_subrequest cleanup

From: Tom Talpey
Date: Thu May 23 2024 - 10:42:02 EST

Next message: Dan Carpenter: "Re: [PATCH v2 00/31] Staging: rtl8192e: rtllib_rx.c Rename camelcase variables"
Previous message: Simon Horman: "Re: [PATCH] net: usb: smsc95xx: fix changing LED_SEL bit value updated from EEPROM"
In reply to: David Howells: "[RFC PATCH] cifs: Fix credit handling in cifs_io_subrequest cleanup"
Next in thread: David Howells: "Re: [RFC PATCH] cifs: Fix credit handling in cifs_io_subrequest cleanup"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 5/22/2024 6:59 PM, David Howells wrote:

When a cifs_io_subrequest (wrapping a netfs_io_subrequest) is cleaned up in
cifs_free_subrequest(), it releases any credits that are left in
rdata->credits. However, this is a problem because smb2_writev_callback()
calls add_credits() to add the new credits from the response header
CreditRequest to the available pool.

This can cause a warning to be emitted in smb2_add_credits() as
server->in_flight gets doubly decremented and a later operation sees it
having prematurely reached 0.

Fix this by clearing the credit count after actually issuing the request on
the assumption that we've given the credits back to the server (it will
give us new credits in the reply).

From a protocol standpoint it's correct to reserve the credits while the
operation is in flight. But from a code standpoint it seems risky to
stop accounting for them. What if the operation is canceled, or times
out?

I'd quibble with the assertion that the server will "give us new credits
in the response". The number of granted credits is always the server's
decision, not guaranteed by the protocol (except for certain edge
conditions).

I guess I'd suggest a deeper review by someone familiar with the
mechanics of fs/smb/client credit accounting. It might be ok!

Tom.

Signed-off-by: David Howells <dhowells@xxxxxxxxxx>
cc: Steve French <sfrench@xxxxxxxxx>
cc: Paulo Alcantara <pc@xxxxxxxxxxxxx>
cc: Shyam Prasad N <nspmangalore@xxxxxxxxx>
cc: Rohith Surabattula <rohiths.msft@xxxxxxxxx>
cc: Jeff Layton <jlayton@xxxxxxxxxx>
cc: linux-cifs@xxxxxxxxxxxxxxx
cc: netfs@xxxxxxxxxxxxxxx
cc: linux-fsdevel@xxxxxxxxxxxxxxx
---
fs/smb/client/file.c | 7 +++++--
1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/fs/smb/client/file.c b/fs/smb/client/file.c
index 9d5c2440abfc..73e2765c4d2f 100644
--- a/fs/smb/client/file.c
+++ b/fs/smb/client/file.c
@@ -110,6 +110,7 @@ static void cifs_issue_write(struct netfs_io_subrequest *subreq)
goto fail;
wdata->server->ops->async_writev(wdata);
+ wdata->credits.value = 0;
out:
return;
@@ -205,10 +206,12 @@ static void cifs_req_issue_read(struct netfs_io_subrequest *subreq)
rc = adjust_credits(rdata->server, &rdata->credits, rdata->subreq.len);
if (!rc) {
- if (rdata->req->cfile->invalidHandle)
+ if (rdata->req->cfile->invalidHandle) {
rc = -EAGAIN;
- else
+ } else {
rc = rdata->server->ops->async_readv(rdata);
+ rdata->credits.value = 0;
+ }
}
out:

Next message: Dan Carpenter: "Re: [PATCH v2 00/31] Staging: rtl8192e: rtllib_rx.c Rename camelcase variables"
Previous message: Simon Horman: "Re: [PATCH] net: usb: smsc95xx: fix changing LED_SEL bit value updated from EEPROM"
In reply to: David Howells: "[RFC PATCH] cifs: Fix credit handling in cifs_io_subrequest cleanup"
Next in thread: David Howells: "Re: [RFC PATCH] cifs: Fix credit handling in cifs_io_subrequest cleanup"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]