staging: lustre: Change connect peer failed cleanup order
authorDoug Oucharek <doug.s.oucharek@intel.com>
Wed, 2 Mar 2016 23:53:27 +0000 (18:53 -0500)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Thu, 3 Mar 2016 00:01:38 +0000 (16:01 -0800)
A race condition has been found where connd is cleaning up failed
connections, the peer ref counter goes to zero, but we stil have
a connecting counter > 0.

One possible race is when we are retrying a connection by
calling kiblnd_connect_peer() which itself fails and decrements
the peer ref counter and gets swapped out before it can decrement
the connecting counter.  connd swaps in and cleans up the
connection where it sees a peer ref counter of 1 and a connecting
counter of 1.  This will trigger the assert seen in LU-7210 when
it decrements the peer counter.

The solution: be sure to decrement the connecting counter
before decrementing the peer counter in the peer connect
failure path.

Signed-off-by: Doug Oucharek <doug.s.oucharek@intel.com>
Intel-bug-id: https://jira.hpdd.intel.com/browse/LU-7210
Reviewed-on: http://review.whamcloud.com/17004
Reviewed-by: James Simmons <uja.ornl@yahoo.com>
Reviewed-by: Amir Shehata <amir.shehata@intel.com>
Reviewed-by: Oleg Drokin <oleg.drokin@intel.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
drivers/staging/lustre/lnet/klnds/o2iblnd/o2iblnd_cb.c

index f76c570745295a40e1bdab500a850c78a974d95e..7602d7142461522d41c91361b60a2ba62c994ca2 100644 (file)
@@ -1298,8 +1298,10 @@ kiblnd_connect_peer(kib_peer_t *peer)
        return;
 
  failed2:
+       kiblnd_peer_connect_failed(peer, 1, rc);
        kiblnd_peer_decref(peer);              /* cmid's ref */
        rdma_destroy_id(cmid);
+       return;
  failed:
        kiblnd_peer_connect_failed(peer, 1, rc);
 }