Kernel/FUSEDevice: Improve locking

implicitfield · implicitfield · commit 04acc844031b · 2025-04-14T00:45:40.000+03:00
With this patch, the locking now works both in the way it was intended
to, and also in the general sense :P

See, the old locking scheme wasn't conceptually sound, as it didn't
properly lock both m_instances and m_closing_instances, which could
have led to unpredictable results. However, the reality was actually
even worse than that, because the locks simply didn't work at all
for their intended purpose. This is a consequence of SpinlockProtected
using a RecursiveSpinlock under the hood, which isn't appropriate
for what we are trying to do here. Proof of this can be seen in the
send_request_and_wait_for_a_reply function, which - as written -
should have never worked in the first place, because it never released
the lock on m_instances, but it still expected to be able to observe
a change in whatever instance it was looking at.
diff --git a/Kernel/Devices/FUSEDevice.cpp b/Kernel/Devices/FUSEDevice.cpp
@@ -27,37 +27,33 @@ UNMAP_AFTER_INIT FUSEDevice::~FUSEDevice() = default;
 
 ErrorOr<void> FUSEDevice::initialize_instance(OpenFileDescription const& description)
 {
-    return m_instances.with([&](auto& instances) -> ErrorOr<void> {
-        VERIFY(!instances.contains(&description));
-        TRY(instances.try_set(&description, {}));
-        return {};
-    });
+    SpinlockLocker locker(m_lock);
+
+    VERIFY(!m_instances.contains(&description));
+    TRY(m_instances.try_set(&description, {}));
+    return {};
 }
 
 bool FUSEDevice::can_read(OpenFileDescription const& description, u64) const
 {
-    bool drop = m_closing_instances.with([&](auto& closing_instances) {
-        auto iterator = closing_instances.find(&description);
-        return iterator != closing_instances.end();
-    });
+    SpinlockLocker locker(m_lock);
 
-    if (drop)
+    auto iterator = m_closing_instances.find(&description);
+    if (iterator != m_closing_instances.end())
         return true;
 
-    return m_instances.with([&](auto& instances) {
-        auto instance_iterator = instances.find(&description);
-        if (instance_iterator == instances.end()) {
-            VERIFY(instances.is_empty());
-            return false;
-        }
-
-        auto const& requests_for_instance = (*instance_iterator).value;
-        for (auto const& request : requests_for_instance.in_reverse()) {
-            if (request.buffer_ready)
-                return true;
-        }
+    auto instance_iterator = m_instances.find(&description);
+    if (instance_iterator == m_instances.end()) {
+        VERIFY(m_instances.is_empty());
         return false;
-    });
+    }
+
+    auto const& requests_for_instance = (*instance_iterator).value;
+    for (auto const& request : requests_for_instance.in_reverse()) {
+        if (request.buffer_ready)
+            return true;
+    }
+    return false;
 }
 
 bool FUSEDevice::can_write(OpenFileDescription const&, u64) const
@@ -67,120 +63,116 @@ bool FUSEDevice::can_write(OpenFileDescription const&, u64) const
 
 ErrorOr<size_t> FUSEDevice::read(OpenFileDescription& description, u64, UserOrKernelBuffer& buffer, size_t size)
 {
-    TRY(m_closing_instances.with([&](auto& closing_instances) -> ErrorOr<void> {
-        bool removed = closing_instances.remove_first_matching([&](auto const* closing_description) { return closing_description == &description; });
-        if (removed)
-            return Error::from_errno(ENODEV);
+    SpinlockLocker locker(m_lock);
 
-        return {};
-    }));
+    bool removed = m_closing_instances.remove_first_matching([&](auto const* closing_description) { return closing_description == &description; });
+    if (removed)
+        return Error::from_errno(ENODEV);
 
     if (size < 0x21000)
         return Error::from_errno(EIO);
 
-    return m_instances.with([&](auto& instances) -> ErrorOr<size_t> {
-        auto instance_iterator = instances.find(&description);
-        if (instance_iterator == instances.end())
-            return Error::from_errno(ENODEV);
+    auto instance_iterator = m_instances.find(&description);
+    if (instance_iterator == m_instances.end())
+        return Error::from_errno(ENODEV);
 
-        auto& requests_for_instance = (*instance_iterator).value;
+    auto& requests_for_instance = (*instance_iterator).value;
 
-        for (auto& request : requests_for_instance.in_reverse()) {
-            if (!request.buffer_ready)
-                continue;
+    for (auto& request : requests_for_instance.in_reverse()) {
+        if (!request.buffer_ready)
+            continue;
 
-            TRY(buffer.write(request.pending_request->bytes()));
-            request.buffer_ready = false;
-            return request.pending_request->size();
-        }
+        TRY(buffer.write(request.pending_request->bytes()));
+        request.buffer_ready = false;
+        return request.pending_request->size();
+    }
 
-        return Error::from_errno(ENOENT);
-    });
+    return Error::from_errno(ENOENT);
 }
 
 ErrorOr<size_t> FUSEDevice::write(OpenFileDescription& description, u64, UserOrKernelBuffer const& buffer, size_t size)
 {
-    return m_instances.with([&](auto& instances) -> ErrorOr<size_t> {
-        auto instance_iterator = instances.find(&description);
+    SpinlockLocker locker(m_lock);
 
-        if (instance_iterator == instances.end())
-            return Error::from_errno(ENODEV);
+    auto instance_iterator = m_instances.find(&description);
+    if (instance_iterator == m_instances.end())
+        return Error::from_errno(ENODEV);
 
-        auto& requests_for_instance = (*instance_iterator).value;
-        auto& instance = requests_for_instance.last();
+    auto& requests_for_instance = (*instance_iterator).value;
+    auto& instance = requests_for_instance.last();
 
-        if (instance.expecting_header) {
-            memset(instance.response->data(), 0, instance.response->size());
+    if (instance.expecting_header) {
+        memset(instance.response->data(), 0, instance.response->size());
 
-            fuse_out_header header;
-            TRY(buffer.read(&header, 0, sizeof(fuse_out_header)));
+        fuse_out_header header;
+        TRY(buffer.read(&header, 0, sizeof(fuse_out_header)));
 
-            dbgln_if(FUSE_DEBUG, "header: length: {}, error: {}, unique: {}", header.len, header.error, header.unique);
-            memcpy(instance.response->data(), &header, sizeof(fuse_out_header));
+        dbgln_if(FUSE_DEBUG, "header: length: {}, error: {}, unique: {}", header.len, header.error, header.unique);
+        memcpy(instance.response->data(), &header, sizeof(fuse_out_header));
 
-            if (header.len > sizeof(fuse_out_header))
-                instance.expecting_header = false;
-            else
-                instance.response_ready = true;
-        } else {
-            fuse_out_header* existing_header = bit_cast<fuse_out_header*>(instance.response->data());
+        if (header.len > sizeof(fuse_out_header))
+            instance.expecting_header = false;
+        else
+            instance.response_ready = true;
+    } else {
+        fuse_out_header* existing_header = bit_cast<fuse_out_header*>(instance.response->data());
 
-            instance.expecting_header = true;
-            if (existing_header->len > instance.response->size())
-                return Error::from_errno(EINVAL);
+        instance.expecting_header = true;
+        if (existing_header->len > instance.response->size())
+            return Error::from_errno(EINVAL);
 
-            instance.response_ready = true;
-            u64 length = existing_header->len - sizeof(fuse_out_header);
-            dbgln_if(FUSE_DEBUG, "request: response length: {}", length);
-            TRY(buffer.read(instance.response->data() + sizeof(fuse_out_header), 0, length));
-        }
+        instance.response_ready = true;
+        u64 length = existing_header->len - sizeof(fuse_out_header);
+        dbgln_if(FUSE_DEBUG, "request: response length: {}", length);
+        TRY(buffer.read(instance.response->data() + sizeof(fuse_out_header), 0, length));
+    }
 
-        return size;
-    });
+    return size;
 }
 
 ErrorOr<NonnullOwnPtr<KBuffer>> FUSEDevice::send_request_and_wait_for_a_reply(OpenFileDescription const& description, Bytes bytes)
 {
-    return m_instances.with([&](auto& instances) -> ErrorOr<NonnullOwnPtr<KBuffer>> {
-        auto instance_iterator = instances.find(&description);
-        VERIFY(instance_iterator != instances.end());
-        auto& requests_for_instance = (*instance_iterator).value;
-
-        TRY(requests_for_instance.try_append({
-            &description,
-            TRY(KBuffer::try_create_with_size("FUSE: Pending request buffer"sv, 0x21000)),
-            TRY(KBuffer::try_create_with_size("FUSE: Response buffer"sv, 0x21000)),
-        }));
-
-        size_t instance_index = requests_for_instance.size() - 1;
-        auto& instance = requests_for_instance.last();
-        VERIFY(bytes.size() <= 0x21000);
-
-        memset(instance.pending_request->data(), 0, instance.pending_request->size());
-        memcpy(instance.pending_request->data(), bytes.data(), bytes.size());
-        instance.buffer_ready = true;
-        evaluate_block_conditions();
+    SpinlockLocker locker(m_lock);
+
+    auto instance_iterator = m_instances.find(&description);
+    VERIFY(instance_iterator != m_instances.end());
+    auto& requests_for_instance = (*instance_iterator).value;
 
-        while (!instance.response_ready)
-            (void)Thread::current()->sleep(Duration::from_microseconds(100));
+    TRY(requests_for_instance.try_append({
+        &description,
+        TRY(KBuffer::try_create_with_size("FUSE: Pending request buffer"sv, 0x21000)),
+        TRY(KBuffer::try_create_with_size("FUSE: Response buffer"sv, 0x21000)),
+    }));
+
+    size_t instance_index = requests_for_instance.size() - 1;
+    auto& instance = requests_for_instance.last();
+    VERIFY(bytes.size() <= 0x21000);
+
+    memset(instance.pending_request->data(), 0, instance.pending_request->size());
+    memcpy(instance.pending_request->data(), bytes.data(), bytes.size());
+    instance.buffer_ready = true;
+
+    while (!instance.response_ready) {
+        locker.unlock();
+        evaluate_block_conditions();
+        Scheduler::yield();
+        locker.lock();
+    }
 
-        auto result = KBuffer::try_create_with_bytes("FUSEDevice: Response"sv, instance.response->bytes());
-        requests_for_instance.remove(instance_index);
+    auto result = KBuffer::try_create_with_bytes("FUSEDevice: Response"sv, instance.response->bytes());
+    requests_for_instance.remove(instance_index);
 
-        return result;
-    });
+    return result;
 }
 
 void FUSEDevice::shutdown_for_description(OpenFileDescription const& description)
 {
-    m_instances.with([&](auto& instances) {
-        VERIFY(instances.remove(&description));
-    });
+    SpinlockLocker locker(m_lock);
 
-    m_closing_instances.with([&](auto& closing_instances) {
-        closing_instances.append(&description);
-    });
+    VERIFY(m_instances.remove(&description));
+    m_closing_instances.append(&description);
 
+    locker.unlock();
     evaluate_block_conditions();
 }
 
diff --git a/Kernel/Devices/FUSEDevice.h b/Kernel/Devices/FUSEDevice.h
@@ -46,8 +46,9 @@ class FUSEDevice final : public CharacterDevice {
     virtual bool can_write(OpenFileDescription const&, u64) const override;
     virtual StringView class_name() const override { return "FUSEDevice"sv; }
 
-    SpinlockProtected<HashMap<OpenFileDescription const*, Vector<FUSEInstance>>, LockRank::None> m_instances;
-    SpinlockProtected<Vector<OpenFileDescription const*>, LockRank::None> m_closing_instances;
+    mutable Spinlock<LockRank::None> m_lock {};
+    HashMap<OpenFileDescription const*, Vector<FUSEInstance>> m_instances;
+    Vector<OpenFileDescription const*> m_closing_instances;
 };
 
 }
