nfs4.1: prevent race that allowed use of freed layout in _pnfs_return_layout mark_matching_lsegs_invalid could put the last ref to the layout, so the get_layout_hdr needs to be called first. Signed-off-by: Fred Isaman <iisaman@netapp.com> Signed-off-by: Trond Myklebust <Trond.Myklebust@netapp.com>

commit: ea0ded748bdea78f9e2fefb571f7d6ce9edb4f89 [log] [tgz]
author: Fred Isaman <iisaman@netapp.com> Wed Jun 15 12:31:02 2011 -0400
committer: Trond Myklebust <Trond.Myklebust@netapp.com> Wed Jun 15 12:39:23 2011 -0400
tree: ce4589aecc27e8936529ce1cbc4d8a129a1f43b2
parent: 1ed3a8539af7b36aa5c977f304e80f7fc8d27bfc [diff] [blame]
diff --git a/fs/nfs/pnfs.c b/fs/nfs/pnfs.c
index 8f95822..730d4db 100644
--- a/fs/nfs/pnfs.c
+++ b/fs/nfs/pnfs.c

@@ -640,10 +640,10 @@
 		return status;
 	}
 	stateid = nfsi->layout->plh_stateid;
-	mark_matching_lsegs_invalid(lo, &tmp_list, NULL);
-	lo->plh_block_lgets++;
 	/* Reference matched in nfs4_layoutreturn_release */
 	get_layout_hdr(lo);
+	mark_matching_lsegs_invalid(lo, &tmp_list, NULL);
+	lo->plh_block_lgets++;
 	spin_unlock(&ino->i_lock);
 	pnfs_free_lseg_list(&tmp_list);
commit	ea0ded748bdea78f9e2fefb571f7d6ce9edb4f89	[log] [tgz]
author	Fred Isaman <iisaman@netapp.com>	Wed Jun 15 12:31:02 2011 -0400
committer	Trond Myklebust <Trond.Myklebust@netapp.com>	Wed Jun 15 12:39:23 2011 -0400
tree	ce4589aecc27e8936529ce1cbc4d8a129a1f43b2
parent	1ed3a8539af7b36aa5c977f304e80f7fc8d27bfc [diff] [blame]