mirrors/git-annex
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages 1 Wiki Activity Actions

avoid failure to lock content of removed file causing drop etc to fail

Browse source 
This was already prevented in other ways, but as seen in commit
c30fd24d91, those were a bit fragile.
And I'm not sure races were avoided in every case before. At least a
race between two separate git-annex processes, dropping the same
content, seemed possible.

This way, if locking fails, and the content is not present, it will
always do the right thing. Also, it avoids the overhead of an unncessary
inAnnex check for every file.

This commit was sponsored by Denis Dzyubenko on Patreon.
This commit is contained in:
Joey Hess 2020-07-25 11:54:34 -04:00
parent c30fd24d91
commit 2a45b5ae9a
No known key found for this signature in database
GPG key ID: DB12DB0FF05F8F38
11 changed files with 65 additions and 40 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

38
Annex/Content.hs
View file

@ -194,13 +194,15 @@ contentLockFile key = Just <$> calcRepo (gitAnnexContentLock key)
- rather than running the action. - rather than running the action.
-} -}
lockContentShared :: Key -> (VerifiedCopy -> Annex a) -> Annex a lockContentShared :: Key -> (VerifiedCopy -> Annex a) -> Annex a
lockContentShared key a = lockContentUsing lock key $ ifM (inAnnex key) lockContentShared key a = lockContentUsing lock key notpresent $
ifM (inAnnex key)
( do ( do
u <- getUUID u <- getUUID
withVerifiedCopy LockedCopy u (return True) a withVerifiedCopy LockedCopy u (return True) a
, giveup $ "failed to lock content: not present" , notpresent
) )
where where
notpresent = giveup $ "failed to lock content: not present"
#ifndef mingw32_HOST_OS #ifndef mingw32_HOST_OS
lock contentfile Nothing = tryLockShared Nothing contentfile lock contentfile Nothing = tryLockShared Nothing contentfile
lock _ (Just lockfile) = posixLocker tryLockShared lockfile lock _ (Just lockfile) = posixLocker tryLockShared lockfile
@ -212,9 +214,12 @@ lockContentShared key a = lockContentUsing lock key $ ifM (inAnnex key)
- might remove it. - might remove it.
- -
- If locking fails, throws an exception rather than running the action. - If locking fails, throws an exception rather than running the action.
-
- But, if locking fails because the the content is not present, runs the
- fallback action instead.
-} -}
lockContentForRemoval :: Key -> (ContentRemovalLock -> Annex a) -> Annex a lockContentForRemoval :: Key -> Annex a -> (ContentRemovalLock -> Annex a) -> Annex a
lockContentForRemoval key a = lockContentUsing lock key $ lockContentForRemoval key fallback a = lockContentUsing lock key fallback $
a (ContentRemovalLock key) a (ContentRemovalLock key)
where where
#ifndef mingw32_HOST_OS #ifndef mingw32_HOST_OS
@ -251,22 +256,31 @@ winLocker takelock _ (Just lockfile) = do
winLocker _ _ Nothing = return Nothing winLocker _ _ Nothing = return Nothing
#endif #endif
lockContentUsing :: ContentLocker -> Key -> Annex a -> Annex a {- The fallback action is run if the ContentLocker throws an IO exception
lockContentUsing locker key a = do - and the content is not present. It's not guaranteed to always run when
- the content is not present, because the content file is not always
- the file that is locked eg on Windows a different file is locked. -}
lockContentUsing :: ContentLocker -> Key -> Annex a -> Annex a -> Annex a
lockContentUsing locker key fallback a = do
contentfile <- fromRawFilePath <$> calcRepo (gitAnnexLocation key) contentfile <- fromRawFilePath <$> calcRepo (gitAnnexLocation key)
lockfile <- contentLockFile key lockfile <- contentLockFile key
bracket bracket
(lock contentfile lockfile) (lock contentfile lockfile)
(unlock lockfile) (either (const noop) (unlock lockfile))
(const a) go
where where
alreadylocked = giveup "content is locked" alreadylocked = giveup "content is locked"
failedtolock e = giveup $ "failed to lock content: " ++ show e failedtolock e = giveup $ "failed to lock content: " ++ show e
lock contentfile lockfile = lock contentfile lockfile = tryIO $
(maybe alreadylocked return maybe alreadylocked return
=<< locker contentfile lockfile) =<< locker contentfile lockfile
`catchIO` failedtolock
go (Right _) = a
go (Left e) = ifM (inAnnex key)
( failedtolock e
, fallback
)
#ifndef mingw32_HOST_OS #ifndef mingw32_HOST_OS
unlock mlockfile lck = do unlock mlockfile lck = do

1
Annex/Drop.hs
View file

@ -17,7 +17,6 @@ import qualified Command.Drop
import Command import Command
import Annex.Wanted import Annex.Wanted
import Annex.SpecialRemote.Config import Annex.SpecialRemote.Config
import Annex.Content
import qualified Database.Keys import qualified Database.Keys
import Git.FilePath import Git.FilePath

2
Assistant/Unused.hs
View file

@ -76,7 +76,7 @@ expireUnused duration = do
forM_ oldkeys $ \k -> do forM_ oldkeys $ \k -> do
debug ["removing old unused key", serializeKey k] debug ["removing old unused key", serializeKey k]
liftAnnex $ tryNonAsync $ do liftAnnex $ tryNonAsync $ do
lockContentForRemoval k removeAnnex lockContentForRemoval k noop removeAnnex
logStatus k InfoMissing logStatus k InfoMissing
where where
boundry = durationToPOSIXTime <$> duration boundry = durationToPOSIXTime <$> duration

2
Assistant/Upgrade.hs
View file

@ -99,7 +99,7 @@ startDistributionDownload d = go =<< liftIO . newVersionLocation d =<< liftIO ol
, transferKeyData = fromKey id k , transferKeyData = fromKey id k
} }
cleanup = liftAnnex $ do cleanup = liftAnnex $ do
lockContentForRemoval k removeAnnex lockContentForRemoval k noop removeAnnex
setUrlMissing k u setUrlMissing k u
logStatus k InfoMissing logStatus k InfoMissing

14
Command/Drop.hs
View file

@ -99,11 +99,6 @@ startKeys o from (key, ai) = start' o from key (AssociatedFile Nothing) ai
startLocal :: AssociatedFile -> ActionItem -> NumCopies -> Key -> [VerifiedCopy] -> CommandStart startLocal :: AssociatedFile -> ActionItem -> NumCopies -> Key -> [VerifiedCopy] -> CommandStart
startLocal afile ai numcopies key preverified = startLocal afile ai numcopies key preverified =
-- This is a redundant check, because checkContentPresent was
-- enabled when seeking. However, when two files have the same key,
-- the content may have already been removed, which would cause
-- this to fail, so it has to be checked again.
stopUnless (inAnnex key) $
starting "drop" (OnlyActionOn key ai) $ starting "drop" (OnlyActionOn key ai) $
performLocal key afile numcopies preverified performLocal key afile numcopies preverified
@ -113,7 +108,7 @@ startRemote afile ai numcopies key remote =
performRemote key afile numcopies remote performRemote key afile numcopies remote
performLocal :: Key -> AssociatedFile -> NumCopies -> [VerifiedCopy] -> CommandPerform performLocal :: Key -> AssociatedFile -> NumCopies -> [VerifiedCopy] -> CommandPerform
performLocal key afile numcopies preverified = lockContentForRemoval key $ \contentlock -> do performLocal key afile numcopies preverified = lockContentForRemoval key fallback $ \contentlock -> do
u <- getUUID u <- getUUID
(tocheck, verified) <- verifiableCopies key [u] (tocheck, verified) <- verifiableCopies key [u]
doDrop u (Just contentlock) key afile numcopies [] (preverified ++ verified) tocheck doDrop u (Just contentlock) key afile numcopies [] (preverified ++ verified) tocheck
@ -130,6 +125,13 @@ performLocal key afile numcopies preverified = lockContentForRemoval key $ \cont
notifyDrop afile False notifyDrop afile False
stop stop
) )
where
-- This occurs when, for example, two files are being dropped
-- and have the same content. The seek stage checks if the content
-- is present, but due to buffering, may find it present for the
-- second file before the first is dropped. If so, nothing remains
-- to be done except for cleaning up.
fallback = next $ cleanupLocal key
performRemote :: Key -> AssociatedFile -> NumCopies -> Remote -> CommandPerform performRemote :: Key -> AssociatedFile -> NumCopies -> Remote -> CommandPerform
performRemote key afile numcopies remote = do performRemote key afile numcopies remote = do

2
Command/DropKey.hs
View file

@ -47,7 +47,7 @@ start key = starting "dropkey" (mkActionItem key) $
perform :: Key -> CommandPerform perform :: Key -> CommandPerform
perform key = ifM (inAnnex key) perform key = ifM (inAnnex key)
( lockContentForRemoval key $ \contentlock -> do ( lockContentForRemoval key (next $ cleanup key) $ \contentlock -> do
removeAnnex contentlock removeAnnex contentlock
next $ cleanup key next $ cleanup key
, next $ return True , next $ return True

9
Command/Move.hs
View file

@ -155,7 +155,7 @@ toPerform dest removewhen key afile fastcheck isthere =
RemoveNever -> do RemoveNever -> do
setpresentremote setpresentremote
next $ return True next $ return True
RemoveSafe -> lockContentForRemoval key $ \contentlock -> do RemoveSafe -> lockContentForRemoval key lockfailed $ \contentlock -> do
srcuuid <- getUUID srcuuid <- getUUID
let destuuid = Remote.uuid dest let destuuid = Remote.uuid dest
willDropMakeItWorse srcuuid destuuid deststartedwithcopy key afile >>= \case willDropMakeItWorse srcuuid destuuid deststartedwithcopy key afile >>= \case
@ -189,6 +189,13 @@ toPerform dest removewhen key afile fastcheck isthere =
() <- setpresentremote () <- setpresentremote
return False return False
-- This occurs when, for example, two files are being dropped
-- and have the same content. The seek stage checks if the content
-- is present, but due to buffering, may find it present for the
-- second file before the first is dropped. If so, nothing remains
-- to be done except for cleaning up.
lockfailed = next $ Command.Drop.cleanupLocal key
fromStart :: RemoveWhen -> AssociatedFile -> Key -> ActionItem -> Remote -> CommandStart fromStart :: RemoveWhen -> AssociatedFile -> Key -> ActionItem -> Remote -> CommandStart
fromStart removewhen afile key ai src = fromStart removewhen afile key ai src =
stopUnless (fromOk src key) $ stopUnless (fromOk src key) $

10
Command/TestRemote.hs
View file

@ -245,7 +245,7 @@ test runannex mkr mkk =
whenwritable r $ isRight <$> tryNonAsync (store r k) whenwritable r $ isRight <$> tryNonAsync (store r k)
, check ("present " ++ show True) $ \r k -> present r k True , check ("present " ++ show True) $ \r k -> present r k True
, check "retrieveKeyFile" $ \r k -> do , check "retrieveKeyFile" $ \r k -> do
lockContentForRemoval k removeAnnex lockContentForRemoval k noop removeAnnex
get r k get r k
, check "fsck downloaded object" fsck , check "fsck downloaded object" fsck
, check "retrieveKeyFile resume from 33%" $ \r k -> do , check "retrieveKeyFile resume from 33%" $ \r k -> do
@ -255,20 +255,20 @@ test runannex mkr mkk =
sz <- hFileSize h sz <- hFileSize h
L.hGet h $ fromInteger $ sz `div` 3 L.hGet h $ fromInteger $ sz `div` 3
liftIO $ L.writeFile tmp partial liftIO $ L.writeFile tmp partial
lockContentForRemoval k removeAnnex lockContentForRemoval k noop removeAnnex
get r k get r k
, check "fsck downloaded object" fsck , check "fsck downloaded object" fsck
, check "retrieveKeyFile resume from 0" $ \r k -> do , check "retrieveKeyFile resume from 0" $ \r k -> do
tmp <- prepTmp k tmp <- prepTmp k
liftIO $ writeFile tmp "" liftIO $ writeFile tmp ""
lockContentForRemoval k removeAnnex lockContentForRemoval k noop removeAnnex
get r k get r k
, check "fsck downloaded object" fsck , check "fsck downloaded object" fsck
, check "retrieveKeyFile resume from end" $ \r k -> do , check "retrieveKeyFile resume from end" $ \r k -> do
loc <- fromRawFilePath <$> Annex.calcRepo (gitAnnexLocation k) loc <- fromRawFilePath <$> Annex.calcRepo (gitAnnexLocation k)
tmp <- prepTmp k tmp <- prepTmp k
void $ liftIO $ copyFileExternal CopyAllMetaData loc tmp void $ liftIO $ copyFileExternal CopyAllMetaData loc tmp
lockContentForRemoval k removeAnnex lockContentForRemoval k noop removeAnnex
get r k get r k
, check "fsck downloaded object" fsck , check "fsck downloaded object" fsck
, check "removeKey when present" $ \r k -> , check "removeKey when present" $ \r k ->
@ -393,7 +393,7 @@ cleanup rs ks ok
| all Remote.readonly rs = return ok | all Remote.readonly rs = return ok
| otherwise = do | otherwise = do
forM_ rs $ \r -> forM_ ks (Remote.removeKey r) forM_ rs $ \r -> forM_ ks (Remote.removeKey r)
forM_ ks $ \k -> lockContentForRemoval k removeAnnex forM_ ks $ \k -> lockContentForRemoval k noop removeAnnex
return ok return ok
chunkSizes :: Int -> Bool -> [Int] chunkSizes :: Int -> Bool -> [Int]

2
Command/Uninit.hs
View file

@ -115,7 +115,7 @@ removeUnannexed = go []
go c [] = return c go c [] = return c
go c (k:ks) = ifM (inAnnexCheck k $ liftIO . enoughlinks) go c (k:ks) = ifM (inAnnexCheck k $ liftIO . enoughlinks)
( do ( do
lockContentForRemoval k removeAnnex lockContentForRemoval k noop removeAnnex
go c ks go c ks
, go (k:c) ks , go (k:c) ks
) )

10
P2P/Annex.hs
View file

@ -107,12 +107,14 @@ runLocal runst runner a = case a of
Left e -> return $ Left $ ProtoFailureException e Left e -> return $ Left $ ProtoFailureException e
Right result -> runner (next result) Right result -> runner (next result)
RemoveContent k next -> do RemoveContent k next -> do
v <- tryNonAsync $ let cleanup = do
ifM (Annex.Content.inAnnex k)
( lockContentForRemoval k $ \contentlock -> do
removeAnnex contentlock
logStatus k InfoMissing logStatus k InfoMissing
return True return True
v <- tryNonAsync $
ifM (Annex.Content.inAnnex k)
( lockContentForRemoval k cleanup $ \contentlock -> do
removeAnnex contentlock
cleanup
, return True , return True
) )
case v of case v of

5
Remote/Git.hs
View file

@ -436,9 +436,10 @@ dropKey' repo r st@(State connpool duc _ _ _) key
( guardUsable repo (giveup "cannot access remote") $ ( guardUsable repo (giveup "cannot access remote") $
commitOnCleanup repo r st $ onLocalFast st $ do commitOnCleanup repo r st $ onLocalFast st $ do
whenM (Annex.Content.inAnnex key) $ do whenM (Annex.Content.inAnnex key) $ do
Annex.Content.lockContentForRemoval key $ \lock -> do let cleanup = logStatus key InfoMissing
Annex.Content.lockContentForRemoval key cleanup $ \lock -> do
Annex.Content.removeAnnex lock Annex.Content.removeAnnex lock
logStatus key InfoMissing cleanup
Annex.Content.saveState True Annex.Content.saveState True
, giveup "remote does not have expected annex.uuid value" , giveup "remote does not have expected annex.uuid value"
) )