| blob | 3a93eaf34a79f09a9e614e667afbb61fa515fb5e |
1 /* lock.c : functions for manipulating filesystem locks.
2 *
3 * ====================================================================
4 * Copyright (c) 2000-2007 CollabNet. All rights reserved.
5 *
6 * This software is licensed as described in the file COPYING, which
7 * you should have received as part of this distribution. The terms
8 * are also available at http://subversion.tigris.org/license-1.html.
9 * If newer versions of this license are posted there, you may use a
10 * newer version instead, at your option.
11 *
12 * This software consists of voluntary contributions made by many
13 * individuals. For exact contribution history, see the revision
14 * history and logs, available at http://subversion.tigris.org/.
15 * ====================================================================
16 */
19 #include <assert.h>
29 #include <apr_uuid.h>
30 #include <apr_file_io.h>
31 #include <apr_file_info.h>
32 #include <apr_md5.h>
43 /* Names of hash keys used to store a lock for writing to disk. */
53 /* Number of characters from the head of a digest file name used to
54 calculate a subdirectory in which to drop that file. */
55 #define DIGEST_SUBDIR_LEN 3
58 \f
59 /*** Generic helper functions. ***/
61 /* Return the MD5 hash of STR. */
65 {
70 }
73 /* Set the value of KEY (whose size is KEY_LEN, or APR_HASH_KEY_STRING
74 if unknown) to an svn_string_t-ized version of VALUE (whose size is
75 VALUE_LEN, or APR_HASH_KEY_STRING if unknown) in HASH. The value
76 will be allocated in POOL; KEY will not be duped. If either KEY or VALUE
77 is NULL, this function will do nothing. */
78 static void
81 apr_ssize_t key_len,
83 apr_ssize_t value_len,
85 {
92 }
95 /* Fetch the value of KEY from HASH, returning only the cstring data
96 of that value (if it exists). */
101 {
104 }
107 \f
108 /*** Digest file handling functions. ***/
110 /* Return the path of the lock/entries file for which DIGEST is the
111 hashed repository relative path. */
116 {
120 }
123 /* Return the path to the lock/entries digest file associate with
124 PATH, where PATH is the path to the lock file or lock entries file
125 in FS. */
130 {
135 }
138 /* If directory PATH does not exist, create it and give it the same
139 permissions as FS->path.*/
144 {
147 {
150 }
153 /* We successfully created a new directory. Dup the permissions
154 from FS->path. */
158 }
161 /* Write to DIGEST_PATH a representation of CHILDREN (which may be
162 empty, if the versioned path in FS represented by DIGEST_PATH has
163 no children) and LOCK (which may be NULL if that versioned path is
164 lock itself locked). Use POOL for all allocations. */
171 {
185 {
205 }
207 {
210 {
212 apr_ssize_t klen;
216 }
219 }
224 {
227 err,
230 }
238 }
241 /* Parse the file at DIGEST_PATH, populating the lock LOCK_P in that
242 file (if it exists, and if *LOCK_P is non-NULL) and the hash of
243 CHILDREN_P (if any exist, and if *CHILDREN_P is non-NULL). Use POOL
244 for all allocations. */
251 {
265 {
268 }
271 /* If our caller doesn't care about anything but the presence of the
272 file... whatever. */
280 {
283 err,
286 }
289 /* If our caller cares, see if we have a lock path in our hash. If
290 so, we'll assume we have a lock here. */
293 {
296 /* Create our lock and load it up. */
320 }
322 /* If our caller cares, see if we have any children for this path. */
325 {
330 {
333 }
334 }
336 }
339 \f
340 /*** Lock helper functions (path here are still FS paths, not on-disk
341 schema-supporting paths) ***/
344 /* Write LOCK in FS to the actual OS filesystem. */
349 {
356 /* Iterate in reverse, creating the lock for LOCK->path, and then
357 just adding entries for its parent, until we reach a parent
358 that's already listed in *its* parent. */
361 {
368 /* Calculate the DIGEST_PATH for the currently FS path, and then
369 split it into a PARENT_DIR and DIGEST_FILE basename. */
376 /* We're either writing a new lock (first time through only) or
377 a new entry (every time but the first). */
379 {
383 }
384 else
385 {
386 /* If we already have an entry for this path, we're done. */
391 }
395 /* Prep for next iteration, or bail if we're done. */
400 }
404 }
406 /* Delete LOCK from FS in the actual OS filesystem. */
411 {
418 /* Iterate in reverse, deleting the lock for LOCK->path, and then
419 pruning entries from its parents. */
422 {
429 /* Calculate the DIGEST_PATH for the currently FS path, and then
430 split it into a PARENT_DIR and DIGEST_FILE basename. */
437 /* If we are supposed to drop the last entry from this path's
438 children list, do so. */
443 /* Delete the lock (first time through only). */
445 {
448 }
451 {
452 /* Special case: no goodz, no file. And remember to nix
453 the entry for it in its parent. */
457 }
458 else
459 {
463 }
465 /* Prep for next iteration, or bail if we're done. */
470 }
474 }
476 /* Set *LOCK_P to the lock for PATH in FS. HAVE_WRITE_LOCK should be
477 TRUE if the caller (or one of its callers) has taken out the
478 repository-wide write lock, FALSE otherwise. Use POOL for
479 allocations. */
484 svn_boolean_t have_write_lock,
486 {
494 /* Don't return an expired lock. */
496 {
497 /* Only remove the lock if we have the write lock.
498 Read operations shouldn't change the filesystem. */
503 }
507 }
510 /* Set *LOCK_P to the lock for PATH in FS. HAVE_WRITE_LOCK should be
511 TRUE if the caller (or one of its callers) has taken out the
512 repository-wide write lock, FALSE otherwise. Use POOL for
513 allocations. */
518 svn_boolean_t have_write_lock,
520 {
526 /* We've deliberately decided that this function doesn't tell the
527 caller *why* the lock is unavailable. */
530 {
534 }
535 else
540 }
543 /* A recursive function that calls GET_LOCKS_FUNC/GET_LOCKS_BATON for
544 all locks in and under PATH in FS.
545 HAVE_WRITE_LOCK should be true if the caller (directly or indirectly)
546 has the FS write lock. */
550 svn_fs_get_locks_callback_t get_locks_func,
552 svn_boolean_t have_write_lock,
554 {
560 /* First, send up any locks in the current digest file. */
563 {
564 /* Don't report an expired lock. */
567 {
570 }
571 else
572 {
573 /* Only remove the lock if we have the write lock.
574 Read operations shouldn't change the filesystem. */
577 }
578 }
580 /* Now, recurse on this thing's child entries (if any; bail otherwise). */
585 {
592 }
595 }
598 /* Utility function: verify that a lock can be used. Interesting
599 errors returned from this function:
601 SVN_ERR_FS_NO_USER: No username attached to FS.
602 SVN_ERR_FS_LOCK_OWNER_MISMATCH: FS's username doesn't match LOCK's owner.
603 SVN_ERR_FS_BAD_LOCK_TOKEN: FS doesn't hold matching lock-token for LOCK.
604 */
609 {
611 return svn_error_createf
617 return svn_error_createf
624 return svn_error_createf
630 }
633 /* This implements the svn_fs_get_locks_callback_t interface, where
634 BATON is just an svn_fs_t object. */
639 {
641 }
644 /* The main routine for lock enforcement, used throughout libsvn_fs_fs. */
645 svn_error_t *
648 svn_boolean_t recurse,
649 svn_boolean_t have_write_lock,
651 {
654 {
655 /* Discover all locks at or below the path. */
659 }
660 else
661 {
662 /* Discover and verify any lock attached to the path. */
667 }
669 }
671 /* Baton used for lock_body below. */
678 svn_boolean_t is_dav_comment;
679 apr_time_t expiration_date;
680 svn_revnum_t current_rev;
681 svn_boolean_t steal_lock;
683 };
686 /* This implements the svn_fs_fs__with_write_lock() 'body' callback
687 type, and assumes that the write lock is held.
688 BATON is a 'struct lock_baton *'. */
691 {
693 svn_node_kind_t kind;
697 svn_revnum_t youngest;
699 /* Until we implement directory locks someday, we only allow locks
700 on files or non-existent paths. */
701 /* Use fs->vtable->foo instead of svn_fs_foo to avoid circular
702 library dependencies, which are not portable. */
709 /* While our locking implementation easily supports the locking of
710 nonexistent paths, we deliberately choose not to allow such madness. */
716 /* We need to have a username attached to the fs. */
720 /* Is the caller attempting to lock an out-of-date working file? */
722 {
723 svn_revnum_t created_rev;
725 pool));
727 /* SVN_INVALID_REVNUM means the path doesn't exist. So
728 apparently somebody is trying to lock something in their
729 working copy, but somebody else has deleted the thing
730 from HEAD. That counts as being 'out of date'. */
732 return svn_error_createf
737 return svn_error_createf
740 }
742 /* If the caller provided a TOKEN, we *really* need to see
743 if a lock already exists with that token, and if so, verify that
744 the lock's path matches PATH. Otherwise we run the risk of
745 breaking the 1-to-1 mapping of lock tokens to locked paths. */
746 /* ### TODO: actually do this check. This is tough, because the
747 schema doesn't supply a lookup-by-token mechanism. */
749 /* Is the path already locked?
751 Note that this next function call will automatically ignore any
752 errors about {the path not existing as a key, the path's token
753 not existing as a key, the lock just having been expired}. And
754 that's totally fine. Any of these three errors are perfectly
755 acceptable to ignore; it means that the path is now free and
756 clear for locking, because the fsfs funcs just cleared out both
757 of the tables for us. */
760 {
762 {
763 /* Sorry, the path is already locked. */
765 }
766 else
767 {
768 /* STEAL_LOCK was passed, so fs_username is "stealing" the
769 lock from lock->owner. Destroy the existing lock. */
771 }
772 }
774 /* Create our new lock, and add it to the tables.
775 Ensure that the lock is created in the correct pool. */
779 else
792 }
794 /* Baton used for unlock_body below. */
799 svn_boolean_t break_lock;
800 };
802 /* This implements the svn_fs_fs__with_write_lock() 'body' callback
803 type, and assumes that the write lock is held.
804 BATON is a 'struct unlock_baton *'. */
807 {
811 /* This could return SVN_ERR_FS_BAD_LOCK_TOKEN or SVN_ERR_FS_LOCK_EXPIRED. */
814 /* Unless breaking the lock, we do some checks. */
816 {
817 /* Sanity check: the incoming token should match lock->token. */
821 /* There better be a username attached to the fs. */
825 /* And that username better be the same as the lock's owner. */
827 return SVN_FS__ERR_LOCK_OWNER_MISMATCH
829 }
831 /* Remove lock and lock token files. */
835 }
837 \f
838 /*** Public API implementations ***/
840 svn_error_t *
846 svn_boolean_t is_dav_comment,
847 apr_time_t expiration_date,
848 svn_revnum_t current_rev,
849 svn_boolean_t steal_lock,
851 {
871 }
874 svn_error_t *
878 {
881 /* Notice that 'fs' is currently unused. But perhaps someday, we'll
882 want to use the fs UUID + some incremented number? For now, we
883 generate a URI that matches the DAV RFC. We could change this to
884 some other URI scheme someday, if we wish. */
888 }
891 svn_error_t *
895 svn_boolean_t break_lock,
897 {
911 }
914 svn_error_t *
919 {
923 }
926 svn_error_t *
929 svn_fs_get_locks_callback_t get_locks_func,
932 {
938 /* Get the top digest path in our tree of interest, and then walk it. */
942 }