| blob | 2a9913ffeb39ea31744ff2b72e3f4da412d6eb36 |
1 /* lock.c : functions for manipulating filesystem locks.
2 *
3 * ====================================================================
4 * Copyright (c) 2000-2007 CollabNet. All rights reserved.
5 *
6 * This software is licensed as described in the file COPYING, which
7 * you should have received as part of this distribution. The terms
8 * are also available at http://subversion.tigris.org/license-1.html.
9 * If newer versions of this license are posted there, you may use a
10 * newer version instead, at your option.
11 *
12 * This software consists of voluntary contributions made by many
13 * individuals. For exact contribution history, see the revision
14 * history and logs, available at http://subversion.tigris.org/.
15 * ====================================================================
16 */
19 #include <assert.h>
29 #include <apr_uuid.h>
30 #include <apr_file_io.h>
31 #include <apr_file_info.h>
32 #include <apr_md5.h>
43 /* Names of hash keys used to store a lock for writing to disk. */
53 /* Number of characters from the head of a digest file name used to
54 calculate a subdirectory in which to drop that file. */
55 #define DIGEST_SUBDIR_LEN 3
58 \f
59 /*** Generic helper functions. ***/
61 /* Return the MD5 hash of STR. */
65 {
70 }
73 /* Set the value of KEY (whose size is KEY_LEN, or APR_HASH_KEY_STRING
74 if unknown) to an svn_string_t-ized version of VALUE (whose size is
75 VALUE_LEN, or APR_HASH_KEY_STRING if unknown) in HASH. The value
76 will be allocated in POOL; KEY will not be duped. If either KEY or VALUE
77 is NULL, this function will do nothing. */
78 static void
81 apr_ssize_t key_len,
83 apr_ssize_t value_len,
85 {
92 }
95 /* Fetch the value of KEY from HASH, returning only the cstring data
96 of that value (if it exists). */
101 {
104 }
107 \f
108 /*** Digest file handling functions. ***/
110 /* Return the path of the lock/entries file for which DIGEST is the
111 hashed repository relative path. */
116 {
120 }
123 /* Return the path to the lock/entries digest file associate with
124 PATH, where PATH is the path to the lock file or lock entries file
125 in FS. */
130 {
135 }
138 /* Write to DIGEST_PATH a representation of CHILDREN (which may be
139 empty, if the versioned path in FS represented by DIGEST_PATH has
140 no children) and LOCK (which may be NULL if that versioned path is
141 lock itself locked). Use POOL for all allocations. */
148 {
158 pool));
163 {
183 }
185 {
188 {
190 apr_ssize_t klen;
194 }
197 }
202 {
205 err,
208 }
216 }
219 /* Parse the file at DIGEST_PATH, populating the lock LOCK_P in that
220 file (if it exists, and if *LOCK_P is non-NULL) and the hash of
221 CHILDREN_P (if any exist, and if *CHILDREN_P is non-NULL). Use POOL
222 for all allocations. */
229 {
243 {
246 }
249 /* If our caller doesn't care about anything but the presence of the
250 file... whatever. */
258 {
261 err,
264 }
267 /* If our caller cares, see if we have a lock path in our hash. If
268 so, we'll assume we have a lock here. */
271 {
274 /* Create our lock and load it up. */
298 }
300 /* If our caller cares, see if we have any children for this path. */
303 {
308 {
311 }
312 }
314 }
317 \f
318 /*** Lock helper functions (path here are still FS paths, not on-disk
319 schema-supporting paths) ***/
322 /* Write LOCK in FS to the actual OS filesystem. */
327 {
334 /* Iterate in reverse, creating the lock for LOCK->path, and then
335 just adding entries for its parent, until we reach a parent
336 that's already listed in *its* parent. */
339 {
346 /* Calculate the DIGEST_PATH for the currently FS path, and then
347 split it into a PARENT_DIR and DIGEST_FILE basename. */
354 /* We're either writing a new lock (first time through only) or
355 a new entry (every time but the first). */
357 {
361 }
362 else
363 {
364 /* If we already have an entry for this path, we're done. */
369 }
373 /* Prep for next iteration, or bail if we're done. */
378 }
382 }
384 /* Delete LOCK from FS in the actual OS filesystem. */
389 {
396 /* Iterate in reverse, deleting the lock for LOCK->path, and then
397 pruning entries from its parents. */
400 {
407 /* Calculate the DIGEST_PATH for the currently FS path, and then
408 split it into a PARENT_DIR and DIGEST_FILE basename. */
415 /* If we are supposed to drop the last entry from this path's
416 children list, do so. */
421 /* Delete the lock (first time through only). */
423 {
426 }
429 {
430 /* Special case: no goodz, no file. And remember to nix
431 the entry for it in its parent. */
435 }
436 else
437 {
441 }
443 /* Prep for next iteration, or bail if we're done. */
448 }
452 }
454 /* Set *LOCK_P to the lock for PATH in FS. HAVE_WRITE_LOCK should be
455 TRUE if the caller (or one of its callers) has taken out the
456 repository-wide write lock, FALSE otherwise. Use POOL for
457 allocations. */
462 svn_boolean_t have_write_lock,
464 {
472 /* Don't return an expired lock. */
474 {
475 /* Only remove the lock if we have the write lock.
476 Read operations shouldn't change the filesystem. */
481 }
485 }
488 /* Set *LOCK_P to the lock for PATH in FS. HAVE_WRITE_LOCK should be
489 TRUE if the caller (or one of its callers) has taken out the
490 repository-wide write lock, FALSE otherwise. Use POOL for
491 allocations. */
496 svn_boolean_t have_write_lock,
498 {
504 /* We've deliberately decided that this function doesn't tell the
505 caller *why* the lock is unavailable. */
508 {
512 }
513 else
518 }
521 /* A recursive function that calls GET_LOCKS_FUNC/GET_LOCKS_BATON for
522 all locks in and under PATH in FS.
523 HAVE_WRITE_LOCK should be true if the caller (directly or indirectly)
524 has the FS write lock. */
528 svn_fs_get_locks_callback_t get_locks_func,
530 svn_boolean_t have_write_lock,
532 {
538 /* First, send up any locks in the current digest file. */
541 {
542 /* Don't report an expired lock. */
545 {
548 }
549 else
550 {
551 /* Only remove the lock if we have the write lock.
552 Read operations shouldn't change the filesystem. */
555 }
556 }
558 /* Now, recurse on this thing's child entries (if any; bail otherwise). */
563 {
570 }
573 }
576 /* Utility function: verify that a lock can be used. Interesting
577 errors returned from this function:
579 SVN_ERR_FS_NO_USER: No username attached to FS.
580 SVN_ERR_FS_LOCK_OWNER_MISMATCH: FS's username doesn't match LOCK's owner.
581 SVN_ERR_FS_BAD_LOCK_TOKEN: FS doesn't hold matching lock-token for LOCK.
582 */
587 {
589 return svn_error_createf
595 return svn_error_createf
602 return svn_error_createf
608 }
611 /* This implements the svn_fs_get_locks_callback_t interface, where
612 BATON is just an svn_fs_t object. */
617 {
619 }
622 /* The main routine for lock enforcement, used throughout libsvn_fs_fs. */
623 svn_error_t *
626 svn_boolean_t recurse,
627 svn_boolean_t have_write_lock,
629 {
632 {
633 /* Discover all locks at or below the path. */
637 }
638 else
639 {
640 /* Discover and verify any lock attached to the path. */
645 }
647 }
649 /* Baton used for lock_body below. */
656 svn_boolean_t is_dav_comment;
657 apr_time_t expiration_date;
658 svn_revnum_t current_rev;
659 svn_boolean_t steal_lock;
661 };
664 /* This implements the svn_fs_fs__with_write_lock() 'body' callback
665 type, and assumes that the write lock is held.
666 BATON is a 'struct lock_baton *'. */
669 {
671 svn_node_kind_t kind;
675 svn_revnum_t youngest;
677 /* Until we implement directory locks someday, we only allow locks
678 on files or non-existent paths. */
679 /* Use fs->vtable->foo instead of svn_fs_foo to avoid circular
680 library dependencies, which are not portable. */
687 /* While our locking implementation easily supports the locking of
688 nonexistent paths, we deliberately choose not to allow such madness. */
694 /* We need to have a username attached to the fs. */
698 /* Is the caller attempting to lock an out-of-date working file? */
700 {
701 svn_revnum_t created_rev;
703 pool));
705 /* SVN_INVALID_REVNUM means the path doesn't exist. So
706 apparently somebody is trying to lock something in their
707 working copy, but somebody else has deleted the thing
708 from HEAD. That counts as being 'out of date'. */
710 return svn_error_createf
715 return svn_error_createf
718 }
720 /* If the caller provided a TOKEN, we *really* need to see
721 if a lock already exists with that token, and if so, verify that
722 the lock's path matches PATH. Otherwise we run the risk of
723 breaking the 1-to-1 mapping of lock tokens to locked paths. */
724 /* ### TODO: actually do this check. This is tough, because the
725 schema doesn't supply a lookup-by-token mechanism. */
727 /* Is the path already locked?
729 Note that this next function call will automatically ignore any
730 errors about {the path not existing as a key, the path's token
731 not existing as a key, the lock just having been expired}. And
732 that's totally fine. Any of these three errors are perfectly
733 acceptable to ignore; it means that the path is now free and
734 clear for locking, because the fsfs funcs just cleared out both
735 of the tables for us. */
738 {
740 {
741 /* Sorry, the path is already locked. */
743 }
744 else
745 {
746 /* STEAL_LOCK was passed, so fs_username is "stealing" the
747 lock from lock->owner. Destroy the existing lock. */
749 }
750 }
752 /* Create our new lock, and add it to the tables.
753 Ensure that the lock is created in the correct pool. */
757 else
770 }
772 /* Baton used for unlock_body below. */
777 svn_boolean_t break_lock;
778 };
780 /* This implements the svn_fs_fs__with_write_lock() 'body' callback
781 type, and assumes that the write lock is held.
782 BATON is a 'struct unlock_baton *'. */
785 {
789 /* This could return SVN_ERR_FS_BAD_LOCK_TOKEN or SVN_ERR_FS_LOCK_EXPIRED. */
792 /* Unless breaking the lock, we do some checks. */
794 {
795 /* Sanity check: the incoming token should match lock->token. */
799 /* There better be a username attached to the fs. */
803 /* And that username better be the same as the lock's owner. */
805 return SVN_FS__ERR_LOCK_OWNER_MISMATCH
807 }
809 /* Remove lock and lock token files. */
813 }
815 \f
816 /*** Public API implementations ***/
818 svn_error_t *
824 svn_boolean_t is_dav_comment,
825 apr_time_t expiration_date,
826 svn_revnum_t current_rev,
827 svn_boolean_t steal_lock,
829 {
849 }
852 svn_error_t *
856 {
859 /* Notice that 'fs' is currently unused. But perhaps someday, we'll
860 want to use the fs UUID + some incremented number? For now, we
861 generate a URI that matches the DAV RFC. We could change this to
862 some other URI scheme someday, if we wish. */
866 }
869 svn_error_t *
873 svn_boolean_t break_lock,
875 {
889 }
892 svn_error_t *
897 {
901 }
904 svn_error_t *
907 svn_fs_get_locks_callback_t get_locks_func,
910 {
916 /* Get the top digest path in our tree of interest, and then walk it. */
920 }