[PATCH v4 2/3] kernfs: Send IN_DELETE_SELF and IN_IGNORED

[T.J. Mercier]

Currently some kernfs files (e.g. cgroup.events, memory.events) support
inotify watches for IN_MODIFY, but unlike with regular filesystems, they
do not receive IN_DELETE_SELF or IN_IGNORED events when they are
removed. This means inotify watches persist after file deletion until
the process exits and the inotify file descriptor is cleaned up, or
until inotify_rm_watch is called manually.

This creates a problem for processes monitoring cgroups. For example, a
service monitoring memory.events for memory.high breaches needs to know
when a cgroup is removed to clean up its state. Where it's known that a
cgroup is removed when all processes die, without IN_DELETE_SELF the
service must resort to inefficient workarounds such as:
  1) Periodically scanning procfs to detect process death (wastes CPU
     and is susceptible to PID reuse).
  2) Holding a pidfd for every monitored cgroup (can exhaust file
     descriptors).

This patch enables IN_DELETE_SELF and IN_IGNORED events for kernfs files
and directories by clearing inode i_nlink values during removal. This
allows VFS to make the necessary fsnotify calls so that userspace
receives the inotify events.

As a result, applications can rely on a single existing watch on a file
of interest (e.g. memory.events) to receive notifications for both
modifications and the eventual removal of the file, as well as automatic
watch descriptor cleanup, simplifying userspace logic and improving
efficiency.

There is gap in this implementation for certain file removals due their
unique nature in kernfs. Directory removals that trigger file removals
occur through vfs_rmdir, which shrinks the dcache and emits fsnotify
events after the rmdir operation; there is no issue here. However kernfs
writes to particular files (e.g. cgroup.subtree_control) can also cause
file removal, but vfs_write does not attempt to emit fsnotify events
after the write operation, even if i_nlink counts are 0. As a usecase
for monitoring this category of file removals is not known, they are
left without having IN_DELETE or IN_DELETE_SELF events generated.

Suggested-by: Jan Kara <j...@suse.cz>
Signed-off-by: T.J. Mercier <tjmerc...@google.com>
---
 fs/kernfs/dir.c | 30 +++++++++++++++++++++++++++++-
 1 file changed, 29 insertions(+), 1 deletion(-)

diff --git a/fs/kernfs/dir.c b/fs/kernfs/dir.c
index 5b6ce2351a53..41541b969fb2 100644
--- a/fs/kernfs/dir.c
+++ b/fs/kernfs/dir.c
@@ -1471,6 +1471,23 @@ void kernfs_show(struct kernfs_node *kn, bool show)
        up_write(&root->kernfs_rwsem);
 }
 
+static void kernfs_clear_inode_nlink(struct kernfs_node *kn)
+{
+       struct kernfs_root *root = kernfs_root(kn);
+       struct kernfs_super_info *info;
+
+       lockdep_assert_held_read(&root->kernfs_supers_rwsem);
+
+       list_for_each_entry(info, &root->supers, node) {
+               struct inode *inode = ilookup(info->sb, kernfs_ino(kn));
+
+               if (inode) {
+                       clear_nlink(inode);
+                       iput(inode);
+               }
+       }
+}
+
 static void __kernfs_remove(struct kernfs_node *kn)
 {
        struct kernfs_node *pos, *parent;
@@ -1479,6 +1496,7 @@ static void __kernfs_remove(struct kernfs_node *kn)
        if (!kn)
                return;
 
+       lockdep_assert_held_read(&kernfs_root(kn)->kernfs_supers_rwsem);
        lockdep_assert_held_write(&kernfs_root(kn)->kernfs_rwsem);
 
        /*
@@ -1522,9 +1540,11 @@ static void __kernfs_remove(struct kernfs_node *kn)
                        struct kernfs_iattrs *ps_iattr =
                                parent ? parent->iattr : NULL;
 
-                       /* update timestamps on the parent */
                        down_write(&kernfs_root(kn)->kernfs_iattr_rwsem);
 
+                       kernfs_clear_inode_nlink(pos);
+
+                       /* update timestamps on the parent */
                        if (ps_iattr) {
                                ktime_get_real_ts64(&ps_iattr->ia_ctime);
                                ps_iattr->ia_mtime = ps_iattr->ia_ctime;
@@ -1553,9 +1573,11 @@ void kernfs_remove(struct kernfs_node *kn)
 
        root = kernfs_root(kn);
 
+       down_read(&root->kernfs_supers_rwsem);
        down_write(&root->kernfs_rwsem);
        __kernfs_remove(kn);
        up_write(&root->kernfs_rwsem);
+       up_read(&root->kernfs_supers_rwsem);
 }
 
 /**
@@ -1646,6 +1668,7 @@ bool kernfs_remove_self(struct kernfs_node *kn)
        bool ret;
        struct kernfs_root *root = kernfs_root(kn);
 
+       down_read(&root->kernfs_supers_rwsem);
        down_write(&root->kernfs_rwsem);
        kernfs_break_active_protection(kn);
 
@@ -1675,7 +1698,9 @@ bool kernfs_remove_self(struct kernfs_node *kn)
                                break;
 
                        up_write(&root->kernfs_rwsem);
+                       up_read(&root->kernfs_supers_rwsem);
                        schedule();
+                       down_read(&root->kernfs_supers_rwsem);
                        down_write(&root->kernfs_rwsem);
                }
                finish_wait(waitq, &wait);
@@ -1690,6 +1715,7 @@ bool kernfs_remove_self(struct kernfs_node *kn)
        kernfs_unbreak_active_protection(kn);
 
        up_write(&root->kernfs_rwsem);
+       up_read(&root->kernfs_supers_rwsem);
        return ret;
 }
 
@@ -1716,6 +1742,7 @@ int kernfs_remove_by_name_ns(struct kernfs_node *parent, 
const char *name,
        }
 
        root = kernfs_root(parent);
+       down_read(&root->kernfs_supers_rwsem);
        down_write(&root->kernfs_rwsem);
 
        kn = kernfs_find_ns(parent, name, ns);
@@ -1726,6 +1753,7 @@ int kernfs_remove_by_name_ns(struct kernfs_node *parent, 
const char *name,
        }
 
        up_write(&root->kernfs_rwsem);
+       up_read(&root->kernfs_supers_rwsem);
 
        if (kn)
                return 0;
-- 
2.53.0.414.gf7e9f6c205-goog