!9872 CVE-2024-38570

	return true;

}

void gfs2_glock_free(struct gfs2_glock *gl)

static void __gfs2_glock_free(struct gfs2_glock *gl)

{

	struct gfs2_sbd *sdp = gl->gl_name.ln_sbd;

	gfs2_glock_assert_withdraw(gl, atomic_read(&gl->gl_revokes) == 0);

	rhashtable_remove_fast(&gl_hash_table, &gl->gl_node, ht_parms);

	smp_mb();

	wake_up_glock(gl);

	call_rcu(&gl->gl_rcu, gfs2_glock_dealloc);

}

void gfs2_glock_free(struct gfs2_glock *gl) {

	struct gfs2_sbd *sdp = gl->gl_name.ln_sbd;

	__gfs2_glock_free(gl);

	if (atomic_dec_and_test(&sdp->sd_glock_disposal))

		wake_up(&sdp->sd_glock_wait);

		wake_up(&sdp->sd_kill_wait);

}

void gfs2_glock_free_later(struct gfs2_glock *gl) {

	struct gfs2_sbd *sdp = gl->gl_name.ln_sbd;

	spin_lock(&lru_lock);

	list_add(&gl->gl_lru, &sdp->sd_dead_glocks);

	spin_unlock(&lru_lock);

	if (atomic_dec_and_test(&sdp->sd_glock_disposal))

		wake_up(&sdp->sd_kill_wait);

}

static void gfs2_free_dead_glocks(struct gfs2_sbd *sdp)

{

	struct list_head *list = &sdp->sd_dead_glocks;

	while(!list_empty(list)) {

		struct gfs2_glock *gl;

		gl = list_first_entry(list, struct gfs2_glock, gl_lru);

		list_del_init(&gl->gl_lru);

		__gfs2_glock_free(gl);

	}

}

/**

	kfree(gl->gl_lksb.sb_lvbptr);

	kmem_cache_free(cachep, gl);

	if (atomic_dec_and_test(&sdp->sd_glock_disposal))

		wake_up(&sdp->sd_glock_wait);

		wake_up(&sdp->sd_kill_wait);

out:

	return ret;

{

	set_bit(SDF_SKIP_DLM_UNLOCK, &sdp->sd_flags);

	flush_workqueue(glock_workqueue);

	gfs2_lm_unmount(sdp);

	gfs2_free_dead_glocks(sdp);

	glock_hash_walk(clear_glock, sdp);

	flush_workqueue(glock_workqueue);

	wait_event_timeout(sdp->sd_glock_wait,

	wait_event_timeout(sdp->sd_kill_wait,

			   atomic_read(&sdp->sd_glock_disposal) == 0,

			   HZ * 600);

	glock_hash_walk(dump_glock_func, sdp);

extern void gfs2_glock_thaw(struct gfs2_sbd *sdp);

extern void gfs2_glock_add_to_lru(struct gfs2_glock *gl);

extern void gfs2_glock_free(struct gfs2_glock *gl);

void gfs2_glock_free_later(struct gfs2_glock *gl);

extern int __init gfs2_glock_init(void);

extern void gfs2_glock_exit(void);

	struct gfs2_glock *sd_rename_gl;

	struct gfs2_glock *sd_freeze_gl;

	struct work_struct sd_freeze_work;

	wait_queue_head_t sd_glock_wait;

	wait_queue_head_t sd_kill_wait;

	wait_queue_head_t sd_async_glock_wait;

	atomic_t sd_glock_disposal;

	struct completion sd_locking_init;

	struct gfs2_holder sd_freeze_gh;

	atomic_t sd_freeze_state;

	struct mutex sd_freeze_mutex;

	struct list_head sd_dead_glocks;

	char sd_fsname[GFS2_FSNAME_LEN + 3 * sizeof(int) + 2];

	char sd_table_name[GFS2_FSNAME_LEN];

	struct gfs2_glock *gl = arg;

	unsigned ret = gl->gl_state;

	/* If the glock is dead, we only react to a dlm_unlock() reply. */

	if (__lockref_is_dead(&gl->gl_lockref) &&

	    gl->gl_lksb.sb_status != -DLM_EUNLOCK)

		return;

	gfs2_update_reply_times(gl);

	BUG_ON(gl->gl_lksb.sb_flags & DLM_SBF_DEMOTED);

{

	struct gfs2_glock *gl = arg;

	if (__lockref_is_dead(&gl->gl_lockref))

		return;

	switch (mode) {

	case DLM_LOCK_EX:

		gfs2_glock_cb(gl, LM_ST_UNLOCKED);

	struct lm_lockstruct *ls = &sdp->sd_lockstruct;

	int error;

	BUG_ON(!__lockref_is_dead(&gl->gl_lockref));

	if (gl->gl_lksb.sb_lkid == 0) {

		gfs2_glock_free(gl);

		return;

	if (test_bit(SDF_SKIP_DLM_UNLOCK, &sdp->sd_flags) &&

	    !gl->gl_lksb.sb_lvbptr) {

		gfs2_glock_free(gl);

		gfs2_glock_free_later(gl);

		return;

	}

	set_bit(SDF_NOJOURNALID, &sdp->sd_flags);

	gfs2_tune_init(&sdp->sd_tune);

	init_waitqueue_head(&sdp->sd_glock_wait);

	init_waitqueue_head(&sdp->sd_kill_wait);

	init_waitqueue_head(&sdp->sd_async_glock_wait);

	atomic_set(&sdp->sd_glock_disposal, 0);

	init_completion(&sdp->sd_locking_init);

	init_waitqueue_head(&sdp->sd_log_flush_wait);

	atomic_set(&sdp->sd_freeze_state, SFS_UNFROZEN);

	mutex_init(&sdp->sd_freeze_mutex);

	INIT_LIST_HEAD(&sdp->sd_dead_glocks);

	return sdp;