ceph: fix security xattr deadlock

	struct ceph_mds_client *mdsc = fsc->mdsc;

	struct ceph_mds_request *req;

	int op;

	int mask;

	int err;

	dout("lookup %p dentry %p '%pd'\n",

		return ERR_CAST(req);

	req->r_dentry = dget(dentry);

	req->r_num_caps = 2;

	/* we only need inode linkage */

	req->r_args.getattr.mask = cpu_to_le32(CEPH_STAT_CAP_INODE);

	mask = CEPH_STAT_CAP_INODE | CEPH_CAP_AUTH_SHARED;

	if (ceph_security_xattr_wanted(dir))

		mask |= CEPH_CAP_XATTR_SHARED;

	req->r_args.getattr.mask = cpu_to_le32(mask);

	req->r_locked_dir = dir;

	err = ceph_mdsc_do_request(mdsc, NULL, req);

	err = ceph_handle_snapdir(req, dentry, err);

	inode = ceph_find_inode(sb, vino);

	if (!inode) {

		struct ceph_mds_request *req;

		int mask;

		req = ceph_mdsc_create_request(mdsc, CEPH_MDS_OP_LOOKUPINO,

					       USE_ANY_MDS);

		if (IS_ERR(req))

			return ERR_CAST(req);

		mask = CEPH_STAT_CAP_INODE;

		if (ceph_security_xattr_wanted(d_inode(sb->s_root)))

			mask |= CEPH_CAP_XATTR_SHARED;

		req->r_args.getattr.mask = cpu_to_le32(mask);

		req->r_ino1 = vino;

		req->r_num_caps = 1;

		err = ceph_mdsc_do_request(mdsc, NULL, req);

	struct ceph_mds_request *req;

	struct inode *inode;

	struct dentry *dentry;

	int mask;

	int err;

	req = ceph_mdsc_create_request(mdsc, CEPH_MDS_OP_LOOKUPPARENT,

			.snap = CEPH_NOSNAP,

		};

	}

	mask = CEPH_STAT_CAP_INODE;

	if (ceph_security_xattr_wanted(d_inode(sb->s_root)))

		mask |= CEPH_CAP_XATTR_SHARED;

	req->r_args.getattr.mask = cpu_to_le32(mask);

	req->r_num_caps = 1;

	err = ceph_mdsc_do_request(mdsc, NULL, req);

	inode = req->r_target_inode;

	struct ceph_mds_request *req;

	struct dentry *dn;

	struct ceph_acls_info acls = {};

       int mask;

	int err;

	dout("atomic_open %p dentry %p '%pd' %s flags %d mode 0%o\n",

			acls.pagelist = NULL;

		}

	}

       mask = CEPH_STAT_CAP_INODE | CEPH_CAP_AUTH_SHARED;

       if (ceph_security_xattr_wanted(dir))

               mask |= CEPH_CAP_XATTR_SHARED;

       req->r_args.open.mask = cpu_to_le32(mask);

	req->r_locked_dir = dir;           /* caller holds dir->i_mutex */

	err = ceph_mdsc_do_request(mdsc,

				   (flags & (O_CREAT|O_TRUNC)) ? dir : NULL,

	struct qstr dname;

	struct dentry *dn;

	struct inode *in;

	int err = 0, ret, i;

	int err = 0, skipped = 0, ret, i;

	struct inode *snapdir = NULL;

	struct ceph_mds_request_head *rhead = req->r_request->front.iov_base;

	struct ceph_dentry_info *di;

		}

		if (d_really_is_negative(dn)) {

			struct dentry *realdn = splice_dentry(dn, in);

			struct dentry *realdn;

			if (ceph_security_xattr_deadlock(in)) {

				dout(" skip splicing dn %p to inode %p"

				     " (security xattr deadlock)\n", dn, in);

				iput(in);

				skipped++;

				goto next_item;

			}

			realdn = splice_dentry(dn, in);

			if (IS_ERR(realdn)) {

				err = PTR_ERR(realdn);

				d_drop(dn);

				    req->r_session,

				    req->r_request_started);

		if (err == 0 && cache_ctl.index >= 0) {

		if (err == 0 && skipped == 0 && cache_ctl.index >= 0) {

			ret = fill_readdir_cache(d_inode(parent), dn,

						 &cache_ctl, req);

			if (ret < 0)

			dput(dn);

	}

out:

	if (err == 0) {

	if (err == 0 && skipped == 0) {

		req->r_did_prepopulate = true;

		req->r_readdir_cache_idx = cache_ctl.index;

	}

	/* insert trace into our cache */

	mutex_lock(&req->r_fill_mutex);

	current->journal_info = req;

	err = ceph_fill_trace(mdsc->fsc->sb, req, req->r_session);

	if (err == 0) {

		if (result == 0 && (req->r_op == CEPH_MDS_OP_READDIR ||

			ceph_readdir_prepopulate(req, req->r_session);

		ceph_unreserve_caps(mdsc, &req->r_caps_reservation);

	}

	current->journal_info = NULL;

	mutex_unlock(&req->r_fill_mutex);

	up_read(&mdsc->snap_rwsem);