9e5fcdf3d0
Merge 4.19.207 into android-4.19-stable
Linux 4.19.207
s390/bpf: Fix 64-bit subtraction of the -0x80000000 constant
net: renesas: sh_eth: Fix freeing wrong tx descriptor
* ip_gre: validate csum_start only on pull
net/ipv4/ip_gre.c
qlcnic: Remove redundant unlock in qlcnic_pinit_from_rom
* fq_codel: reject silly quantum parameters
include/uapi/linux/pkt_sched.h
net/sched/sch_fq_codel.c
* netfilter: socket: icmp6: fix use-after-scope
net/ipv6/netfilter/nf_socket_ipv6.c
net: dsa: b53: Fix calculating number of switch ports
ARC: export clear_user_page() for modules
mtd: rawnand: cafe: Fix a resource leak in the error handling path of 'cafe_nand_probe()'
* PCI: Sync __pci_register_driver() stub for CONFIG_PCI=n
include/linux/pci.h
* KVM: arm64: Handle PSCI resets before userspace touches vCPU state
virt/kvm/arm/arm.c
* PCI: Fix pci_dev_str_match_path() alloc while atomic bug
drivers/pci/pci.c
mfd: axp20x: Update AXP288 volatile ranges
NTB: perf: Fix an error code in perf_setup_inbuf()
ethtool: Fix an error code in cxgb2.c
block, bfq: honor already-setup queue merges
net: usb: cdc_mbim: avoid altsetting toggling for Telit LN920
* PCI: Add ACS quirks for Cavium multi-function devices
drivers/pci/quirks.c
mfd: Don't use irq_create_mapping() to resolve a mapping
dt-bindings: mtd: gpmc: Fix the ECC bytes vs. OOB bytes equation
KVM: s390: index kvm->arch.idle_mask by vcpu_idx
* mm/memory_hotplug: use "unsigned long" for PFN in zone_for_pfn_range()
include/linux/memory_hotplug.h
mm/memory_hotplug.c
net: hns3: pad the short tunnel frame before sending to hardware
ibmvnic: check failover_pending in login response
qed: Handle management FW error
* tcp: fix tp->undo_retrans accounting in tcp_sacktag_one()
net/ipv4/tcp_input.c
* net: dsa: destroy the phylink instance on any error in dsa_slave_phy_setup
net/dsa/slave.c
* net/af_unix: fix a data-race in unix_dgram_poll
include/linux/skbuff.h
net/unix/af_unix.c
* events: Reuse value read using READ_ONCE instead of re-reading it
kernel/events/core.c
net/mlx5: Fix potential sleeping in atomic context
* perf machine: Initialize srcline string member in add_location struct
tools/perf/util/machine.c
* tipc: increase timeout in tipc_sk_enqueue()
net/tipc/socket.c
r6040: Restore MDIO clock frequency after MAC reset
* net/l2tp: Fix reference count leak in l2tp_udp_recv_core
net/l2tp/l2tp_core.c
* dccp: don't duplicate ccid when cloning dccp sock
net/dccp/minisocks.c
ptp: dp83640: don't define PAGE0
* net-caif: avoid user-triggerable WARN_ON(1)
net/caif/chnl_net.c
* tipc: fix an use-after-free issue in tipc_recvmsg
net/tipc/socket.c
x86/mm: Fix kern_addr_valid() to cope with existing but not present entries
* PCI: Add AMD GPU multi-function power dependencies
drivers/pci/quirks.c
PM: base: power: don't try to use non-existing RTC for storing data
* arm64/sve: Use correct size when reinitialising SVE state
arch/arm64/kernel/fpsimd.c
bnx2x: Fix enabling network interfaces without VFs
xen: reset legacy rtc flag for PV domU
dm thin metadata: Fix use-after-free in dm_bm_set_read_only
drm/amdgpu: Fix BUG_ON assert
platform/chrome: cros_ec_proto: Send command again when timeout occurs
* memcg: enable accounting for pids in nested pid namespaces
kernel/pid_namespace.c
* mm/hugetlb: initialize hugetlb_usage in mm_init
include/linux/hugetlb.h
kernel/fork.c
cpufreq: powernv: Fix init_chip_info initialization in numa=off
scsi: qla2xxx: Sync queue idx with queue_pair_map idx
scsi: BusLogic: Fix missing pr_cont() use
* ovl: fix BUG_ON() in may_delete() when called from ovl_cleanup()
fs/overlayfs/dir.c
parisc: fix crash with signals and alloca
net: w5100: check return value after calling platform_get_resource()
* net: fix NULL pointer reference in cipso_v4_doi_free
net/netlabel/netlabel_cipso_v4.c
ath9k: fix sleeping in atomic context
ath9k: fix OOB read ar9300_eeprom_restore_internal
parport: remove non-zero check on count
* ASoC: rockchip: i2s: Fixup config for DAIFMT_DSP_A/B
sound/soc/rockchip/rockchip_i2s.c
* ASoC: rockchip: i2s: Fix regmap_ops hang
sound/soc/rockchip/rockchip_i2s.c
usbip:vhci_hcd USB port can get stuck in the disabled state
usbip: give back URBs for unsent unlink requests during cleanup
usb: musb: musb_dsps: request_irq() after initializing musb
* Revert "USB: xhci: fix U1/U2 handling for hardware with XHCI_INTEL_HOST quirk set"
drivers/usb/host/xhci.c
* cifs: fix wrong release in sess_alloc_buffer() failed path
fs/cifs/sess.c
mmc: core: Return correct emmc response in case of ioctl error
* selftests/bpf: Enlarge select() timeout for test_maps
tools/testing/selftests/bpf/test_maps.c
mmc: rtsx_pci: Fix long reads when clock is prescaled
mmc: sdhci-of-arasan: Check return value of non-void funtions
* of: Don't allow __of_attached_node_sysfs() without CONFIG_SYSFS
drivers/of/kobj.c
* gfs2: Don't call dlm after protocol is unmounted
fs/gfs2/lock_dlm.c
staging: rts5208: Fix get_ms_information() heap buffer size
* rpc: fix gss_svc_init cleanup on failure
net/sunrpc/auth_gss/svcauth_gss.c
* tcp: enable data-less, empty-cookie SYN with TFO_SERVER_COOKIE_NOT_REQD
net/ipv4/tcp_fastopen.c
serial: sh-sci: fix break handling for sysrq
* Bluetooth: Fix handling of LE Enhanced Connection Complete
net/bluetooth/hci_event.c
ARM: tegra: tamonten: Fix UART pad setting
gpu: drm: amd: amdgpu: amdgpu_i2c: fix possible uninitialized-variable access in amdgpu_i2c_router_select_ddc_port()
* Bluetooth: avoid circular locks in sco_sock_connect
net/bluetooth/sco.c
* Bluetooth: schedule SCO timeouts with delayed_work
net/bluetooth/sco.c
net: ethernet: stmmac: Do not use unreachable() in ipq806x_gmac_probe()
arm64: dts: qcom: sdm660: use reg value for memory node
ARM: dts: imx53-ppd: Fix ACHC entry
media: tegra-cec: Handle errors of clk_prepare_enable()
media: TDA1997x: fix tda1997x_query_dv_timings() return value
* media: v4l2-dv-timings.c: fix wrong condition in two for-loops
drivers/media/v4l2-core/v4l2-dv-timings.c
media: imx258: Limit the max analogue gain to 480
media: imx258: Rectify mismatch of VTS value
* ASoC: Intel: bytcr_rt5640: Move "Platform Clock" routes to the maps for the matching in-/output
sound/soc/intel/boards/bytcr_rt5640.c
* bonding: 3ad: fix the concurrency between __bond_release_one() and bond_3ad_state_machine_handler()
drivers/net/bonding/bond_main.c
* Bluetooth: skip invalid hci_sync_conn_complete_evt
net/bluetooth/hci_event.c
ata: sata_dwc_460ex: No need to call phy_exit() befre phy_init()
* samples: bpf: Fix tracex7 error raised on the missing argument
samples/bpf/test_override_return.sh
samples/bpf/tracex7_user.c
staging: ks7010: Fix the initialization of the 'sleep_status' structure
serial: 8250_pci: make setup_port() parameters explicitly unsigned
hvsi: don't panic on tty_register_driver failure
xtensa: ISS: don't panic in rs_init
* serial: 8250: Define RX trigger levels for OxSemi 950 devices
include/uapi/linux/serial_reg.h
s390/jump_label: print real address in a case of a jump label bug
* flow_dissector: Fix out-of-bounds warnings
net/core/flow_dissector.c
* ipv4: ip_output.c: Fix out-of-bounds warning in ip_copy_addrs()
net/ipv4/ip_output.c
video: fbdev: riva: Error out if 'pixclock' equals zero
video: fbdev: kyro: Error out if 'pixclock' equals zero
video: fbdev: asiliantfb: Error out if 'pixclock' equals zero
* bpf/tests: Do not PASS tests without actually testing the result
lib/test_bpf.c
* bpf/tests: Fix copy-and-paste error in double word test
lib/test_bpf.c
drm/amd/amdgpu: Update debugfs link_settings output link_rate field in hex
tty: serial: jsm: hold port lock when reporting modem line changes
staging: board: Fix uninitialized spinlock when attaching genpd
* usb: gadget: composite: Allow bMaxPower=0 if self-powered
drivers/usb/gadget/composite.c
* usb: gadget: u_ether: fix a potential null pointer dereference
drivers/usb/gadget/function/u_ether.c
usb: host: fotg210: fix the actual_length of an iso packet
usb: host: fotg210: fix the endpoint's transactional opportunities calculation
* Smack: Fix wrong semantics in smk_access_entry()
security/smack/smack_access.c
* netlink: Deal with ESRCH error in nlmsg_notify()
net/netlink/af_netlink.c
video: fbdev: kyro: fix a DoS bug by restricting user input
ARM: dts: qcom: apq8064: correct clock names
iio: dac: ad5624r: Fix incorrect handling of an optional regulator.
* tipc: keep the skb in rcv queue until the whole data is read
net/tipc/socket.c
* PCI: Use pci_update_current_state() in pci_enable_device_flags()
drivers/pci/pci.c
crypto: mxs-dcp - Use sg_mapping_iter to copy data
media: dib8000: rewrite the init prbs logic
* userfaultfd: prevent concurrent API initialization
fs/userfaultfd.c
MIPS: Malta: fix alignment of the devicetree buffer
* f2fs: fix to unmap pages from userspace process in punch_hole()
fs/f2fs/file.c
* f2fs: fix to account missing .skipped_gc_rwsem
fs/f2fs/gc.c
* fscache: Fix cookie key hashing
fs/fscache/cookie.c
fs/fscache/internal.h
fs/fscache/main.c
platform/x86: dell-smbios-wmi: Add missing kfree in error-exit from run_smbios_call
scsi: qedi: Fix error codes in qedi_alloc_global_queues()
pinctrl: single: Fix error return code in pcs_parse_bits_in_pinctrl_entry()
openrisc: don't printk() unconditionally
powerpc/stacktrace: Include linux/delay.h
* vfio: Use config not menuconfig for VFIO_NOIOMMU
drivers/vfio/Kconfig
pinctrl: samsung: Fix pinctrl bank pin count
docs: Fix infiniband uverbs minor number
RDMA/iwcm: Release resources if iw_cm module initialization fails
* HID: input: do not report stylus battery state as "full"
drivers/hid/hid-input.c
PCI: aardvark: Fix masking and unmasking legacy INTx interrupts
PCI: aardvark: Increase polling delay to 1.5s while waiting for PIO response
PCI: xilinx-nwl: Enable the clock through CCF
* PCI: Return ~0 data on pciconfig_read() CAP_SYS_ADMIN failure
drivers/pci/syscall.c
* PCI: Restrict ASMedia ASM1062 SATA Max Payload Size Supported
drivers/pci/quirks.c
ARM: 9105/1: atags_to_fdt: don't warn about stack size
libata: add ATA_HORKAGE_NO_NCQ_TRIM for Samsung 860 and 870 SSDs
media: rc-loopback: return number of emitters rather than error
media: uvc: don't do DMA on stack
VMCI: fix NULL pointer dereference when unmapping queue pair
dm crypt: Avoid percpu_counter spinlock contention in crypt_page_alloc()
power: supply: max17042: handle fails of reading status register
block: bfq: fix bfq_set_next_ioprio_data()
* crypto: public_key: fix overflow during implicit conversion
include/crypto/public_key.h
* arm64: head: avoid over-mapping in map_memory
arch/arm64/include/asm/kernel-pgtable.h
arch/arm64/kernel/head.S
soc: aspeed: lpc-ctrl: Fix boundary check for mmap
* tools/thermal/tmon: Add cross compiling support
tools/thermal/tmon/Makefile
* bpf: Fix pointer arithmetic mask tightening under state pruning
include/linux/bpf_verifier.h
kernel/bpf/verifier.c
* bpf: verifier: Allocate idmap scratch in verifier env
include/linux/bpf_verifier.h
kernel/bpf/verifier.c
* bpf: Fix leakage due to insufficient speculative store bypass mitigation
include/linux/bpf_verifier.h
kernel/bpf/verifier.c
* bpf: Introduce BPF nospec instruction for mitigating Spectre v4
arch/arm64/net/bpf_jit_comp.c
include/linux/filter.h
kernel/bpf/core.c
kernel/bpf/disasm.c
* selftests/bpf: fix tests due to const spill/fill
tools/testing/selftests/bpf/test_verifier.c
* bpf: track spill/fill of constants
kernel/bpf/verifier.c
* selftests/bpf: Test variable offset stack access
tools/testing/selftests/bpf/test_verifier.c
* bpf: Sanity check max value for var_off stack access
kernel/bpf/verifier.c
* bpf: Reject indirect var_off stack access in unpriv mode
kernel/bpf/verifier.c
* bpf: Reject indirect var_off stack access in raw mode
kernel/bpf/verifier.c
* bpf: Support variable offset stack access from helpers
kernel/bpf/verifier.c
* bpf: correct slot_type marking logic to allow more stack slot sharing
kernel/bpf/verifier.c
tools/testing/selftests/bpf/test_verifier.c
* bpf/verifier: per-register parent pointers
include/linux/bpf_verifier.h
kernel/bpf/verifier.c
* 9p/xen: Fix end of loop tests for list_for_each_entry
net/9p/trans_xen.c
* include/linux/list.h: add a macro to test if entry is pointing to the head
include/linux/list.h
xen: fix setting of max_pfn in shared_info
powerpc/perf/hv-gpci: Fix counter value parsing
* PCI/MSI: Skip masking MSI-X on Xen PV
drivers/pci/msi.c
blk-zoned: allow BLKREPORTZONE without CAP_SYS_ADMIN
blk-zoned: allow zone management send operations without CAP_SYS_ADMIN
btrfs: reset replace target device to allocation state on close
rtc: tps65910: Correct driver module alias
clk: kirkwood: Fix a clocking boot regression
backlight: pwm_bl: Improve bootloader/kernel device handover
fbmem: don't allow too huge resolutions
* IMA: remove the dependency on CRYPTO_MD5
security/integrity/ima/Kconfig
* IMA: remove -Wmissing-prototypes warning
security/integrity/ima/ima_mok.c
KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted
x86/resctrl: Fix a maybe-uninitialized build warning treated as error
* tty: Fix data race between tiocsti() and flush_to_ldisc()
drivers/tty/tty_io.c
* ubifs: report correct st_size for encrypted symlinks
fs/ubifs/file.c
* f2fs: report correct st_size for encrypted symlinks
fs/f2fs/namei.c
* ext4: report correct st_size for encrypted symlinks
fs/ext4/symlink.c
* fscrypt: add fscrypt_symlink_getattr() for computing st_size
fs/crypto/hooks.c
* netns: protect netns ID lookups with RCU
net/core/net_namespace.c
* ipv4: fix endianness issue in inet_rtm_getroute_build_skb()
net/ipv4/route.c
net: qualcomm: fix QCA7000 checksum handling
* net: sched: Fix qdisc_rate_table refcount leak when get tcf_block failed
net/sched/sch_cbq.c
* ipv4: make exception cache less predictible
net/ipv4/route.c
bcma: Fix memory leak for internally-handled cores
ath6kl: wmi: fix an error code in ath6kl_wmi_sync_point()
tty: serial: fsl_lpuart: fix the wrong mapbase value
usb: bdc: Fix an error handling path in 'bdc_probe()' when no suitable DMA config is available
usb: ehci-orion: Handle errors of clk_prepare_enable() in probe
i2c: mt65xx: fix IRQ check
* CIFS: Fix a potencially linear read overflow
fs/cifs/cifs_unicode.c
mmc: moxart: Fix issue with uninitialized dma_slave_config
mmc: dw_mmc: Fix issue with uninitialized dma_slave_config
i2c: s3c2410: fix IRQ check
i2c: iop3xx: fix deferred probing
* Bluetooth: add timeout sanity check to hci_inquiry
net/bluetooth/hci_core.c
usb: gadget: mv_u3d: request_irq() after initializing UDC
* mac80211: Fix insufficient headroom issue for AMSDU
net/mac80211/tx.c
usb: phy: tahvo: add IRQ check
usb: host: ohci-tmio: add IRQ check
* Bluetooth: Move shutdown callback before flushing tx and rx queue
net/bluetooth/hci_core.c
usb: phy: twl6030: add IRQ checks
usb: phy: fsl-usb: add IRQ check
usb: gadget: udc: at91: add IRQ check
drm/msm/dsi: Fix some reference counted resource leaks
* Bluetooth: fix repeated calls to sco_sock_kill
net/bluetooth/sco.c
arm64: dts: exynos: correct GIC CPU interfaces address range on Exynos7
drm/msm/dpu: make dpu_hw_ctl_clear_all_blendstages clear necessary LMs
* Bluetooth: increase BTNAMSIZ to 21 chars to fix potential buffer overflow
net/bluetooth/cmtp/cmtp.h
soc: qcom: smsm: Fix missed interrupts if state changes while masked
* PCI: PM: Enable PME if it can be signaled from D3cold
drivers/pci/pci.c
* PCI: PM: Avoid forcing PCI_D0 for wakeup reasons inconsistently
drivers/pci/pci.c
media: venus: venc: Fix potential null pointer dereference on pointer fmt
media: em28xx-input: fix refcount bug in em28xx_usb_disconnect
i2c: highlander: add IRQ check
* net: cipso: fix warnings in netlbl_cipsov4_add_std
net/netlabel/netlabel_cipso_v4.c
* tcp: seq_file: Avoid skipping sk during tcp_seek_last_pos
net/ipv4/tcp_ipv4.c
* Bluetooth: sco: prevent information leak in sco_conn_defer_accept()
net/bluetooth/sco.c
media: go7007: remove redundant initialization
media: dvb-usb: fix uninit-value in vp702x_read_mac_addr
media: dvb-usb: fix uninit-value in dvb_usb_adapter_dvb_init
* soc: rockchip: ROCKCHIP_GRF should not default to y, unconditionally
drivers/soc/rockchip/Kconfig
media: TDA1997x: enable EDID support
spi: sprd: Fix the wrong WDG_LOAD_VAL
* certs: Trigger creation of RSA module signing key if it's not an RSA key
certs/Makefile
crypto: qat - use proper type for vf_mask
clocksource/drivers/sh_cmt: Fix wrong setting if don't request IRQ for clock source channel
* lib/mpi: use kcalloc in mpi_resize
lib/mpi/mpiutil.c
spi: spi-pic32: Fix issue with uninitialized dma_slave_config
spi: spi-fsl-dspi: Fix issue with uninitialized dma_slave_config
m68k: emu: Fix invalid free in nfeth_cleanup()
* udf_get_extendedattr() had no boundary checks.
fs/udf/misc.c
* fcntl: fix potential deadlock for &fasync_struct.fa_lock
fs/fcntl.c
crypto: qat - do not export adf_iov_putmsg()
crypto: qat - fix naming for init/shutdown VF to PF notifications
crypto: qat - fix reuse of completion variable
crypto: qat - handle both source of interrupt in VF ISR
crypto: qat - do not ignore errors from enable_vf2pf_comms()
libata: fix ata_host_start()
s390/cio: add dev_busid sysfs entry for each subchannel
* power: supply: max17042_battery: fix typo in MAx17042_TOFF
include/linux/power/max17042_battery.h
nvme-rdma: don't update queue count when failing to set io queues
bcache: add proper error unwinding in bcache_device_init
* isofs: joliet: Fix iocharset=utf8 mount option
fs/isofs/inode.c
fs/isofs/isofs.h
fs/isofs/joliet.c
* udf: Check LVID earlier
fs/udf/super.c
* hrtimer: Avoid double reprogramming in __hrtimer_start_range_ns()
kernel/time/hrtimer.c
* sched/deadline: Fix missing clock update in migrate_task_rq_dl()
kernel/sched/deadline.c
crypto: omap-sham - clear dma flags only after omap_sham_update_dma_stop()
power: supply: axp288_fuel_gauge: Report register-address on readb / writeb errors
* sched/deadline: Fix reset_on_fork reporting of DL tasks
kernel/sched/deadline.c
kernel/sched/sched.h
crypto: mxs-dcp - Check for DMA mapping errors
* regmap: fix the offset of register error log
drivers/base/regmap/regmap.c
* locking/mutex: Fix HANDOFF condition
kernel/locking/mutex.c
* PCI: Call Max Payload Size-related fixup quirks early
drivers/pci/quirks.c
x86/reboot: Limit Dell Optiplex 990 quirk to early BIOS versions
usb: mtu3: fix the wrong HS mult value
usb: mtu3: use @mult for HS isoc or intr
usb: host: xhci-rcar: Don't reload firmware after the completion
* ALSA: usb-audio: Add registration quirk for JBL Quantum 800
sound/usb/quirks.c
Revert "btrfs: compression: don't try to compress if we don't have enough pages"
* mm/page_alloc: speed up the iteration of max_order
mm/page_alloc.c
net: ll_temac: Remove left-over debug message
powerpc/boot: Delete unneeded .globl _zimage_start
powerpc/module64: Fix comment in R_PPC64_ENTRY handling
crypto: talitos - reduce max key size for SEC1
* SUNRPC/nfs: Fix return value for nfs4_callback_compound()
fs/nfs/callback_xdr.c
include/linux/sunrpc/svc.h
net/sunrpc/svc.c
* ipv4/icmp: l3mdev: Perform icmp error route lookup on source device routing table (v2)
net/ipv4/icmp.c
USB: serial: mos7720: improve OOM-handling in read_mos_reg()
* igmp: Add ip_mc_list lock in ip_check_mc_rcu
net/ipv4/igmp.c
ARM: imx: fix missing 3rd argument in macro imx_mmdc_perf_init
ARM: imx: add missing clk_disable_unprepare()
media: stkwebcam: fix memory leak in stk_camera_probe
* clk: fix build warning for orphan_list
drivers/clk/clk.c
* ALSA: pcm: fix divide error in snd_pcm_lib_ioctl
sound/core/pcm_lib.c
ARM: 8918/2: only build return_address() if needed
* cryptoloop: add a deprecation warning
drivers/block/Kconfig
perf/x86/amd/ibs: Work around erratum #1197
perf/x86/intel/pt: Fix mask of num_address_ranges
qede: Fix memset corruption
net: macb: Add a NULL check on desc_ptp
qed: Fix the VF msix vectors flow
gpu: ipu-v3: Fix i.MX IPU-v3 offset calculations for (semi)planar U/V formats
xtensa: fix kconfig unmet dependency warning for HAVE_FUTEX_CMPXCHG
* ext4: fix race writing to an inline_data file while its xattrs are changing
fs/ext4/inline.c
Merge 4.19.206 into android-4.19-stable
Linux 4.19.206
* net: don't unconditionally copy_from_user a struct ifreq for socket ioctls
include/linux/netdevice.h
net/socket.c
Revert "floppy: reintroduce O_NDELAY fix"
KVM: x86/mmu: Treat NX as used (not reserved) for all !TDP shadow MMUs
fbmem: add margin check to fb_check_caps()
vt_kdsetmode: extend console locking
* net/rds: dma_map_sg is entitled to merge entries
net/rds/ib_frmr.c
drm/nouveau/disp: power down unused DP links during init
* drm: Copy drm_wait_vblank to user before returning
drivers/gpu/drm/drm_ioc32.c
qed: Fix null-pointer dereference in qed_rdma_create_qp()
qed: qed ll2 race condition fixes
vringh: Use wiov->used to check for read/write desc order
virtio_pci: Support surprise removal of virtio pci device
virtio: Improve vq->broken access to avoid any compiler optimization
* opp: remove WARN when no valid OPPs remain
drivers/opp/of.c
usb: gadget: u_audio: fix race condition on endpoint stop
net: hns3: fix get wrong pfc_en when query PFC configuration
net: marvell: fix MVNETA_TX_IN_PRGRS bit number
xgene-v2: Fix a resource leak in the error handling path of 'xge_probe()'
* ip_gre: add validation for csum_start
net/ipv4/ip_gre.c
e1000e: Fix the max snoop/no-snoop latency for 10M
IB/hfi1: Fix possible null-pointer dereference in _extend_sdma_tx_descs()
* usb: dwc3: gadget: Stop EP0 transfers during pullup disable
drivers/usb/dwc3/gadget.c
* usb: dwc3: gadget: Fix dwc3_calc_trbs_left()
drivers/usb/dwc3/gadget.c
USB: serial: option: add new VID/PID to support Fibocom FG150
Revert "USB: serial: ch341: fix character loss at high transfer rates"
can: usb: esd_usb2: esd_usb2_rx_event(): fix the interchange of the CAN RX and TX error counters
* once: Fix panic when module unload
include/linux/once.h
lib/once.c
* netfilter: conntrack: collect all entries in one cycle
net/netfilter/nf_conntrack_core.c
ARC: Fix CONFIG_STACKDEPOT
* bpf: Fix truncation handling for mod32 dst reg wrt zero
kernel/bpf/verifier.c
* bpf: Fix 32 bit src register truncation on div/mod
include/linux/filter.h
kernel/bpf/verifier.c
* bpf: Do not use ax register in interpreter on div/mod
kernel/bpf/core.c
* net: qrtr: fix another OOB Read in qrtr_endpoint_post
net/qrtr/qrtr.c
Bug: 201722185
Change-Id: Ib431fe52b39577bd49f14f4b28c49b54fa247c54
Signed-off-by: Wilson Sung <wilsonsung@google.com>
1464 lines
37 KiB
C
1464 lines
37 KiB
C
/*
|
|
* kernel/locking/mutex.c
|
|
*
|
|
* Mutexes: blocking mutual exclusion locks
|
|
*
|
|
* Started by Ingo Molnar:
|
|
*
|
|
* Copyright (C) 2004, 2005, 2006 Red Hat, Inc., Ingo Molnar <mingo@redhat.com>
|
|
*
|
|
* Many thanks to Arjan van de Ven, Thomas Gleixner, Steven Rostedt and
|
|
* David Howells for suggestions and improvements.
|
|
*
|
|
* - Adaptive spinning for mutexes by Peter Zijlstra. (Ported to mainline
|
|
* from the -rt tree, where it was originally implemented for rtmutexes
|
|
* by Steven Rostedt, based on work by Gregory Haskins, Peter Morreale
|
|
* and Sven Dietrich.
|
|
*
|
|
* Also see Documentation/locking/mutex-design.txt.
|
|
*/
|
|
#include <linux/mutex.h>
|
|
#include <linux/ww_mutex.h>
|
|
#include <linux/sched/signal.h>
|
|
#include <linux/sched/rt.h>
|
|
#include <linux/sched/wake_q.h>
|
|
#include <linux/sched/debug.h>
|
|
#include <linux/export.h>
|
|
#include <linux/spinlock.h>
|
|
#include <linux/interrupt.h>
|
|
#include <linux/debug_locks.h>
|
|
#include <linux/osq_lock.h>
|
|
#include <linux/delay.h>
|
|
|
|
#ifdef CONFIG_DEBUG_MUTEXES
|
|
# include "mutex-debug.h"
|
|
#else
|
|
# include "mutex.h"
|
|
#endif
|
|
|
|
void
|
|
__mutex_init(struct mutex *lock, const char *name, struct lock_class_key *key)
|
|
{
|
|
atomic_long_set(&lock->owner, 0);
|
|
spin_lock_init(&lock->wait_lock);
|
|
INIT_LIST_HEAD(&lock->wait_list);
|
|
#ifdef CONFIG_MUTEX_SPIN_ON_OWNER
|
|
osq_lock_init(&lock->osq);
|
|
#endif
|
|
|
|
debug_mutex_init(lock, name, key);
|
|
}
|
|
EXPORT_SYMBOL(__mutex_init);
|
|
|
|
/*
|
|
* @owner: contains: 'struct task_struct *' to the current lock owner,
|
|
* NULL means not owned. Since task_struct pointers are aligned at
|
|
* at least L1_CACHE_BYTES, we have low bits to store extra state.
|
|
*
|
|
* Bit0 indicates a non-empty waiter list; unlock must issue a wakeup.
|
|
* Bit1 indicates unlock needs to hand the lock to the top-waiter
|
|
* Bit2 indicates handoff has been done and we're waiting for pickup.
|
|
*/
|
|
#define MUTEX_FLAG_WAITERS 0x01
|
|
#define MUTEX_FLAG_HANDOFF 0x02
|
|
#define MUTEX_FLAG_PICKUP 0x04
|
|
|
|
#define MUTEX_FLAGS 0x07
|
|
|
|
static inline struct task_struct *__owner_task(unsigned long owner)
|
|
{
|
|
return (struct task_struct *)(owner & ~MUTEX_FLAGS);
|
|
}
|
|
|
|
static inline unsigned long __owner_flags(unsigned long owner)
|
|
{
|
|
return owner & MUTEX_FLAGS;
|
|
}
|
|
|
|
/*
|
|
* Trylock variant that retuns the owning task on failure.
|
|
*/
|
|
static inline struct task_struct *__mutex_trylock_or_owner(struct mutex *lock)
|
|
{
|
|
unsigned long owner, curr = (unsigned long)current;
|
|
|
|
owner = atomic_long_read(&lock->owner);
|
|
for (;;) { /* must loop, can race against a flag */
|
|
unsigned long old, flags = __owner_flags(owner);
|
|
unsigned long task = owner & ~MUTEX_FLAGS;
|
|
|
|
if (task) {
|
|
if (likely(task != curr))
|
|
break;
|
|
|
|
if (likely(!(flags & MUTEX_FLAG_PICKUP)))
|
|
break;
|
|
|
|
flags &= ~MUTEX_FLAG_PICKUP;
|
|
} else {
|
|
#ifdef CONFIG_DEBUG_MUTEXES
|
|
DEBUG_LOCKS_WARN_ON(flags & MUTEX_FLAG_PICKUP);
|
|
#endif
|
|
}
|
|
|
|
/*
|
|
* We set the HANDOFF bit, we must make sure it doesn't live
|
|
* past the point where we acquire it. This would be possible
|
|
* if we (accidentally) set the bit on an unlocked mutex.
|
|
*/
|
|
flags &= ~MUTEX_FLAG_HANDOFF;
|
|
|
|
old = atomic_long_cmpxchg_acquire(&lock->owner, owner, curr | flags);
|
|
if (old == owner)
|
|
return NULL;
|
|
|
|
owner = old;
|
|
}
|
|
|
|
return __owner_task(owner);
|
|
}
|
|
|
|
/*
|
|
* Actual trylock that will work on any unlocked state.
|
|
*/
|
|
static inline bool __mutex_trylock(struct mutex *lock)
|
|
{
|
|
return !__mutex_trylock_or_owner(lock);
|
|
}
|
|
|
|
#ifndef CONFIG_DEBUG_LOCK_ALLOC
|
|
/*
|
|
* Lockdep annotations are contained to the slow paths for simplicity.
|
|
* There is nothing that would stop spreading the lockdep annotations outwards
|
|
* except more code.
|
|
*/
|
|
|
|
/*
|
|
* Optimistic trylock that only works in the uncontended case. Make sure to
|
|
* follow with a __mutex_trylock() before failing.
|
|
*/
|
|
static __always_inline bool __mutex_trylock_fast(struct mutex *lock)
|
|
{
|
|
unsigned long curr = (unsigned long)current;
|
|
unsigned long zero = 0UL;
|
|
|
|
if (atomic_long_try_cmpxchg_acquire(&lock->owner, &zero, curr))
|
|
return true;
|
|
|
|
return false;
|
|
}
|
|
|
|
static __always_inline bool __mutex_unlock_fast(struct mutex *lock)
|
|
{
|
|
unsigned long curr = (unsigned long)current;
|
|
|
|
if (atomic_long_cmpxchg_release(&lock->owner, curr, 0UL) == curr)
|
|
return true;
|
|
|
|
return false;
|
|
}
|
|
#endif
|
|
|
|
static inline void __mutex_set_flag(struct mutex *lock, unsigned long flag)
|
|
{
|
|
atomic_long_or(flag, &lock->owner);
|
|
}
|
|
|
|
static inline void __mutex_clear_flag(struct mutex *lock, unsigned long flag)
|
|
{
|
|
atomic_long_andnot(flag, &lock->owner);
|
|
}
|
|
|
|
static inline bool __mutex_waiter_is_first(struct mutex *lock, struct mutex_waiter *waiter)
|
|
{
|
|
return list_first_entry(&lock->wait_list, struct mutex_waiter, list) == waiter;
|
|
}
|
|
|
|
/*
|
|
* Add @waiter to a given location in the lock wait_list and set the
|
|
* FLAG_WAITERS flag if it's the first waiter.
|
|
*/
|
|
static void
|
|
__mutex_add_waiter(struct mutex *lock, struct mutex_waiter *waiter,
|
|
struct list_head *list)
|
|
{
|
|
debug_mutex_add_waiter(lock, waiter, current);
|
|
|
|
list_add_tail(&waiter->list, list);
|
|
if (__mutex_waiter_is_first(lock, waiter))
|
|
__mutex_set_flag(lock, MUTEX_FLAG_WAITERS);
|
|
}
|
|
|
|
static void
|
|
__mutex_remove_waiter(struct mutex *lock, struct mutex_waiter *waiter)
|
|
{
|
|
list_del(&waiter->list);
|
|
if (likely(list_empty(&lock->wait_list)))
|
|
__mutex_clear_flag(lock, MUTEX_FLAGS);
|
|
|
|
debug_mutex_remove_waiter(lock, waiter, current);
|
|
}
|
|
|
|
/*
|
|
* Give up ownership to a specific task, when @task = NULL, this is equivalent
|
|
* to a regular unlock. Sets PICKUP on a handoff, clears HANDOF, preserves
|
|
* WAITERS. Provides RELEASE semantics like a regular unlock, the
|
|
* __mutex_trylock() provides a matching ACQUIRE semantics for the handoff.
|
|
*/
|
|
static void __mutex_handoff(struct mutex *lock, struct task_struct *task)
|
|
{
|
|
unsigned long owner = atomic_long_read(&lock->owner);
|
|
|
|
for (;;) {
|
|
unsigned long old, new;
|
|
|
|
#ifdef CONFIG_DEBUG_MUTEXES
|
|
DEBUG_LOCKS_WARN_ON(__owner_task(owner) != current);
|
|
DEBUG_LOCKS_WARN_ON(owner & MUTEX_FLAG_PICKUP);
|
|
#endif
|
|
|
|
new = (owner & MUTEX_FLAG_WAITERS);
|
|
new |= (unsigned long)task;
|
|
if (task)
|
|
new |= MUTEX_FLAG_PICKUP;
|
|
|
|
old = atomic_long_cmpxchg_release(&lock->owner, owner, new);
|
|
if (old == owner)
|
|
break;
|
|
|
|
owner = old;
|
|
}
|
|
}
|
|
|
|
#ifndef CONFIG_DEBUG_LOCK_ALLOC
|
|
/*
|
|
* We split the mutex lock/unlock logic into separate fastpath and
|
|
* slowpath functions, to reduce the register pressure on the fastpath.
|
|
* We also put the fastpath first in the kernel image, to make sure the
|
|
* branch is predicted by the CPU as default-untaken.
|
|
*/
|
|
static void __sched __mutex_lock_slowpath(struct mutex *lock);
|
|
|
|
/**
|
|
* mutex_lock - acquire the mutex
|
|
* @lock: the mutex to be acquired
|
|
*
|
|
* Lock the mutex exclusively for this task. If the mutex is not
|
|
* available right now, it will sleep until it can get it.
|
|
*
|
|
* The mutex must later on be released by the same task that
|
|
* acquired it. Recursive locking is not allowed. The task
|
|
* may not exit without first unlocking the mutex. Also, kernel
|
|
* memory where the mutex resides must not be freed with
|
|
* the mutex still locked. The mutex must first be initialized
|
|
* (or statically defined) before it can be locked. memset()-ing
|
|
* the mutex to 0 is not allowed.
|
|
*
|
|
* (The CONFIG_DEBUG_MUTEXES .config option turns on debugging
|
|
* checks that will enforce the restrictions and will also do
|
|
* deadlock debugging)
|
|
*
|
|
* This function is similar to (but not equivalent to) down().
|
|
*/
|
|
void __sched mutex_lock(struct mutex *lock)
|
|
{
|
|
might_sleep();
|
|
|
|
if (!__mutex_trylock_fast(lock))
|
|
__mutex_lock_slowpath(lock);
|
|
}
|
|
EXPORT_SYMBOL(mutex_lock);
|
|
#endif
|
|
|
|
/*
|
|
* Wait-Die:
|
|
* The newer transactions are killed when:
|
|
* It (the new transaction) makes a request for a lock being held
|
|
* by an older transaction.
|
|
*
|
|
* Wound-Wait:
|
|
* The newer transactions are wounded when:
|
|
* An older transaction makes a request for a lock being held by
|
|
* the newer transaction.
|
|
*/
|
|
|
|
/*
|
|
* Associate the ww_mutex @ww with the context @ww_ctx under which we acquired
|
|
* it.
|
|
*/
|
|
static __always_inline void
|
|
ww_mutex_lock_acquired(struct ww_mutex *ww, struct ww_acquire_ctx *ww_ctx)
|
|
{
|
|
#ifdef CONFIG_DEBUG_MUTEXES
|
|
/*
|
|
* If this WARN_ON triggers, you used ww_mutex_lock to acquire,
|
|
* but released with a normal mutex_unlock in this call.
|
|
*
|
|
* This should never happen, always use ww_mutex_unlock.
|
|
*/
|
|
DEBUG_LOCKS_WARN_ON(ww->ctx);
|
|
|
|
/*
|
|
* Not quite done after calling ww_acquire_done() ?
|
|
*/
|
|
DEBUG_LOCKS_WARN_ON(ww_ctx->done_acquire);
|
|
|
|
if (ww_ctx->contending_lock) {
|
|
/*
|
|
* After -EDEADLK you tried to
|
|
* acquire a different ww_mutex? Bad!
|
|
*/
|
|
DEBUG_LOCKS_WARN_ON(ww_ctx->contending_lock != ww);
|
|
|
|
/*
|
|
* You called ww_mutex_lock after receiving -EDEADLK,
|
|
* but 'forgot' to unlock everything else first?
|
|
*/
|
|
DEBUG_LOCKS_WARN_ON(ww_ctx->acquired > 0);
|
|
ww_ctx->contending_lock = NULL;
|
|
}
|
|
|
|
/*
|
|
* Naughty, using a different class will lead to undefined behavior!
|
|
*/
|
|
DEBUG_LOCKS_WARN_ON(ww_ctx->ww_class != ww->ww_class);
|
|
#endif
|
|
ww_ctx->acquired++;
|
|
ww->ctx = ww_ctx;
|
|
}
|
|
|
|
/*
|
|
* Determine if context @a is 'after' context @b. IOW, @a is a younger
|
|
* transaction than @b and depending on algorithm either needs to wait for
|
|
* @b or die.
|
|
*/
|
|
static inline bool __sched
|
|
__ww_ctx_stamp_after(struct ww_acquire_ctx *a, struct ww_acquire_ctx *b)
|
|
{
|
|
|
|
return (signed long)(a->stamp - b->stamp) > 0;
|
|
}
|
|
|
|
/*
|
|
* Wait-Die; wake a younger waiter context (when locks held) such that it can
|
|
* die.
|
|
*
|
|
* Among waiters with context, only the first one can have other locks acquired
|
|
* already (ctx->acquired > 0), because __ww_mutex_add_waiter() and
|
|
* __ww_mutex_check_kill() wake any but the earliest context.
|
|
*/
|
|
static bool __sched
|
|
__ww_mutex_die(struct mutex *lock, struct mutex_waiter *waiter,
|
|
struct ww_acquire_ctx *ww_ctx)
|
|
{
|
|
if (!ww_ctx->is_wait_die)
|
|
return false;
|
|
|
|
if (waiter->ww_ctx->acquired > 0 &&
|
|
__ww_ctx_stamp_after(waiter->ww_ctx, ww_ctx)) {
|
|
debug_mutex_wake_waiter(lock, waiter);
|
|
wake_up_process(waiter->task);
|
|
}
|
|
|
|
return true;
|
|
}
|
|
|
|
/*
|
|
* Wound-Wait; wound a younger @hold_ctx if it holds the lock.
|
|
*
|
|
* Wound the lock holder if there are waiters with older transactions than
|
|
* the lock holders. Even if multiple waiters may wound the lock holder,
|
|
* it's sufficient that only one does.
|
|
*/
|
|
static bool __ww_mutex_wound(struct mutex *lock,
|
|
struct ww_acquire_ctx *ww_ctx,
|
|
struct ww_acquire_ctx *hold_ctx)
|
|
{
|
|
struct task_struct *owner = __mutex_owner(lock);
|
|
|
|
lockdep_assert_held(&lock->wait_lock);
|
|
|
|
/*
|
|
* Possible through __ww_mutex_add_waiter() when we race with
|
|
* ww_mutex_set_context_fastpath(). In that case we'll get here again
|
|
* through __ww_mutex_check_waiters().
|
|
*/
|
|
if (!hold_ctx)
|
|
return false;
|
|
|
|
/*
|
|
* Can have !owner because of __mutex_unlock_slowpath(), but if owner,
|
|
* it cannot go away because we'll have FLAG_WAITERS set and hold
|
|
* wait_lock.
|
|
*/
|
|
if (!owner)
|
|
return false;
|
|
|
|
if (ww_ctx->acquired > 0 && __ww_ctx_stamp_after(hold_ctx, ww_ctx)) {
|
|
hold_ctx->wounded = 1;
|
|
|
|
/*
|
|
* wake_up_process() paired with set_current_state()
|
|
* inserts sufficient barriers to make sure @owner either sees
|
|
* it's wounded in __ww_mutex_check_kill() or has a
|
|
* wakeup pending to re-read the wounded state.
|
|
*/
|
|
if (owner != current)
|
|
wake_up_process(owner);
|
|
|
|
return true;
|
|
}
|
|
|
|
return false;
|
|
}
|
|
|
|
/*
|
|
* We just acquired @lock under @ww_ctx, if there are later contexts waiting
|
|
* behind us on the wait-list, check if they need to die, or wound us.
|
|
*
|
|
* See __ww_mutex_add_waiter() for the list-order construction; basically the
|
|
* list is ordered by stamp, smallest (oldest) first.
|
|
*
|
|
* This relies on never mixing wait-die/wound-wait on the same wait-list;
|
|
* which is currently ensured by that being a ww_class property.
|
|
*
|
|
* The current task must not be on the wait list.
|
|
*/
|
|
static void __sched
|
|
__ww_mutex_check_waiters(struct mutex *lock, struct ww_acquire_ctx *ww_ctx)
|
|
{
|
|
struct mutex_waiter *cur;
|
|
|
|
lockdep_assert_held(&lock->wait_lock);
|
|
|
|
list_for_each_entry(cur, &lock->wait_list, list) {
|
|
if (!cur->ww_ctx)
|
|
continue;
|
|
|
|
if (__ww_mutex_die(lock, cur, ww_ctx) ||
|
|
__ww_mutex_wound(lock, cur->ww_ctx, ww_ctx))
|
|
break;
|
|
}
|
|
}
|
|
|
|
/*
|
|
* After acquiring lock with fastpath, where we do not hold wait_lock, set ctx
|
|
* and wake up any waiters so they can recheck.
|
|
*/
|
|
static __always_inline void
|
|
ww_mutex_set_context_fastpath(struct ww_mutex *lock, struct ww_acquire_ctx *ctx)
|
|
{
|
|
ww_mutex_lock_acquired(lock, ctx);
|
|
|
|
/*
|
|
* The lock->ctx update should be visible on all cores before
|
|
* the WAITERS check is done, otherwise contended waiters might be
|
|
* missed. The contended waiters will either see ww_ctx == NULL
|
|
* and keep spinning, or it will acquire wait_lock, add itself
|
|
* to waiter list and sleep.
|
|
*/
|
|
smp_mb(); /* See comments above and below. */
|
|
|
|
/*
|
|
* [W] ww->ctx = ctx [W] MUTEX_FLAG_WAITERS
|
|
* MB MB
|
|
* [R] MUTEX_FLAG_WAITERS [R] ww->ctx
|
|
*
|
|
* The memory barrier above pairs with the memory barrier in
|
|
* __ww_mutex_add_waiter() and makes sure we either observe ww->ctx
|
|
* and/or !empty list.
|
|
*/
|
|
if (likely(!(atomic_long_read(&lock->base.owner) & MUTEX_FLAG_WAITERS)))
|
|
return;
|
|
|
|
/*
|
|
* Uh oh, we raced in fastpath, check if any of the waiters need to
|
|
* die or wound us.
|
|
*/
|
|
spin_lock(&lock->base.wait_lock);
|
|
__ww_mutex_check_waiters(&lock->base, ctx);
|
|
spin_unlock(&lock->base.wait_lock);
|
|
}
|
|
|
|
#ifdef CONFIG_MUTEX_SPIN_ON_OWNER
|
|
|
|
static inline
|
|
bool ww_mutex_spin_on_owner(struct mutex *lock, struct ww_acquire_ctx *ww_ctx,
|
|
struct mutex_waiter *waiter)
|
|
{
|
|
struct ww_mutex *ww;
|
|
|
|
ww = container_of(lock, struct ww_mutex, base);
|
|
|
|
/*
|
|
* If ww->ctx is set the contents are undefined, only
|
|
* by acquiring wait_lock there is a guarantee that
|
|
* they are not invalid when reading.
|
|
*
|
|
* As such, when deadlock detection needs to be
|
|
* performed the optimistic spinning cannot be done.
|
|
*
|
|
* Check this in every inner iteration because we may
|
|
* be racing against another thread's ww_mutex_lock.
|
|
*/
|
|
if (ww_ctx->acquired > 0 && READ_ONCE(ww->ctx))
|
|
return false;
|
|
|
|
/*
|
|
* If we aren't on the wait list yet, cancel the spin
|
|
* if there are waiters. We want to avoid stealing the
|
|
* lock from a waiter with an earlier stamp, since the
|
|
* other thread may already own a lock that we also
|
|
* need.
|
|
*/
|
|
if (!waiter && (atomic_long_read(&lock->owner) & MUTEX_FLAG_WAITERS))
|
|
return false;
|
|
|
|
/*
|
|
* Similarly, stop spinning if we are no longer the
|
|
* first waiter.
|
|
*/
|
|
if (waiter && !__mutex_waiter_is_first(lock, waiter))
|
|
return false;
|
|
|
|
return true;
|
|
}
|
|
|
|
/*
|
|
* Look out! "owner" is an entirely speculative pointer access and not
|
|
* reliable.
|
|
*
|
|
* "noinline" so that this function shows up on perf profiles.
|
|
*/
|
|
static noinline
|
|
bool mutex_spin_on_owner(struct mutex *lock, struct task_struct *owner,
|
|
struct ww_acquire_ctx *ww_ctx, struct mutex_waiter *waiter)
|
|
{
|
|
bool ret = true;
|
|
|
|
rcu_read_lock();
|
|
while (__mutex_owner(lock) == owner) {
|
|
/*
|
|
* Ensure we emit the owner->on_cpu, dereference _after_
|
|
* checking lock->owner still matches owner. If that fails,
|
|
* owner might point to freed memory. If it still matches,
|
|
* the rcu_read_lock() ensures the memory stays valid.
|
|
*/
|
|
barrier();
|
|
|
|
/*
|
|
* Use vcpu_is_preempted to detect lock holder preemption issue.
|
|
*/
|
|
if (!owner->on_cpu || need_resched() ||
|
|
vcpu_is_preempted(task_cpu(owner))) {
|
|
ret = false;
|
|
break;
|
|
}
|
|
|
|
if (ww_ctx && !ww_mutex_spin_on_owner(lock, ww_ctx, waiter)) {
|
|
ret = false;
|
|
break;
|
|
}
|
|
|
|
cpu_relax();
|
|
}
|
|
rcu_read_unlock();
|
|
|
|
return ret;
|
|
}
|
|
|
|
/*
|
|
* Initial check for entering the mutex spinning loop
|
|
*/
|
|
static inline int mutex_can_spin_on_owner(struct mutex *lock)
|
|
{
|
|
struct task_struct *owner;
|
|
int retval = 1;
|
|
|
|
if (need_resched())
|
|
return 0;
|
|
|
|
rcu_read_lock();
|
|
owner = __mutex_owner(lock);
|
|
|
|
/*
|
|
* As lock holder preemption issue, we both skip spinning if task is not
|
|
* on cpu or its cpu is preempted
|
|
*/
|
|
if (owner)
|
|
retval = owner->on_cpu && !vcpu_is_preempted(task_cpu(owner));
|
|
rcu_read_unlock();
|
|
|
|
/*
|
|
* If lock->owner is not set, the mutex has been released. Return true
|
|
* such that we'll trylock in the spin path, which is a faster option
|
|
* than the blocking slow path.
|
|
*/
|
|
return retval;
|
|
}
|
|
|
|
/*
|
|
* Optimistic spinning.
|
|
*
|
|
* We try to spin for acquisition when we find that the lock owner
|
|
* is currently running on a (different) CPU and while we don't
|
|
* need to reschedule. The rationale is that if the lock owner is
|
|
* running, it is likely to release the lock soon.
|
|
*
|
|
* The mutex spinners are queued up using MCS lock so that only one
|
|
* spinner can compete for the mutex. However, if mutex spinning isn't
|
|
* going to happen, there is no point in going through the lock/unlock
|
|
* overhead.
|
|
*
|
|
* Returns true when the lock was taken, otherwise false, indicating
|
|
* that we need to jump to the slowpath and sleep.
|
|
*
|
|
* The waiter flag is set to true if the spinner is a waiter in the wait
|
|
* queue. The waiter-spinner will spin on the lock directly and concurrently
|
|
* with the spinner at the head of the OSQ, if present, until the owner is
|
|
* changed to itself.
|
|
*/
|
|
static __always_inline bool
|
|
mutex_optimistic_spin(struct mutex *lock, struct ww_acquire_ctx *ww_ctx,
|
|
struct mutex_waiter *waiter)
|
|
{
|
|
if (!waiter) {
|
|
/*
|
|
* The purpose of the mutex_can_spin_on_owner() function is
|
|
* to eliminate the overhead of osq_lock() and osq_unlock()
|
|
* in case spinning isn't possible. As a waiter-spinner
|
|
* is not going to take OSQ lock anyway, there is no need
|
|
* to call mutex_can_spin_on_owner().
|
|
*/
|
|
if (!mutex_can_spin_on_owner(lock))
|
|
goto fail;
|
|
|
|
/*
|
|
* In order to avoid a stampede of mutex spinners trying to
|
|
* acquire the mutex all at once, the spinners need to take a
|
|
* MCS (queued) lock first before spinning on the owner field.
|
|
*/
|
|
if (!osq_lock(&lock->osq))
|
|
goto fail;
|
|
}
|
|
|
|
for (;;) {
|
|
struct task_struct *owner;
|
|
|
|
/* Try to acquire the mutex... */
|
|
owner = __mutex_trylock_or_owner(lock);
|
|
if (!owner)
|
|
break;
|
|
|
|
/*
|
|
* There's an owner, wait for it to either
|
|
* release the lock or go to sleep.
|
|
*/
|
|
if (!mutex_spin_on_owner(lock, owner, ww_ctx, waiter))
|
|
goto fail_unlock;
|
|
|
|
/*
|
|
* The cpu_relax() call is a compiler barrier which forces
|
|
* everything in this loop to be re-loaded. We don't need
|
|
* memory barriers as we'll eventually observe the right
|
|
* values at the cost of a few extra spins.
|
|
*/
|
|
cpu_relax();
|
|
|
|
/*
|
|
* On arm systems, we must slow down the waiter's repeated
|
|
* aquisition of spin_mlock and atomics on the lock count, or
|
|
* we risk starving out a thread attempting to release the
|
|
* mutex. The mutex slowpath release must take spin lock
|
|
* wait_lock. This spin lock can share a monitor with the
|
|
* other waiter atomics in the mutex data structure, so must
|
|
* take care to rate limit the waiters.
|
|
*/
|
|
udelay(1);
|
|
}
|
|
|
|
if (!waiter)
|
|
osq_unlock(&lock->osq);
|
|
|
|
return true;
|
|
|
|
|
|
fail_unlock:
|
|
if (!waiter)
|
|
osq_unlock(&lock->osq);
|
|
|
|
fail:
|
|
/*
|
|
* If we fell out of the spin path because of need_resched(),
|
|
* reschedule now, before we try-lock the mutex. This avoids getting
|
|
* scheduled out right after we obtained the mutex.
|
|
*/
|
|
if (need_resched()) {
|
|
/*
|
|
* We _should_ have TASK_RUNNING here, but just in case
|
|
* we do not, make it so, otherwise we might get stuck.
|
|
*/
|
|
__set_current_state(TASK_RUNNING);
|
|
schedule_preempt_disabled();
|
|
}
|
|
|
|
return false;
|
|
}
|
|
#else
|
|
static __always_inline bool
|
|
mutex_optimistic_spin(struct mutex *lock, struct ww_acquire_ctx *ww_ctx,
|
|
struct mutex_waiter *waiter)
|
|
{
|
|
return false;
|
|
}
|
|
#endif
|
|
|
|
static noinline void __sched __mutex_unlock_slowpath(struct mutex *lock, unsigned long ip);
|
|
|
|
/**
|
|
* mutex_unlock - release the mutex
|
|
* @lock: the mutex to be released
|
|
*
|
|
* Unlock a mutex that has been locked by this task previously.
|
|
*
|
|
* This function must not be used in interrupt context. Unlocking
|
|
* of a not locked mutex is not allowed.
|
|
*
|
|
* This function is similar to (but not equivalent to) up().
|
|
*/
|
|
void __sched mutex_unlock(struct mutex *lock)
|
|
{
|
|
#ifndef CONFIG_DEBUG_LOCK_ALLOC
|
|
if (__mutex_unlock_fast(lock))
|
|
return;
|
|
#endif
|
|
__mutex_unlock_slowpath(lock, _RET_IP_);
|
|
}
|
|
EXPORT_SYMBOL(mutex_unlock);
|
|
|
|
/**
|
|
* ww_mutex_unlock - release the w/w mutex
|
|
* @lock: the mutex to be released
|
|
*
|
|
* Unlock a mutex that has been locked by this task previously with any of the
|
|
* ww_mutex_lock* functions (with or without an acquire context). It is
|
|
* forbidden to release the locks after releasing the acquire context.
|
|
*
|
|
* This function must not be used in interrupt context. Unlocking
|
|
* of a unlocked mutex is not allowed.
|
|
*/
|
|
void __sched ww_mutex_unlock(struct ww_mutex *lock)
|
|
{
|
|
/*
|
|
* The unlocking fastpath is the 0->1 transition from 'locked'
|
|
* into 'unlocked' state:
|
|
*/
|
|
if (lock->ctx) {
|
|
#ifdef CONFIG_DEBUG_MUTEXES
|
|
DEBUG_LOCKS_WARN_ON(!lock->ctx->acquired);
|
|
#endif
|
|
if (lock->ctx->acquired > 0)
|
|
lock->ctx->acquired--;
|
|
lock->ctx = NULL;
|
|
}
|
|
|
|
mutex_unlock(&lock->base);
|
|
}
|
|
EXPORT_SYMBOL(ww_mutex_unlock);
|
|
|
|
|
|
static __always_inline int __sched
|
|
__ww_mutex_kill(struct mutex *lock, struct ww_acquire_ctx *ww_ctx)
|
|
{
|
|
if (ww_ctx->acquired > 0) {
|
|
#ifdef CONFIG_DEBUG_MUTEXES
|
|
struct ww_mutex *ww;
|
|
|
|
ww = container_of(lock, struct ww_mutex, base);
|
|
DEBUG_LOCKS_WARN_ON(ww_ctx->contending_lock);
|
|
ww_ctx->contending_lock = ww;
|
|
#endif
|
|
return -EDEADLK;
|
|
}
|
|
|
|
return 0;
|
|
}
|
|
|
|
|
|
/*
|
|
* Check the wound condition for the current lock acquire.
|
|
*
|
|
* Wound-Wait: If we're wounded, kill ourself.
|
|
*
|
|
* Wait-Die: If we're trying to acquire a lock already held by an older
|
|
* context, kill ourselves.
|
|
*
|
|
* Since __ww_mutex_add_waiter() orders the wait-list on stamp, we only have to
|
|
* look at waiters before us in the wait-list.
|
|
*/
|
|
static inline int __sched
|
|
__ww_mutex_check_kill(struct mutex *lock, struct mutex_waiter *waiter,
|
|
struct ww_acquire_ctx *ctx)
|
|
{
|
|
struct ww_mutex *ww = container_of(lock, struct ww_mutex, base);
|
|
struct ww_acquire_ctx *hold_ctx = READ_ONCE(ww->ctx);
|
|
struct mutex_waiter *cur;
|
|
|
|
if (ctx->acquired == 0)
|
|
return 0;
|
|
|
|
if (!ctx->is_wait_die) {
|
|
if (ctx->wounded)
|
|
return __ww_mutex_kill(lock, ctx);
|
|
|
|
return 0;
|
|
}
|
|
|
|
if (hold_ctx && __ww_ctx_stamp_after(ctx, hold_ctx))
|
|
return __ww_mutex_kill(lock, ctx);
|
|
|
|
/*
|
|
* If there is a waiter in front of us that has a context, then its
|
|
* stamp is earlier than ours and we must kill ourself.
|
|
*/
|
|
cur = waiter;
|
|
list_for_each_entry_continue_reverse(cur, &lock->wait_list, list) {
|
|
if (!cur->ww_ctx)
|
|
continue;
|
|
|
|
return __ww_mutex_kill(lock, ctx);
|
|
}
|
|
|
|
return 0;
|
|
}
|
|
|
|
/*
|
|
* Add @waiter to the wait-list, keep the wait-list ordered by stamp, smallest
|
|
* first. Such that older contexts are preferred to acquire the lock over
|
|
* younger contexts.
|
|
*
|
|
* Waiters without context are interspersed in FIFO order.
|
|
*
|
|
* Furthermore, for Wait-Die kill ourself immediately when possible (there are
|
|
* older contexts already waiting) to avoid unnecessary waiting and for
|
|
* Wound-Wait ensure we wound the owning context when it is younger.
|
|
*/
|
|
static inline int __sched
|
|
__ww_mutex_add_waiter(struct mutex_waiter *waiter,
|
|
struct mutex *lock,
|
|
struct ww_acquire_ctx *ww_ctx)
|
|
{
|
|
struct mutex_waiter *cur;
|
|
struct list_head *pos;
|
|
bool is_wait_die;
|
|
|
|
if (!ww_ctx) {
|
|
__mutex_add_waiter(lock, waiter, &lock->wait_list);
|
|
return 0;
|
|
}
|
|
|
|
is_wait_die = ww_ctx->is_wait_die;
|
|
|
|
/*
|
|
* Add the waiter before the first waiter with a higher stamp.
|
|
* Waiters without a context are skipped to avoid starving
|
|
* them. Wait-Die waiters may die here. Wound-Wait waiters
|
|
* never die here, but they are sorted in stamp order and
|
|
* may wound the lock holder.
|
|
*/
|
|
pos = &lock->wait_list;
|
|
list_for_each_entry_reverse(cur, &lock->wait_list, list) {
|
|
if (!cur->ww_ctx)
|
|
continue;
|
|
|
|
if (__ww_ctx_stamp_after(ww_ctx, cur->ww_ctx)) {
|
|
/*
|
|
* Wait-Die: if we find an older context waiting, there
|
|
* is no point in queueing behind it, as we'd have to
|
|
* die the moment it would acquire the lock.
|
|
*/
|
|
if (is_wait_die) {
|
|
int ret = __ww_mutex_kill(lock, ww_ctx);
|
|
|
|
if (ret)
|
|
return ret;
|
|
}
|
|
|
|
break;
|
|
}
|
|
|
|
pos = &cur->list;
|
|
|
|
/* Wait-Die: ensure younger waiters die. */
|
|
__ww_mutex_die(lock, cur, ww_ctx);
|
|
}
|
|
|
|
__mutex_add_waiter(lock, waiter, pos);
|
|
|
|
/*
|
|
* Wound-Wait: if we're blocking on a mutex owned by a younger context,
|
|
* wound that such that we might proceed.
|
|
*/
|
|
if (!is_wait_die) {
|
|
struct ww_mutex *ww = container_of(lock, struct ww_mutex, base);
|
|
|
|
/*
|
|
* See ww_mutex_set_context_fastpath(). Orders setting
|
|
* MUTEX_FLAG_WAITERS vs the ww->ctx load,
|
|
* such that either we or the fastpath will wound @ww->ctx.
|
|
*/
|
|
smp_mb();
|
|
__ww_mutex_wound(lock, ww_ctx, ww->ctx);
|
|
}
|
|
|
|
return 0;
|
|
}
|
|
|
|
/*
|
|
* Lock a mutex (possibly interruptible), slowpath:
|
|
*/
|
|
static __always_inline int __sched
|
|
__mutex_lock_common(struct mutex *lock, long state, unsigned int subclass,
|
|
struct lockdep_map *nest_lock, unsigned long ip,
|
|
struct ww_acquire_ctx *ww_ctx, const bool use_ww_ctx)
|
|
{
|
|
struct mutex_waiter waiter;
|
|
struct ww_mutex *ww;
|
|
int ret;
|
|
|
|
if (!use_ww_ctx)
|
|
ww_ctx = NULL;
|
|
|
|
might_sleep();
|
|
|
|
ww = container_of(lock, struct ww_mutex, base);
|
|
if (ww_ctx) {
|
|
if (unlikely(ww_ctx == READ_ONCE(ww->ctx)))
|
|
return -EALREADY;
|
|
|
|
/*
|
|
* Reset the wounded flag after a kill. No other process can
|
|
* race and wound us here since they can't have a valid owner
|
|
* pointer if we don't have any locks held.
|
|
*/
|
|
if (ww_ctx->acquired == 0)
|
|
ww_ctx->wounded = 0;
|
|
}
|
|
|
|
preempt_disable();
|
|
mutex_acquire_nest(&lock->dep_map, subclass, 0, nest_lock, ip);
|
|
|
|
if (__mutex_trylock(lock) ||
|
|
mutex_optimistic_spin(lock, ww_ctx, NULL)) {
|
|
/* got the lock, yay! */
|
|
lock_acquired(&lock->dep_map, ip);
|
|
if (ww_ctx)
|
|
ww_mutex_set_context_fastpath(ww, ww_ctx);
|
|
preempt_enable();
|
|
return 0;
|
|
}
|
|
|
|
spin_lock(&lock->wait_lock);
|
|
/*
|
|
* After waiting to acquire the wait_lock, try again.
|
|
*/
|
|
if (__mutex_trylock(lock)) {
|
|
if (ww_ctx)
|
|
__ww_mutex_check_waiters(lock, ww_ctx);
|
|
|
|
goto skip_wait;
|
|
}
|
|
|
|
debug_mutex_lock_common(lock, &waiter);
|
|
|
|
lock_contended(&lock->dep_map, ip);
|
|
|
|
if (!use_ww_ctx) {
|
|
/* add waiting tasks to the end of the waitqueue (FIFO): */
|
|
__mutex_add_waiter(lock, &waiter, &lock->wait_list);
|
|
|
|
|
|
#ifdef CONFIG_DEBUG_MUTEXES
|
|
waiter.ww_ctx = MUTEX_POISON_WW_CTX;
|
|
#endif
|
|
} else {
|
|
/*
|
|
* Add in stamp order, waking up waiters that must kill
|
|
* themselves.
|
|
*/
|
|
ret = __ww_mutex_add_waiter(&waiter, lock, ww_ctx);
|
|
if (ret)
|
|
goto err_early_kill;
|
|
|
|
waiter.ww_ctx = ww_ctx;
|
|
}
|
|
|
|
waiter.task = current;
|
|
|
|
set_current_state(state);
|
|
for (;;) {
|
|
bool first;
|
|
|
|
/*
|
|
* Once we hold wait_lock, we're serialized against
|
|
* mutex_unlock() handing the lock off to us, do a trylock
|
|
* before testing the error conditions to make sure we pick up
|
|
* the handoff.
|
|
*/
|
|
if (__mutex_trylock(lock))
|
|
goto acquired;
|
|
|
|
/*
|
|
* Check for signals and kill conditions while holding
|
|
* wait_lock. This ensures the lock cancellation is ordered
|
|
* against mutex_unlock() and wake-ups do not go missing.
|
|
*/
|
|
if (unlikely(signal_pending_state(state, current))) {
|
|
ret = -EINTR;
|
|
goto err;
|
|
}
|
|
|
|
if (ww_ctx) {
|
|
ret = __ww_mutex_check_kill(lock, &waiter, ww_ctx);
|
|
if (ret)
|
|
goto err;
|
|
}
|
|
|
|
spin_unlock(&lock->wait_lock);
|
|
schedule_preempt_disabled();
|
|
|
|
first = __mutex_waiter_is_first(lock, &waiter);
|
|
if (first)
|
|
__mutex_set_flag(lock, MUTEX_FLAG_HANDOFF);
|
|
|
|
set_current_state(state);
|
|
/*
|
|
* Here we order against unlock; we must either see it change
|
|
* state back to RUNNING and fall through the next schedule(),
|
|
* or we must see its unlock and acquire.
|
|
*/
|
|
if (__mutex_trylock(lock) ||
|
|
(first && mutex_optimistic_spin(lock, ww_ctx, &waiter)))
|
|
break;
|
|
|
|
spin_lock(&lock->wait_lock);
|
|
}
|
|
spin_lock(&lock->wait_lock);
|
|
acquired:
|
|
__set_current_state(TASK_RUNNING);
|
|
|
|
if (ww_ctx) {
|
|
/*
|
|
* Wound-Wait; we stole the lock (!first_waiter), check the
|
|
* waiters as anyone might want to wound us.
|
|
*/
|
|
if (!ww_ctx->is_wait_die &&
|
|
!__mutex_waiter_is_first(lock, &waiter))
|
|
__ww_mutex_check_waiters(lock, ww_ctx);
|
|
}
|
|
|
|
__mutex_remove_waiter(lock, &waiter);
|
|
|
|
debug_mutex_free_waiter(&waiter);
|
|
|
|
skip_wait:
|
|
/* got the lock - cleanup and rejoice! */
|
|
lock_acquired(&lock->dep_map, ip);
|
|
|
|
if (ww_ctx)
|
|
ww_mutex_lock_acquired(ww, ww_ctx);
|
|
|
|
spin_unlock(&lock->wait_lock);
|
|
preempt_enable();
|
|
return 0;
|
|
|
|
err:
|
|
__set_current_state(TASK_RUNNING);
|
|
__mutex_remove_waiter(lock, &waiter);
|
|
err_early_kill:
|
|
spin_unlock(&lock->wait_lock);
|
|
debug_mutex_free_waiter(&waiter);
|
|
mutex_release(&lock->dep_map, 1, ip);
|
|
preempt_enable();
|
|
return ret;
|
|
}
|
|
|
|
static int __sched
|
|
__mutex_lock(struct mutex *lock, long state, unsigned int subclass,
|
|
struct lockdep_map *nest_lock, unsigned long ip)
|
|
{
|
|
return __mutex_lock_common(lock, state, subclass, nest_lock, ip, NULL, false);
|
|
}
|
|
|
|
static int __sched
|
|
__ww_mutex_lock(struct mutex *lock, long state, unsigned int subclass,
|
|
struct lockdep_map *nest_lock, unsigned long ip,
|
|
struct ww_acquire_ctx *ww_ctx)
|
|
{
|
|
return __mutex_lock_common(lock, state, subclass, nest_lock, ip, ww_ctx, true);
|
|
}
|
|
|
|
#ifdef CONFIG_DEBUG_LOCK_ALLOC
|
|
void __sched
|
|
mutex_lock_nested(struct mutex *lock, unsigned int subclass)
|
|
{
|
|
__mutex_lock(lock, TASK_UNINTERRUPTIBLE, subclass, NULL, _RET_IP_);
|
|
}
|
|
|
|
EXPORT_SYMBOL_GPL(mutex_lock_nested);
|
|
|
|
void __sched
|
|
_mutex_lock_nest_lock(struct mutex *lock, struct lockdep_map *nest)
|
|
{
|
|
__mutex_lock(lock, TASK_UNINTERRUPTIBLE, 0, nest, _RET_IP_);
|
|
}
|
|
EXPORT_SYMBOL_GPL(_mutex_lock_nest_lock);
|
|
|
|
int __sched
|
|
mutex_lock_killable_nested(struct mutex *lock, unsigned int subclass)
|
|
{
|
|
return __mutex_lock(lock, TASK_KILLABLE, subclass, NULL, _RET_IP_);
|
|
}
|
|
EXPORT_SYMBOL_GPL(mutex_lock_killable_nested);
|
|
|
|
int __sched
|
|
mutex_lock_interruptible_nested(struct mutex *lock, unsigned int subclass)
|
|
{
|
|
return __mutex_lock(lock, TASK_INTERRUPTIBLE, subclass, NULL, _RET_IP_);
|
|
}
|
|
EXPORT_SYMBOL_GPL(mutex_lock_interruptible_nested);
|
|
|
|
void __sched
|
|
mutex_lock_io_nested(struct mutex *lock, unsigned int subclass)
|
|
{
|
|
int token;
|
|
|
|
might_sleep();
|
|
|
|
token = io_schedule_prepare();
|
|
__mutex_lock_common(lock, TASK_UNINTERRUPTIBLE,
|
|
subclass, NULL, _RET_IP_, NULL, 0);
|
|
io_schedule_finish(token);
|
|
}
|
|
EXPORT_SYMBOL_GPL(mutex_lock_io_nested);
|
|
|
|
static inline int
|
|
ww_mutex_deadlock_injection(struct ww_mutex *lock, struct ww_acquire_ctx *ctx)
|
|
{
|
|
#ifdef CONFIG_DEBUG_WW_MUTEX_SLOWPATH
|
|
unsigned tmp;
|
|
|
|
if (ctx->deadlock_inject_countdown-- == 0) {
|
|
tmp = ctx->deadlock_inject_interval;
|
|
if (tmp > UINT_MAX/4)
|
|
tmp = UINT_MAX;
|
|
else
|
|
tmp = tmp*2 + tmp + tmp/2;
|
|
|
|
ctx->deadlock_inject_interval = tmp;
|
|
ctx->deadlock_inject_countdown = tmp;
|
|
ctx->contending_lock = lock;
|
|
|
|
ww_mutex_unlock(lock);
|
|
|
|
return -EDEADLK;
|
|
}
|
|
#endif
|
|
|
|
return 0;
|
|
}
|
|
|
|
int __sched
|
|
ww_mutex_lock(struct ww_mutex *lock, struct ww_acquire_ctx *ctx)
|
|
{
|
|
int ret;
|
|
|
|
might_sleep();
|
|
ret = __ww_mutex_lock(&lock->base, TASK_UNINTERRUPTIBLE,
|
|
0, ctx ? &ctx->dep_map : NULL, _RET_IP_,
|
|
ctx);
|
|
if (!ret && ctx && ctx->acquired > 1)
|
|
return ww_mutex_deadlock_injection(lock, ctx);
|
|
|
|
return ret;
|
|
}
|
|
EXPORT_SYMBOL_GPL(ww_mutex_lock);
|
|
|
|
int __sched
|
|
ww_mutex_lock_interruptible(struct ww_mutex *lock, struct ww_acquire_ctx *ctx)
|
|
{
|
|
int ret;
|
|
|
|
might_sleep();
|
|
ret = __ww_mutex_lock(&lock->base, TASK_INTERRUPTIBLE,
|
|
0, ctx ? &ctx->dep_map : NULL, _RET_IP_,
|
|
ctx);
|
|
|
|
if (!ret && ctx && ctx->acquired > 1)
|
|
return ww_mutex_deadlock_injection(lock, ctx);
|
|
|
|
return ret;
|
|
}
|
|
EXPORT_SYMBOL_GPL(ww_mutex_lock_interruptible);
|
|
|
|
#endif
|
|
|
|
/*
|
|
* Release the lock, slowpath:
|
|
*/
|
|
static noinline void __sched __mutex_unlock_slowpath(struct mutex *lock, unsigned long ip)
|
|
{
|
|
struct task_struct *next = NULL;
|
|
DEFINE_WAKE_Q(wake_q);
|
|
unsigned long owner;
|
|
|
|
mutex_release(&lock->dep_map, 1, ip);
|
|
|
|
/*
|
|
* Release the lock before (potentially) taking the spinlock such that
|
|
* other contenders can get on with things ASAP.
|
|
*
|
|
* Except when HANDOFF, in that case we must not clear the owner field,
|
|
* but instead set it to the top waiter.
|
|
*/
|
|
owner = atomic_long_read(&lock->owner);
|
|
for (;;) {
|
|
unsigned long old;
|
|
|
|
#ifdef CONFIG_DEBUG_MUTEXES
|
|
DEBUG_LOCKS_WARN_ON(__owner_task(owner) != current);
|
|
DEBUG_LOCKS_WARN_ON(owner & MUTEX_FLAG_PICKUP);
|
|
#endif
|
|
|
|
if (owner & MUTEX_FLAG_HANDOFF)
|
|
break;
|
|
|
|
old = atomic_long_cmpxchg_release(&lock->owner, owner,
|
|
__owner_flags(owner));
|
|
if (old == owner) {
|
|
if (owner & MUTEX_FLAG_WAITERS)
|
|
break;
|
|
|
|
return;
|
|
}
|
|
|
|
owner = old;
|
|
}
|
|
|
|
spin_lock(&lock->wait_lock);
|
|
debug_mutex_unlock(lock);
|
|
if (!list_empty(&lock->wait_list)) {
|
|
/* get the first entry from the wait-list: */
|
|
struct mutex_waiter *waiter =
|
|
list_first_entry(&lock->wait_list,
|
|
struct mutex_waiter, list);
|
|
|
|
next = waiter->task;
|
|
|
|
debug_mutex_wake_waiter(lock, waiter);
|
|
wake_q_add(&wake_q, next);
|
|
}
|
|
|
|
if (owner & MUTEX_FLAG_HANDOFF)
|
|
__mutex_handoff(lock, next);
|
|
|
|
spin_unlock(&lock->wait_lock);
|
|
|
|
wake_up_q(&wake_q);
|
|
}
|
|
|
|
#ifndef CONFIG_DEBUG_LOCK_ALLOC
|
|
/*
|
|
* Here come the less common (and hence less performance-critical) APIs:
|
|
* mutex_lock_interruptible() and mutex_trylock().
|
|
*/
|
|
static noinline int __sched
|
|
__mutex_lock_killable_slowpath(struct mutex *lock);
|
|
|
|
static noinline int __sched
|
|
__mutex_lock_interruptible_slowpath(struct mutex *lock);
|
|
|
|
/**
|
|
* mutex_lock_interruptible() - Acquire the mutex, interruptible by signals.
|
|
* @lock: The mutex to be acquired.
|
|
*
|
|
* Lock the mutex like mutex_lock(). If a signal is delivered while the
|
|
* process is sleeping, this function will return without acquiring the
|
|
* mutex.
|
|
*
|
|
* Context: Process context.
|
|
* Return: 0 if the lock was successfully acquired or %-EINTR if a
|
|
* signal arrived.
|
|
*/
|
|
int __sched mutex_lock_interruptible(struct mutex *lock)
|
|
{
|
|
might_sleep();
|
|
|
|
if (__mutex_trylock_fast(lock))
|
|
return 0;
|
|
|
|
return __mutex_lock_interruptible_slowpath(lock);
|
|
}
|
|
|
|
EXPORT_SYMBOL(mutex_lock_interruptible);
|
|
|
|
/**
|
|
* mutex_lock_killable() - Acquire the mutex, interruptible by fatal signals.
|
|
* @lock: The mutex to be acquired.
|
|
*
|
|
* Lock the mutex like mutex_lock(). If a signal which will be fatal to
|
|
* the current process is delivered while the process is sleeping, this
|
|
* function will return without acquiring the mutex.
|
|
*
|
|
* Context: Process context.
|
|
* Return: 0 if the lock was successfully acquired or %-EINTR if a
|
|
* fatal signal arrived.
|
|
*/
|
|
int __sched mutex_lock_killable(struct mutex *lock)
|
|
{
|
|
might_sleep();
|
|
|
|
if (__mutex_trylock_fast(lock))
|
|
return 0;
|
|
|
|
return __mutex_lock_killable_slowpath(lock);
|
|
}
|
|
EXPORT_SYMBOL(mutex_lock_killable);
|
|
|
|
/**
|
|
* mutex_lock_io() - Acquire the mutex and mark the process as waiting for I/O
|
|
* @lock: The mutex to be acquired.
|
|
*
|
|
* Lock the mutex like mutex_lock(). While the task is waiting for this
|
|
* mutex, it will be accounted as being in the IO wait state by the
|
|
* scheduler.
|
|
*
|
|
* Context: Process context.
|
|
*/
|
|
void __sched mutex_lock_io(struct mutex *lock)
|
|
{
|
|
int token;
|
|
|
|
token = io_schedule_prepare();
|
|
mutex_lock(lock);
|
|
io_schedule_finish(token);
|
|
}
|
|
EXPORT_SYMBOL_GPL(mutex_lock_io);
|
|
|
|
static noinline void __sched
|
|
__mutex_lock_slowpath(struct mutex *lock)
|
|
{
|
|
__mutex_lock(lock, TASK_UNINTERRUPTIBLE, 0, NULL, _RET_IP_);
|
|
}
|
|
|
|
static noinline int __sched
|
|
__mutex_lock_killable_slowpath(struct mutex *lock)
|
|
{
|
|
return __mutex_lock(lock, TASK_KILLABLE, 0, NULL, _RET_IP_);
|
|
}
|
|
|
|
static noinline int __sched
|
|
__mutex_lock_interruptible_slowpath(struct mutex *lock)
|
|
{
|
|
return __mutex_lock(lock, TASK_INTERRUPTIBLE, 0, NULL, _RET_IP_);
|
|
}
|
|
|
|
static noinline int __sched
|
|
__ww_mutex_lock_slowpath(struct ww_mutex *lock, struct ww_acquire_ctx *ctx)
|
|
{
|
|
return __ww_mutex_lock(&lock->base, TASK_UNINTERRUPTIBLE, 0, NULL,
|
|
_RET_IP_, ctx);
|
|
}
|
|
|
|
static noinline int __sched
|
|
__ww_mutex_lock_interruptible_slowpath(struct ww_mutex *lock,
|
|
struct ww_acquire_ctx *ctx)
|
|
{
|
|
return __ww_mutex_lock(&lock->base, TASK_INTERRUPTIBLE, 0, NULL,
|
|
_RET_IP_, ctx);
|
|
}
|
|
|
|
#endif
|
|
|
|
/**
|
|
* mutex_trylock - try to acquire the mutex, without waiting
|
|
* @lock: the mutex to be acquired
|
|
*
|
|
* Try to acquire the mutex atomically. Returns 1 if the mutex
|
|
* has been acquired successfully, and 0 on contention.
|
|
*
|
|
* NOTE: this function follows the spin_trylock() convention, so
|
|
* it is negated from the down_trylock() return values! Be careful
|
|
* about this when converting semaphore users to mutexes.
|
|
*
|
|
* This function must not be used in interrupt context. The
|
|
* mutex must be released by the same task that acquired it.
|
|
*/
|
|
int __sched mutex_trylock(struct mutex *lock)
|
|
{
|
|
bool locked = __mutex_trylock(lock);
|
|
|
|
if (locked)
|
|
mutex_acquire(&lock->dep_map, 0, 1, _RET_IP_);
|
|
|
|
return locked;
|
|
}
|
|
EXPORT_SYMBOL(mutex_trylock);
|
|
|
|
#ifndef CONFIG_DEBUG_LOCK_ALLOC
|
|
int __sched
|
|
ww_mutex_lock(struct ww_mutex *lock, struct ww_acquire_ctx *ctx)
|
|
{
|
|
might_sleep();
|
|
|
|
if (__mutex_trylock_fast(&lock->base)) {
|
|
if (ctx)
|
|
ww_mutex_set_context_fastpath(lock, ctx);
|
|
return 0;
|
|
}
|
|
|
|
return __ww_mutex_lock_slowpath(lock, ctx);
|
|
}
|
|
EXPORT_SYMBOL(ww_mutex_lock);
|
|
|
|
int __sched
|
|
ww_mutex_lock_interruptible(struct ww_mutex *lock, struct ww_acquire_ctx *ctx)
|
|
{
|
|
might_sleep();
|
|
|
|
if (__mutex_trylock_fast(&lock->base)) {
|
|
if (ctx)
|
|
ww_mutex_set_context_fastpath(lock, ctx);
|
|
return 0;
|
|
}
|
|
|
|
return __ww_mutex_lock_interruptible_slowpath(lock, ctx);
|
|
}
|
|
EXPORT_SYMBOL(ww_mutex_lock_interruptible);
|
|
|
|
#endif
|
|
|
|
/**
|
|
* atomic_dec_and_mutex_lock - return holding mutex if we dec to 0
|
|
* @cnt: the atomic which we are to dec
|
|
* @lock: the mutex to return holding if we dec to 0
|
|
*
|
|
* return true and hold lock if we dec to 0, return false otherwise
|
|
*/
|
|
int atomic_dec_and_mutex_lock(atomic_t *cnt, struct mutex *lock)
|
|
{
|
|
/* dec if we can't possibly hit 0 */
|
|
if (atomic_add_unless(cnt, -1, 1))
|
|
return 0;
|
|
/* we might hit 0, so take the lock */
|
|
mutex_lock(lock);
|
|
if (!atomic_dec_and_test(cnt)) {
|
|
/* when we actually did the dec, we didn't hit 0 */
|
|
mutex_unlock(lock);
|
|
return 0;
|
|
}
|
|
/* we hit 0, and we hold the lock */
|
|
return 1;
|
|
}
|
|
EXPORT_SYMBOL(atomic_dec_and_mutex_lock);
|