tjh.dev / kernel
Linux kernel mirror (for testing) git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
kernel os linux
fork atom

percpu-refcount: require percpu_ref to be exited explicitly

Currently, a percpu_ref undoes percpu_ref_init() automatically by
freeing the allocated percpu area when the percpu_ref is killed.
While seemingly convenient, this has the following niggles.

* It's impossible to re-init a released reference counter without
going through re-allocation.

* In the similar vein, it's impossible to initialize a percpu_ref
count with static percpu variables.

* We need and have an explicit destructor anyway for failure paths -
percpu_ref_cancel_init().

This patch removes the automatic percpu counter freeing in
percpu_ref_kill_rcu() and repurposes percpu_ref_cancel_init() into a
generic destructor now named percpu_ref_exit(). percpu_ref_destroy()
is considered but it gets confusing with percpu_ref_kill() while
"exit" clearly indicates that it's the counterpart of
percpu_ref_init().

All percpu_ref_cancel_init() users are updated to invoke
percpu_ref_exit() instead and explicit percpu_ref_exit() calls are
added to the destruction path of all percpu_ref users.

Signed-off-by: Tejun Heo <tj@kernel.org>
Acked-by: Benjamin LaHaise <bcrl@kvack.org>
Cc: Kent Overstreet <kmo@daterainc.com>
Cc: Christoph Lameter <cl@linux-foundation.org>
Cc: Benjamin LaHaise <bcrl@kvack.org>
Cc: Nicholas A. Bellinger <nab@linux-iscsi.org>
Cc: Li Zefan <lizefan@huawei.com>

Tejun Heo 9a1049da 7d742075

+24 -33
+3 -1
drivers/target/target_core_tpg.c
··· 825 825 826 826 ret = core_dev_export(dev, tpg, lun); 827 827 if (ret < 0) { 828 - percpu_ref_cancel_init(&lun->lun_ref); 828 + percpu_ref_exit(&lun->lun_ref); 829 829 return ret; 830 830 } 831 831 ··· 879 879 spin_lock(&tpg->tpg_lun_lock); 880 880 lun->lun_status = TRANSPORT_LUN_STATUS_FREE; 881 881 spin_unlock(&tpg->tpg_lun_lock); 882 + 883 + percpu_ref_exit(&lun->lun_ref); 882 884 883 885 return 0; 884 886 }
+4 -2
fs/aio.c
··· 506 506 507 507 aio_free_ring(ctx); 508 508 free_percpu(ctx->cpu); 509 + percpu_ref_exit(&ctx->reqs); 510 + percpu_ref_exit(&ctx->users); 509 511 kmem_cache_free(kioctx_cachep, ctx); 510 512 } 511 513 ··· 717 715 err: 718 716 mutex_unlock(&ctx->ring_lock); 719 717 free_percpu(ctx->cpu); 720 - percpu_ref_cancel_init(&ctx->reqs); 721 - percpu_ref_cancel_init(&ctx->users); 718 + percpu_ref_exit(&ctx->reqs); 719 + percpu_ref_exit(&ctx->users); 722 720 kmem_cache_free(kioctx_cachep, ctx); 723 721 pr_debug("error allocating ioctx %d\n", err); 724 722 return ERR_PTR(err);
+2 -4
include/linux/percpu-refcount.h
··· 57 57 atomic_t count; 58 58 /* 59 59 * The low bit of the pointer indicates whether the ref is in percpu 60 - * mode; if set, then get/put will manipulate the atomic_t (this is a 61 - * hack because we need to keep the pointer around for 62 - * percpu_ref_kill_rcu()) 60 + * mode; if set, then get/put will manipulate the atomic_t. 63 61 */ 64 62 unsigned long pcpu_count_ptr; 65 63 percpu_ref_func_t *release; ··· 67 69 68 70 int __must_check percpu_ref_init(struct percpu_ref *ref, 69 71 percpu_ref_func_t *release); 70 - void percpu_ref_cancel_init(struct percpu_ref *ref); 72 + void percpu_ref_exit(struct percpu_ref *ref); 71 73 void percpu_ref_kill_and_confirm(struct percpu_ref *ref, 72 74 percpu_ref_func_t *confirm_kill); 73 75
+5 -3
kernel/cgroup.c
··· 1638 1638 exit_root_id: 1639 1639 cgroup_exit_root_id(root); 1640 1640 cancel_ref: 1641 - percpu_ref_cancel_init(&root_cgrp->self.refcnt); 1641 + percpu_ref_exit(&root_cgrp->self.refcnt); 1642 1642 out: 1643 1643 free_cgrp_cset_links(&tmp_links); 1644 1644 return ret; ··· 4133 4133 container_of(work, struct cgroup_subsys_state, destroy_work); 4134 4134 struct cgroup *cgrp = css->cgroup; 4135 4135 4136 + percpu_ref_exit(&css->refcnt); 4137 + 4136 4138 if (css->ss) { 4137 4139 /* css free path */ 4138 4140 if (css->parent) ··· 4332 4330 err_free_id: 4333 4331 cgroup_idr_remove(&ss->css_idr, css->id); 4334 4332 err_free_percpu_ref: 4335 - percpu_ref_cancel_init(&css->refcnt); 4333 + percpu_ref_exit(&css->refcnt); 4336 4334 err_free_css: 4337 4335 call_rcu(&css->rcu_head, css_free_rcu_fn); 4338 4336 return err; ··· 4443 4441 out_free_id: 4444 4442 cgroup_idr_remove(&root->cgroup_idr, cgrp->id); 4445 4443 out_cancel_ref: 4446 - percpu_ref_cancel_init(&cgrp->self.refcnt); 4444 + percpu_ref_exit(&cgrp->self.refcnt); 4447 4445 out_free_cgrp: 4448 4446 kfree(cgrp); 4449 4447 out_unlock:
+10 -23
lib/percpu-refcount.c
··· 61 61 EXPORT_SYMBOL_GPL(percpu_ref_init); 62 62 63 63 /** 64 - * percpu_ref_cancel_init - cancel percpu_ref_init() 65 - * @ref: percpu_ref to cancel init for 64 + * percpu_ref_exit - undo percpu_ref_init() 65 + * @ref: percpu_ref to exit 66 66 * 67 - * Once a percpu_ref is initialized, its destruction is initiated by 68 - * percpu_ref_kill() and completes asynchronously, which can be painful to 69 - * do when destroying a half-constructed object in init failure path. 70 - * 71 - * This function destroys @ref without invoking @ref->release and the 72 - * memory area containing it can be freed immediately on return. To 73 - * prevent accidental misuse, it's required that @ref has finished 74 - * percpu_ref_init(), whether successful or not, but never used. 75 - * 76 - * The weird name and usage restriction are to prevent people from using 77 - * this function by mistake for normal shutdown instead of 78 - * percpu_ref_kill(). 67 + * This function exits @ref. The caller is responsible for ensuring that 68 + * @ref is no longer in active use. The usual places to invoke this 69 + * function from are the @ref->release() callback or in init failure path 70 + * where percpu_ref_init() succeeded but other parts of the initialization 71 + * of the embedding object failed. 79 72 */ 80 - void percpu_ref_cancel_init(struct percpu_ref *ref) 73 + void percpu_ref_exit(struct percpu_ref *ref) 81 74 { 82 75 unsigned __percpu *pcpu_count = pcpu_count_ptr(ref); 83 - int cpu; 84 - 85 - WARN_ON_ONCE(atomic_read(&ref->count) != 1 + PCPU_COUNT_BIAS); 86 76 87 77 if (pcpu_count) { 88 - for_each_possible_cpu(cpu) 89 - WARN_ON_ONCE(*per_cpu_ptr(pcpu_count, cpu)); 90 78 free_percpu(pcpu_count); 79 + ref->pcpu_count_ptr = PCPU_REF_DEAD; 91 80 } 92 81 } 93 - EXPORT_SYMBOL_GPL(percpu_ref_cancel_init); 82 + EXPORT_SYMBOL_GPL(percpu_ref_exit); 94 83 95 84 static void percpu_ref_kill_rcu(struct rcu_head *rcu) 96 85 { ··· 90 101 91 102 for_each_possible_cpu(cpu) 92 103 count += *per_cpu_ptr(pcpu_count, cpu); 93 - 94 - free_percpu(pcpu_count); 95 104 96 105 pr_debug("global %i pcpu %i", atomic_read(&ref->count), (int) count); 97 106