1 // SPDX-License-Identifier: GPL-2.0 2 /* 3 * Functions related to io context handling 4 */ 5 #include <linux/kernel.h> 6 #include <linux/module.h> 7 #include <linux/init.h> 8 #include <linux/bio.h> 9 #include <linux/blkdev.h> 10 #include <linux/slab.h> 11 #include <linux/security.h> 12 #include <linux/sched/task.h> 13 14 #include "blk.h" 15 #include "blk-mq-sched.h" 16 17 /* 18 * For io context allocations 19 */ 20 static struct kmem_cache *iocontext_cachep; 21 22 #ifdef CONFIG_BLK_ICQ 23 /** 24 * get_io_context - increment reference count to io_context 25 * @ioc: io_context to get 26 * 27 * Increment reference count to @ioc. 28 */ 29 static void get_io_context(struct io_context *ioc) 30 { 31 BUG_ON(atomic_long_read(&ioc->refcount) <= 0); 32 atomic_long_inc(&ioc->refcount); 33 } 34 35 static void icq_free_icq_rcu(struct rcu_head *head) 36 { 37 struct io_cq *icq = container_of(head, struct io_cq, __rcu_head); 38 39 kmem_cache_free(icq->__rcu_icq_cache, icq); 40 } 41 42 /* 43 * Exit an icq. Called with ioc locked for blk-mq, and with both ioc 44 * and queue locked for legacy. 45 */ 46 static void ioc_exit_icq(struct io_cq *icq) 47 { 48 struct elevator_type *et = icq->q->elevator->type; 49 50 if (icq->flags & ICQ_EXITED) 51 return; 52 53 if (et->ops.exit_icq) 54 et->ops.exit_icq(icq); 55 56 icq->flags |= ICQ_EXITED; 57 } 58 59 static void ioc_exit_icqs(struct io_context *ioc) 60 { 61 struct io_cq *icq; 62 63 spin_lock_irq(&ioc->lock); 64 hlist_for_each_entry(icq, &ioc->icq_list, ioc_node) 65 ioc_exit_icq(icq); 66 spin_unlock_irq(&ioc->lock); 67 } 68 69 /* 70 * Release an icq. Called with ioc locked for blk-mq, and with both ioc 71 * and queue locked for legacy. 72 */ 73 static void ioc_destroy_icq(struct io_cq *icq) 74 { 75 struct io_context *ioc = icq->ioc; 76 struct request_queue *q = icq->q; 77 struct elevator_type *et = q->elevator->type; 78 79 lockdep_assert_held(&ioc->lock); 80 81 radix_tree_delete(&ioc->icq_tree, icq->q->id); 82 hlist_del_init(&icq->ioc_node); 83 list_del_init(&icq->q_node); 84 85 /* 86 * Both setting lookup hint to and clearing it from @icq are done 87 * under queue_lock. If it's not pointing to @icq now, it never 88 * will. Hint assignment itself can race safely. 89 */ 90 if (rcu_access_pointer(ioc->icq_hint) == icq) 91 rcu_assign_pointer(ioc->icq_hint, NULL); 92 93 ioc_exit_icq(icq); 94 95 /* 96 * @icq->q might have gone away by the time RCU callback runs 97 * making it impossible to determine icq_cache. Record it in @icq. 98 */ 99 icq->__rcu_icq_cache = et->icq_cache; 100 icq->flags |= ICQ_DESTROYED; 101 call_rcu(&icq->__rcu_head, icq_free_icq_rcu); 102 } 103 104 /* 105 * Slow path for ioc release in put_io_context(). Performs double-lock 106 * dancing to unlink all icq's and then frees ioc. 107 */ 108 static void ioc_release_fn(struct work_struct *work) 109 { 110 struct io_context *ioc = container_of(work, struct io_context, 111 release_work); 112 spin_lock_irq(&ioc->lock); 113 114 while (!hlist_empty(&ioc->icq_list)) { 115 struct io_cq *icq = hlist_entry(ioc->icq_list.first, 116 struct io_cq, ioc_node); 117 struct request_queue *q = icq->q; 118 119 if (spin_trylock(&q->queue_lock)) { 120 ioc_destroy_icq(icq); 121 spin_unlock(&q->queue_lock); 122 } else { 123 /* Make sure q and icq cannot be freed. */ 124 rcu_read_lock(); 125 126 /* Re-acquire the locks in the correct order. */ 127 spin_unlock(&ioc->lock); 128 spin_lock(&q->queue_lock); 129 spin_lock(&ioc->lock); 130 131 /* 132 * The icq may have been destroyed when the ioc lock 133 * was released. 134 */ 135 if (!(icq->flags & ICQ_DESTROYED)) 136 ioc_destroy_icq(icq); 137 138 spin_unlock(&q->queue_lock); 139 rcu_read_unlock(); 140 } 141 } 142 143 spin_unlock_irq(&ioc->lock); 144 145 kmem_cache_free(iocontext_cachep, ioc); 146 } 147 148 /* 149 * Releasing icqs requires reverse order double locking and we may already be 150 * holding a queue_lock. Do it asynchronously from a workqueue. 151 */ 152 static bool ioc_delay_free(struct io_context *ioc) 153 { 154 unsigned long flags; 155 156 spin_lock_irqsave(&ioc->lock, flags); 157 if (!hlist_empty(&ioc->icq_list)) { 158 queue_work(system_power_efficient_wq, &ioc->release_work); 159 spin_unlock_irqrestore(&ioc->lock, flags); 160 return true; 161 } 162 spin_unlock_irqrestore(&ioc->lock, flags); 163 return false; 164 } 165 166 /** 167 * ioc_clear_queue - break any ioc association with the specified queue 168 * @q: request_queue being cleared 169 * 170 * Walk @q->icq_list and exit all io_cq's. 171 */ 172 void ioc_clear_queue(struct request_queue *q) 173 { 174 LIST_HEAD(icq_list); 175 176 spin_lock_irq(&q->queue_lock); 177 list_splice_init(&q->icq_list, &icq_list); 178 spin_unlock_irq(&q->queue_lock); 179 180 rcu_read_lock(); 181 while (!list_empty(&icq_list)) { 182 struct io_cq *icq = 183 list_entry(icq_list.next, struct io_cq, q_node); 184 185 spin_lock_irq(&icq->ioc->lock); 186 if (!(icq->flags & ICQ_DESTROYED)) 187 ioc_destroy_icq(icq); 188 spin_unlock_irq(&icq->ioc->lock); 189 } 190 rcu_read_unlock(); 191 } 192 #else /* CONFIG_BLK_ICQ */ 193 static inline void ioc_exit_icqs(struct io_context *ioc) 194 { 195 } 196 static inline bool ioc_delay_free(struct io_context *ioc) 197 { 198 return false; 199 } 200 #endif /* CONFIG_BLK_ICQ */ 201 202 /** 203 * put_io_context - put a reference of io_context 204 * @ioc: io_context to put 205 * 206 * Decrement reference count of @ioc and release it if the count reaches 207 * zero. 208 */ 209 void put_io_context(struct io_context *ioc) 210 { 211 BUG_ON(atomic_long_read(&ioc->refcount) <= 0); 212 if (atomic_long_dec_and_test(&ioc->refcount) && !ioc_delay_free(ioc)) 213 kmem_cache_free(iocontext_cachep, ioc); 214 } 215 EXPORT_SYMBOL_GPL(put_io_context); 216 217 /* Called by the exiting task */ 218 void exit_io_context(struct task_struct *task) 219 { 220 struct io_context *ioc; 221 222 task_lock(task); 223 ioc = task->io_context; 224 task->io_context = NULL; 225 task_unlock(task); 226 227 if (atomic_dec_and_test(&ioc->active_ref)) { 228 ioc_exit_icqs(ioc); 229 put_io_context(ioc); 230 } 231 } 232 233 static struct io_context *alloc_io_context(gfp_t gfp_flags, int node) 234 { 235 struct io_context *ioc; 236 237 ioc = kmem_cache_alloc_node(iocontext_cachep, gfp_flags | __GFP_ZERO, 238 node); 239 if (unlikely(!ioc)) 240 return NULL; 241 242 atomic_long_set(&ioc->refcount, 1); 243 atomic_set(&ioc->active_ref, 1); 244 #ifdef CONFIG_BLK_ICQ 245 spin_lock_init(&ioc->lock); 246 INIT_RADIX_TREE(&ioc->icq_tree, GFP_ATOMIC); 247 INIT_HLIST_HEAD(&ioc->icq_list); 248 INIT_WORK(&ioc->release_work, ioc_release_fn); 249 #endif 250 return ioc; 251 } 252 253 int set_task_ioprio(struct task_struct *task, int ioprio) 254 { 255 int err; 256 const struct cred *cred = current_cred(), *tcred; 257 258 rcu_read_lock(); 259 tcred = __task_cred(task); 260 if (!uid_eq(tcred->uid, cred->euid) && 261 !uid_eq(tcred->uid, cred->uid) && !capable(CAP_SYS_NICE)) { 262 rcu_read_unlock(); 263 return -EPERM; 264 } 265 rcu_read_unlock(); 266 267 err = security_task_setioprio(task, ioprio); 268 if (err) 269 return err; 270 271 task_lock(task); 272 if (unlikely(!task->io_context)) { 273 struct io_context *ioc; 274 275 task_unlock(task); 276 277 ioc = alloc_io_context(GFP_ATOMIC, NUMA_NO_NODE); 278 if (!ioc) 279 return -ENOMEM; 280 281 task_lock(task); 282 if (task->flags & PF_EXITING) { 283 err = -ESRCH; 284 kmem_cache_free(iocontext_cachep, ioc); 285 goto out; 286 } 287 if (task->io_context) 288 kmem_cache_free(iocontext_cachep, ioc); 289 else 290 task->io_context = ioc; 291 } 292 task->io_context->ioprio = ioprio; 293 out: 294 task_unlock(task); 295 return err; 296 } 297 EXPORT_SYMBOL_GPL(set_task_ioprio); 298 299 int __copy_io(unsigned long clone_flags, struct task_struct *tsk) 300 { 301 struct io_context *ioc = current->io_context; 302 303 /* 304 * Share io context with parent, if CLONE_IO is set 305 */ 306 if (clone_flags & CLONE_IO) { 307 atomic_inc(&ioc->active_ref); 308 tsk->io_context = ioc; 309 } else if (ioprio_valid(ioc->ioprio)) { 310 tsk->io_context = alloc_io_context(GFP_KERNEL, NUMA_NO_NODE); 311 if (!tsk->io_context) 312 return -ENOMEM; 313 tsk->io_context->ioprio = ioc->ioprio; 314 } 315 316 return 0; 317 } 318 319 #ifdef CONFIG_BLK_ICQ 320 /** 321 * ioc_lookup_icq - lookup io_cq from ioc 322 * @q: the associated request_queue 323 * 324 * Look up io_cq associated with @ioc - @q pair from @ioc. Must be called 325 * with @q->queue_lock held. 326 */ 327 struct io_cq *ioc_lookup_icq(struct request_queue *q) 328 { 329 struct io_context *ioc = current->io_context; 330 struct io_cq *icq; 331 332 lockdep_assert_held(&q->queue_lock); 333 334 /* 335 * icq's are indexed from @ioc using radix tree and hint pointer, 336 * both of which are protected with RCU. All removals are done 337 * holding both q and ioc locks, and we're holding q lock - if we 338 * find a icq which points to us, it's guaranteed to be valid. 339 */ 340 rcu_read_lock(); 341 icq = rcu_dereference(ioc->icq_hint); 342 if (icq && icq->q == q) 343 goto out; 344 345 icq = radix_tree_lookup(&ioc->icq_tree, q->id); 346 if (icq && icq->q == q) 347 rcu_assign_pointer(ioc->icq_hint, icq); /* allowed to race */ 348 else 349 icq = NULL; 350 out: 351 rcu_read_unlock(); 352 return icq; 353 } 354 EXPORT_SYMBOL(ioc_lookup_icq); 355 356 /** 357 * ioc_create_icq - create and link io_cq 358 * @q: request_queue of interest 359 * 360 * Make sure io_cq linking @ioc and @q exists. If icq doesn't exist, they 361 * will be created using @gfp_mask. 362 * 363 * The caller is responsible for ensuring @ioc won't go away and @q is 364 * alive and will stay alive until this function returns. 365 */ 366 static struct io_cq *ioc_create_icq(struct request_queue *q) 367 { 368 struct io_context *ioc = current->io_context; 369 struct elevator_type *et = q->elevator->type; 370 struct io_cq *icq; 371 372 /* allocate stuff */ 373 icq = kmem_cache_alloc_node(et->icq_cache, GFP_ATOMIC | __GFP_ZERO, 374 q->node); 375 if (!icq) 376 return NULL; 377 378 if (radix_tree_maybe_preload(GFP_ATOMIC) < 0) { 379 kmem_cache_free(et->icq_cache, icq); 380 return NULL; 381 } 382 383 icq->ioc = ioc; 384 icq->q = q; 385 INIT_LIST_HEAD(&icq->q_node); 386 INIT_HLIST_NODE(&icq->ioc_node); 387 388 /* lock both q and ioc and try to link @icq */ 389 spin_lock_irq(&q->queue_lock); 390 spin_lock(&ioc->lock); 391 392 if (likely(!radix_tree_insert(&ioc->icq_tree, q->id, icq))) { 393 hlist_add_head(&icq->ioc_node, &ioc->icq_list); 394 list_add(&icq->q_node, &q->icq_list); 395 if (et->ops.init_icq) 396 et->ops.init_icq(icq); 397 } else { 398 kmem_cache_free(et->icq_cache, icq); 399 icq = ioc_lookup_icq(q); 400 if (!icq) 401 printk(KERN_ERR "cfq: icq link failed!\n"); 402 } 403 404 spin_unlock(&ioc->lock); 405 spin_unlock_irq(&q->queue_lock); 406 radix_tree_preload_end(); 407 return icq; 408 } 409 410 struct io_cq *ioc_find_get_icq(struct request_queue *q) 411 { 412 struct io_context *ioc = current->io_context; 413 struct io_cq *icq = NULL; 414 415 if (unlikely(!ioc)) { 416 ioc = alloc_io_context(GFP_ATOMIC, q->node); 417 if (!ioc) 418 return NULL; 419 420 task_lock(current); 421 if (current->io_context) { 422 kmem_cache_free(iocontext_cachep, ioc); 423 ioc = current->io_context; 424 } else { 425 current->io_context = ioc; 426 } 427 428 get_io_context(ioc); 429 task_unlock(current); 430 } else { 431 get_io_context(ioc); 432 433 spin_lock_irq(&q->queue_lock); 434 icq = ioc_lookup_icq(q); 435 spin_unlock_irq(&q->queue_lock); 436 } 437 438 if (!icq) { 439 icq = ioc_create_icq(q); 440 if (!icq) { 441 put_io_context(ioc); 442 return NULL; 443 } 444 } 445 return icq; 446 } 447 EXPORT_SYMBOL_GPL(ioc_find_get_icq); 448 #endif /* CONFIG_BLK_ICQ */ 449 450 static int __init blk_ioc_init(void) 451 { 452 iocontext_cachep = kmem_cache_create("blkdev_ioc", 453 sizeof(struct io_context), 0, SLAB_PANIC, NULL); 454 return 0; 455 } 456 subsys_initcall(blk_ioc_init); 457