Changeset 67f11a0 in mainline for kernel/generic/src/ipc/ipc.c

Timestamp:

2018-03-15T17:40:20Z (7 years ago)

Author:

Jakub Jermar <jakub@…>

Branches:

lfn, master, serial, ticket/834-toolchain-update, topic/msim-upgrade, topic/simplify-dev-export

Children:

530f2de, e9e4068

Parents:

30f1a25 (diff), a36f442 (diff)
Note: this is a merge changeset, the changes displayed below correspond to the merge itself.
Use the (diff) links above to see all the changes relative to each parent.

git-author:

Jakub Jermar <jakub@…> (2018-03-15 17:25:56)

git-committer:

Jakub Jermar <jakub@…> (2018-03-15 17:40:20)

Message:

Merge branch 'noreclaimers'

This commit removes the left-over from the original IPC phone life-cycle
management in which phones were freed lazily during an attempt to
allocate a new phone when the allocator found a hung-up phone with zero
active calls. This mechanism is the reason why kernel objects had to
have the reclaim method. This commit changes the behavior in that phones
are deallocated with their last reference. At the same time it makes
sure that each active call has its own reference on the phone.

This change also makes sure that each connected phone has a capability
via which it can be hung up by the user or cleaned up in ipc_cleanup().
A special mode for phone_alloc() was introduced that allows calls such
as IPC_M_CONNECT_ME_TO and IPC_M_CONNECT_TO_ME to allocate an
unpublished capability and publish it only when the phone is
successfully connected. This fixes a nasty race condition when the user
destroys the capability before the phone is connected and then this
phone becomes essentially invisible for ipc_cleanup().

Last but not least, ipc_cleanup() was slightly streamlined in that it
now knows for how many calls it has to wait from the answerbox's active
call count.

File:

• kernel/generic/src/ipc/ipc.c (modified) (14 diffs)

kernel/generic/src/ipc/ipc.c

@@ -63 +63 @@
 static void ipc_forget_call(call_t *);
 
-/** Open channel that is assigned automatically to new tasks */
-answerbox_t *ipc_phone_0 = NULL;
+/** Answerbox that new tasks are automatically connected to */
+answerbox_t *ipc_box_0 = NULL;
 
 static slab_cache_t *call_cache;
@@ -147 +147 @@
         list_initialize(&box->answers);
         list_initialize(&box->irq_notifs);
+        atomic_set(&box->active_calls, 0);
         box->task = task;
 }
@@ -160 +161 @@
 bool ipc_phone_connect(phone_t *phone, answerbox_t *box)
 {
-        bool active;
+        bool connected;
 
         mutex_lock(&phone->lock);
         irq_spinlock_lock(&box->lock, true);
 
-        active = box->active;
-        if (active) {
+        connected = box->active && (phone->state == IPC_PHONE_CONNECTING);
+        if (connected) {
                 phone->state = IPC_PHONE_CONNECTED;
                 phone->callee = box;
@@ -176 +177 @@
         mutex_unlock(&phone->lock);
 
-        if (!active) {
+        if (!connected) {
                 /* We still have phone->kobject's reference; drop it */
                 kobject_put(phone->kobject);
         }
 
-        return active;
+        return connected;
 }
 
@@ -350 +351 @@
         } else {
                 atomic_inc(&phone->active_calls);
+                if (call->callerbox)
+                        atomic_inc(&call->callerbox->active_calls);
+                else
+                        atomic_inc(&caller->answerbox.active_calls);
+                kobject_add_ref(phone->kobject);
                 call->sender = caller;
                 call->active = true;
@@ -439 +445 @@
 /** Disconnect phone from answerbox.
  *
- * This call leaves the phone in the HUNGUP state. The change to 'free' is done
- * lazily later.
+ * This call leaves the phone in the hung-up state. The phone is destroyed when
+ * its last active call is answered and there are no references to it.
  *
  * @param phone Phone structure to be hung up.
@@ -563 +569 @@
                 list_remove(&request->ab_link);
                 atomic_dec(&request->caller_phone->active_calls);
+                atomic_dec(&box->active_calls);
+                kobject_put(request->caller_phone->kobject);
         } else if (!list_empty(&box->calls)) {
                 /* Count received call */
@@ -707 +715 @@
 
         atomic_dec(&call->caller_phone->active_calls);
+        atomic_dec(&TASK->answerbox.active_calls);
+        kobject_put(call->caller_phone->kobject);
 
         SYSIPC_OP(request_forget, call);
@@ -746 +756 @@
 }
 
-static bool phone_cap_wait_cb(cap_t *cap, void *arg)
-{
-        phone_t *phone = cap->kobject->phone;
-        bool *restart = (bool *) arg;
-
-        mutex_lock(&phone->lock);
-        if ((phone->state == IPC_PHONE_HUNGUP) &&
-            (atomic_get(&phone->active_calls) == 0)) {
-                phone->state = IPC_PHONE_FREE;
-                phone->callee = NULL;
-        }
-
-        /*
-         * We might have had some IPC_PHONE_CONNECTING phones at the beginning
-         * of ipc_cleanup(). Depending on whether these were forgotten or
-         * answered, they will eventually enter the IPC_PHONE_FREE or
-         * IPC_PHONE_CONNECTED states, respectively.  In the latter case, the
-         * other side may slam the open phones at any time, in which case we
-         * will get an IPC_PHONE_SLAMMED phone.
-         */
-        if ((phone->state == IPC_PHONE_CONNECTED) ||
-            (phone->state == IPC_PHONE_SLAMMED)) {
-                mutex_unlock(&phone->lock);
-                ipc_phone_hangup(phone);
-                /*
-                 * Now there may be one extra active call, which needs to be
-                 * forgotten.
-                 */
-                ipc_forget_all_active_calls();
-                *restart = true;
-                return false;
-        }
-
-        /*
-         * If the hangup succeeded, it has sent a HANGUP message, the IPC is now
-         * in HUNGUP state, we wait for the reply to come
-         */
-        if (phone->state != IPC_PHONE_FREE) {
-                mutex_unlock(&phone->lock);
-                return false;
-        }
-
-        mutex_unlock(&phone->lock);
-        return true;
-}
-
-/** Wait for all answers to asynchronous calls to arrive. */
-static void ipc_wait_for_all_answered_calls(void)
-{
-        call_t *call;
-        bool restart;
-
-restart:
-        /*
-         * Go through all phones, until they are all free.
-         * Locking is needed as there may be connection handshakes in progress.
-         */
-        restart = false;
-        if (caps_apply_to_kobject_type(TASK, KOBJECT_TYPE_PHONE,
-            phone_cap_wait_cb, &restart)) {
-                /* Got into cleanup */
-                return;
-        }
-        if (restart)
-                goto restart;
-
-        call = ipc_wait_for_call(&TASK->answerbox, SYNCH_NO_TIMEOUT,
-            SYNCH_FLAGS_NONE);
-        assert(call->flags & (IPC_CALL_ANSWERED | IPC_CALL_NOTIF));
-
-        SYSIPC_OP(answer_process, call);
-
-        kobject_put(call->kobject);
-        goto restart;
-}
-
 static bool phone_cap_cleanup_cb(cap_t *cap, void *arg)
 {
@@ -830 +764 @@
         cap_free(cap->task, cap->handle);
         return true;
+}
+
+/** Wait for all answers to asynchronous calls to arrive. */
+static void ipc_wait_for_all_answered_calls(void)
+{
+        while (atomic_get(&TASK->answerbox.active_calls) != 0) {
+                call_t *call = ipc_wait_for_call(&TASK->answerbox,
+                    SYNCH_NO_TIMEOUT, SYNCH_FLAGS_NONE);
+                assert(call->flags & (IPC_CALL_ANSWERED | IPC_CALL_NOTIF));
+
+                SYSIPC_OP(answer_process, call);
+
+                kobject_put(call->kobject);
+
+                /*
+                 * Now there may be some new phones and new hangup calls to
+                 * immediately forget.
+                 */
+                caps_apply_to_kobject_type(TASK, KOBJECT_TYPE_PHONE,
+                    phone_cap_cleanup_cb, NULL);
+                ipc_forget_all_active_calls();
+        }
 }
 
@@ -869 +825 @@
         irq_spinlock_unlock(&TASK->answerbox.lock, true);
 
-        /* Disconnect all our phones ('ipc_phone_hangup') */
+        /* Hangup all phones and destroy all phone capabilities */
         caps_apply_to_kobject_type(TASK, KOBJECT_TYPE_PHONE,
             phone_cap_cleanup_cb, NULL);
 
-        /* Unsubscribe from any event notifications. */
+        /* Unsubscribe from any event notifications */
         event_cleanup_answerbox(&TASK->answerbox);
 
@@ -899 +855 @@
         ipc_forget_all_active_calls();
         ipc_wait_for_all_answered_calls();
+
+        assert(atomic_get(&TASK->answerbox.active_calls) == 0);
 }
 
@@ -968 +926 @@
                         break;
                 case IPC_PHONE_HUNGUP:
-                        printf("hung up by %p", phone->callee);
+                        printf("hung up to %p", phone->callee);
                         break;
                 default:
@@ -1004 +962 @@
         irq_spinlock_lock(&task->lock, true);
         irq_spinlock_lock(&task->answerbox.lock, false);
+
+        printf("Active calls: %" PRIun "\n",
+            atomic_get(&task->answerbox.active_calls));
 
 #ifdef __32_BITS__