mmc: block: move single ioctl() commands to block requests
authorLinus Walleij <linus.walleij@linaro.org>
Thu, 18 May 2017 09:29:34 +0000 (11:29 +0200)
committerUlf Hansson <ulf.hansson@linaro.org>
Tue, 20 Jun 2017 08:30:18 +0000 (10:30 +0200)
This wraps single ioctl() commands into block requests using
the custom block layer request types REQ_OP_DRV_IN and
REQ_OP_DRV_OUT.

By doing this we are loosening the grip on the big host lock,
since two calls to mmc_get_card()/mmc_put_card() are removed.

We are storing the ioctl() in/out argument as a pointer in
the per-request struct mmc_blk_request container. Since we
now let the block layer allocate this data, blk_get_request()
will allocate it for us and we can immediately dereference
it and use it to pass the argument into the block layer.

We refactor the if/else/if/else ladder in mmc_blk_issue_rq()
as part of the job, keeping some extra attention to the
case when a NULL req is passed into this function and
making that pipeline flush more explicit.

Tested on the ux500 with the userspace:
mmc extcsd read /dev/mmcblk3
resulting in a successful EXTCSD info dump back to the
console.

This commit fixes a starvation issue in the MMC/SD stack
that can be easily provoked in the following way by
issueing the following commands in sequence:

> dd if=/dev/mmcblk3 of=/dev/null bs=1M &
> mmc extcs read /dev/mmcblk3

Before this patch, the extcsd read command would hang
(starve) while waiting for the dd command to finish since
the block layer was holding the card/host lock.

After this patch, the extcsd ioctl() command is nicely
interpersed with the rest of the block commands and we
can issue a bunch of ioctl()s from userspace while there
is some busy block IO going on without any problems.

Conversely userspace ioctl()s can no longer starve
the block layer by holding the card/host lock.

Signed-off-by: Linus Walleij <linus.walleij@linaro.org>
Signed-off-by: Ulf Hansson <ulf.hansson@linaro.org>
Tested-by: Avri Altman <Avri.Altman@sandisk.com>
drivers/mmc/core/block.c
drivers/mmc/core/queue.h

index f4dab1dfd2ab74d4b0285e17cb1bb63699b789b7..9fb2bd52915650f437716ac4ad8627f68e70c23c 100644 (file)
@@ -564,8 +564,10 @@ static int mmc_blk_ioctl_cmd(struct block_device *bdev,
 {
        struct mmc_blk_ioc_data *idata;
        struct mmc_blk_data *md;
+       struct mmc_queue *mq;
        struct mmc_card *card;
        int err = 0, ioc_err = 0;
+       struct request *req;
 
        /*
         * The caller must have CAP_SYS_RAWIO, and must be calling this on the
@@ -591,17 +593,18 @@ static int mmc_blk_ioctl_cmd(struct block_device *bdev,
                goto cmd_done;
        }
 
-       mmc_get_card(card);
-
-       ioc_err = __mmc_blk_ioctl_cmd(card, md, idata);
-
-       /* Always switch back to main area after RPMB access */
-       if (md->area_type & MMC_BLK_DATA_AREA_RPMB)
-               mmc_blk_part_switch(card, dev_get_drvdata(&card->dev));
-
-       mmc_put_card(card);
-
+       /*
+        * Dispatch the ioctl() into the block request queue.
+        */
+       mq = &md->queue;
+       req = blk_get_request(mq->queue,
+               idata->ic.write_flag ? REQ_OP_DRV_OUT : REQ_OP_DRV_IN,
+               __GFP_RECLAIM);
+       req_to_mmc_queue_req(req)->idata = idata;
+       blk_execute_rq(mq->queue, NULL, req, 0);
+       ioc_err = req_to_mmc_queue_req(req)->ioc_result;
        err = mmc_blk_ioctl_copy_to_user(ic_ptr, idata);
+       blk_put_request(req);
 
 cmd_done:
        mmc_blk_put(md);
@@ -611,6 +614,31 @@ cmd_err:
        return ioc_err ? ioc_err : err;
 }
 
+/*
+ * The ioctl commands come back from the block layer after it queued it and
+ * processed it with all other requests and then they get issued in this
+ * function.
+ */
+static void mmc_blk_ioctl_cmd_issue(struct mmc_queue *mq, struct request *req)
+{
+       struct mmc_queue_req *mq_rq;
+       struct mmc_blk_ioc_data *idata;
+       struct mmc_card *card = mq->card;
+       struct mmc_blk_data *md = mq->blkdata;
+       int ioc_err;
+
+       mq_rq = req_to_mmc_queue_req(req);
+       idata = mq_rq->idata;
+       ioc_err = __mmc_blk_ioctl_cmd(card, md, idata);
+       mq_rq->ioc_result = ioc_err;
+
+       /* Always switch back to main area after RPMB access */
+       if (md->area_type & MMC_BLK_DATA_AREA_RPMB)
+               mmc_blk_part_switch(card, dev_get_drvdata(&card->dev));
+
+       blk_end_request_all(req, ioc_err);
+}
+
 static int mmc_blk_ioctl_multi_cmd(struct block_device *bdev,
                                   struct mmc_ioc_multi_cmd __user *user)
 {
@@ -1854,23 +1882,54 @@ void mmc_blk_issue_rq(struct mmc_queue *mq, struct request *req)
                goto out;
        }
 
-       if (req && req_op(req) == REQ_OP_DISCARD) {
-               /* complete ongoing async transfer before issuing discard */
-               if (mq->qcnt)
-                       mmc_blk_issue_rw_rq(mq, NULL);
-               mmc_blk_issue_discard_rq(mq, req);
-       } else if (req && req_op(req) == REQ_OP_SECURE_ERASE) {
-               /* complete ongoing async transfer before issuing secure erase*/
-               if (mq->qcnt)
-                       mmc_blk_issue_rw_rq(mq, NULL);
-               mmc_blk_issue_secdiscard_rq(mq, req);
-       } else if (req && req_op(req) == REQ_OP_FLUSH) {
-               /* complete ongoing async transfer before issuing flush */
-               if (mq->qcnt)
-                       mmc_blk_issue_rw_rq(mq, NULL);
-               mmc_blk_issue_flush(mq, req);
+       if (req) {
+               switch (req_op(req)) {
+               case REQ_OP_DRV_IN:
+               case REQ_OP_DRV_OUT:
+                       /*
+                        * Complete ongoing async transfer before issuing
+                        * ioctl()s
+                        */
+                       if (mq->qcnt)
+                               mmc_blk_issue_rw_rq(mq, NULL);
+                       mmc_blk_ioctl_cmd_issue(mq, req);
+                       break;
+               case REQ_OP_DISCARD:
+                       /*
+                        * Complete ongoing async transfer before issuing
+                        * discard.
+                        */
+                       if (mq->qcnt)
+                               mmc_blk_issue_rw_rq(mq, NULL);
+                       mmc_blk_issue_discard_rq(mq, req);
+                       break;
+               case REQ_OP_SECURE_ERASE:
+                       /*
+                        * Complete ongoing async transfer before issuing
+                        * secure erase.
+                        */
+                       if (mq->qcnt)
+                               mmc_blk_issue_rw_rq(mq, NULL);
+                       mmc_blk_issue_secdiscard_rq(mq, req);
+                       break;
+               case REQ_OP_FLUSH:
+                       /*
+                        * Complete ongoing async transfer before issuing
+                        * flush.
+                        */
+                       if (mq->qcnt)
+                               mmc_blk_issue_rw_rq(mq, NULL);
+                       mmc_blk_issue_flush(mq, req);
+                       break;
+               default:
+                       /* Normal request, just issue it */
+                       mmc_blk_issue_rw_rq(mq, req);
+                       card->host->context_info.is_waiting_last_req = false;
+                       break;
+               };
        } else {
-               mmc_blk_issue_rw_rq(mq, req);
+               /* No request, flushing the pipeline with NULL */
+               mmc_blk_issue_rw_rq(mq, NULL);
                card->host->context_info.is_waiting_last_req = false;
        }
 
index dae31bc0c2d3358f2412c41ef8d3ec70114f6255..005ece9ac7cb89a0bf4f8c1eb94bba72113ef40a 100644 (file)
@@ -22,6 +22,7 @@ static inline bool mmc_req_is_special(struct request *req)
 
 struct task_struct;
 struct mmc_blk_data;
+struct mmc_blk_ioc_data;
 
 struct mmc_blk_request {
        struct mmc_request      mrq;
@@ -40,6 +41,8 @@ struct mmc_queue_req {
        struct scatterlist      *bounce_sg;
        unsigned int            bounce_sg_len;
        struct mmc_async_req    areq;
+       int                     ioc_result;
+       struct mmc_blk_ioc_data *idata;
 };
 
 struct mmc_queue {