[RFC PATCH 07/13] net: sched: support qdisc_reset on NOLOCK qdisc

[John Fastabend]

The qdisc_reset operation depends on the qdisc lock at the moment
to halt any additions to gso_skb and statistics while the list is
free'd and the stats zeroed.

Without the qdisc lock we can not guarantee another cpu is not in
the process of adding a skb to one of the "cells". Here are the
two cases we have to handle.

 case 1: qdisc_graft operation. In this case a "new" qdisc is attached
         and the 'qdisc_destroy' operation is called on the old qdisc.
         The destroy operation will wait a rcu grace period and call
         qdisc_rcu_free(). At which point gso_cpu_skb is free'd along
         with all stats so no need to zero stats and gso_cpu_skb from
         the reset operation itself.

         Because we can not continue to call qdisc_reset before waiting
         an rcu grace period so that the qdisc is detached from all
         cpus simply do not call qdisc_reset() at all and let the
         qdisc_destroy operation clean up the qdisc. Note, a refcnt
         greater than 1 would cause the destroy operation to be
         aborted however if this ever happened the reference to the
         qdisc would be lost and we would have a memory leak.

 case 2: dev_deactivate sequence. This can come from a user bringing
         the interface down which causes the gso_skb list to be flushed
         and the qlen zero'd. At the moment this is protected by the
         qdisc lock so while we clear the qlen/gso_skb fields we are
         guaranteed no new skbs are added. For the lockless case
         though this is not true. To resolve this move the qdisc_reset
         call after the new qdisc is assigned and a grace period is
         exercised to ensure no new skbs can be enqueued. Further
         the RTNL lock is held so we can not get another call to
         activate the qdisc while the skb lists are being free'd.

         Finally, fix qdisc_reset to handle the per cpu stats and
         skb lists.

Signed-off-by: John Fastabend <john.r.fastab...@intel.com>
---
 net/sched/sch_generic.c |   45 +++++++++++++++++++++++++++++++++++----------
 1 file changed, 35 insertions(+), 10 deletions(-)

diff --git a/net/sched/sch_generic.c b/net/sched/sch_generic.c
index 3b9a21f..29238c4 100644
--- a/net/sched/sch_generic.c
+++ b/net/sched/sch_generic.c
@@ -737,6 +737,20 @@ void qdisc_reset(struct Qdisc *qdisc)
        kfree_skb(qdisc->skb_bad_txq);
        qdisc->skb_bad_txq = NULL;
 
+       if (qdisc->gso_cpu_skb) {
+               int i;
+
+               for_each_possible_cpu(i) {
+                       struct gso_cell *cell;
+
+                       cell = per_cpu_ptr(qdisc->gso_cpu_skb, i);
+                       if (cell) {
+                               kfree_skb_list(cell->skb);
+                               cell = NULL;
+                       }
+               }
+       }
+
        if (qdisc->gso_skb) {
                kfree_skb_list(qdisc->gso_skb);
                qdisc->gso_skb = NULL;
@@ -812,10 +826,6 @@ struct Qdisc *dev_graft_qdisc(struct netdev_queue 
*dev_queue,
        root_lock = qdisc_lock(oqdisc);
        spin_lock_bh(root_lock);
 
-       /* Prune old scheduler */
-       if (oqdisc && atomic_read(&oqdisc->refcnt) <= 1)
-               qdisc_reset(oqdisc);
-
        /* ... and graft new one */
        if (qdisc == NULL)
                qdisc = &noop_qdisc;
@@ -929,7 +939,6 @@ static void dev_deactivate_queue(struct net_device *dev,
                        set_bit(__QDISC_STATE_DEACTIVATED, &qdisc->state);
 
                rcu_assign_pointer(dev_queue->qdisc, qdisc_default);
-               qdisc_reset(qdisc);
 
                spin_unlock_bh(qdisc_lock(qdisc));
        }
@@ -966,6 +975,16 @@ static bool some_qdisc_is_busy(struct net_device *dev)
        return false;
 }
 
+static void dev_qdisc_reset(struct net_device *dev,
+                           struct netdev_queue *dev_queue,
+                           void *none)
+{
+       struct Qdisc *qdisc = dev_queue->qdisc_sleeping;
+
+       if (qdisc)
+               qdisc_reset(qdisc);
+}
+
 /**
  *     dev_deactivate_many - deactivate transmissions on several devices
  *     @head: list of devices to deactivate
@@ -976,7 +995,6 @@ static bool some_qdisc_is_busy(struct net_device *dev)
 void dev_deactivate_many(struct list_head *head)
 {
        struct net_device *dev;
-       bool sync_needed = false;
 
        list_for_each_entry(dev, head, close_list) {
                netdev_for_each_tx_queue(dev, dev_deactivate_queue,
@@ -986,20 +1004,27 @@ void dev_deactivate_many(struct list_head *head)
                                             &noop_qdisc);
 
                dev_watchdog_down(dev);
-               sync_needed |= !dev->dismantle;
        }
 
        /* Wait for outstanding qdisc-less dev_queue_xmit calls.
         * This is avoided if all devices are in dismantle phase :
         * Caller will call synchronize_net() for us
         */
-       if (sync_needed)
-               synchronize_net();
+       synchronize_net();
 
        /* Wait for outstanding qdisc_run calls. */
-       list_for_each_entry(dev, head, close_list)
+       list_for_each_entry(dev, head, close_list) {
                while (some_qdisc_is_busy(dev))
                        yield();
+
+               /* The new qdisc is assigned at this point so we can safely
+                * unwind stale skb lists and qdisc statistics
+                */
+               netdev_for_each_tx_queue(dev, dev_qdisc_reset, NULL);
+               if (dev_ingress_queue(dev))
+                       dev_qdisc_reset(dev, dev_ingress_queue(dev), NULL);
+       }
+
 }
 
 void dev_deactivate(struct net_device *dev)