From: dlg <dlg@openbsd.org>
Date: Mon, 7 Nov 2022 16:35:11 +0000 (+0000)
Subject: revert "move pf_purge out from under the kernel lock".
X-Git-Url: http://artulab.com/gitweb/?a=commitdiff_plain;h=8cdf5d8ca0d84114a845740c91e3dd46ea4472c4;p=openbsd

revert "move pf_purge out from under the kernel lock".

hrvoje popovski showed me pfsync blowing up with this. im backing
it out quickly in case something else at the hackathon makes it
harder to do later.

kn@ agrees
---

diff --git a/sys/net/pf.c b/sys/net/pf.c
index 2c6124e74f2..c42f76dbc67 100644
--- a/sys/net/pf.c
+++ b/sys/net/pf.c
@@ -1,4 +1,4 @@
-/*	$OpenBSD: pf.c,v 1.1143 2022/11/07 12:56:38 dlg Exp $ */
+/*	$OpenBSD: pf.c,v 1.1144 2022/11/07 16:35:11 dlg Exp $ */
 
 /*
  * Copyright (c) 2001 Daniel Hartmeier
@@ -120,6 +120,10 @@ u_char			 pf_tcp_secret[16];
 int			 pf_tcp_secret_init;
 int			 pf_tcp_iss_off;
 
+int		 pf_npurge;
+struct task	 pf_purge_task = TASK_INITIALIZER(pf_purge, &pf_npurge);
+struct timeout	 pf_purge_to = TIMEOUT_INITIALIZER(pf_purge_timeout, NULL);
+
 enum pf_test_status {
 	PF_TEST_FAIL = -1,
 	PF_TEST_OK,
@@ -1495,111 +1499,49 @@ pf_purge_expired_rules(void)
 	}
 }
 
-void		 pf_purge_states(void *);
-struct task	 pf_purge_states_task =
-		     TASK_INITIALIZER(pf_purge_states, NULL);
-
-void		 pf_purge_states_tick(void *);
-struct timeout	 pf_purge_states_to =
-		     TIMEOUT_INITIALIZER(pf_purge_states_tick, NULL);
-
-unsigned int	 pf_purge_expired_states(unsigned int, unsigned int);
-
-/*
- * how many states to scan this interval.
- *
- * this is set when the timeout fires, and reduced by the task. the
- * task will reschedule itself until the limit is reduced to zero,
- * and then it adds the timeout again.
- */
-unsigned int pf_purge_states_limit;
-
-/*
- * limit how many states are processed with locks held per run of
- * the state purge task.
- */
-unsigned int pf_purge_states_collect = 64;
-
 void
-pf_purge_states_tick(void *null)
+pf_purge_timeout(void *unused)
 {
-	unsigned int limit = pf_status.states;
-	unsigned int interval = pf_default_rule.timeout[PFTM_INTERVAL];
-
-	if (limit == 0) {
-		timeout_add_sec(&pf_purge_states_to, 1);
-		return;
-	}
-
-	/*
-	 * process a fraction of the state table every second
-	 */
-
-	if (interval > 1)
-		limit /= interval;
-
-	pf_purge_states_limit = limit;
-	task_add(systqmp, &pf_purge_states_task);
+	/* XXX move to systqmp to avoid KERNEL_LOCK */
+	task_add(systq, &pf_purge_task);
 }
 
 void
-pf_purge_states(void *null)
+pf_purge(void *xnloops)
 {
-	unsigned int limit;
-	unsigned int scanned;
-
-	limit = pf_purge_states_limit;
-	if (limit < pf_purge_states_collect)
-		limit = pf_purge_states_collect;
-
-	scanned = pf_purge_expired_states(limit, pf_purge_states_collect);
-	if (scanned >= pf_purge_states_limit) {
-		/* we've run out of states to scan this "interval" */
-		timeout_add_sec(&pf_purge_states_to, 1);
-		return;
-	}
+	int *nloops = xnloops;
 
-	pf_purge_states_limit -= scanned;
-	task_add(systqmp, &pf_purge_states_task);
-}
-
-void		 pf_purge_tick(void *);
-struct timeout	 pf_purge_to =
-		     TIMEOUT_INITIALIZER(pf_purge_tick, NULL);
-
-void		 pf_purge(void *);
-struct task	 pf_purge_task =
-		     TASK_INITIALIZER(pf_purge, NULL);
-
-void
-pf_purge_tick(void *null)
-{
-	task_add(systqmp, &pf_purge_task);
-}
-
-void
-pf_purge(void *null)
-{
-	unsigned int interval = max(1, pf_default_rule.timeout[PFTM_INTERVAL]);
+	/*
+	 * process a fraction of the state table every second
+	 * Note:
+	 *     we no longer need PF_LOCK() here, because
+	 *     pf_purge_expired_states() uses pf_state_lock to maintain
+	 *     consistency.
+	 */
+	if (pf_default_rule.timeout[PFTM_INTERVAL] > 0)
+		pf_purge_expired_states(1 + (pf_status.states
+		    / pf_default_rule.timeout[PFTM_INTERVAL]));
 
-	/* XXX is NET_LOCK necessary? */
 	NET_LOCK();
 
 	PF_LOCK();
-
-	pf_purge_expired_src_nodes();
-	pf_purge_expired_rules();
-
+	/* purge other expired types every PFTM_INTERVAL seconds */
+	if (++(*nloops) >= pf_default_rule.timeout[PFTM_INTERVAL]) {
+		pf_purge_expired_src_nodes();
+		pf_purge_expired_rules();
+	}
 	PF_UNLOCK();
 
 	/*
 	 * Fragments don't require PF_LOCK(), they use their own lock.
 	 */
-	pf_purge_expired_fragments();
+	if ((*nloops) >= pf_default_rule.timeout[PFTM_INTERVAL]) {
+		pf_purge_expired_fragments();
+		*nloops = 0;
+	}
 	NET_UNLOCK();
 
-	/* interpret the interval as idle time between runs */
-	timeout_add_sec(&pf_purge_to, interval);
+	timeout_add_sec(&pf_purge_to, 1);
 }
 
 int32_t
@@ -1799,8 +1741,8 @@ pf_free_state(struct pf_state *cur)
 	pf_status.states--;
 }
 
-unsigned int
-pf_purge_expired_states(const unsigned int limit, const unsigned int collect)
+void
+pf_purge_expired_states(u_int32_t maxcheck)
 {
 	/*
 	 * this task/thread/context/whatever is the only thing that
@@ -1814,8 +1756,6 @@ pf_purge_expired_states(const unsigned int limit, const unsigned int collect)
 	struct pf_state		*st;
 	SLIST_HEAD(pf_state_gcl, pf_state) gcl = SLIST_HEAD_INITIALIZER(gcl);
 	time_t			 now;
-	unsigned int		 scanned;
-	unsigned int		 collected = 0;
 
 	PF_ASSERT_UNLOCKED();
 
@@ -1829,7 +1769,7 @@ pf_purge_expired_states(const unsigned int limit, const unsigned int collect)
 	if (head == NULL) {
 		/* the list is empty */
 		rw_exit_read(&pf_state_list.pfs_rwl);
-		return (limit);
+		return;
 	}
 
 	/* (re)start at the front of the list */
@@ -1838,38 +1778,28 @@ pf_purge_expired_states(const unsigned int limit, const unsigned int collect)
 
 	now = getuptime();
 
-	for (scanned = 0; scanned < limit; scanned++) {
+	do {
 		uint8_t stimeout = cur->timeout;
-		unsigned int limited = 0;
 
 		if ((stimeout == PFTM_UNLINKED) ||
 		    (pf_state_expires(cur, stimeout) <= now)) {
 			st = pf_state_ref(cur);
 			SLIST_INSERT_HEAD(&gcl, st, gc_list);
-
-			if (++collected >= collect)
-				limited = 1;
 		}
 
 		/* don't iterate past the end of our view of the list */
 		if (cur == tail) {
-			scanned = limit;
 			cur = NULL;
 			break;
 		}
 
 		cur = TAILQ_NEXT(cur, entry_list);
-
-		/* don't spend too much time here. */
-		if (ISSET(READ_ONCE(curcpu()->ci_schedstate.spc_schedflags),
-		     SPCF_SHOULDYIELD) || limited)
-			break;
-	}
+	} while (maxcheck--);
 
 	rw_exit_read(&pf_state_list.pfs_rwl);
 
 	if (SLIST_EMPTY(&gcl))
-		return (scanned);
+		return;
 
 	NET_LOCK();
 	rw_enter_write(&pf_state_list.pfs_rwl);
@@ -1890,8 +1820,6 @@ pf_purge_expired_states(const unsigned int limit, const unsigned int collect)
 		SLIST_REMOVE_HEAD(&gcl, gc_list);
 		pf_state_unref(st);
 	}
-
-	return (scanned);
 }
 
 int
diff --git a/sys/net/pf_ioctl.c b/sys/net/pf_ioctl.c
index b5d3261f8d1..4ab367fcc28 100644
--- a/sys/net/pf_ioctl.c
+++ b/sys/net/pf_ioctl.c
@@ -1,4 +1,4 @@
-/*	$OpenBSD: pf_ioctl.c,v 1.388 2022/11/07 12:56:38 dlg Exp $ */
+/*	$OpenBSD: pf_ioctl.c,v 1.389 2022/11/07 16:35:12 dlg Exp $ */
 
 /*
  * Copyright (c) 2001 Daniel Hartmeier
@@ -1169,7 +1169,6 @@ pfioctl(dev_t dev, u_long cmd, caddr_t addr, int flags, struct proc *p)
 				pf_status.stateid = gettime();
 				pf_status.stateid = pf_status.stateid << 32;
 			}
-			timeout_add_sec(&pf_purge_states_to, 1);
 			timeout_add_sec(&pf_purge_to, 1);
 			pf_create_queues();
 			DPFPRINTF(LOG_NOTICE, "pf: started");
@@ -2769,9 +2768,8 @@ pfioctl(dev_t dev, u_long cmd, caddr_t addr, int flags, struct proc *p)
 			pf_default_rule.timeout[i] =
 			    pf_default_rule_new.timeout[i];
 			if (pf_default_rule.timeout[i] == PFTM_INTERVAL &&
-			    pf_default_rule.timeout[i] < old &&
-			    timeout_del(&pf_purge_to))
-				task_add(systqmp, &pf_purge_task);
+			    pf_default_rule.timeout[i] < old)
+				task_add(net_tq(0), &pf_purge_task);
 		}
 		pfi_xcommit();
 		pf_trans_set_commit();
diff --git a/sys/net/pfvar.h b/sys/net/pfvar.h
index 91b309ab729..cc6c9f3dedc 100644
--- a/sys/net/pfvar.h
+++ b/sys/net/pfvar.h
@@ -1,4 +1,4 @@
-/*	$OpenBSD: pfvar.h,v 1.513 2022/11/07 12:56:38 dlg Exp $ */
+/*	$OpenBSD: pfvar.h,v 1.514 2022/11/07 16:35:12 dlg Exp $ */
 
 /*
  * Copyright (c) 2001 Daniel Hartmeier
@@ -1716,6 +1716,7 @@ extern void			 pf_tbladdr_remove(struct pf_addr_wrap *);
 extern void			 pf_tbladdr_copyout(struct pf_addr_wrap *);
 extern void			 pf_calc_skip_steps(struct pf_rulequeue *);
 extern void			 pf_purge_expired_src_nodes(void);
+extern void			 pf_purge_expired_states(u_int32_t);
 extern void			 pf_purge_expired_rules(void);
 extern void			 pf_remove_state(struct pf_state *);
 extern void			 pf_remove_divert_state(struct pf_state_key *);
diff --git a/sys/net/pfvar_priv.h b/sys/net/pfvar_priv.h
index 70d135b269d..48c34c05839 100644
--- a/sys/net/pfvar_priv.h
+++ b/sys/net/pfvar_priv.h
@@ -1,4 +1,4 @@
-/*	$OpenBSD: pfvar_priv.h,v 1.11 2022/11/07 12:56:38 dlg Exp $	*/
+/*	$OpenBSD: pfvar_priv.h,v 1.12 2022/11/07 16:35:12 dlg Exp $	*/
 
 /*
  * Copyright (c) 2001 Daniel Hartmeier
@@ -209,7 +209,6 @@ struct pf_pdesc {
 	} hdr;
 };
 
-extern struct timeout	pf_purge_states_to;
 extern struct task	pf_purge_task;
 extern struct timeout	pf_purge_to;
 
@@ -263,6 +262,8 @@ extern struct rwlock	pf_state_lock;
 			    rw_status(&pf_state_lock), __func__);\
 	} while (0)
 
+extern void			 pf_purge_timeout(void *);
+extern void			 pf_purge(void *);
 #endif /* _KERNEL */
 
 #endif /* _NET_PFVAR_PRIV_H_ */