KVM: arm64: vgic-v3: Reinstate IRQ lock ordering for LPI xarray

static int iter_mark_lpis(struct kvm *kvm)

{

	struct vgic_dist *dist = &kvm->arch.vgic;

	unsigned long intid, flags;

	struct vgic_irq *irq;

	unsigned long intid;

	int nr_lpis = 0;

	xa_lock_irqsave(&dist->lpi_xa, flags);

	xa_for_each(&dist->lpi_xa, intid, irq) {

		if (!vgic_try_get_irq_ref(irq))

			continue;

		xa_set_mark(&dist->lpi_xa, intid, LPI_XA_MARK_DEBUG_ITER);

		__xa_set_mark(&dist->lpi_xa, intid, LPI_XA_MARK_DEBUG_ITER);

		nr_lpis++;

	}

	xa_unlock_irqrestore(&dist->lpi_xa, flags);

	return nr_lpis;

}

static void iter_unmark_lpis(struct kvm *kvm)

{

	struct vgic_dist *dist = &kvm->arch.vgic;

	unsigned long intid, flags;

	struct vgic_irq *irq;

	unsigned long intid;

	xa_for_each_marked(&dist->lpi_xa, intid, irq, LPI_XA_MARK_DEBUG_ITER) {

		xa_clear_mark(&dist->lpi_xa, intid, LPI_XA_MARK_DEBUG_ITER);

		xa_lock_irqsave(&dist->lpi_xa, flags);

		__xa_clear_mark(&dist->lpi_xa, intid, LPI_XA_MARK_DEBUG_ITER);

		xa_unlock_irqrestore(&dist->lpi_xa, flags);

		/* vgic_put_irq() expects to be called outside of the xa_lock */

		vgic_put_irq(kvm, irq);

	}

}

{

	struct vgic_dist *dist = &kvm->arch.vgic;

	xa_init(&dist->lpi_xa);

	xa_init_flags(&dist->lpi_xa, XA_FLAGS_LOCK_IRQ);

}

/* CREATION */

{

	struct vgic_dist *dist = &kvm->arch.vgic;

	struct vgic_irq *irq = vgic_get_irq(kvm, intid), *oldirq;

	unsigned long flags;

	int ret;

	/* In this case there is no put, since we keep the reference. */

	if (!irq)

		return ERR_PTR(-ENOMEM);

	ret = xa_reserve(&dist->lpi_xa, intid, GFP_KERNEL_ACCOUNT);

	ret = xa_reserve_irq(&dist->lpi_xa, intid, GFP_KERNEL_ACCOUNT);

	if (ret) {

		kfree(irq);

		return ERR_PTR(ret);

	irq->target_vcpu = vcpu;

	irq->group = 1;

	xa_lock(&dist->lpi_xa);

	xa_lock_irqsave(&dist->lpi_xa, flags);

	/*

	 * There could be a race with another vgic_add_lpi(), so we need to

	}

out_unlock:

	xa_unlock(&dist->lpi_xa);

	xa_unlock_irqrestore(&dist->lpi_xa, flags);

	if (ret)

		return ERR_PTR(ret);

 *     kvm->arch.config_lock (mutex)

 *       its->cmd_lock (mutex)

 *         its->its_lock (mutex)

 *           vgic_dist->lpi_xa.xa_lock

 *           vgic_dist->lpi_xa.xa_lock		must be taken with IRQs disabled

 *             vgic_cpu->ap_list_lock		must be taken with IRQs disabled

 *               vgic_irq->irq_lock		must be taken with IRQs disabled

 *

void vgic_put_irq(struct kvm *kvm, struct vgic_irq *irq)

{

	struct vgic_dist *dist = &kvm->arch.vgic;

	unsigned long flags;

	if (irq->intid >= VGIC_MIN_LPI)

		might_lock(&dist->lpi_xa.xa_lock);

	/*

	 * Normally the lock is only taken when the refcount drops to 0.

	 * Acquire/release it early on lockdep kernels to make locking issues

	 * in rare release paths a bit more obvious.

	 */

	if (IS_ENABLED(CONFIG_LOCKDEP) && irq->intid >= VGIC_MIN_LPI) {

		guard(spinlock_irqsave)(&dist->lpi_xa.xa_lock);

	}

	if (!__vgic_put_irq(kvm, irq))

		return;

	xa_lock(&dist->lpi_xa);

	xa_lock_irqsave(&dist->lpi_xa, flags);

	vgic_release_lpi_locked(dist, irq);

	xa_unlock(&dist->lpi_xa);

	xa_unlock_irqrestore(&dist->lpi_xa, flags);

}

static void vgic_release_deleted_lpis(struct kvm *kvm)

{

	struct vgic_dist *dist = &kvm->arch.vgic;

	unsigned long intid;

	unsigned long flags, intid;

	struct vgic_irq *irq;

	xa_lock(&dist->lpi_xa);

	xa_lock_irqsave(&dist->lpi_xa, flags);

	xa_for_each(&dist->lpi_xa, intid, irq) {

		if (irq->pending_release)

			vgic_release_lpi_locked(dist, irq);

	}

	xa_unlock(&dist->lpi_xa);

	xa_unlock_irqrestore(&dist->lpi_xa, flags);

}

void vgic_flush_pending_lpis(struct kvm_vcpu *vcpu)