rxrpc: Fix call removal to use RCU safe deletion

author David Howells <dhowells@redhat.com>

Wed, 8 Apr 2026 12:12:32 +0000 (13:12 +0100)

committer Jakub Kicinski <kuba@kernel.org>

Thu, 9 Apr 2026 01:44:32 +0000 (18:44 -0700)
author David Howells <dhowells@redhat.com>
Wed, 8 Apr 2026 12:12:32 +0000 (13:12 +0100)
committer Jakub Kicinski <kuba@kernel.org>
Thu, 9 Apr 2026 01:44:32 +0000 (18:44 -0700)
diff --git a/include/trace/events/rxrpc.h b/include/trace/events/rxrpc.h

index 869f97c9bf733e48ed69b038e3f592a5a3a0ff7f..a826cd80007b34dba36fd6007d5eb47a3e115d96 100644 (file)
--- a/include/trace/events/rxrpc.h
+++ b/include/trace/events/rxrpc.h
@@ -347,7 +347,7 @@
         EM(rxrpc_call_see_release,              "SEE release ") \
         EM(rxrpc_call_see_userid_exists,        "SEE u-exists") \
         EM(rxrpc_call_see_waiting_call,         "SEE q-conn  ") \
-       E_(rxrpc_call_see_zap,                  "SEE zap     ")
+       E_(rxrpc_call_see_still_live,           "SEE !still-l")
  
  #define rxrpc_txqueue_traces \
         EM(rxrpc_txqueue_await_reply,           "AWR") \
diff --git a/net/rxrpc/call_object.c b/net/rxrpc/call_object.c

index 918f41d97a2f93e42fed57262bcb7f3804e1e039..59329cfe15322c81fbc0e9fab2d54ea63798fae1 100644 (file)
--- a/net/rxrpc/call_object.c
+++ b/net/rxrpc/call_object.c
@@ -654,11 +654,9 @@ void rxrpc_put_call(struct rxrpc_call *call, enum rxrpc_call_trace why)
         if (dead) {
                 ASSERTCMP(__rxrpc_call_state(call), ==, RXRPC_CALL_COMPLETE);
  
-               if (!list_empty(&call->link)) {
-                       spin_lock(&rxnet->call_lock);
-                       list_del_init(&call->link);
-                       spin_unlock(&rxnet->call_lock);
-               }
+               spin_lock(&rxnet->call_lock);
+               list_del_rcu(&call->link);
+               spin_unlock(&rxnet->call_lock);
  
                 rxrpc_cleanup_call(call);
         }
@@ -730,24 +728,20 @@ void rxrpc_destroy_all_calls(struct rxrpc_net *rxnet)
         _enter("");
  
         if (!list_empty(&rxnet->calls)) {
-               spin_lock(&rxnet->call_lock);
+               int shown = 0;
  
-               while (!list_empty(&rxnet->calls)) {
-                       call = list_entry(rxnet->calls.next,
-                                         struct rxrpc_call, link);
-                       _debug("Zapping call %p", call);
+               spin_lock(&rxnet->call_lock);
  
-                       rxrpc_see_call(call, rxrpc_call_see_zap);
-                       list_del_init(&call->link);
+               list_for_each_entry(call, &rxnet->calls, link) {
+                       rxrpc_see_call(call, rxrpc_call_see_still_live);
  
                         pr_err("Call %p still in use (%d,%s,%lx,%lx)!\n",
                                call, refcount_read(&call->ref),
                                rxrpc_call_states[__rxrpc_call_state(call)],
                                call->flags, call->events);
  
-                       spin_unlock(&rxnet->call_lock);
-                       cond_resched();
-                       spin_lock(&rxnet->call_lock);
+                       if (++shown >= 10)
+                               break;
                 }
  
                 spin_unlock(&rxnet->call_lock);
author	David Howells <dhowells@redhat.com>
	Wed, 8 Apr 2026 12:12:32 +0000 (13:12 +0100)
committer	Jakub Kicinski <kuba@kernel.org>
	Thu, 9 Apr 2026 01:44:32 +0000 (18:44 -0700)
include/trace/events/rxrpc.h		patch \| blob \| blame \| history
net/rxrpc/call_object.c		patch \| blob \| blame \| history