 @@ -1,14 +1,14 @@
-/*	$NetBSD: subr_copy.c,v 1.14 2020/05/23 23:42:43 ad Exp $	*/
+/*	$NetBSD: subr_copy.c,v 1.15 2022/02/11 17:53:28 riastradh Exp $	*/
 /*-
  * Copyright (c) 1997, 1998, 1999, 2002, 2007, 2008, 2019
  *	The NetBSD Foundation, Inc.
  * All rights reserved.
+ *
  * This code is derived from software contributed to The NetBSD Foundation
  * by Jason R. Thorpe of the Numerical Aerospace Simulation Facility,
  * NASA Ames Research Center.
+ *
  * Redistribution and use in source and binary forms, with or without
  * modification, are permitted provided that the following conditions
  * are met:
 @@ -70,27 +70,27 @@
  * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
  * SUCH DAMAGE.
+ *
  *	@(#)kern_subr.c	8.4 (Berkeley) 2/14/95
  */
 #include <sys/cdefs.h>
-__KERNEL_RCSID(0, "$NetBSD: subr_copy.c,v 1.14 2020/05/23 23:42:43 ad Exp $");
+__KERNEL_RCSID(0, "$NetBSD: subr_copy.c,v 1.15 2022/02/11 17:53:28 riastradh Exp $");
 #define	__UFETCHSTORE_PRIVATE
 #define	__UCAS_PRIVATE
 #include <sys/param.h>
 #include <sys/fcntl.h>
 #include <sys/proc.h>
 #include <sys/systm.h>
 #include <uvm/uvm_extern.h>
 void
 uio_setup_sysspace(struct uio *uio)
 @@ -390,89 +390,129 @@ do {									\
 #include <sys/mutex.h>
 #include <sys/ipi.h>
 static int ucas_critical_splcookie;
 static volatile u_int ucas_critical_pausing_cpus;
 static u_int ucas_critical_ipi;
 static ONCE_DECL(ucas_critical_init_once)
 static void
 ucas_critical_cpu_gate(void *arg __unused)
+{
 	int count = SPINLOCK_BACKOFF_MIN;
-	KASSERT(ucas_critical_pausing_cpus > 0);
+	KASSERT(atomic_load_relaxed(&ucas_critical_pausing_cpus) > 0);
 	/*
 	 * Notify ucas_critical_wait that we have stopped.  Using
 	 * store-release ensures all our memory operations up to the
 	 * IPI happen before the ucas -- no buffered stores on our end
 	 * can clobber it later on, for instance.
+	 *
 	 * Matches atomic_load_acquire in ucas_critical_wait -- turns
 	 * the following atomic_dec_uint into a store-release.
 	 */
 #ifndef __HAVE_ATOMIC_AS_MEMBAR
 	membar_exit();
 #endif
 	atomic_dec_uint(&ucas_critical_pausing_cpus);
 	while (ucas_critical_pausing_cpus != (u_int)-1) {
 	/*
 	 * Wait for ucas_critical_exit to reopen the gate and let us
 	 * proceed.  Using a load-acquire ensures the ucas happens
 	 * before any of our memory operations when we return from the
 	 * IPI and proceed -- we won't observe any stale cached value
 	 * that the ucas overwrote, for instance.
+	 *
 	 * Matches atomic_store_release in ucas_critical_exit.
 	 */
 	while (atomic_load_acquire(&ucas_critical_pausing_cpus) != (u_int)-1) {
 		SPINLOCK_BACKOFF(count);
+	}
+}
 static int
 ucas_critical_init(void)
+{
 	ucas_critical_ipi = ipi_register(ucas_critical_cpu_gate, NULL);
 	return 0;
+}
 static void
 ucas_critical_wait(void)
+{
 	int count = SPINLOCK_BACKOFF_MIN;
-	while (ucas_critical_pausing_cpus > 0) {
+	/*
 	 * Wait for all CPUs to stop at the gate.  Using a load-acquire
 	 * ensures all memory operations before they stop at the gate
 	 * happen before the ucas -- no buffered stores in other CPUs
 	 * can clobber it later on, for instance.
+	 *
 	 * Matches membar_exit/atomic_dec_uint (store-release) in
 	 * ucas_critical_cpu_gate.
 	 */
 	while (atomic_load_acquire(&ucas_critical_pausing_cpus) > 0) {
 		SPINLOCK_BACKOFF(count);
+	}
+}
 #endif /* ! __HAVE_UCAS_MP && MULTIPROCESSOR */
 static inline void
 ucas_critical_enter(lwp_t * const l)
+{
 #if !defined(__HAVE_UCAS_MP) && defined(MULTIPROCESSOR)
 	if (ncpu > 1) {
 		RUN_ONCE(&ucas_critical_init_once, ucas_critical_init);
 		/*
 		 * Acquire the mutex first, then go to splhigh() and
 		 * broadcast the IPI to lock all of the other CPUs
 		 * behind the gate.
+		 *
 		 * N.B. Going to splhigh() implicitly disables preemption,
 		 * so there's no need to do it explicitly.
 		 */
 		mutex_enter(&cpu_lock);
 		ucas_critical_splcookie = splhigh();
 		ucas_critical_pausing_cpus = ncpu - 1;
 		membar_enter();
 		ipi_trigger_broadcast(ucas_critical_ipi, true);
 		ucas_critical_wait();
 		return;
+	}
 #endif /* ! __HAVE_UCAS_MP && MULTIPROCESSOR */
 	KPREEMPT_DISABLE(l);
+}
 static inline void
 ucas_critical_exit(lwp_t * const l)
+{
 #if !defined(__HAVE_UCAS_MP) && defined(MULTIPROCESSOR)
 	if (ncpu > 1) {
-		membar_exit();
+		/*
-		ucas_critical_pausing_cpus = (u_int)-1;
+		 * Open the gate and notify all CPUs in
 		 * ucas_critical_cpu_gate that they can now proceed.
 		 * Using a store-release ensures the ucas happens
 		 * before any memory operations they issue after the
 		 * IPI -- they won't observe any stale cache of the
 		 * target word, for instance.
+		 *
 		 * Matches atomic_load_acquire in ucas_critical_cpu_gate.
 		 */
 		atomic_store_release(&ucas_critical_pausing_cpus, (u_int)-1);
 		splx(ucas_critical_splcookie);
 		mutex_exit(&cpu_lock);
 		return;
+	}
 #endif /* ! __HAVE_UCAS_MP && MULTIPROCESSOR */
 	KPREEMPT_ENABLE(l);
+}
 int
 _ucas_32(volatile uint32_t *uaddr, uint32_t old, uint32_t new, uint32_t *ret)
+{
 	lwp_t * const l = curlwp;