Re: [PATCH v7 10/22] sched: Reject CPU affinity changes based on... | linux-arch

[PATCH v7 00/22] Add support for 32-bit tasks on asymmetric AArch32 systems · Will Deacon <will@kernel.org> · 2021-05-25
[PATCH v7 01/22] sched: Favour predetermined active CPU as migration destination · Will Deacon <will@kernel.org> · 2021-05-25
Re: [PATCH v7 01/22] sched: Favour predetermined active CPU as migration destination · Valentin Schneider <hidden> · 2021-05-26
Re: [PATCH v7 01/22] sched: Favour predetermined active CPU as migration destination · Peter Zijlstra <peterz@infradead.org> · 2021-05-26
Re: [PATCH v7 01/22] sched: Favour predetermined active CPU as migration destination · Valentin Schneider <hidden> · 2021-05-26
Re: [PATCH v7 01/22] sched: Favour predetermined active CPU as migration destination · Will Deacon <will@kernel.org> · 2021-05-26
Re: [PATCH v7 01/22] sched: Favour predetermined active CPU as migration destination · Valentin Schneider <hidden> · 2021-05-26
[PATCH v7 02/22] arm64: cpuinfo: Split AArch32 registers out into a separate struct · Will Deacon <will@kernel.org> · 2021-05-25
[PATCH v7 03/22] arm64: Allow mismatched 32-bit EL0 support · Will Deacon <will@kernel.org> · 2021-05-25
[PATCH v7 04/22] KVM: arm64: Kill 32-bit vCPUs on systems with mismatched EL0 support · Will Deacon <will@kernel.org> · 2021-05-25
[PATCH v7 05/22] arm64: Kill 32-bit applications scheduled on 64-bit-only CPUs · Will Deacon <will@kernel.org> · 2021-05-25
[PATCH v7 06/22] arm64: Advertise CPUs capable of running 32-bit applications in sysfs · Will Deacon <will@kernel.org> · 2021-05-25
[PATCH v7 07/22] sched: Introduce task_cpu_possible_mask() to limit fallback rq selection · Will Deacon <will@kernel.org> · 2021-05-25
[PATCH v7 08/22] cpuset: Don't use the cpu_possible_mask as a last resort for cgroup v1 · Will Deacon <will@kernel.org> · 2021-05-25
Re: [PATCH v7 08/22] cpuset: Don't use the cpu_possible_mask as a last resort for cgroup v1 · Peter Zijlstra <peterz@infradead.org> · 2021-05-26
Re: [PATCH v7 08/22] cpuset: Don't use the cpu_possible_mask as a last resort for cgroup v1 · Will Deacon <will@kernel.org> · 2021-05-26
[PATCH v7 09/22] cpuset: Honour task_cpu_possible_mask() in guarantee_online_cpus() · Will Deacon <will@kernel.org> · 2021-05-25
[PATCH v7 10/22] sched: Reject CPU affinity changes based on task_cpu_possible_mask() · Will Deacon <will@kernel.org> · 2021-05-25
Re: [PATCH v7 10/22] sched: Reject CPU affinity changes based on task_cpu_possible_mask() · Peter Zijlstra <peterz@infradead.org> · 2021-05-26
Re: [PATCH v7 10/22] sched: Reject CPU affinity changes based on task_cpu_possible_mask() · Will Deacon <will@kernel.org> · 2021-05-26
Re: [PATCH v7 10/22] sched: Reject CPU affinity changes based on task_cpu_possible_mask() · Peter Zijlstra <peterz@infradead.org> · 2021-05-26
Re: [PATCH v7 10/22] sched: Reject CPU affinity changes based on task_cpu_possible_mask() · Will Deacon <will@kernel.org> · 2021-05-26
[PATCH v7 11/22] sched: Introduce task_struct::user_cpus_ptr to track requested affinity · Will Deacon <will@kernel.org> · 2021-05-25
[PATCH v7 12/22] sched: Split the guts of sched_setaffinity() into a helper function · Will Deacon <will@kernel.org> · 2021-05-25
[PATCH v7 13/22] sched: Allow task CPU affinity to be restricted on asymmetric systems · Will Deacon <will@kernel.org> · 2021-05-25
Re: [PATCH v7 13/22] sched: Allow task CPU affinity to be restricted on asymmetric systems · Peter Zijlstra <peterz@infradead.org> · 2021-05-26
Re: [PATCH v7 13/22] sched: Allow task CPU affinity to be restricted on asymmetric systems · Will Deacon <will@kernel.org> · 2021-05-26
Re: [PATCH v7 13/22] sched: Allow task CPU affinity to be restricted on asymmetric systems · Peter Zijlstra <peterz@infradead.org> · 2021-05-26
Re: [PATCH v7 13/22] sched: Allow task CPU affinity to be restricted on asymmetric systems · Will Deacon <will@kernel.org> · 2021-05-26
Re: [PATCH v7 13/22] sched: Allow task CPU affinity to be restricted on asymmetric systems · Peter Zijlstra <peterz@infradead.org> · 2021-05-27
[PATCH v7 14/22] sched: Introduce task_cpus_dl_admissible() to check proposed affinity · Will Deacon <will@kernel.org> · 2021-05-25
[PATCH v7 15/22] freezer: Add frozen_or_skipped() helper function · Will Deacon <will@kernel.org> · 2021-05-25
[PATCH v7 16/22] sched: Defer wakeup in ttwu() for unschedulable frozen tasks · Will Deacon <will@kernel.org> · 2021-05-25
Re: [PATCH v7 16/22] sched: Defer wakeup in ttwu() for unschedulable frozen tasks · Peter Zijlstra <peterz@infradead.org> · 2021-05-27
Re: [PATCH v7 16/22] sched: Defer wakeup in ttwu() for unschedulable frozen tasks · Peter Zijlstra <peterz@infradead.org> · 2021-05-27
Re: [PATCH v7 16/22] sched: Defer wakeup in ttwu() for unschedulable frozen tasks · Will Deacon <will@kernel.org> · 2021-05-27
Re: [PATCH v7 16/22] sched: Defer wakeup in ttwu() for unschedulable frozen tasks · Peter Zijlstra <peterz@infradead.org> · 2021-05-27
Re: [PATCH v7 16/22] sched: Defer wakeup in ttwu() for unschedulable frozen tasks · Peter Zijlstra <peterz@infradead.org> · 2021-05-27
Re: [PATCH v7 16/22] sched: Defer wakeup in ttwu() for unschedulable frozen tasks · Peter Zijlstra <peterz@infradead.org> · 2021-05-28
Re: [PATCH v7 16/22] sched: Defer wakeup in ttwu() for unschedulable frozen tasks · Will Deacon <will@kernel.org> · 2021-05-27
[RFC][PATCH] freezer,sched: Rewrite core freezer logic · Peter Zijlstra <peterz@infradead.org> · 2021-06-01
Re: [RFC][PATCH] freezer,sched: Rewrite core freezer logic · Peter Zijlstra <peterz@infradead.org> · 2021-06-01
Re: [RFC][PATCH] freezer,sched: Rewrite core freezer logic · Will Deacon <will@kernel.org> · 2021-06-02
Re: [RFC][PATCH] freezer,sched: Rewrite core freezer logic · Peter Zijlstra <peterz@infradead.org> · 2021-06-03
Re: [RFC][PATCH] freezer,sched: Rewrite core freezer logic · Will Deacon <will@kernel.org> · 2021-06-03
Re: [RFC][PATCH] freezer,sched: Rewrite core freezer logic · Peter Zijlstra <peterz@infradead.org> · 2021-06-03
Re: [RFC][PATCH] freezer,sched: Rewrite core freezer logic · Will Deacon <will@kernel.org> · 2021-06-03
[PATCH v7 17/22] arm64: Implement task_cpu_possible_mask() · Will Deacon <will@kernel.org> · 2021-05-25
[PATCH v7 18/22] arm64: exec: Adjust affinity for compat tasks with mismatched 32-bit EL0 · Will Deacon <will@kernel.org> · 2021-05-25
[PATCH v7 19/22] arm64: Prevent offlining first CPU with 32-bit EL0 on mismatched system · Will Deacon <will@kernel.org> · 2021-05-25
[PATCH v7 20/22] arm64: Hook up cmdline parameter to allow mismatched 32-bit EL0 · Will Deacon <will@kernel.org> · 2021-05-25
[PATCH v7 21/22] arm64: Remove logic to kill 32-bit tasks on 64-bit-only cores · Will Deacon <will@kernel.org> · 2021-05-25
[PATCH v7 22/22] Documentation: arm64: describe asymmetric 32-bit support · Will Deacon <will@kernel.org> · 2021-05-25
Re: [PATCH v7 22/22] Documentation: arm64: describe asymmetric 32-bit support · Marc Zyngier <maz@kernel.org> · 2021-05-25
Re: [PATCH v7 22/22] Documentation: arm64: describe asymmetric 32-bit support · Will Deacon <will@kernel.org> · 2021-05-25
Re: [PATCH v7 22/22] Documentation: arm64: describe asymmetric 32-bit support · Marc Zyngier <maz@kernel.org> · 2021-05-25
Re: [PATCH v7 22/22] Documentation: arm64: describe asymmetric 32-bit support · Will Deacon <will@kernel.org> · 2021-05-26

Re: [PATCH v7 10/22] sched: Reject CPU affinity changes based on task_cpu_possible_mask()

From: Will Deacon <will@kernel.org>
Date: 2021-05-26 19:00:00
Also in: linux-arm-kernel, lkml

On Wed, May 26, 2021 at 07:56:51PM +0200, Peter Zijlstra wrote:

On Wed, May 26, 2021 at 05:12:49PM +0100, Will Deacon wrote:

quoted

On Wed, May 26, 2021 at 05:15:51PM +0200, Peter Zijlstra wrote:

quoted

On Tue, May 25, 2021 at 04:14:20PM +0100, Will Deacon wrote:

quoted

Reject explicit requests to change the affinity mask of a task via
set_cpus_allowed_ptr() if the requested mask is not a subset of the
mask returned by task_cpu_possible_mask(). This ensures that the
'cpus_mask' for a given task cannot contain CPUs which are incapable of
executing it, except in cases where the affinity is forced.

Reviewed-by: Quentin Perret <redacted>
Signed-off-by: Will Deacon <will@kernel.org>
---
 kernel/sched/core.c | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/kernel/sched/core.c b/kernel/sched/core.c
index 00ed51528c70..8ca7854747f1 100644
--- a/kernel/sched/core.c
+++ b/kernel/sched/core.c

@@ -2346,6 +2346,7 @@ static int __set_cpus_allowed_ptr(struct task_struct *p,
 				  u32 flags)
 {
 	const struct cpumask *cpu_valid_mask = cpu_active_mask;
+	const struct cpumask *cpu_allowed_mask = task_cpu_possible_mask(p);
 	unsigned int dest_cpu;
 	struct rq_flags rf;
 	struct rq *rq;

@@ -2366,6 +2367,9 @@ static int __set_cpus_allowed_ptr(struct task_struct *p,
 		 * set_cpus_allowed_common() and actually reset p->cpus_ptr.
 		 */
 		cpu_valid_mask = cpu_online_mask;
+	} else if (!cpumask_subset(new_mask, cpu_allowed_mask)) {
+		ret = -EINVAL;
+		goto out;
 	}

So what about the case where the 32bit task is in-kernel and in
migrate-disable ? surely we ought to still validate the new mask against
task_cpu_possible_mask.

That's a good question.

Given that 32-bit tasks in the kernel are running in 64-bit mode, we can
actually tolerate them moving around arbitrarily as long as they _never_ try
to return to userspace on a 64-bit-only CPU. I think this should be the case
as long as we don't try to return to userspace with migration disabled, no?

Consider:

	8 CPUs, lower 4 have 32bit, higher 4 do not

	A - a 32 bit task		B

	sys_foo()
	  migrate_disable()
	  				sys_sched_setaffinity(A, 0xf0)
					  if (.. | migration_disabled(A))
					    // not checking nothing

					  __do_set_cpus_allowed();

	  migrate_enable()
	    __set_cpus_allowed(SCA_MIGRATE_ENABLE)
	      // frob outselves somewhere in 0xf0
	  sysret
	  *BOOM*


That is, I'm thinking we ought to disallow that sched_setaffinity() with
-EINVAL for 0xf0 has no intersection with 0x0f.

I *think* the cpuset_cpus_allowed() check in sys_sched_setaffinity()
will save us here by reducing the 0xf0 mask to 0x0 early on. However,
after seeing this example I'd be much happier checking this in SCA anyway so
I'll add that for the next version!

Thanks,

Will

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help