Re: [PATCH v6 24/29] context_tracking,x86: Defer kernel text patching IPIs

[PATCH v6 00/29] context_tracking,x86: Defer some IPIs until a user->kernel transition · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
[PATCH v6 01/29] objtool: Make validate_call() recognize indirect calls to pv_ops[] · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
[PATCH v6 02/29] objtool: Flesh out warning related to pv_ops[] calls · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
[PATCH v6 03/29] rcu: Add a small-width RCU watching counter debug option · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
[PATCH v6 04/29] rcutorture: Make TREE04 use CONFIG_RCU_DYNTICKS_TORTURE · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
[PATCH v6 05/29] jump_label: Add annotations for validating noinstr usage · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
[PATCH v6 06/29] static_call: Add read-only-after-init static calls · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
Re: [PATCH v6 06/29] static_call: Add read-only-after-init static calls · Petr Tesarik <hidden> · 2025-10-30
Re: [PATCH v6 06/29] static_call: Add read-only-after-init static calls · Valentin Schneider <vschneid@redhat.com> · 2025-10-31
Re: [PATCH v6 06/29] static_call: Add read-only-after-init static calls · Petr Tesarik <hidden> · 2025-11-03
[PATCH v6 07/29] x86/paravirt: Mark pv_sched_clock static call as __ro_after_init · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
[PATCH v6 08/29] x86/idle: Mark x86_idle static call as __ro_after_init · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
[PATCH v6 09/29] x86/paravirt: Mark pv_steal_clock static call as __ro_after_init · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
[PATCH v6 10/29] riscv/paravirt: Mark pv_steal_clock static call as __ro_after_init · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
[PATCH v6 11/29] loongarch/paravirt: Mark pv_steal_clock static call as __ro_after_init · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
[PATCH v6 12/29] arm64/paravirt: Mark pv_steal_clock static call as __ro_after_init · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
[PATCH v6 13/29] arm/paravirt: Mark pv_steal_clock static call as __ro_after_init · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
[PATCH v6 14/29] perf/x86/amd: Mark perf_lopwr_cb static call as __ro_after_init · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
[PATCH v6 15/29] sched/clock: Mark sched_clock_running key as __ro_after_init · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
[PATCH v6 16/29] KVM: VMX: Mark __kvm_is_using_evmcs static key as __ro_after_init · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
Re: [PATCH v6 16/29] KVM: VMX: Mark __kvm_is_using_evmcs static key as __ro_after_init · Sean Christopherson <seanjc@google.com> · 2025-10-14
Re: [PATCH v6 16/29] KVM: VMX: Mark __kvm_is_using_evmcs static key as __ro_after_init · Valentin Schneider <vschneid@redhat.com> · 2025-10-14
[PATCH v6 17/29] x86/speculation/mds: Mark cpu_buf_idle_clear key as allowed in .noinstr · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
[PATCH v6 18/29] sched/clock, x86: Mark __sched_clock_stable key as allowed in .noinstr · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
[PATCH v6 19/29] KVM: VMX: Mark vmx_l1d_should flush and vmx_l1d_flush_cond keys as allowed in .noinstr · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
Re: [PATCH v6 19/29] KVM: VMX: Mark vmx_l1d_should flush and vmx_l1d_flush_cond keys as allowed in .noinstr · Sean Christopherson <seanjc@google.com> · 2025-10-14
Re: [PATCH v6 19/29] KVM: VMX: Mark vmx_l1d_should flush and vmx_l1d_flush_cond keys as allowed in .noinstr · Valentin Schneider <vschneid@redhat.com> · 2025-10-14
Re: [PATCH v6 19/29] KVM: VMX: Mark vmx_l1d_should flush and vmx_l1d_flush_cond keys as allowed in .noinstr · Sean Christopherson <seanjc@google.com> · 2025-10-14
[PATCH v6 20/29] stackleack: Mark stack_erasing_bypass key as allowed in .noinstr · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
[PATCH v6 21/29] objtool: Add noinstr validation for static branches/calls · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
[PATCH v6 22/29] module: Add MOD_NOINSTR_TEXT mem_type · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
[PATCH v6 23/29] context-tracking: Introduce work deferral infrastructure · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
Re: [PATCH v6 23/29] context-tracking: Introduce work deferral infrastructure · Frederic Weisbecker <frederic@kernel.org> · 2025-10-28
Re: [PATCH v6 23/29] context-tracking: Introduce work deferral infrastructure · Valentin Schneider <vschneid@redhat.com> · 2025-10-29
Re: [PATCH v6 23/29] context-tracking: Introduce work deferral infrastructure · Frederic Weisbecker <frederic@kernel.org> · 2025-10-29
Re: [PATCH v6 23/29] context-tracking: Introduce work deferral infrastructure · Shrikanth Hegde <hidden> · 2025-11-03
Re: [PATCH v6 23/29] context-tracking: Introduce work deferral infrastructure · Valentin Schneider <vschneid@redhat.com> · 2025-11-04
[PATCH v6 24/29] context_tracking,x86: Defer kernel text patching IPIs · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
Re: [PATCH v6 24/29] context_tracking,x86: Defer kernel text patching IPIs · Frederic Weisbecker <frederic@kernel.org> · 2025-10-28
[PATCH v6 25/29] x86/mm: Make INVPCID type macros available to assembly · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
[RFC PATCH v6 26/29] x86/mm/pti: Introduce a kernel/user CR3 software signal · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
[RFC PATCH v6 27/29] x86/mm/pti: Implement a TLB flush immediately after a switch to kernel CR3 · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
Re: [RFC PATCH v6 27/29] x86/mm/pti: Implement a TLB flush immediately after a switch to kernel CR3 · Frederic Weisbecker <frederic@kernel.org> · 2025-10-28
Re: [RFC PATCH v6 27/29] x86/mm/pti: Implement a TLB flush immediately after a switch to kernel CR3 · Valentin Schneider <vschneid@redhat.com> · 2025-10-29
Re: [RFC PATCH v6 27/29] x86/mm/pti: Implement a TLB flush immediately after a switch to kernel CR3 · Frederic Weisbecker <frederic@kernel.org> · 2025-10-29
Re: [RFC PATCH v6 27/29] x86/mm/pti: Implement a TLB flush immediately after a switch to kernel CR3 · Valentin Schneider <vschneid@redhat.com> · 2025-10-29
Re: [RFC PATCH v6 27/29] x86/mm/pti: Implement a TLB flush immediately after a switch to kernel CR3 · Frederic Weisbecker <frederic@kernel.org> · 2025-10-29
Re: [RFC PATCH v6 27/29] x86/mm/pti: Implement a TLB flush immediately after a switch to kernel CR3 · Valentin Schneider <vschneid@redhat.com> · 2025-10-31
[RFC PATCH v6 28/29] x86/mm, mm/vmalloc: Defer kernel TLB flush IPIs under CONFIG_COALESCE_TLBI=y · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
[RFC PATCH v6 29/29] x86/entry: Add an option to coalesce TLB flushes · Valentin Schneider <vschneid@redhat.com> · 2025-10-10
Re: [PATCH v6 00/29] context_tracking,x86: Defer some IPIs until a user->kernel transition · Juri Lelli <juri.lelli@redhat.com> · 2025-10-14
Re: [PATCH v6 00/29] context_tracking,x86: Defer some IPIs until a user->kernel transition · Valentin Schneider <vschneid@redhat.com> · 2025-10-14
Re: [PATCH v6 00/29] context_tracking,x86: Defer some IPIs until a user->kernel transition · Valentin Schneider <vschneid@redhat.com> · 2025-10-15
Re: [PATCH v6 00/29] context_tracking,x86: Defer some IPIs until a user->kernel transition · Juri Lelli <juri.lelli@redhat.com> · 2025-10-15
Re: [PATCH v6 00/29] context_tracking,x86: Defer some IPIs until a user->kernel transition · Frederic Weisbecker <frederic@kernel.org> · 2025-10-28
Re: [PATCH v6 00/29] context_tracking,x86: Defer some IPIs until a user->kernel transition · Valentin Schneider <vschneid@redhat.com> · 2025-10-29
Re: [PATCH v6 00/29] context_tracking,x86: Defer some IPIs until a user->kernel transition · Frederic Weisbecker <frederic@kernel.org> · 2025-10-29
Re: [PATCH v6 00/29] context_tracking,x86: Defer some IPIs until a user->kernel transition · Valentin Schneider <vschneid@redhat.com> · 2025-11-05
Re: [PATCH v6 00/29] context_tracking,x86: Defer some IPIs until a user->kernel transition · Frederic Weisbecker <frederic@kernel.org> · 2025-11-05
Re: [PATCH v6 00/29] context_tracking,x86: Defer some IPIs until a user->kernel transition · Valentin Schneider <vschneid@redhat.com> · 2025-11-06

From: Frederic Weisbecker <frederic@kernel.org>
Date: 2025-10-28 14:49:17
Also in: linux-arch, linux-mm, linux-riscv, linux-trace-kernel, lkml, loongarch, rcu

Le Fri, Oct 10, 2025 at 05:38:34PM +0200, Valentin Schneider a écrit :

text_poke_bp_batch() sends IPIs to all online CPUs to synchronize
them vs the newly patched instruction. CPUs that are executing in userspace
do not need this synchronization to happen immediately, and this is
actually harmful interference for NOHZ_FULL CPUs.

As the synchronization IPIs are sent using a blocking call, returning from
text_poke_bp_batch() implies all CPUs will observe the patched
instruction(s), and this should be preserved even if the IPI is deferred.
In other words, to safely defer this synchronization, any kernel
instruction leading to the execution of the deferred instruction
sync (ct_work_flush()) must *not* be mutable (patchable) at runtime.

This means we must pay attention to mutable instructions in the early entry
code:
- alternatives
- static keys
- static calls
- all sorts of probes (kprobes/ftrace/bpf/???)

The early entry code leading to ct_work_flush() is noinstr, which gets rid
of the probes.

Alternatives are safe, because it's boot-time patching (before SMP is
even brought up) which is before any IPI deferral can happen.

This leaves us with static keys and static calls.

Any static key used in early entry code should be only forever-enabled at
boot time, IOW __ro_after_init (pretty much like alternatives). Exceptions
are explicitly marked as allowed in .noinstr and will always generate an
IPI when flipped.

The same applies to static calls - they should be only updated at boot
time, or manually marked as an exception.

Objtool is now able to point at static keys/calls that don't respect this,
and all static keys/calls used in early entry code have now been verified
as behaving appropriately.

Leverage the new context_tracking infrastructure to defer sync_core() IPIs
to a target CPU's next kernel entry.

Signed-off-by: Peter Zijlstra (Intel) <peterz@infradead.org>
Signed-off-by: Nicolas Saenz Julienne <redacted>
Signed-off-by: Valentin Schneider <vschneid@redhat.com>

Acked-by: Frederic Weisbecker <frederic@kernel.org>

-- 
Frederic Weisbecker
SUSE Labs

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help