Re: [RFC PATCH 11/14] context-tracking: Introduce work deferral infrastructure

[RFC PATCH 00/14] context_tracking,x86: Defer some IPIs until a user->kernel transition · Valentin Schneider <vschneid@redhat.com> · 2023-07-05
[RFC PATCH 01/14] tracing/filters: Dynamically allocate filter_pred.regex · Valentin Schneider <vschneid@redhat.com> · 2023-07-05
[RFC PATCH 03/14] tracing/filters: Enable filtering a scalar field by a cpumask · Valentin Schneider <vschneid@redhat.com> · 2023-07-05
Re: [RFC PATCH 03/14] tracing/filters: Enable filtering a scalar field by a cpumask · Steven Rostedt <rostedt@goodmis.org> · 2023-07-05
[RFC PATCH 02/14] tracing/filters: Enable filtering a cpumask field by another cpumask · Valentin Schneider <vschneid@redhat.com> · 2023-07-05
Re: [RFC PATCH 02/14] tracing/filters: Enable filtering a cpumask field by another cpumask · Steven Rostedt <rostedt@goodmis.org> · 2023-07-05
[RFC PATCH 05/14] tracing/filters: Document cpumask filtering · Valentin Schneider <vschneid@redhat.com> · 2023-07-05
[RFC PATCH 04/14] tracing/filters: Enable filtering the CPU common field by a cpumask · Valentin Schneider <vschneid@redhat.com> · 2023-07-05
[RFC PATCH 06/14] objtool: Flesh out warning related to pv_ops[] calls · Valentin Schneider <vschneid@redhat.com> · 2023-07-05
[RFC PATCH 07/14] objtool: Warn about non __ro_after_init static key usage in .noinstr · Valentin Schneider <vschneid@redhat.com> · 2023-07-05
[RFC PATCH 08/14] BROKEN: context_tracking: Make context_tracking_key __ro_after_init · Valentin Schneider <vschneid@redhat.com> · 2023-07-05
Re: [RFC PATCH 08/14] BROKEN: context_tracking: Make context_tracking_key __ro_after_init · Peter Zijlstra <peterz@infradead.org> · 2023-07-05
[RFC PATCH 09/14] x86/kvm: Make kvm_async_pf_enabled __ro_after_init · Valentin Schneider <vschneid@redhat.com> · 2023-07-05
[RFC PATCH 10/14] x86/sev-es: Make sev_es_enable_key __ro_after_init · Valentin Schneider <vschneid@redhat.com> · 2023-07-05
[RFC PATCH 11/14] context-tracking: Introduce work deferral infrastructure · Valentin Schneider <vschneid@redhat.com> · 2023-07-05
Re: [RFC PATCH 11/14] context-tracking: Introduce work deferral infrastructure · Frederic Weisbecker <frederic@kernel.org> · 2023-07-05
Re: [RFC PATCH 11/14] context-tracking: Introduce work deferral infrastructure · Peter Zijlstra <peterz@infradead.org> · 2023-07-05
Re: [RFC PATCH 11/14] context-tracking: Introduce work deferral infrastructure · Frederic Weisbecker <frederic@kernel.org> · 2023-07-06
Re: [RFC PATCH 11/14] context-tracking: Introduce work deferral infrastructure · Frederic Weisbecker <frederic@kernel.org> · 2023-07-06
Re: [RFC PATCH 11/14] context-tracking: Introduce work deferral infrastructure · Valentin Schneider <vschneid@redhat.com> · 2023-07-06
Re: [RFC PATCH 11/14] context-tracking: Introduce work deferral infrastructure · Frederic Weisbecker <frederic@kernel.org> · 2023-07-06
Re: [RFC PATCH 11/14] context-tracking: Introduce work deferral infrastructure · "Paul E. McKenney" <paulmck@kernel.org> · 2023-07-06
Re: [RFC PATCH 11/14] context-tracking: Introduce work deferral infrastructure · Valentin Schneider <vschneid@redhat.com> · 2023-07-06
Re: [RFC PATCH 11/14] context-tracking: Introduce work deferral infrastructure · Frederic Weisbecker <frederic@kernel.org> · 2023-07-06
Re: [RFC PATCH 11/14] context-tracking: Introduce work deferral infrastructure · Peter Zijlstra <peterz@infradead.org> · 2023-07-05
Re: [RFC PATCH 11/14] context-tracking: Introduce work deferral infrastructure · Valentin Schneider <vschneid@redhat.com> · 2023-07-06
[RFC PATCH 12/14] context_tracking,x86: Defer kernel text patching IPIs · Valentin Schneider <vschneid@redhat.com> · 2023-07-05
[RFC PATCH 13/14] context_tracking,x86: Add infrastructure to defer kernel TLBI · Valentin Schneider <vschneid@redhat.com> · 2023-07-05
[RFC PATCH 14/14] x86/mm, mm/vmalloc: Defer flush_tlb_kernel_range() targeting NOHZ_FULL CPUs · Valentin Schneider <vschneid@redhat.com> · 2023-07-05
Re: [RFC PATCH 00/14] context_tracking,x86: Defer some IPIs until a user->kernel transition · Nadav Amit <hidden> · 2023-07-05
Re: [RFC PATCH 00/14] context_tracking,x86: Defer some IPIs until a user->kernel transition · Valentin Schneider <vschneid@redhat.com> · 2023-07-06
Re: [RFC PATCH 00/14] context_tracking,x86: Defer some IPIs until a user->kernel transition · Steven Rostedt <rostedt@goodmis.org> · 2023-07-05
Re: [RFC PATCH 00/14] context_tracking,x86: Defer some IPIs until a user->kernel transition · Valentin Schneider <vschneid@redhat.com> · 2023-07-06

From: Valentin Schneider <vschneid@redhat.com>
Date: 2023-07-06 11:32:28
Also in: bpf, kvm, linux-doc, linux-mm, lkml

On 06/07/23 00:39, Peter Zijlstra wrote:

On Wed, Jul 05, 2023 at 07:12:53PM +0100, Valentin Schneider wrote:

quoted

Note: A previous approach by PeterZ [1] used an extra bit in
context_tracking.state to flag the presence of deferred callbacks to
execute, and the actual callbacks were stored in a separate atomic
variable.

This meant that the atomic read of context_tracking.state was sufficient to
determine whether there are any deferred callbacks to execute.
Unfortunately, it presents a race window. Consider the work setting
function as:

  preempt_disable();
  seq = atomic_read(&ct->seq);
  if (__context_tracking_seq_in_user(seq)) {
       /* ctrl-dep */
       atomic_or(work, &ct->work);
       ret = atomic_try_cmpxchg(&ct->seq, &seq, seq|CT_SEQ_WORK);
  }
  preempt_enable();

  return ret;

Then the following can happen:

  CPUx                                             CPUy
                                                  CT_SEQ_WORK \in context_tracking.state
    atomic_or(WORK_N, &ct->work);
                                                   ct_kernel_enter()
                                                     ct_state_inc();
    atomic_try_cmpxchg(&ct->seq, &seq, seq|CT_SEQ_WORK);

The cmpxchg() would fail, ultimately causing an IPI for WORK_N to be
sent. Unfortunately, the work bit would remain set, and it can't be sanely
cleared in case another CPU set it concurrently - this would ultimately
lead to a double execution of the callback, one as a deferred callback and
one in the IPI. As not all IPI callbacks are idempotent, this is
undesirable.

So adding another atomic is arguably worse.

The thing is, if the NOHZ_FULL CPU is actually doing context transitions
(SYSCALLs etc..) then everything is fundamentally racy, there is no
winning that game, we could find the remote CPU is in-kernel, send an
IPI, the remote CPU does return-to-user and receives the IPI.

And then the USER is upset... because he got an IPI.

Yeah, that part is inevitably racy.

The thing I was especially worried about was the potential double
executions (once in IPI, again in deferred work). It's not /too/ bad as the
only two deferred callbacks I'm introducing here are costly-but-stateless,
but IMO is a bad foundation.

But it seems like we can reuse the existing atomic and squeeze some bits in
there, so let's see how that goes :-)

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help