Xen project Mailing List

Re: [Xen-devel] PV-shim 4.13 assertion failures during vcpu_wake()

From: Roger Pau Monné <roger.pau@xxxxxxxxxx>

Date: Mon, 21 Oct 2019 13:36:27 +0200

Authentication-results: esa1.hc3370-68.iphmx.com; dkim=none (message not signed) header.i=none; spf=None smtp.pra=roger.pau@xxxxxxxxxx; spf=Pass smtp.mailfrom=roger.pau@xxxxxxxxxx; spf=None smtp.helo=postmaster@xxxxxxxxxxxxxxx

Cc: Sergey Dyasli <sergey.dyasli@xxxxxxxxxx>, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, George Dunlap <George.Dunlap@xxxxxxxxxx>, Dario Faggioli <dfaggioli@xxxxxxxx>, Jan Beulich <JBeulich@xxxxxxxx>, Xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxxx>

Delivery-date: Mon, 21 Oct 2019 11:36:44 +0000

Ironport-sdr: n895ykOrDpOtdRldLPgdhXGgWoHNKE764cy5hoczqVLWzHX9utvHvjeeE4oXNP63fKW+7bXQuq +iHXSH3APVLvuzqloMcbqkFDrHPBNUtwTPVagXfRrnERbu/EKfytjJMEcAfKtG05H/tcD0BRWR KOab7iw08uZqm+vtfWEhCMfUoVDurMExR14wgKoH2jLNVtUniGYv9bkPdsgwMXRt9EOqdcKLtd Bsc0TQ3xoq66QgHr2vBtXnKJv5GRqkhdcdHB1eHCk3UAzWNnxm2zNpnusNPhG+KlJLZAN8Mlp+ 6js=

List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On Mon, Oct 21, 2019 at 12:52:10PM +0200, Jürgen Groß wrote: > On 21.10.19 11:51, Sergey Dyasli wrote: > > Hello, > > > > While testing pv-shim from a snapshot of staging 4.13 branch (with core- > > scheduling patches applied), some sort of scheduling issues were uncovered > > which usually leads to a guest lockup (sometimes with soft lockup messages > > from Linux kernel). > > > > This happens more frequently on SandyBridge CPUs. After enabling > > CONFIG_DEBUG in pv-shim, the following assertions failed: > > > > Null scheduler: > > > > Assertion 'lock == get_sched_res(i->res->master_cpu)->schedule_lock' > > failed at ...are/xen-dir/xen-root/xen/include/xen/sched-if.h:278 > > (full crash log: https://paste.debian.net/1108861/ ) > > > > Credit1 scheduler: > > > > Assertion 'cpumask_cycle(cpu, unit->cpu_hard_affinity) == cpu' failed > > at sched_credit.c:383 > > (full crash log: https://paste.debian.net/1108862/ ) > > > > I'm currently investigation those, but would appreciate any help or > > suggestions. > > Hmm, I think that pv_shim_cpu_up() shouldn't do the vcpu_wake(), but the > caller. > > Does the attached patch help? > > > Juergen > From 068ea0419d1a67e967b9431ed11e24b731cd357f Mon Sep 17 00:00:00 2001 > From: Juergen Gross <jgross@xxxxxxxx> > Date: Mon, 21 Oct 2019 12:28:33 +0200 > Subject: [PATCH] xen/shim: fix pv-shim cpu up/down > > Calling vcpu_wake() from pv_shim_cpu_up() is wrong as it is not yet > sure that the correct scheduler has taken over the cpu. I'm not sure why this is wrong, the scheduler should be capable of handling 2 vCPUs on a single pCPU while the new pCPU is brought online? Note that with the current code the vcpu_wake is not performed until cpu_up_helper has been called and returned successfully. > Doing the > call after continue_hypercall_on_cpu() is correct, so let > pv_shim_cpu_up() just online the cpu. > > Adapt pv_shim_cpu_down() to be symmetric, even if that is not > required for correctness. > > Reported-by: Sergey Dyasli <sergey.dyasli@xxxxxxxxxx> > Signed-off-by: Juergen Gross <jgross@xxxxxxxx> > --- > xen/arch/x86/pv/shim.c | 16 ---------------- > xen/common/domain.c | 31 ++++++++++++++++++------------- > 2 files changed, 18 insertions(+), 29 deletions(-) > > diff --git a/xen/arch/x86/pv/shim.c b/xen/arch/x86/pv/shim.c > index 5edbcd9ac5..bc6a2f3eb9 100644 > --- a/xen/arch/x86/pv/shim.c > +++ b/xen/arch/x86/pv/shim.c > @@ -815,16 +815,11 @@ long pv_shim_cpu_up(void *data) > { > struct vcpu *v = data; > struct domain *d = v->domain; > - bool wake; > > BUG_ON(smp_processor_id() != 0); > > - domain_lock(d); > if ( !v->is_initialised ) > - { > domain_unlock(d); > - return -EINVAL; I think you wanted to remove the domain_unlock not the return. > - } > > if ( !cpu_online(v->vcpu_id) ) > { > @@ -832,18 +827,12 @@ long pv_shim_cpu_up(void *data) > > if ( rc ) > { > - domain_unlock(d); > gprintk(XENLOG_ERR, "Failed to bring up CPU#%u: %ld\n", > v->vcpu_id, rc); > return rc; > } > } > > - wake = test_and_clear_bit(_VPF_down, &v->pause_flags); > - domain_unlock(d); > - if ( wake ) > - vcpu_wake(v); > - > return 0; > } > > @@ -852,11 +841,6 @@ long pv_shim_cpu_down(void *data) > struct vcpu *v = data; > long rc; > > - BUG_ON(smp_processor_id() != 0); > - > - if ( !test_and_set_bit(_VPF_down, &v->pause_flags) ) > - vcpu_sleep_sync(v); > - > if ( cpu_online(v->vcpu_id) ) > { > rc = cpu_down_helper((void *)(unsigned long)v->vcpu_id); > diff --git a/xen/common/domain.c b/xen/common/domain.c > index 9c7360ed2a..e83657e310 100644 > --- a/xen/common/domain.c > +++ b/xen/common/domain.c > @@ -1428,19 +1428,21 @@ long do_vcpu_op(int cmd, unsigned int vcpuid, > XEN_GUEST_HANDLE_PARAM(void) arg) > break; > > case VCPUOP_up: > -#ifdef CONFIG_X86 > - if ( pv_shim ) > - rc = continue_hypercall_on_cpu(0, pv_shim_cpu_up, v); > - else > -#endif > { > bool wake = false; > > domain_lock(d); > - if ( !v->is_initialised ) > - rc = -EINVAL; > - else > - wake = test_and_clear_bit(_VPF_down, &v->pause_flags); > +#ifdef CONFIG_X86 > + if ( pv_shim ) > + rc = continue_hypercall_on_cpu(0, pv_shim_cpu_up, v); > +#endif > + if ( !rc ) > + { > + if ( !v->is_initialised ) > + rc = -EINVAL; > + else > + wake = test_and_clear_bit(_VPF_down, &v->pause_flags); > + } Hm, I'm not sure why this is any different from the current code, continue_hypercall_on_cpu will schedule pv_shim_cpu_up to be called on CPU0, but it won't wait for it to execute, so you are clearing the pause_flags bit without having any guarantee that the physical CPU is actually up? The previous code waited for cpu_up_helper to return successfully before onlining the vCPU, which seems better IMO. Thanks, Roger. _______________________________________________ Xen-devel mailing list Xen-devel@xxxxxxxxxxxxxxxxxxxx https://lists.xenproject.org/mailman/listinfo/xen-devel

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.