From: Oliver Upton <oliver.upton@linux.dev>
To: Jean-Philippe Brucker <jean-philippe@linaro.org>
Cc: maz@kernel.org, james.morse@arm.com, suzuki.poulose@arm.com,
yuzenghui@huawei.com, catalin.marinas@arm.com, will@kernel.org,
linux-arm-kernel@lists.infradead.org, kvmarm@lists.linux.dev
Subject: Re: [PATCH 1/4] KVM: arm64: vgic: Fix a circular locking issue
Date: Thu, 18 May 2023 18:21:28 +0000 [thread overview]
Message-ID: <ZGZsqNZXsq+a+eFA@linux.dev> (raw)
In-Reply-To: <20230518100914.2837292-2-jean-philippe@linaro.org>
On Thu, May 18, 2023 at 11:09:15AM +0100, Jean-Philippe Brucker wrote:
> Lockdep reports a circular lock dependency between the srcu and the
> config_lock:
>
> [ 262.179917] -> #1 (&kvm->srcu){.+.+}-{0:0}:
> [ 262.182010] __synchronize_srcu+0xb0/0x224
> [ 262.183422] synchronize_srcu_expedited+0x24/0x34
> [ 262.184554] kvm_io_bus_register_dev+0x324/0x50c
> [ 262.185650] vgic_register_redist_iodev+0x254/0x398
> [ 262.186740] vgic_v3_set_redist_base+0x3b0/0x724
> [ 262.188087] kvm_vgic_addr+0x364/0x600
> [ 262.189189] vgic_set_common_attr+0x90/0x544
> [ 262.190278] vgic_v3_set_attr+0x74/0x9c
> [ 262.191432] kvm_device_ioctl+0x2a0/0x4e4
> [ 262.192515] __arm64_sys_ioctl+0x7ac/0x1ba8
> [ 262.193612] invoke_syscall.constprop.0+0x70/0x1e0
> [ 262.195006] do_el0_svc+0xe4/0x2d4
> [ 262.195929] el0_svc+0x44/0x8c
> [ 262.196917] el0t_64_sync_handler+0xf4/0x120
> [ 262.198238] el0t_64_sync+0x190/0x194
> [ 262.199224]
> [ 262.199224] -> #0 (&kvm->arch.config_lock){+.+.}-{3:3}:
> [ 262.201094] __lock_acquire+0x2b70/0x626c
> [ 262.202245] lock_acquire+0x454/0x778
> [ 262.203132] __mutex_lock+0x190/0x8b4
> [ 262.204023] mutex_lock_nested+0x24/0x30
> [ 262.205100] vgic_mmio_write_v3_misc+0x5c/0x2a0
> [ 262.206178] dispatch_mmio_write+0xd8/0x258
> [ 262.207498] __kvm_io_bus_write+0x1e0/0x350
> [ 262.208582] kvm_io_bus_write+0xe0/0x1cc
> [ 262.209653] io_mem_abort+0x2ac/0x6d8
> [ 262.210569] kvm_handle_guest_abort+0x9b8/0x1f88
> [ 262.211937] handle_exit+0xc4/0x39c
> [ 262.212971] kvm_arch_vcpu_ioctl_run+0x90c/0x1c04
> [ 262.214154] kvm_vcpu_ioctl+0x450/0x12f8
> [ 262.215233] __arm64_sys_ioctl+0x7ac/0x1ba8
> [ 262.216402] invoke_syscall.constprop.0+0x70/0x1e0
> [ 262.217774] do_el0_svc+0xe4/0x2d4
> [ 262.218758] el0_svc+0x44/0x8c
> [ 262.219941] el0t_64_sync_handler+0xf4/0x120
> [ 262.221110] el0t_64_sync+0x190/0x194
>
> Note that the current report, which can be triggered by the vgic_irq
> kselftest, is a triple chain that includes slots_lock, but after
> inverting the slots_lock/config_lock dependency, the actual problem
> reported above remains.
>
> In several places, the vgic code calls kvm_io_bus_register_dev(), which
> synchronizes the srcu, while holding config_lock (#1). And the MMIO
> handler takes the config_lock while holding the srcu read lock (#0).
>
> Break dependency #1, by registering the distributor and redistributors
> without holding config_lock. The ITS also uses kvm_io_bus_register_dev()
> but already relies on slots_lock to serialize calls.
>
> The distributor iodev is created on the first KVM_RUN call. Multiple
> threads will race for vgic initialization, and only the first one will
> see !vgic_ready() under the lock. To serialize those threads, rely on
> slots_lock rather than config_lock.
>
> Redistributors are created earlier, through KVM_DEV_ARM_VGIC_GRP_ADDR
> ioctls and vCPU creation. Similarly, serialize the iodev creation with
> slots_lock, and the rest with config_lock.
>
> Fixes: f00327731131 ("KVM: arm64: Use config_lock to protect vgic state")
> Signed-off-by: Jean-Philippe Brucker <jean-philippe@linaro.org>
Marc, can you squash this in when you apply the series? Get a compiler
warning since 'ret' is now unused.
diff --git a/arch/arm64/kvm/vgic/vgic-mmio.c b/arch/arm64/kvm/vgic/vgic-mmio.c
index ce3d17463c6b..ff558c05e990 100644
--- a/arch/arm64/kvm/vgic/vgic-mmio.c
+++ b/arch/arm64/kvm/vgic/vgic-mmio.c
@@ -1096,7 +1096,6 @@ int vgic_register_dist_iodev(struct kvm *kvm, gpa_t dist_base_address,
enum vgic_type type)
{
struct vgic_io_device *io_device = &kvm->arch.vgic.dist_iodev;
- int ret = 0;
unsigned int len;
switch (type) {
--
Thanks,
Oliver
WARNING: multiple messages have this Message-ID (diff)
From: Oliver Upton <oliver.upton@linux.dev>
To: Jean-Philippe Brucker <jean-philippe@linaro.org>
Cc: maz@kernel.org, james.morse@arm.com, suzuki.poulose@arm.com,
yuzenghui@huawei.com, catalin.marinas@arm.com, will@kernel.org,
linux-arm-kernel@lists.infradead.org, kvmarm@lists.linux.dev
Subject: Re: [PATCH 1/4] KVM: arm64: vgic: Fix a circular locking issue
Date: Thu, 18 May 2023 18:21:28 +0000 [thread overview]
Message-ID: <ZGZsqNZXsq+a+eFA@linux.dev> (raw)
In-Reply-To: <20230518100914.2837292-2-jean-philippe@linaro.org>
On Thu, May 18, 2023 at 11:09:15AM +0100, Jean-Philippe Brucker wrote:
> Lockdep reports a circular lock dependency between the srcu and the
> config_lock:
>
> [ 262.179917] -> #1 (&kvm->srcu){.+.+}-{0:0}:
> [ 262.182010] __synchronize_srcu+0xb0/0x224
> [ 262.183422] synchronize_srcu_expedited+0x24/0x34
> [ 262.184554] kvm_io_bus_register_dev+0x324/0x50c
> [ 262.185650] vgic_register_redist_iodev+0x254/0x398
> [ 262.186740] vgic_v3_set_redist_base+0x3b0/0x724
> [ 262.188087] kvm_vgic_addr+0x364/0x600
> [ 262.189189] vgic_set_common_attr+0x90/0x544
> [ 262.190278] vgic_v3_set_attr+0x74/0x9c
> [ 262.191432] kvm_device_ioctl+0x2a0/0x4e4
> [ 262.192515] __arm64_sys_ioctl+0x7ac/0x1ba8
> [ 262.193612] invoke_syscall.constprop.0+0x70/0x1e0
> [ 262.195006] do_el0_svc+0xe4/0x2d4
> [ 262.195929] el0_svc+0x44/0x8c
> [ 262.196917] el0t_64_sync_handler+0xf4/0x120
> [ 262.198238] el0t_64_sync+0x190/0x194
> [ 262.199224]
> [ 262.199224] -> #0 (&kvm->arch.config_lock){+.+.}-{3:3}:
> [ 262.201094] __lock_acquire+0x2b70/0x626c
> [ 262.202245] lock_acquire+0x454/0x778
> [ 262.203132] __mutex_lock+0x190/0x8b4
> [ 262.204023] mutex_lock_nested+0x24/0x30
> [ 262.205100] vgic_mmio_write_v3_misc+0x5c/0x2a0
> [ 262.206178] dispatch_mmio_write+0xd8/0x258
> [ 262.207498] __kvm_io_bus_write+0x1e0/0x350
> [ 262.208582] kvm_io_bus_write+0xe0/0x1cc
> [ 262.209653] io_mem_abort+0x2ac/0x6d8
> [ 262.210569] kvm_handle_guest_abort+0x9b8/0x1f88
> [ 262.211937] handle_exit+0xc4/0x39c
> [ 262.212971] kvm_arch_vcpu_ioctl_run+0x90c/0x1c04
> [ 262.214154] kvm_vcpu_ioctl+0x450/0x12f8
> [ 262.215233] __arm64_sys_ioctl+0x7ac/0x1ba8
> [ 262.216402] invoke_syscall.constprop.0+0x70/0x1e0
> [ 262.217774] do_el0_svc+0xe4/0x2d4
> [ 262.218758] el0_svc+0x44/0x8c
> [ 262.219941] el0t_64_sync_handler+0xf4/0x120
> [ 262.221110] el0t_64_sync+0x190/0x194
>
> Note that the current report, which can be triggered by the vgic_irq
> kselftest, is a triple chain that includes slots_lock, but after
> inverting the slots_lock/config_lock dependency, the actual problem
> reported above remains.
>
> In several places, the vgic code calls kvm_io_bus_register_dev(), which
> synchronizes the srcu, while holding config_lock (#1). And the MMIO
> handler takes the config_lock while holding the srcu read lock (#0).
>
> Break dependency #1, by registering the distributor and redistributors
> without holding config_lock. The ITS also uses kvm_io_bus_register_dev()
> but already relies on slots_lock to serialize calls.
>
> The distributor iodev is created on the first KVM_RUN call. Multiple
> threads will race for vgic initialization, and only the first one will
> see !vgic_ready() under the lock. To serialize those threads, rely on
> slots_lock rather than config_lock.
>
> Redistributors are created earlier, through KVM_DEV_ARM_VGIC_GRP_ADDR
> ioctls and vCPU creation. Similarly, serialize the iodev creation with
> slots_lock, and the rest with config_lock.
>
> Fixes: f00327731131 ("KVM: arm64: Use config_lock to protect vgic state")
> Signed-off-by: Jean-Philippe Brucker <jean-philippe@linaro.org>
Marc, can you squash this in when you apply the series? Get a compiler
warning since 'ret' is now unused.
diff --git a/arch/arm64/kvm/vgic/vgic-mmio.c b/arch/arm64/kvm/vgic/vgic-mmio.c
index ce3d17463c6b..ff558c05e990 100644
--- a/arch/arm64/kvm/vgic/vgic-mmio.c
+++ b/arch/arm64/kvm/vgic/vgic-mmio.c
@@ -1096,7 +1096,6 @@ int vgic_register_dist_iodev(struct kvm *kvm, gpa_t dist_base_address,
enum vgic_type type)
{
struct vgic_io_device *io_device = &kvm->arch.vgic.dist_iodev;
- int ret = 0;
unsigned int len;
switch (type) {
--
Thanks,
Oliver
_______________________________________________
linux-arm-kernel mailing list
linux-arm-kernel@lists.infradead.org
http://lists.infradead.org/mailman/listinfo/linux-arm-kernel
next prev parent reply other threads:[~2023-05-18 18:21 UTC|newest]
Thread overview: 35+ messages / expand[flat|nested] mbox.gz Atom feed top
2023-05-18 10:09 [PATCH 0/4] KVM: arm64: vgic: Locking fixes Jean-Philippe Brucker
2023-05-18 10:09 ` Jean-Philippe Brucker
2023-05-18 10:09 ` [PATCH 1/4] KVM: arm64: vgic: Fix a circular locking issue Jean-Philippe Brucker
2023-05-18 10:09 ` Jean-Philippe Brucker
2023-05-18 18:21 ` Oliver Upton [this message]
2023-05-18 18:21 ` Oliver Upton
2023-06-06 22:15 ` Nathan Chancellor
2023-06-07 5:23 ` Oliver Upton
2023-06-07 5:23 ` Oliver Upton
2023-06-07 8:37 ` Marc Zyngier
2023-06-07 8:37 ` Marc Zyngier
2023-06-07 13:28 ` Jean-Philippe Brucker
2023-06-07 13:28 ` Jean-Philippe Brucker
2023-06-07 15:04 ` Marc Zyngier
2023-06-07 15:04 ` Marc Zyngier
2023-06-07 15:29 ` Nathan Chancellor
2023-06-07 15:29 ` Nathan Chancellor
2023-06-07 15:42 ` Marc Zyngier
2023-06-07 15:42 ` Marc Zyngier
2023-05-18 10:09 ` [PATCH 2/4] KVM: arm64: vgic: Wrap vgic_its_create() with config_lock Jean-Philippe Brucker
2023-05-18 10:09 ` Jean-Philippe Brucker
2023-05-18 10:09 ` [PATCH 3/4] KVM: arm64: vgic: Fix locking comment Jean-Philippe Brucker
2023-05-18 10:09 ` Jean-Philippe Brucker
2023-05-18 10:09 ` [PATCH 4/4] KVM: arm64: vgic: Fix a comment Jean-Philippe Brucker
2023-05-18 10:09 ` Jean-Philippe Brucker
2023-05-18 18:23 ` [PATCH 0/4] KVM: arm64: vgic: Locking fixes Oliver Upton
2023-05-18 18:23 ` Oliver Upton
2023-05-19 8:46 ` Marc Zyngier
2023-05-19 8:46 ` Marc Zyngier
2023-05-19 13:22 ` Jean-Philippe Brucker
2023-05-19 13:22 ` Jean-Philippe Brucker
2023-05-24 12:40 ` Jean-Philippe Brucker
2023-05-24 12:40 ` Jean-Philippe Brucker
2023-05-24 12:49 ` Marc Zyngier
2023-05-24 12:49 ` Marc Zyngier
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=ZGZsqNZXsq+a+eFA@linux.dev \
--to=oliver.upton@linux.dev \
--cc=catalin.marinas@arm.com \
--cc=james.morse@arm.com \
--cc=jean-philippe@linaro.org \
--cc=kvmarm@lists.linux.dev \
--cc=linux-arm-kernel@lists.infradead.org \
--cc=maz@kernel.org \
--cc=suzuki.poulose@arm.com \
--cc=will@kernel.org \
--cc=yuzenghui@huawei.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.