From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from bombadil.infradead.org (bombadil.infradead.org [198.137.202.133]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.lore.kernel.org (Postfix) with ESMTPS id B7AC9C61DB2 for ; Tue, 10 Jun 2025 10:56:52 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=lists.infradead.org; s=bombadil.20210309; h=Sender: Content-Transfer-Encoding:Content-Type:List-Subscribe:List-Help:List-Post: List-Archive:List-Unsubscribe:List-Id:MIME-Version:Message-Id:Date:Subject:Cc :To:From:Reply-To:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References: List-Owner; bh=b5e5yjuE1a4S6qhC3eJt1dSj6EiMi5keRmv04udpn44=; b=iYcKP6EOQY4vE7 5xOpaIwUGlq+5X9Hr9SBxPr+HGvqJUEH8/9K11VYCmze0oNSfAjoDeEsxJoli1NgV8nbCgYQ/neff 8zH6scjJZaWee/mLLZMbf24jO9ekmgYDfKjqifD8UgFLGFJ0QKqFvzB79x7JkUUOTVUVmWURN30jE fhypy7PKRCNZTYsm50tToeq8vS4ySFzZMfBiRhGeS8eXPvqk+gXlHRuNbvr3qWt3ltuADKh2HcPgM FzWcUMRO3CIAP6A2q1DlO0h/rx8AELhjYcjUckUeVFcdNIG6nWM7+i+Hyf2Y4a21PiX8YSWXepfuT 4T4LxSZpCId80H4+JSbQ==; Received: from localhost ([::1] helo=bombadil.infradead.org) by bombadil.infradead.org with esmtp (Exim 4.98.2 #2 (Red Hat Linux)) id 1uOweq-00000006Xyp-3edp; Tue, 10 Jun 2025 10:56:44 +0000 Received: from galois.linutronix.de ([2a0a:51c0:0:12e:550::1]) by bombadil.infradead.org with esmtps (Exim 4.98.2 #2 (Red Hat Linux)) id 1uOvWW-00000006NdC-0ORo for linux-riscv@lists.infradead.org; Tue, 10 Jun 2025 09:44:05 +0000 From: Nam Cao DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linutronix.de; s=2020; t=1749548640; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version: content-transfer-encoding:content-transfer-encoding; bh=SZMOrP06kZrewA602yCTsu9L2V2A2fq6+NcLHJNfgDY=; b=akgYQT72Th+21NnyspKbZ4vkgz+MNQ/25XD54kZ30PKf/k21TLkD1ySRkQy13ucolEPBTV 0okskafGQqONd6AQz7FblGR66U5rMeEdsOjnIHN19gzQC365eKx65vwe9N2Azx2LqpDQjm Vl5kkHdosK+A5XUH5KOCPCltuCaOSM4dvuUyr2zDMmLqZgX+RIgQkNtyMd75cP3kMpBe0J vCItgpBpO6eo/zqKIl3Hg0KAo3lqf2awaA1h16rUqJhL2LZaxxiJ+o73W06JCEDIF+ss1a dPhkTp+lxrSOg82ak3XBFklgg7GvpiZHENdD71z3pE8qWVAx0SBEatJCgR2LrQ== DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/relaxed; d=linutronix.de; s=2020e; t=1749548640; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version: content-transfer-encoding:content-transfer-encoding; bh=SZMOrP06kZrewA602yCTsu9L2V2A2fq6+NcLHJNfgDY=; b=B0+ZbjK1u5VCZTueWtabNwoO+ZbpiooyXycv+tx41/6i34EafIq/34BiRnKtx1Mu55HJE1 V1G0kR3XN/i9k4Cw== To: Steven Rostedt , Gabriele Monaco , linux-trace-kernel@vger.kernel.org, linux-kernel@vger.kernel.org Cc: john.ogness@linutronix.de, Nam Cao , Petr Mladek , Sergey Senozhatsky , Paul Walmsley , Palmer Dabbelt , Albert Ou , Alexandre Ghiti , linux-riscv@lists.infradead.org Subject: [PATCH v10 00/19] RV: Linear temporal logic monitors for RT application Date: Tue, 10 Jun 2025 11:43:25 +0200 Message-Id: MIME-Version: 1.0 X-CRM114-Version: 20100106-BlameMichelson ( TRE 0.8.0 (BSD) ) MR-646709E3 X-CRM114-CacheID: sfid-20250610_024404_417663_9047B17C X-CRM114-Status: GOOD ( 28.35 ) X-BeenThere: linux-riscv@lists.infradead.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: "linux-riscv" Errors-To: linux-riscv-bounces+linux-riscv=archiver.kernel.org@lists.infradead.org Real-time applications may have design flaws causing them to have unexpected latency. For example, the applications may raise page faults, or may be blocked trying to take a mutex without priority inheritance. However, while attempting to implement DA monitors for these real-time rules, deterministic automaton is found to be inappropriate as the specification language. The automaton is complicated, hard to understand, and error-prone. For these cases, linear temporal logic is found to be more suitable. The LTL is more concise and intuitive. This series adds support for LTL RV monitor, and use it to implement two monitors for reporting problems with real-time tasks. Patch 1-12 cleanup and prepare the RV code for the integration of LTL monitors. Patch 13 adds support for LTL monitors. Patch 14 adds the container monitor "rtapp". This encapsulates the sub-monitors for real-time. Patch 15 prepares the pagefault tracepoints on riscv, so that patch 16 can add the monitor which watches real-time tasks doing page faults. Patch 17 adds the "sleep" monitor: it detects potential undesirable latency with real-time threads. Patch 18 adds documentation on the new monitors. Patch 19 allows the number of per-task monitors to be configurable, so that the two new monitors can be enabled simultaneously. v9->v10 https://lore.kernel.org/lkml/cover.1747649899.git.namcao@linutronix.de - rebase onto v6.16-rc1 (only the vpanic patch is changed) - riscv: move page fault tracepoints back to be after kprobe pagefault handling - drop x86 tracepoint patches, they have already been applied - drop arm64 tracepoint patch. It requires further discussion and will be sent separately. - pagefault monitor: set dependency on x86 and riscv, only these archs have the required tracepoints right now. v8->v9 https://lore.kernel.org/lkml/cover.1747046848.git.namcao@linutronix.de/ - Move page faults tracepoints to be before kprobe pagefault handling - Add guidance into Kconfig entries whether they should be enabled - Replace TRACE_EVENT with DECLARE_EVENT_CLASS for the tracepoint classes, so that the class names are not wrongly exposed to userspace v7->v8 https://lore.kernel.org/lkml/cover.1746776116.git.namcao@linutronix.de/ - Fix some pylint warnings - Fix some bugs with some currently-unused operators in the ltl2ba.py script - sleep monitor: Allow all FUTEX_WAIT_* as valid sleep reason v6->v7 https://lore.kernel.org/lkml/cover.1745999587.git.namcao@linutronix.de/ - Add missing parameter description for vpanic() - Remove the now-redundant CFLAGS_fault.o for x86 - Change #if to #ifdef to resolve a build warning - rtapp/sleep monitor: + Handle the case where an RT task "aborts" the sleep by setting state to TASK_RUNNING. This case previously caused a false positive. Fix it by adding "ABORT_SLEEP" as an RT-safe wake. + Also allow CLOCK_TAI for real-time tasks. v5->v6 https://lore.kernel.org/lkml/cover.1745926331.git.namcao@linutronix.de - sleep monitor: Drop the block_on_rt_mutex tracepoints. The contention tracepoints are sufficient. v4->v5 https://lore.kernel.org/lkml/cover.1745390829.git.namcao@linutronix.de - sleep monitor: Fix a false positive due to a race with waking and scheduling. - sleep monitor: Add block_on_rt_mutex tracepoints and use them for BLOCK_ON_RT_MUTEX, instead of trace_sched_pi_setprio - sleep monitor: tighten the rule on nanosleep: only clock_nanosleep() with TIMER_ABSTIME and CLOCK_MONOTONIC is allowed - add comments explaining why it is correct to treat PI-boosted tasks as real-time tasks. It should be noted that due to the changes in v5, 'perf' does not work as well as before, because sometimes the errors happen out of the real-time tasks' contexts. Fixing this is left for future work. stress-ng is also far noisier in v5, because the rule on nanosleep is tightened. v3->v4 https://lore.kernel.org/lkml/cover.1744785335.git.namcao@linutronix.de - support deadline tasks - rtapp_sleep: use sched_pi_setprio tracepoint instead of contention tracepoints for BLOCK_ON_RT_MUTEX, so that proxy lock is covered. - fix the scripts generating an "slightly" incorrect verification automaton - makes rtapp monitor depends on RV_PER_TASK_MONITORS >= 2 - make the event tracepoint output a bit more readable - some documentation's format fixes v2->v3 https://lore.kernel.org/lkml/cover.1744355018.git.namcao@linutronix.de/ - fix a problem with sleep monitor's specification (around KTHREAD_SHOULD_STOP) - merge the patches that move the dot2k/rvgen scripts around - pull panic/printk changes into separate patches - fixup some build errors - fixup monitor's init function return code - fix some flake8 warnings with the scripts - add some references to LTL documentation - fixup some mistakes with rtapp documentation - fixup capitalization mistake with monitor_synthesis.rst - remove the now-redundant macro RV_PER_TASK_MONITORS v1->v2 https://lore.kernel.org/lkml/cover.1741708239.git.namcao@linutronix.de/ - Integrate the LTL scripts into the existing dot2k tool, taking advantage of the existing monitor generation scripts. - Switch the struct ltl_monitor to use bitmap instead of an array, to optimize memory usage. - Correct the generated code to be non-deterministic state machine, instead of deterministic state machine - Put common code for all LTL monitors into a single file (include/rv/ltl_monitor.h), reducing code duplication - Change the LTL monitors to make user of container. Add a bug fix to container while at it. - Make the number of per-task monitor configurable Cc: Petr Mladek Cc: John Ogness Cc: Sergey Senozhatsky Cc: Paul Walmsley Cc: Palmer Dabbelt Cc: Albert Ou Cc: Alexandre Ghiti Cc: linux-riscv@lists.infradead.org Nam Cao (19): rv: Add #undef TRACE_INCLUDE_FILE printk: Make vprintk_deferred() public panic: Add vpanic() rv: Let the reactors take care of buffers verification/dot2k: Make a separate dot2k_templates/Kconfig_container verification/dot2k: Remove __buff_to_string() verification/dot2k: Replace is_container() hack with subparsers rv: rename CONFIG_DA_MON_EVENTS to CONFIG_RV_MON_EVENTS verification/dot2k: Prepare the frontend for LTL inclusion Documentation/rv: Prepare monitor synthesis document for LTL inclusion verification/rvgen: Restructure the templates files verification/rvgen: Restructure the classes to prepare for LTL inclusion rv: Add support for LTL monitors rv: Add rtapp container monitor riscv: mm: Add page fault trace points rv: Add rtapp_pagefault monitor rv: Add rtapp_sleep monitor rv: Add documentation for rtapp monitor rv: Allow to configure the number of per-task monitor .../trace/rv/da_monitor_synthesis.rst | 147 ----- Documentation/trace/rv/index.rst | 4 +- .../trace/rv/linear_temporal_logic.rst | 122 ++++ Documentation/trace/rv/monitor_rtapp.rst | 116 ++++ Documentation/trace/rv/monitor_synthesis.rst | 256 +++++++++ arch/riscv/mm/fault.c | 8 + include/linux/panic.h | 3 + include/linux/printk.h | 5 + include/linux/rv.h | 74 ++- include/linux/sched.h | 8 +- include/rv/da_monitor.h | 45 +- include/rv/ltl_monitor.h | 184 ++++++ kernel/fork.c | 5 +- kernel/panic.c | 16 +- kernel/printk/internal.h | 1 - kernel/trace/rv/Kconfig | 27 +- kernel/trace/rv/Makefile | 3 + kernel/trace/rv/monitors/pagefault/Kconfig | 20 + .../trace/rv/monitors/pagefault/pagefault.c | 87 +++ .../trace/rv/monitors/pagefault/pagefault.h | 57 ++ .../rv/monitors/pagefault/pagefault_trace.h | 14 + kernel/trace/rv/monitors/rtapp/Kconfig | 15 + kernel/trace/rv/monitors/rtapp/rtapp.c | 33 ++ kernel/trace/rv/monitors/rtapp/rtapp.h | 3 + kernel/trace/rv/monitors/sleep/Kconfig | 22 + kernel/trace/rv/monitors/sleep/sleep.c | 236 ++++++++ kernel/trace/rv/monitors/sleep/sleep.h | 250 ++++++++ kernel/trace/rv/monitors/sleep/sleep_trace.h | 14 + kernel/trace/rv/reactor_panic.c | 8 +- kernel/trace/rv/reactor_printk.c | 8 +- kernel/trace/rv/rv.c | 10 +- kernel/trace/rv/rv_reactors.c | 2 +- kernel/trace/rv/rv_trace.h | 52 +- tools/verification/dot2/Makefile | 26 - tools/verification/dot2/dot2k | 53 -- tools/verification/models/rtapp/pagefault.ltl | 1 + tools/verification/models/rtapp/sleep.ltl | 22 + tools/verification/rvgen/.gitignore | 3 + tools/verification/rvgen/Makefile | 27 + tools/verification/rvgen/__main__.py | 67 +++ tools/verification/{dot2 => rvgen}/dot2c | 2 +- .../{dot2 => rvgen/rvgen}/automata.py | 0 tools/verification/rvgen/rvgen/container.py | 22 + .../{dot2 => rvgen/rvgen}/dot2c.py | 2 +- tools/verification/rvgen/rvgen/dot2k.py | 129 +++++ .../dot2k.py => rvgen/rvgen/generator.py} | 249 ++------ tools/verification/rvgen/rvgen/ltl2ba.py | 540 ++++++++++++++++++ tools/verification/rvgen/rvgen/ltl2k.py | 245 ++++++++ .../rvgen/templates}/Kconfig | 0 .../rvgen/rvgen/templates/container/Kconfig | 5 + .../rvgen/templates/container/main.c} | 0 .../rvgen/templates/container/main.h} | 0 .../rvgen/templates/dot2k}/main.c | 0 .../rvgen/templates/dot2k}/trace.h | 0 .../rvgen/rvgen/templates/ltl2k/main.c | 102 ++++ .../rvgen/rvgen/templates/ltl2k/trace.h | 14 + 56 files changed, 2873 insertions(+), 491 deletions(-) delete mode 100644 Documentation/trace/rv/da_monitor_synthesis.rst create mode 100644 Documentation/trace/rv/linear_temporal_logic.rst create mode 100644 Documentation/trace/rv/monitor_rtapp.rst create mode 100644 Documentation/trace/rv/monitor_synthesis.rst create mode 100644 include/rv/ltl_monitor.h create mode 100644 kernel/trace/rv/monitors/pagefault/Kconfig create mode 100644 kernel/trace/rv/monitors/pagefault/pagefault.c create mode 100644 kernel/trace/rv/monitors/pagefault/pagefault.h create mode 100644 kernel/trace/rv/monitors/pagefault/pagefault_trace.h create mode 100644 kernel/trace/rv/monitors/rtapp/Kconfig create mode 100644 kernel/trace/rv/monitors/rtapp/rtapp.c create mode 100644 kernel/trace/rv/monitors/rtapp/rtapp.h create mode 100644 kernel/trace/rv/monitors/sleep/Kconfig create mode 100644 kernel/trace/rv/monitors/sleep/sleep.c create mode 100644 kernel/trace/rv/monitors/sleep/sleep.h create mode 100644 kernel/trace/rv/monitors/sleep/sleep_trace.h delete mode 100644 tools/verification/dot2/Makefile delete mode 100644 tools/verification/dot2/dot2k create mode 100644 tools/verification/models/rtapp/pagefault.ltl create mode 100644 tools/verification/models/rtapp/sleep.ltl create mode 100644 tools/verification/rvgen/.gitignore create mode 100644 tools/verification/rvgen/Makefile create mode 100644 tools/verification/rvgen/__main__.py rename tools/verification/{dot2 => rvgen}/dot2c (97%) rename tools/verification/{dot2 => rvgen/rvgen}/automata.py (100%) create mode 100644 tools/verification/rvgen/rvgen/container.py rename tools/verification/{dot2 => rvgen/rvgen}/dot2c.py (99%) create mode 100644 tools/verification/rvgen/rvgen/dot2k.py rename tools/verification/{dot2/dot2k.py => rvgen/rvgen/generator.py} (52%) create mode 100644 tools/verification/rvgen/rvgen/ltl2ba.py create mode 100644 tools/verification/rvgen/rvgen/ltl2k.py rename tools/verification/{dot2/dot2k_templates => rvgen/rvgen/templates}/Kconfig (100%) create mode 100644 tools/verification/rvgen/rvgen/templates/container/Kconfig rename tools/verification/{dot2/dot2k_templates/main_container.c => rvgen/rvgen/templates/container/main.c} (100%) rename tools/verification/{dot2/dot2k_templates/main_container.h => rvgen/rvgen/templates/container/main.h} (100%) rename tools/verification/{dot2/dot2k_templates => rvgen/rvgen/templates/dot2k}/main.c (100%) rename tools/verification/{dot2/dot2k_templates => rvgen/rvgen/templates/dot2k}/trace.h (100%) create mode 100644 tools/verification/rvgen/rvgen/templates/ltl2k/main.c create mode 100644 tools/verification/rvgen/rvgen/templates/ltl2k/trace.h -- 2.39.5 _______________________________________________ linux-riscv mailing list linux-riscv@lists.infradead.org http://lists.infradead.org/mailman/listinfo/linux-riscv