Received: by 2002:a6b:500f:0:0:0:0:0 with SMTP id e15csp310845iob; Tue, 3 May 2022 18:19:42 -0700 (PDT) X-Google-Smtp-Source: ABdhPJzltDzslKRYBIPz+U1DJKlkbpYv5neEHNm0kUHaqUEd8T8+iLQWzpIbJNiep291ke1W23ln X-Received: by 2002:a17:902:d490:b0:15e:b443:6852 with SMTP id c16-20020a170902d49000b0015eb4436852mr7178958plg.111.1651627181948; Tue, 03 May 2022 18:19:41 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1651627181; cv=none; d=google.com; s=arc-20160816; b=Y7fYErNv3uIIehW45ZaC6mpF0AAu4SjAXS03EXr7qxmnTdw4CGH/BbP2lYDxMFZWZ6 aa8WQ8NHgmoAx+4iFvs4XliaKmZhUJzx8OK/kELSMrRkgvw4Aw7hRw0exc/1wwLzo3gD cwJSn89lOEMbrFNJJ94yfIpUbk7BiAh/u39eDEMGLvICI5PQ8w1rB6EN75Z5EOLpYnfm LbV7eIaSua5SbVF8JQl4qvVL9F5+c/wx0kdS07ptMcDEqd2eZSi/Gyt4eWGrGOwq0skd pfZovSpNv6KmcJHOJpDTUyncuWPtHLPSDeWRFOQHu3+k/TNGOvRVbwMRRZzqsx0nCnAL Marw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :message-id:date:subject:cc:to:from:dkim-signature; bh=gw+un10uJqUNP/SbL+e25B/lzjHm7kiGfOYsGY9F7XM=; b=g9Xjn6vsGlRCUaBllrjk2fclh6mZHqFIgJy83c2COdSNMTuB3o/8RAq8SKcxYvDSBV DGFz3ovU9R4IxanxM/WXe9RDA7yDWSAGfytQgrC0ayMgCtKT+dxqyIJ/D+PQ0F+qAspr Q6ZIDxQQNS76U6mDsq7fzVkYribH7O9SU/U6KlglF0cbM49tAs6wP/zKzSCwJP1z4nja wzGdGGfV8u8R3usjnZtT3CNvQS+Dqxn0kt7An2GhHIbEKB0CxiS6SSdtF1fvjoUyUSpK xU5x4r2hlw7CTxH+nMubqbSMCZZyk3sh9vYovCpv6gEmFxIx4GpqcefR5bCW82+LBHPP KfVA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@digitalocean.com header.s=google header.b=IQ5l1Tw0; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=digitalocean.com Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id a13-20020a1709027d8d00b0015d2fb4d45bsi17758927plm.147.2022.05.03.18.19.28; Tue, 03 May 2022 18:19:41 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@digitalocean.com header.s=google header.b=IQ5l1Tw0; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=digitalocean.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S240723AbiECRxq (ORCPT + 99 others); Tue, 3 May 2022 13:53:46 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:42842 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S240643AbiECRxh (ORCPT ); Tue, 3 May 2022 13:53:37 -0400 Received: from mail-il1-x12c.google.com (mail-il1-x12c.google.com [IPv6:2607:f8b0:4864:20::12c]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id BDA6C3B3F8 for ; Tue, 3 May 2022 10:50:04 -0700 (PDT) Received: by mail-il1-x12c.google.com with SMTP id r17so10207962iln.9 for ; Tue, 03 May 2022 10:50:04 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=digitalocean.com; s=google; h=from:to:cc:subject:date:message-id:mime-version :content-transfer-encoding; bh=gw+un10uJqUNP/SbL+e25B/lzjHm7kiGfOYsGY9F7XM=; b=IQ5l1Tw0QCU5PbCxVcnsc+tTDYVs0hkTHeCetz8NmOg+tc+WmC7hJ9Db1EH0ffn3vt lWg5GdxzYnone+VZISJSZcdXLdgw+/rkq0ScHAzuDlP8aaHL8YJrpDCusQSa2CwLTYVQ 5kiLmnnxp6CBthc47Q1I3FP1g2FAl3KmjJcy0= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:from:to:cc:subject:date:message-id:mime-version :content-transfer-encoding; bh=gw+un10uJqUNP/SbL+e25B/lzjHm7kiGfOYsGY9F7XM=; b=HCy3pL/DA0n+6MyldMtpRt7CWfd8FtRoBnRPuckYSFFxmdGzUsNKU+CtOJrbrd9Fzh 9MEsL9m7mtdh/HR4cP2b9jC+n38BUe2EWnyI5JebObBv4X2zyJCIOYSuJ9po6c+48J5m biodR+eENRmPZDMi2L8uKc4EwRd9RWnONL49qrJKAa3quBK+jpP6t8FK99o+7oRSxcWb RDjkLqh9O2fNjdhUADr4A/EZMexrbN4O0sLAz1hpxtq5ucBMaMItRa+cttIRui8Egawe LGxtABS28A36THLk3iisxs98i15oZXutKNXfhnfKrSLYEjw5o4/Pw9MUHCXIcJ7DZp/i O1tQ== X-Gm-Message-State: AOAM530c9ZdqiVNI7W2yjhJxWXaAFtOyozZqwM5yI077yC3D9zPJ3E+1 NC15enmiBpZXJqa8zyS1zxBkyw== X-Received: by 2002:a05:6e02:20e4:b0:2cc:4535:9d22 with SMTP id q4-20020a056e0220e400b002cc45359d22mr7443763ilv.195.1651600203864; Tue, 03 May 2022 10:50:03 -0700 (PDT) Received: from localhost ([2605:a601:ac0f:820:80d8:f53c:c84d:deaa]) by smtp.gmail.com with ESMTPSA id u6-20020a02aa86000000b0032b3a78176dsm4049997jai.49.2022.05.03.10.49.39 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 03 May 2022 10:49:48 -0700 (PDT) From: Seth Forshee To: Thomas Gleixner , Peter Zijlstra , Andy Lutomirski Cc: Josh Poimboeuf , Jiri Kosina , Miroslav Benes , Petr Mladek , Paolo Bonzini , Sean Christopherson , linux-kernel@vger.kernel.org, live-patching@vger.kernel.org, kvm@vger.kernel.org Subject: [PATCH v2] entry/kvm: Make vCPU tasks exit to userspace when a livepatch is pending Date: Tue, 3 May 2022 12:49:34 -0500 Message-Id: <20220503174934.2641605-1-sforshee@digitalocean.com> X-Mailer: git-send-email 2.32.0 MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-Spam-Status: No, score=-2.7 required=5.0 tests=BAYES_00,DKIMWL_WL_HIGH, DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_NONE, SPF_HELO_NONE,SPF_NONE,T_SCC_BODY_TEXT_LINE autolearn=unavailable autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org A task can be livepatched only when it is sleeping or it exits to userspace. This may happen infrequently for a heavily loaded vCPU task, leading to livepatch transition failures. Fake signals will be sent to tasks which fail patching via stack checking. This will cause running vCPU tasks to exit guest mode, but since no signal is pending they return to guest execution without exiting to userspace. Fix this by treating a pending livepatch migration like a pending signal, exiting to userspace with EINTR. This allows the task to be patched, and userspace should re-excecute KVM_RUN to resume guest execution. In my testing, systems where livepatching would timeout after 60 seconds were able to load livepatches within a couple of seconds with this change. Signed-off-by: Seth Forshee --- Changes in v2: - Added _TIF_SIGPENDING to XFER_TO_GUEST_MODE_WORK - Reworded commit message and comments to avoid confusion around the term "migrate" include/linux/entry-kvm.h | 4 ++-- kernel/entry/kvm.c | 7 ++++++- 2 files changed, 8 insertions(+), 3 deletions(-) diff --git a/include/linux/entry-kvm.h b/include/linux/entry-kvm.h index 6813171afccb..bf79e4cbb5a2 100644 --- a/include/linux/entry-kvm.h +++ b/include/linux/entry-kvm.h @@ -17,8 +17,8 @@ #endif #define XFER_TO_GUEST_MODE_WORK \ - (_TIF_NEED_RESCHED | _TIF_SIGPENDING | _TIF_NOTIFY_SIGNAL | \ - _TIF_NOTIFY_RESUME | ARCH_XFER_TO_GUEST_MODE_WORK) + (_TIF_NEED_RESCHED | _TIF_SIGPENDING | _TIF_PATCH_PENDING | \ + _TIF_NOTIFY_SIGNAL | _TIF_NOTIFY_RESUME | ARCH_XFER_TO_GUEST_MODE_WORK) struct kvm_vcpu; diff --git a/kernel/entry/kvm.c b/kernel/entry/kvm.c index 9d09f489b60e..98439dfaa1a0 100644 --- a/kernel/entry/kvm.c +++ b/kernel/entry/kvm.c @@ -14,7 +14,12 @@ static int xfer_to_guest_mode_work(struct kvm_vcpu *vcpu, unsigned long ti_work) task_work_run(); } - if (ti_work & _TIF_SIGPENDING) { + /* + * When a livepatch is pending, force an exit to userspace + * as though a signal is pending to allow the task to be + * patched. + */ + if (ti_work & (_TIF_SIGPENDING | _TIF_PATCH_PENDING)) { kvm_handle_signal_exit(vcpu); return -EINTR; } -- 2.32.0