KVM: arm/arm64: Handle forward time correction gracefully

Message ID	20160406103344.GA17975@cbox
State	New
Headers	show Delivered-To: patch@linaro.org Received-SPF: pass (google.com: best guess record for domain of linux-arm-kernel-bounces+patch=linaro.org@lists.infradead.org designates 2001:1868:205::9 as permitted sender) client-ip=2001:1868:205::9; Date: Wed, 6 Apr 2016 12:33:44 +0200 From: Christoffer Dall <christoffer.dall@linaro.org> To: Marc Zyngier <marc.zyngier@arm.com> Subject: Re: [PATCH] KVM: arm/arm64: Handle forward time correction gracefully Message-ID: <20160406103344.GA17975@cbox> References: <1459931842-29465-1-git-send-email-marc.zyngier@arm.com> MIME-Version: 1.0 Content-Disposition: inline In-Reply-To: <1459931842-29465-1-git-send-email-marc.zyngier@arm.com> User-Agent: Mutt/1.5.21 (2010-09-15) summary: Content analysis details: (-2.7 points) pts rule name description ---- ---------------------- -------------------------------------------------- -0.7 RCVD_IN_DNSWL_LOW RBL: Sender listed at http://www.dnswl.org/, low trust [2a00:1450:400c:c09:0:0:0:22d listed in] [list.dnswl.org] -0.0 SPF_PASS SPF: sender matches SPF record -1.9 BAYES_00 BODY: Bayes spam probability is 0 to 1% [score: 0.0000] 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain Precedence: list Cc: Alexander Graf <agraf@suse.de>, kvmarm@lists.cs.columbia.edu, linux-arm-kernel@lists.infradead.org, kvm@vger.kernel.org Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: "linux-arm-kernel" <linux-arm-kernel-bounces@lists.infradead.org> Errors-To: linux-arm-kernel-bounces+patch=linaro.org@lists.infradead.org

Message ID

20160406103344.GA17975@cbox

State

New

Headers

Received-SPF: pass (google.com: best guess record for domain of
	linux-arm-kernel-bounces+patch=linaro.org@lists.infradead.org
	designates 2001:1868:205::9 as permitted sender)
	client-ip=2001:1868:205::9; 
Date: Wed, 6 Apr 2016 12:33:44 +0200
From: Christoffer Dall <christoffer.dall@linaro.org>
To: Marc Zyngier <marc.zyngier@arm.com>
Subject: Re: [PATCH] KVM: arm/arm64: Handle forward time correction
	gracefully
Message-ID: <20160406103344.GA17975@cbox>
References: <1459931842-29465-1-git-send-email-marc.zyngier@arm.com>
MIME-Version: 1.0
Content-Disposition: inline
In-Reply-To: <1459931842-29465-1-git-send-email-marc.zyngier@arm.com>
User-Agent: Mutt/1.5.21 (2010-09-15)
Precedence: list
Cc: Alexander Graf <agraf@suse.de>, kvmarm@lists.cs.columbia.edu,
	linux-arm-kernel@lists.infradead.org, kvm@vger.kernel.org
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: "linux-arm-kernel" <linux-arm-kernel-bounces@lists.infradead.org>
Errors-To: linux-arm-kernel-bounces+patch=linaro.org@lists.infradead.org

Commit Message

Christoffer Dall April 6, 2016, 10:33 a.m. UTC

On Wed, Apr 06, 2016 at 09:37:22AM +0100, Marc Zyngier wrote:
> On a host that runs NTP, corrections can have a direct impact on

> the background timer that we program on the behalf of a vcpu.

> 

> In particular, NTP performing a forward correction will result in

> a timer expiring sooner than expected from a guest point of view.

> Not a big deal, we kick the vcpu anyway.

> 

> But on wake-up, the vcpu thread is going to perform a check to

> find out whether or not it should block. And at that point, the

> timer check is going to say "timer has not expired yet, go back

> to sleep". This results in the timer event being lost forever.

> 

> There are multiple ways to handle this. One would be record that

> the timer has expired and let kvm_cpu_has_pending_timer return

> true in that case, but that would be fairly invasive. Another is

> to check for the "short sleep" condition in the hrtimer callback,

> and restart the timer for the remaining time when the condition

> is detected.

> 

> This patch implements the latter, with a bit of refactoring in

> order to avoid too much code duplication.

> 

> Reported-by: Alexander Graf <agraf@suse.de>

> Signed-off-by: Marc Zyngier <marc.zyngier@arm.com>

> ---

>  virt/kvm/arm/arch_timer.c | 47 +++++++++++++++++++++++++++++++++++++----------

>  1 file changed, 37 insertions(+), 10 deletions(-)

> 

> diff --git a/virt/kvm/arm/arch_timer.c b/virt/kvm/arm/arch_timer.c

> index a9ad4fe..4d0e77a 100644

> --- a/virt/kvm/arm/arch_timer.c

> +++ b/virt/kvm/arm/arch_timer.c

> @@ -98,10 +98,46 @@ static void kvm_timer_inject_irq_work(struct work_struct *work)

>  	kvm_vcpu_kick(vcpu);

>  }

>  

> +static u64 kvm_timer_compute_delta(struct kvm_vcpu *vcpu)

> +{

> +	cycle_t cval, now;

> +

> +	cval = vcpu->arch.timer_cpu.cntv_cval;

> +	now = kvm_phys_timer_read() - vcpu->kvm->arch.timer.cntvoff;

> +

> +	if (now < cval) {

> +		u64 ns;

> +

> +		ns = cyclecounter_cyc2ns(timecounter->cc,

> +					 cval - now,

> +					 timecounter->mask,

> +					 &timecounter->frac);

> +		return ns;

> +	}

> +

> +	return 0;

> +}

> +

>  static enum hrtimer_restart kvm_timer_expire(struct hrtimer *hrt)

>  {

>  	struct arch_timer_cpu *timer;

> +	struct kvm_vcpu *vcpu;

> +	u64 ns;

> +

>  	timer = container_of(hrt, struct arch_timer_cpu, timer);

> +	vcpu = container_of(timer, struct kvm_vcpu, arch.timer_cpu);

> +

> +	/*

> +	 * Check that the timer has really expired from the guest's

> +	 * PoV (NTP on the host may have forced it to expire

> +	 * early). If we should have slept longer, restart it.

> +	 */

> +	ns = kvm_timer_compute_delta(vcpu);

> +	if (unlikely(ns)) {

> +		hrtimer_forward_now(hrt, ns_to_ktime(ns));

> +		return HRTIMER_RESTART;

> +	}

> +

>  	queue_work(wqueue, &timer->expired);

>  	return HRTIMER_NORESTART;

>  }

> @@ -176,8 +212,6 @@ static int kvm_timer_update_state(struct kvm_vcpu *vcpu)

>  void kvm_timer_schedule(struct kvm_vcpu *vcpu)

>  {

>  	struct arch_timer_cpu *timer = &vcpu->arch.timer_cpu;

> -	u64 ns;

> -	cycle_t cval, now;

>  

>  	BUG_ON(timer_is_armed(timer));

>  

> @@ -197,14 +231,7 @@ void kvm_timer_schedule(struct kvm_vcpu *vcpu)

>  		return;

>  

>  	/*  The timer has not yet expired, schedule a background timer */

> -	cval = timer->cntv_cval;

> -	now = kvm_phys_timer_read() - vcpu->kvm->arch.timer.cntvoff;

> -

> -	ns = cyclecounter_cyc2ns(timecounter->cc,

> -				 cval - now,

> -				 timecounter->mask,

> -				 &timecounter->frac);

> -	timer_arm(timer, ns);

> +	timer_arm(timer, kvm_timer_compute_delta(vcpu));

>  }

>  

>  void kvm_timer_unschedule(struct kvm_vcpu *vcpu)

> -- 

> 2.1.4

> 


How do you guys feel about adding this to the patch for improved sleep
at night (pun intended):



Otherwise:

Reviewed-by: Christoffer Dall <christoffer.dall@linaro.org>


And I can queue this with CC to stable, but I would like Alex's
tested-by if possible.

Thanks,
-Christoffer

_______________________________________________
linux-arm-kernel mailing list
linux-arm-kernel@lists.infradead.org
http://lists.infradead.org/mailman/listinfo/linux-arm-kernel

diff --git a/virt/kvm/arm/arch_timer.c b/virt/kvm/arm/arch_timer.c
index a9ad4fe..230f720 100644
--- a/virt/kvm/arm/arch_timer.c
+++ b/virt/kvm/arm/arch_timer.c
@@ -91,6 +91,8 @@  static void kvm_timer_inject_irq_work(struct work_struct *work)
 	vcpu = container_of(work, struct kvm_vcpu, arch.timer_cpu.expired);
 	vcpu->arch.timer_cpu.armed = false;
 
+	BUG_ON(!kvm_timer_should_fire(vcpu));
+
 	/*
 	 * If the vcpu is blocked we want to wake it up so that it will see
 	 * the timer has expired when entering the guest.

KVM: arm/arm64: Handle forward time correction gracefully

Commit Message

Patch