On Thu, Oct 10, 2024 at 06:36:09PM +0200, Frederic Weisbecker wrote: > After a CPU has set itself offline and before it eventually calls > rcutree_report_cpu_dead(), there are still opportunities for callbacks > to be enqueued, for example from a softirq. When that happens on NOCB, > the rcuog wake-up is deferred through an IPI to an online CPU in order > not to call into the scheduler and risk arming the RT-bandwidth after > hrtimers have been migrated out and disabled. > > But performing a synchronized IPI from a softirq is buggy as reported in > the following scenario: > > WARNING: CPU: 1 PID: 26 at kernel/smp.c:633 smp_call_function_single > Modules linked in: rcutorture torture > CPU: 1 UID: 0 PID: 26 Comm: migration/1 Not tainted > 6.11.0-rc1-00012-g9139f93209d1 #1 > Stopper: multi_cpu_stop+0x0/0x320 <- __stop_cpus+0xd0/0x120 > RIP: 0010:smp_call_function_single > <IRQ> > swake_up_one_online > __call_rcu_nocb_wake > __call_rcu_common > ? rcu_torture_one_read > call_timer_fn > __run_timers > run_timer_softirq > handle_softirqs > irq_exit_rcu > ? tick_handle_periodic > sysvec_apic_timer_interrupt > </IRQ> > > Fix this with forcing deferred rcuog wake up through the NOCB timer when > the CPU is offline. The actual wake up will happen from > rcutree_report_cpu_dead(). > > Reported-by: kernel test robot <oliver.s...@intel.com> > Closes: https://lore.kernel.org/oe-lkp/202409231644.4c55582d-...@intel.com > Fixes: 9139f93209d1 ("rcu/nocb: Fix RT throttling hrtimer armed from offline > CPU") > Reviewed-by: Joel Fernandes (Google) <j...@joelfernandes.org> > Signed-off-by: Frederic Weisbecker <frede...@kernel.org>
Reviewed-by: Paul E. McKenney <paul...@kernel.org> > --- > kernel/rcu/tree_nocb.h | 8 +++++++- > 1 file changed, 7 insertions(+), 1 deletion(-) > > diff --git a/kernel/rcu/tree_nocb.h b/kernel/rcu/tree_nocb.h > index 97b99cd06923..16865475120b 100644 > --- a/kernel/rcu/tree_nocb.h > +++ b/kernel/rcu/tree_nocb.h > @@ -554,13 +554,19 @@ static void __call_rcu_nocb_wake(struct rcu_data *rdp, > bool was_alldone, > rcu_nocb_unlock(rdp); > wake_nocb_gp_defer(rdp, RCU_NOCB_WAKE_LAZY, > TPS("WakeLazy")); > - } else if (!irqs_disabled_flags(flags)) { > + } else if (!irqs_disabled_flags(flags) && cpu_online(rdp->cpu)) > { > /* ... if queue was empty ... */ > rcu_nocb_unlock(rdp); > wake_nocb_gp(rdp, false); > trace_rcu_nocb_wake(rcu_state.name, rdp->cpu, > TPS("WakeEmpty")); > } else { > + /* > + * Don't do the wake-up upfront on fragile paths. > + * Also offline CPUs can't call swake_up_one_online() > from > + * (soft-)IRQs. Rely on the final deferred wake-up from > + * rcutree_report_cpu_dead() > + */ > rcu_nocb_unlock(rdp); > wake_nocb_gp_defer(rdp, RCU_NOCB_WAKE, > TPS("WakeEmptyIsDeferred")); > -- > 2.46.0 >