* [PATCH] x86/resctrl: Fix uninitialized memory read when last CPU of domain goes offline
@ 2024-03-28 21:12 Reinette Chatre
2024-03-28 22:51 ` Luck, Tony
` (2 more replies)
0 siblings, 3 replies; 8+ messages in thread
From: Reinette Chatre @ 2024-03-28 21:12 UTC (permalink / raw)
To: fenghua.yu, bp, james.morse, tony.luck, peternewman, babu.moger,
tglx, mingo, dave.hansen, x86
Cc: reinette.chatre, hpa, james.greenhalgh, linux-kernel
Tony encountered the OOPS below when the last CPU of a domain goes
offline while running a kernel built with CONFIG_NO_HZ_FULL:
BUG: kernel NULL pointer dereference, address: 0000000000000000
#PF: supervisor read access in kernel mode
#PF: error_code(0x0000) - not-present page
PGD 0
Oops: 0000 [#1] PREEMPT SMP NOPTI
...
RIP: 0010:__find_nth_andnot_bit+0x66/0x110
...
Call Trace:
<TASK>
? __die+0x1f/0x60
? page_fault_oops+0x176/0x5a0
? exc_page_fault+0x7f/0x260
? asm_exc_page_fault+0x22/0x30
? __pfx_resctrl_arch_offline_cpu+0x10/0x10
? __find_nth_andnot_bit+0x66/0x110
? __cancel_work+0x7d/0xc0
cpumask_any_housekeeping+0x55/0x110
mbm_setup_overflow_handler+0x40/0x70
resctrl_offline_cpu+0x101/0x110
resctrl_arch_offline_cpu+0x19/0x260
cpuhp_invoke_callback+0x156/0x6b0
? cpuhp_thread_fun+0x5f/0x250
cpuhp_thread_fun+0x1ca/0x250
? __pfx_smpboot_thread_fn+0x10/0x10
smpboot_thread_fn+0x184/0x220
kthread+0xe0/0x110
? __pfx_kthread+0x10/0x10
ret_from_fork+0x2d/0x50
? __pfx_kthread+0x10/0x10
ret_from_fork_asm+0x1a/0x30
</TASK>
The NULL pointer dereference is encountered while searching for another
online CPU in the domain (of which there are none) that can be used to
run the MBM overflow handler.
Because the kernel is configured with CONFIG_NO_HZ_FULL the search for
another CPU (in its effort to prefer those CPUs that aren't marked
nohz_full) consults the mask representing the nohz_full CPUs,
tick_nohz_full_mask. On a kernel with CONFIG_CPUMASK_OFFSTACK=y
tick_nohz_full_mask is not allocated unless the kernel is booted with
the "nohz_full=" parameter and because of that any access to
tick_nohz_full_mask needs to be guarded with tick_nohz_full_enabled().
Add a tick_nohz_full_enabled() check to ensure that tick_nohz_full_mask
has been initialized and can thus be accessed safely.
Fixes: a4846aaf3945 ("x86/resctrl: Add cpumask_any_housekeeping() for limbo/overflow")
Reported-by: Tony Luck <tony.luck@intel.com>
Closes: https://lore.kernel.org/lkml/ZgIFT5gZgIQ9A9G7@agluck-desk3/
Signed-off-by: Reinette Chatre <reinette.chatre@intel.com>
---
arch/x86/kernel/cpu/resctrl/internal.h | 4 ++++
1 file changed, 4 insertions(+)
diff --git a/arch/x86/kernel/cpu/resctrl/internal.h b/arch/x86/kernel/cpu/resctrl/internal.h
index c99f26ebe7a6..4f9ef35626a7 100644
--- a/arch/x86/kernel/cpu/resctrl/internal.h
+++ b/arch/x86/kernel/cpu/resctrl/internal.h
@@ -85,6 +85,10 @@ cpumask_any_housekeeping(const struct cpumask *mask, int exclude_cpu)
if (cpu < nr_cpu_ids && !tick_nohz_full_cpu(cpu))
return cpu;
+ /* Only continue if tick_nohz_full_mask has been initialized. */
+ if (!tick_nohz_full_enabled())
+ return cpu;
+
/* Try to find a CPU that isn't nohz_full to use in preference */
hk_cpu = cpumask_nth_andnot(0, mask, tick_nohz_full_mask);
if (hk_cpu == exclude_cpu)
--
2.34.1
^ permalink raw reply related [flat|nested] 8+ messages in thread
* RE: [PATCH] x86/resctrl: Fix uninitialized memory read when last CPU of domain goes offline
2024-03-28 21:12 [PATCH] x86/resctrl: Fix uninitialized memory read when last CPU of domain goes offline Reinette Chatre
@ 2024-03-28 22:51 ` Luck, Tony
2024-03-29 7:01 ` Ingo Molnar
2024-04-01 17:57 ` Moger, Babu
2 siblings, 0 replies; 8+ messages in thread
From: Luck, Tony @ 2024-03-28 22:51 UTC (permalink / raw)
To: Chatre, Reinette, Yu, Fenghua, bp, james.morse, peternewman,
babu.moger, tglx, mingo, dave.hansen, x86
Cc: hpa, james.greenhalgh, linux-kernel
> Add a tick_nohz_full_enabled() check to ensure that tick_nohz_full_mask
> has been initialized and can thus be accessed safely.
>
> Fixes: a4846aaf3945 ("x86/resctrl: Add cpumask_any_housekeeping() for limbo/overflow")
> Reported-by: Tony Luck <tony.luck@intel.com>
> Closes: https://lore.kernel.org/lkml/ZgIFT5gZgIQ9A9G7@agluck-desk3/
> Signed-off-by: Reinette Chatre <reinette.chatre@intel.com>
Tested-by: Tony Luck <tony.luck@intel.com>
Reviewed-by: Tony Luck <tony.luck@intel.com>
-Tony
^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: [PATCH] x86/resctrl: Fix uninitialized memory read when last CPU of domain goes offline
2024-03-28 21:12 [PATCH] x86/resctrl: Fix uninitialized memory read when last CPU of domain goes offline Reinette Chatre
2024-03-28 22:51 ` Luck, Tony
@ 2024-03-29 7:01 ` Ingo Molnar
2024-03-29 15:25 ` Reinette Chatre
2024-04-01 17:57 ` Moger, Babu
2 siblings, 1 reply; 8+ messages in thread
From: Ingo Molnar @ 2024-03-29 7:01 UTC (permalink / raw)
To: Reinette Chatre
Cc: fenghua.yu, bp, james.morse, tony.luck, peternewman, babu.moger,
tglx, mingo, dave.hansen, x86, hpa, james.greenhalgh,
linux-kernel
* Reinette Chatre <reinette.chatre@intel.com> wrote:
> diff --git a/arch/x86/kernel/cpu/resctrl/internal.h b/arch/x86/kernel/cpu/resctrl/internal.h
> index c99f26ebe7a6..4f9ef35626a7 100644
> --- a/arch/x86/kernel/cpu/resctrl/internal.h
> +++ b/arch/x86/kernel/cpu/resctrl/internal.h
> @@ -85,6 +85,10 @@ cpumask_any_housekeeping(const struct cpumask *mask, int exclude_cpu)
> if (cpu < nr_cpu_ids && !tick_nohz_full_cpu(cpu))
> return cpu;
>
> + /* Only continue if tick_nohz_full_mask has been initialized. */
> + if (!tick_nohz_full_enabled())
> + return cpu;
> +
So we already have this a few lines up:
if (!IS_ENABLED(CONFIG_NO_HZ_FULL))
return cpu;
And we can combine the two checks into a single one, with the patch
below, right?
Untested.
Thanks,
Ingo
==============>
Signed-off-by: Ingo Molnar <mingo@kernel.org>
arch/x86/kernel/cpu/resctrl/internal.h | 3 ++-
1 file changed, 2 insertions(+), 1 deletion(-)
diff --git a/arch/x86/kernel/cpu/resctrl/internal.h b/arch/x86/kernel/cpu/resctrl/internal.h
index c99f26ebe7a6..1a8687f8073a 100644
--- a/arch/x86/kernel/cpu/resctrl/internal.h
+++ b/arch/x86/kernel/cpu/resctrl/internal.h
@@ -78,7 +78,8 @@ cpumask_any_housekeeping(const struct cpumask *mask, int exclude_cpu)
else
cpu = cpumask_any_but(mask, exclude_cpu);
- if (!IS_ENABLED(CONFIG_NO_HZ_FULL))
+ /* Only continue if tick_nohz_full_mask has been initialized. */
+ if (!tick_nohz_full_enabled())
return cpu;
/* If the CPU picked isn't marked nohz_full nothing more needs doing. */
^ permalink raw reply related [flat|nested] 8+ messages in thread
* Re: [PATCH] x86/resctrl: Fix uninitialized memory read when last CPU of domain goes offline
2024-03-29 7:01 ` Ingo Molnar
@ 2024-03-29 15:25 ` Reinette Chatre
2024-03-30 11:12 ` Ingo Molnar
0 siblings, 1 reply; 8+ messages in thread
From: Reinette Chatre @ 2024-03-29 15:25 UTC (permalink / raw)
To: Ingo Molnar
Cc: fenghua.yu, bp, james.morse, tony.luck, peternewman, babu.moger,
tglx, mingo, dave.hansen, x86, hpa, james.greenhalgh,
linux-kernel
Hi Ingo,
On 3/29/2024 12:01 AM, Ingo Molnar wrote:
>
> * Reinette Chatre <reinette.chatre@intel.com> wrote:
>
>> diff --git a/arch/x86/kernel/cpu/resctrl/internal.h b/arch/x86/kernel/cpu/resctrl/internal.h
>> index c99f26ebe7a6..4f9ef35626a7 100644
>> --- a/arch/x86/kernel/cpu/resctrl/internal.h
>> +++ b/arch/x86/kernel/cpu/resctrl/internal.h
>> @@ -85,6 +85,10 @@ cpumask_any_housekeeping(const struct cpumask *mask, int exclude_cpu)
>> if (cpu < nr_cpu_ids && !tick_nohz_full_cpu(cpu))
>> return cpu;
>>
>> + /* Only continue if tick_nohz_full_mask has been initialized. */
>> + if (!tick_nohz_full_enabled())
>> + return cpu;
>> +
>
> So we already have this a few lines up:
>
> if (!IS_ENABLED(CONFIG_NO_HZ_FULL))
> return cpu;
>
> And we can combine the two checks into a single one, with the patch
> below, right?
Right. Indeed. Doing so is most appropriate. Thank you very much.
>
> Untested.
Tested-by: Reinette Chatre <reinette.chatre@intel.com>
Reviewed-by: Reinette Chatre <reinette.chatre@intel.com>
>
> Thanks,
>
> Ingo
>
> ==============>
>
> Signed-off-by: Ingo Molnar <mingo@kernel.org>
>
>
> arch/x86/kernel/cpu/resctrl/internal.h | 3 ++-
> 1 file changed, 2 insertions(+), 1 deletion(-)
>
> diff --git a/arch/x86/kernel/cpu/resctrl/internal.h b/arch/x86/kernel/cpu/resctrl/internal.h
> index c99f26ebe7a6..1a8687f8073a 100644
> --- a/arch/x86/kernel/cpu/resctrl/internal.h
> +++ b/arch/x86/kernel/cpu/resctrl/internal.h
> @@ -78,7 +78,8 @@ cpumask_any_housekeeping(const struct cpumask *mask, int exclude_cpu)
> else
> cpu = cpumask_any_but(mask, exclude_cpu);
>
> - if (!IS_ENABLED(CONFIG_NO_HZ_FULL))
> + /* Only continue if tick_nohz_full_mask has been initialized. */
> + if (!tick_nohz_full_enabled())
> return cpu;
>
> /* If the CPU picked isn't marked nohz_full nothing more needs doing. */
Thank you very much.
Reinette
^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: [PATCH] x86/resctrl: Fix uninitialized memory read when last CPU of domain goes offline
2024-03-29 15:25 ` Reinette Chatre
@ 2024-03-30 11:12 ` Ingo Molnar
0 siblings, 0 replies; 8+ messages in thread
From: Ingo Molnar @ 2024-03-30 11:12 UTC (permalink / raw)
To: Reinette Chatre
Cc: fenghua.yu, bp, james.morse, tony.luck, peternewman, babu.moger,
tglx, mingo, dave.hansen, x86, hpa, james.greenhalgh,
linux-kernel
* Reinette Chatre <reinette.chatre@intel.com> wrote:
> Hi Ingo,
>
> On 3/29/2024 12:01 AM, Ingo Molnar wrote:
> >
> > * Reinette Chatre <reinette.chatre@intel.com> wrote:
> >
> >> diff --git a/arch/x86/kernel/cpu/resctrl/internal.h b/arch/x86/kernel/cpu/resctrl/internal.h
> >> index c99f26ebe7a6..4f9ef35626a7 100644
> >> --- a/arch/x86/kernel/cpu/resctrl/internal.h
> >> +++ b/arch/x86/kernel/cpu/resctrl/internal.h
> >> @@ -85,6 +85,10 @@ cpumask_any_housekeeping(const struct cpumask *mask, int exclude_cpu)
> >> if (cpu < nr_cpu_ids && !tick_nohz_full_cpu(cpu))
> >> return cpu;
> >>
> >> + /* Only continue if tick_nohz_full_mask has been initialized. */
> >> + if (!tick_nohz_full_enabled())
> >> + return cpu;
> >> +
> >
> > So we already have this a few lines up:
> >
> > if (!IS_ENABLED(CONFIG_NO_HZ_FULL))
> > return cpu;
> >
> > And we can combine the two checks into a single one, with the patch
> > below, right?
>
> Right. Indeed. Doing so is most appropriate. Thank you very much.
>
> >
> > Untested.
>
> Tested-by: Reinette Chatre <reinette.chatre@intel.com>
> Reviewed-by: Reinette Chatre <reinette.chatre@intel.com>
Please just pick up my optimization to your fix and submit a v2 - you
did all the hard work.
Thanks,
Ingo
^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: [PATCH] x86/resctrl: Fix uninitialized memory read when last CPU of domain goes offline
2024-03-28 21:12 [PATCH] x86/resctrl: Fix uninitialized memory read when last CPU of domain goes offline Reinette Chatre
2024-03-28 22:51 ` Luck, Tony
2024-03-29 7:01 ` Ingo Molnar
@ 2024-04-01 17:57 ` Moger, Babu
2024-04-01 18:12 ` Reinette Chatre
2 siblings, 1 reply; 8+ messages in thread
From: Moger, Babu @ 2024-04-01 17:57 UTC (permalink / raw)
To: Reinette Chatre, fenghua.yu, bp, james.morse, tony.luck,
peternewman, tglx, mingo, dave.hansen, x86
Cc: hpa, james.greenhalgh, linux-kernel
Hi Reinette,
On 3/28/24 16:12, Reinette Chatre wrote:
> Tony encountered the OOPS below when the last CPU of a domain goes
> offline while running a kernel built with CONFIG_NO_HZ_FULL:
>
> BUG: kernel NULL pointer dereference, address: 0000000000000000
> #PF: supervisor read access in kernel mode
> #PF: error_code(0x0000) - not-present page
> PGD 0
> Oops: 0000 [#1] PREEMPT SMP NOPTI
> ...
> RIP: 0010:__find_nth_andnot_bit+0x66/0x110
> ...
> Call Trace:
> <TASK>
> ? __die+0x1f/0x60
> ? page_fault_oops+0x176/0x5a0
> ? exc_page_fault+0x7f/0x260
> ? asm_exc_page_fault+0x22/0x30
> ? __pfx_resctrl_arch_offline_cpu+0x10/0x10
> ? __find_nth_andnot_bit+0x66/0x110
> ? __cancel_work+0x7d/0xc0
> cpumask_any_housekeeping+0x55/0x110
> mbm_setup_overflow_handler+0x40/0x70
> resctrl_offline_cpu+0x101/0x110
> resctrl_arch_offline_cpu+0x19/0x260
> cpuhp_invoke_callback+0x156/0x6b0
> ? cpuhp_thread_fun+0x5f/0x250
> cpuhp_thread_fun+0x1ca/0x250
> ? __pfx_smpboot_thread_fn+0x10/0x10
> smpboot_thread_fn+0x184/0x220
> kthread+0xe0/0x110
> ? __pfx_kthread+0x10/0x10
> ret_from_fork+0x2d/0x50
> ? __pfx_kthread+0x10/0x10
> ret_from_fork_asm+0x1a/0x30
> </TASK>
>
> The NULL pointer dereference is encountered while searching for another
> online CPU in the domain (of which there are none) that can be used to
> run the MBM overflow handler.
>
> Because the kernel is configured with CONFIG_NO_HZ_FULL the search for
> another CPU (in its effort to prefer those CPUs that aren't marked
> nohz_full) consults the mask representing the nohz_full CPUs,
> tick_nohz_full_mask. On a kernel with CONFIG_CPUMASK_OFFSTACK=y
> tick_nohz_full_mask is not allocated unless the kernel is booted with
> the "nohz_full=" parameter and because of that any access to
> tick_nohz_full_mask needs to be guarded with tick_nohz_full_enabled().
>
> Add a tick_nohz_full_enabled() check to ensure that tick_nohz_full_mask
> has been initialized and can thus be accessed safely.
>
> Fixes: a4846aaf3945 ("x86/resctrl: Add cpumask_any_housekeeping() for limbo/overflow")
> Reported-by: Tony Luck <tony.luck@intel.com>
> Closes: https://lore.kernel.org/lkml/ZgIFT5gZgIQ9A9G7@agluck-desk3/
> Signed-off-by: Reinette Chatre <reinette.chatre@intel.com>
> ---
> arch/x86/kernel/cpu/resctrl/internal.h | 4 ++++
> 1 file changed, 4 insertions(+)
>
> diff --git a/arch/x86/kernel/cpu/resctrl/internal.h b/arch/x86/kernel/cpu/resctrl/internal.h
> index c99f26ebe7a6..4f9ef35626a7 100644
> --- a/arch/x86/kernel/cpu/resctrl/internal.h
> +++ b/arch/x86/kernel/cpu/resctrl/internal.h
> @@ -85,6 +85,10 @@ cpumask_any_housekeeping(const struct cpumask *mask, int exclude_cpu)
> if (cpu < nr_cpu_ids && !tick_nohz_full_cpu(cpu))
> return cpu;
>
> + /* Only continue if tick_nohz_full_mask has been initialized. */
> + if (!tick_nohz_full_enabled())
> + return cpu;
> +
I am curious why this below check didn't fail?
if (cpu < nr_cpu_ids && !tick_nohz_full_cpu(cpu))
return cpu;
The tick_nohz_full_cpu() already checks tick_nohz_full_enabled().
It should returned 'false' and returned cpu already.
Did i miss something?
--
Thanks
Babu Moger
^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: [PATCH] x86/resctrl: Fix uninitialized memory read when last CPU of domain goes offline
2024-04-01 17:57 ` Moger, Babu
@ 2024-04-01 18:12 ` Reinette Chatre
2024-04-01 19:17 ` Moger, Babu
0 siblings, 1 reply; 8+ messages in thread
From: Reinette Chatre @ 2024-04-01 18:12 UTC (permalink / raw)
To: babu.moger, fenghua.yu, bp, james.morse, tony.luck, peternewman,
tglx, mingo, dave.hansen, x86
Cc: hpa, james.greenhalgh, linux-kernel
Hi Babu,
On 4/1/2024 10:57 AM, Moger, Babu wrote:
> On 3/28/24 16:12, Reinette Chatre wrote:
>> --- a/arch/x86/kernel/cpu/resctrl/internal.h
>> +++ b/arch/x86/kernel/cpu/resctrl/internal.h
>> @@ -85,6 +85,10 @@ cpumask_any_housekeeping(const struct cpumask *mask, int exclude_cpu)
>> if (cpu < nr_cpu_ids && !tick_nohz_full_cpu(cpu))
>> return cpu;
>>
>> + /* Only continue if tick_nohz_full_mask has been initialized. */
>> + if (!tick_nohz_full_enabled())
>> + return cpu;
>> +
>
> I am curious why this below check didn't fail?
>
> if (cpu < nr_cpu_ids && !tick_nohz_full_cpu(cpu))
> return cpu;
>
> The tick_nohz_full_cpu() already checks tick_nohz_full_enabled().
>
> It should returned 'false' and returned cpu already.
>
> Did i miss something?
>
The scenario occurs when the last CPU of a domain goes offline and the cpu itself
is the cpu to be excluded. In this scenario cpu >= nr_cpu_ids in the check you
quote.
You may, as did I, wonder why continue the check on a smaller set of CPUs
if the first check already failed? James addressed that in:
https://lore.kernel.org/lkml/bd8a64fa-86d3-4417-a570-36469330508f@arm.com/
Reinette
^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: [PATCH] x86/resctrl: Fix uninitialized memory read when last CPU of domain goes offline
2024-04-01 18:12 ` Reinette Chatre
@ 2024-04-01 19:17 ` Moger, Babu
0 siblings, 0 replies; 8+ messages in thread
From: Moger, Babu @ 2024-04-01 19:17 UTC (permalink / raw)
To: Reinette Chatre, fenghua.yu, bp, james.morse, tony.luck,
peternewman, tglx, mingo, dave.hansen, x86
Cc: hpa, james.greenhalgh, linux-kernel
On 4/1/24 13:12, Reinette Chatre wrote:
> Hi Babu,
>
> On 4/1/2024 10:57 AM, Moger, Babu wrote:
>> On 3/28/24 16:12, Reinette Chatre wrote:
>
>>> --- a/arch/x86/kernel/cpu/resctrl/internal.h
>>> +++ b/arch/x86/kernel/cpu/resctrl/internal.h
>>> @@ -85,6 +85,10 @@ cpumask_any_housekeeping(const struct cpumask *mask, int exclude_cpu)
>>> if (cpu < nr_cpu_ids && !tick_nohz_full_cpu(cpu))
>>> return cpu;
>>>
>>> + /* Only continue if tick_nohz_full_mask has been initialized. */
>>> + if (!tick_nohz_full_enabled())
>>> + return cpu;
>>> +
>>
>> I am curious why this below check didn't fail?
>>
>> if (cpu < nr_cpu_ids && !tick_nohz_full_cpu(cpu))
>> return cpu;
>>
>> The tick_nohz_full_cpu() already checks tick_nohz_full_enabled().
>>
>> It should returned 'false' and returned cpu already.
>>
>> Did i miss something?
>>
>
> The scenario occurs when the last CPU of a domain goes offline and the cpu itself
> is the cpu to be excluded. In this scenario cpu >= nr_cpu_ids in the check you
> quote.
>
> You may, as did I, wonder why continue the check on a smaller set of CPUs
> if the first check already failed? James addressed that in:
> https://lore.kernel.org/lkml/bd8a64fa-86d3-4417-a570-36469330508f@arm.com/
>
Got it.
--
Thanks
Babu Moger
^ permalink raw reply [flat|nested] 8+ messages in thread
end of thread, other threads:[~2024-04-01 19:17 UTC | newest]
Thread overview: 8+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2024-03-28 21:12 [PATCH] x86/resctrl: Fix uninitialized memory read when last CPU of domain goes offline Reinette Chatre
2024-03-28 22:51 ` Luck, Tony
2024-03-29 7:01 ` Ingo Molnar
2024-03-29 15:25 ` Reinette Chatre
2024-03-30 11:12 ` Ingo Molnar
2024-04-01 17:57 ` Moger, Babu
2024-04-01 18:12 ` Reinette Chatre
2024-04-01 19:17 ` Moger, Babu
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.