KVM: selftests: Fix a semaphore imbalance in the dirty ring logging test

Linux kernel mirror (for testing) git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git

kernel os linux

When finishing the final iteration of dirty_log_test testcase, set
host_quit _before_ the final "continue" so that the vCPU worker doesn't
run an extra iteration, and delete the hack-a-fix of an extra "continue"
from the dirty ring testcase. This fixes a bug where the extra post to
sem_vcpu_cont may not be consumed, which results in failures in subsequent
runs of the testcases. The bug likely was missed during development as
x86 supports only a single "guest mode", i.e. there aren't any subsequent
testcases after the dirty ring test, because for_each_guest_mode() only
runs a single iteration.

For the regular dirty log testcases, letting the vCPU run one extra
iteration is a non-issue as the vCPU worker waits on sem_vcpu_cont if and
only if the worker is explicitly told to stop (vcpu_sync_stop_requested).
But for the dirty ring test, which needs to periodically stop the vCPU to
reap the dirty ring, letting the vCPU resume the guest _after_ the last
iteration means the vCPU will get stuck without an extra "continue".

However, blindly firing off an post to sem_vcpu_cont isn't guaranteed to
be consumed, e.g. if the vCPU worker sees host_quit==true before resuming
the guest. This results in a dangling sem_vcpu_cont, which leads to
subsequent iterations getting out of sync, as the vCPU worker will
continue on before the main task is ready for it to resume the guest,
leading to a variety of asserts, e.g.

==== Test Assertion Failure ====
dirty_log_test.c:384: dirty_ring_vcpu_ring_full
pid=14854 tid=14854 errno=22 - Invalid argument
1 0x00000000004033eb: dirty_ring_collect_dirty_pages at dirty_log_test.c:384
2 0x0000000000402d27: log_mode_collect_dirty_pages at dirty_log_test.c:505
3 (inlined by) run_test at dirty_log_test.c:802
4 0x0000000000403dc7: for_each_guest_mode at guest_modes.c:100
5 0x0000000000401dff: main at dirty_log_test.c:941 (discriminator 3)
6 0x0000ffff9be173c7: ?? ??:0
7 0x0000ffff9be1749f: ?? ??:0
8 0x000000000040206f: _start at ??:?
Didn't continue vcpu even without ring full

Alternatively, the test could simply reset the semaphores before each
testcase, but papering over hacks with more hacks usually ends in tears.

Reported-by: Shaoqin Huang <shahuang@redhat.com>
Fixes: 84292e565951 ("KVM: selftests: Add dirty ring buffer test")
Reviewed-by: Peter Xu <peterx@redhat.com>
Reviewed-by: Shaoqin Huang <shahuang@redhat.com>
Link: https://lore.kernel.org/r/20240202231831.354848-1-seanjc@google.com
Signed-off-by: Sean Christopherson <seanjc@google.com>

Sean Christopherson 2 years ago ba58f873 9e62797f

+27 -23

1 changed file

expand all

tools

testing

selftests

kvm

dirty_log_test.c

+27 -23

tools/testing/selftests/kvm/dirty_log_test.c

··· 376 376 377 377 cleared = kvm_vm_reset_dirty_ring(vcpu->vm); 378 378 379 - /* Cleared pages should be the same as collected */ 379 + /* 380 + * Cleared pages should be the same as collected, as KVM is supposed to 381 + * clear only the entries that have been harvested. 382 + */ 380 383 TEST_ASSERT(cleared == count, "Reset dirty pages (%u) mismatch " 381 384 "with collected (%u)", cleared, count); 382 385 ··· 418 415 } 419 416 } 420 417 421 - static void dirty_ring_before_vcpu_join(void) 422 - { 423 - /* Kick another round of vcpu just to make sure it will quit */ 424 - sem_post(&sem_vcpu_cont); 425 - } 426 - 427 418 struct log_mode { 428 419 const char *name; 429 420 /* Return true if this mode is supported, otherwise false */ ··· 430 433 uint32_t *ring_buf_idx); 431 434 /* Hook to call when after each vcpu run */ 432 435 void (*after_vcpu_run)(struct kvm_vcpu *vcpu, int ret, int err); 433 - void (*before_vcpu_join) (void); 434 436 } log_modes[LOG_MODE_NUM] = { 435 437 { 436 438 .name = "dirty-log", ··· 448 452 .supported = dirty_ring_supported, 449 453 .create_vm_done = dirty_ring_create_vm_done, 450 454 .collect_dirty_pages = dirty_ring_collect_dirty_pages, 451 - .before_vcpu_join = dirty_ring_before_vcpu_join, 452 455 .after_vcpu_run = dirty_ring_after_vcpu_run, 453 456 }, 454 457 }; ··· 506 511 507 512 if (mode->after_vcpu_run) 508 513 mode->after_vcpu_run(vcpu, ret, err); 509 - } 510 - 511 - static void log_mode_before_vcpu_join(void) 512 - { 513 - struct log_mode *mode = &log_modes[host_log_mode]; 514 - 515 - if (mode->before_vcpu_join) 516 - mode->before_vcpu_join(); 517 514 } 518 515 519 516 static void generate_random_array(uint64_t *guest_array, uint64_t size) ··· 706 719 struct kvm_vm *vm; 707 720 unsigned long *bmap; 708 721 uint32_t ring_buf_idx = 0; 722 + int sem_val; 709 723 710 724 if (!log_mode_supported()) { 711 725 print_skip("Log mode '%s' not supported", ··· 776 788 /* Start the iterations */ 777 789 iteration = 1; 778 790 sync_global_to_guest(vm, iteration); 779 - host_quit = false; 791 + WRITE_ONCE(host_quit, false); 780 792 host_dirty_count = 0; 781 793 host_clear_count = 0; 782 794 host_track_next_count = 0; 783 795 WRITE_ONCE(dirty_ring_vcpu_ring_full, false); 796 + 797 + /* 798 + * Ensure the previous iteration didn't leave a dangling semaphore, i.e. 799 + * that the main task and vCPU worker were synchronized and completed 800 + * verification of all iterations. 801 + */ 802 + sem_getvalue(&sem_vcpu_stop, &sem_val); 803 + TEST_ASSERT_EQ(sem_val, 0); 804 + sem_getvalue(&sem_vcpu_cont, &sem_val); 805 + TEST_ASSERT_EQ(sem_val, 0); 784 806 785 807 pthread_create(&vcpu_thread, NULL, vcpu_worker, vcpu); 786 808 ··· 817 819 assert(host_log_mode == LOG_MODE_DIRTY_RING || 818 820 atomic_read(&vcpu_sync_stop_requested) == false); 819 821 vm_dirty_log_verify(mode, bmap); 820 - sem_post(&sem_vcpu_cont); 821 822 822 - iteration++; 823 + /* 824 + * Set host_quit before sem_vcpu_cont in the final iteration to 825 + * ensure that the vCPU worker doesn't resume the guest. As 826 + * above, the dirty ring test may stop and wait even when not 827 + * explicitly request to do so, i.e. would hang waiting for a 828 + * "continue" if it's allowed to resume the guest. 829 + */ 830 + if (++iteration == p->iterations) 831 + WRITE_ONCE(host_quit, true); 832 + 833 + sem_post(&sem_vcpu_cont); 823 834 sync_global_to_guest(vm, iteration); 824 835 } 825 836 826 - /* Tell the vcpu thread to quit */ 827 - host_quit = true; 828 - log_mode_before_vcpu_join(); 829 837 pthread_join(vcpu_thread, NULL); 830 838 831 839 pr_info("Total bits checked: dirty (%"PRIu64"), clear (%"PRIu64"), "