[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[xen master] xen/sched: rtds: assert replq is empty on timer (re-)init

commit 8969e435d44ace820c46c7540cc66e68e62b1249
Author:     Oleksii Moisieiev <oleksii_moisieiev@xxxxxxxx>
AuthorDate: Fri May 22 08:14:48 2026 +0200
Commit:     Jan Beulich <jbeulich@xxxxxxxx>
CommitDate: Fri May 22 08:14:48 2026 +0200

    xen/sched: rtds: assert replq is empty on timer (re-)init
    
    In RTDS, removing the last eligible pCPU kills repl_timer. When a pCPU
    is later re-added, rt_switch_sched() reinitializes the timer object.
    
    cpupool_unassign_cpu_start() refuses to remove the last pCPU from a
    populated cpupool: if any domain is still alive while the system is
    active it returns -EBUSY, otherwise all domains are first moved to
    cpupool0. Consequently, by the time the killed-timer branch runs, no
    units remain in the pool and replq is guaranteed to be empty.
    
    Document this invariant by asserting list_empty(replq) right after
    init_timer(). This catches any future regression in cpupool semantics
    that would leave pending replenishment events behind across a
    TIMER_STATUS_killed -> init_timer() transition, where the timer would
    otherwise stay disarmed until an unrelated event reprogrammed it.
    
    Signed-off-by: Oleksii Moisieiev <oleksii_moisieiev@xxxxxxxx>
    Reviewed-by: Juergen Gross <jgross@xxxxxxxx>
    Acked-by: Jan Beulich <jbeulich@xxxxxxxx>
---
 xen/common/sched/rt.c | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/xen/common/sched/rt.c b/xen/common/sched/rt.c
index 6109aa66c2..4b637aa9db 100644
--- a/xen/common/sched/rt.c
+++ b/xen/common/sched/rt.c
@@ -749,6 +749,14 @@ rt_switch_sched(struct scheduler *new_ops, unsigned int 
cpu,
     {
         init_timer(&prv->repl_timer, repl_timer_handler, (void *)new_ops, cpu);
         dprintk(XENLOG_DEBUG, "RTDS: timer initialized on cpu %u\n", cpu);
+
+        /*
+         * cpupool_unassign_cpu_start() refuses to remove the last pCPU from
+         * a populated cpupool, so by the time this path runs (timer was
+         * killed because all RTDS pCPUs were removed) the pool must have
+         * been empty of domains, which implies replq is empty too.
+         */
+        ASSERT(list_empty(rt_replq(new_ops)));
     }
 
     sched_idle_unit(cpu)->priv = vdata;
--
generated by git-patchbot for /home/xen/git/xen.git#master

 

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.