wait_for_unix_gc can cause CPU overload for well behaved programs

From: Ivan Babrou
Date: Thu Oct 19 2023 - 18:35:18 EST

Next message: Alex Williamson: "Re: [PATCH v17 1/2] vfio/migration: Add debugfs to live migration driver"
Previous message: Jacob Keller: "Re: [PATCH net] i40e: Fix I40E_FLAG_VF_VLAN_PRUNING value"
Next in thread: Ivan Babrou: "Re: wait_for_unix_gc can cause CPU overload for well behaved programs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello,

We have observed this issue twice (2019 and 2023): a well behaved
service that doesn't pass any file descriptors around starts to spend
a ton of CPU time in wait_for_unix_gc.

The cause of this is that the unix send path unconditionally calls
wait_for_unix_gc, which is a global garbage collection. If any
misbehaved program exists on a system, it can force extra work for
well behaved programs.

This behavior is not new: 9915672d4127 ("af_unix: limit
unix_tot_inflight") is from 2010.

I managed to come up with a repro for this behavior:

* https://gist.github.com/bobrik/82e5722261920c9f23d9402b88a0bb27

It also includes a flamegraph illustrating the issue. It's all in one
program for convenience, but in reality the offender not picking up
SCM_RIGHTS messages and the suffering program just minding its own
business are separate.

It is also non-trivial to find the offender when this happens as it
can be completely idle while wrecking havoc for the rest of the
system.

I don't think it's fair to penalize every unix_stream_sendmsg like
this. The 16k threshold also doesn't feel very flexible, surely
computers are bigger these days and can handle more.

Next message: Alex Williamson: "Re: [PATCH v17 1/2] vfio/migration: Add debugfs to live migration driver"
Previous message: Jacob Keller: "Re: [PATCH net] i40e: Fix I40E_FLAG_VF_VLAN_PRUNING value"
Next in thread: Ivan Babrou: "Re: wait_for_unix_gc can cause CPU overload for well behaved programs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]