Re: [PATCH 0/7] TC-ETF support PTP clocks series

From: Thomas Gleixner
Date: Fri Oct 02 2020 - 20:10:13 EST


Vinicius,

On Fri, Oct 02 2020 at 12:01, Vinicius Costa Gomes wrote:
> I think that there's an underlying problem/limitation that is the cause
> of the issue (or at least a step in the right direction) you are trying
> to solve: the issue is that PTP clocks can't be used as hrtimers.

That's only an issue if PTP time != CLOCK_TAI, which is insane to begin
with.

As I know that these insanities exists in real world setups, e.g. grand
clock masters which start at the epoch which causes complete disaster
when any of the slave devices booted earlier. Obviously people came
up with system designs which are even more insane.

> I didn't spend a lot of time thinking about how to solve this (the only
> thing that comes to mind is having a timecounter, or similar, "software
> view" over the PHC clock).

There are two aspects:

1) What's the overall time coordination especially for applications?

PTP is for a reason based on TAI which allows a universal
representation of time. Strict monotonic, no time zones, no leap
seconds, no bells and whistels.

Using TAI in distributed systems solved a gazillion of hard problems
in one go.

TSN depends on PTP and that obviously makes CLOCK_TAI _the_ clock of
choice for schedules and whatever is needed. It just solves the
problem nicely and we spent a great amount of time to make
application development for TSN reasonable and hardware agnostic.

Now industry comes along and decides to introducde independent time
universes. The result is a black hole for programmers because they
now have to waste effort - again - on solving the incredibly hard
problems of warping space and time.

The amount of money saved by not having properly coordinated time
bases in such systems is definitely marginal compared to the amount
of non-sensical work required to fix it in software.

2) How can an OS provide halfways usable interfaces to handle this
trainwreck?

Access to the various time universes is already available through
the dynamic POSIX clocks. But these interfaces have been designed
for the performance insensitive work of PTP daemons and not for the
performance critical work of applications dealing with real-time
requirements of all sorts.

As these raw PTP clocks are hardware dependend and only known at
boot / device discovery time they cannot be exposed to the kernel
internaly in any sane way. Also the user space interface has to be
dynamic which rules out the ability to assign fixed CLOCK_* ids.

As a consequence these clocks cannot provide timers like the regular
CLOCK_* variants do, which makes it insanely hard to develop sane
and portable applications.

What comes to my mind (without spending much thought on it) is:

1) Utilize and extend the existing PTP mechanisms to calculate
the time relationship between the system wide CLOCK_TAI and
the uncoordinated time universe. As offset is a constant and
frequency drift is not a high speed problem this can be done
with a userspace daemon of some sorts.

2) Provide CLOCK_TAI_PRIVATE which defaults to CLOCK_TAI,
i.e. offset = 0 and frequency ratio = 1 : 1

3) (Ab)use the existing time namespace to provide a mechanism to
adjust the offset and frequency ratio of CLOCK_TAI_PRIVATE
which is calculated by #1

This is the really tricky part and comes with severe
limitations:

- We can't walk task list to find tasks which have their
CLOCK_TAI_PRIVATE associated with a particular
incarnation of PCH/PTP universe, so some sane referencing
of the underlying parameters to convert TAI to
TAI_PRIVATE and vice versa has to be found. Life time
problems are going to be interesting to deal with.

- An application cannot coordinate multiple PCH/PTP domains
and has to restrict itself to pick ONE disjunct time
universe.

Whether that's a reasonable limitation I don't know
simply because the information provided in this patch
series is close to zero.

- Preventing early timer expiration caused by frequency
drift is not trivial either.

TBH, just thinking about all of that makes me shudder and my knee
jerk reaction is: NO WAY!

Why the heck can't hardware people and system designers finally
understand that time is not something they can define at their
own peril?

The "Let's solve it in software so I don't have to think about it"
design approach strikes again. This caused headaches for the past five
decades, but people obviously never learn.

That said, I'm open for solutions which are at least in the proximity of
sane, but that needs a lot more information about the use cases and the
implications and not just some handwavy 'we screwed up our system design
and therefore we need to inflict insanity on everyone' blurb.

Thanks,

tglx