[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [PATCH 5/5] x86/HVM: cache emulated instruction for retry processing

To: "Yang Z Zhang" <yang.z.zhang@xxxxxxxxx>
From: "Jan Beulich" <JBeulich@xxxxxxxx>
Date: Wed, 18 Dec 2013 10:53:32 +0000
Cc: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, Keir Fraser <keir@xxxxxxx>, xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxxx>
Delivery-date: Wed, 18 Dec 2013 10:53:35 +0000
List-id: Xen developer discussion <xen-devel.lists.xen.org>

>>> On 18.12.13 at 10:40, "Zhang, Yang Z" <yang.z.zhang@xxxxxxxxx> wrote:
> Jan Beulich wrote on 2013-12-18:
>>>>> On 18.12.13 at 09:36, "Zhang, Yang Z" <yang.z.zhang@xxxxxxxxx> wrote:
>>> Jan Beulich wrote on 2013-09-30:
>>>> Rather than re-reading the instruction bytes upon retry processing,
>>>> stash away and re-use tha what we already read. That way we can be
>>>> certain that the retry won't do something different from what
>>>> requested the retry, getting once again closer to real hardware
>>>> behavior (where what we use retries for is simply a bus operation, not
>>>> involving redundant decoding of instructions).
>>>> 
>>> 
>>> This patch doesn't consider the nested case.
>>> For example, if the buffer saved the L2's instruction, then vmexit
>>> to
>>> L1 and
>>> L1 may use the wrong instruction.
>> 
>> I'm having difficulty seeing how the two could get intermixed: There
>> should be, at any given point in time, at most one instruction being
>> emulated. Can you please give a more elaborate explanation of the
>> situation where you see a (theoretical? practical?) problem?
> 
> I saw this issue when booting L1 hyper-v. I added some debug info and saw the 
> strange phenomenon: 
> 
> (XEN) write to buffer: eip 0xfffff8800430bc80, size 16, 
> content:f7420c1f608488b 44000000011442c7
> (XEN) read from buffer: eip 0xfffff800002f6138, size 16, 
> content:f7420c1f608488b 44000000011442c7
> 
> From the log, we can see different eip but using the same buffer. Since I 
> don't know how hyper-v working, so I cannot give more information why this 
> happens. And I only saw it with L1 hyper-v (Xen on Xen and KVM on Xen don't 
> have this issue) .

But in order to validate the fix is (a) needed and (b) correct, a proper
understanding of the issue is necessary as the very first step. Which
doesn't require knowing internals of Hyper-V, all you need is tracking
of emulator state changes in Xen (which I realize is said easier than
done, since you want to make sure you don't generate huge amounts
of output before actually hitting the issue, making it close to impossible
to analyze).

Jan


_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
http://lists.xen.org/xen-devel

Follow-Ups:
- Re: [Xen-devel] [PATCH 5/5] x86/HVM: cache emulated instruction for retry processing
  - From: Zhang, Yang Z

References:
- Re: [Xen-devel] [PATCH 5/5] x86/HVM: cache emulated instruction for retry processing
  - From: Zhang, Yang Z
- Re: [Xen-devel] [PATCH 5/5] x86/HVM: cache emulated instruction for retry processing
  - From: Jan Beulich
- Re: [Xen-devel] [PATCH 5/5] x86/HVM: cache emulated instruction for retry processing
  - From: Zhang, Yang Z

Prev by Date: Re: [Xen-devel] [PATCH v2] VMX: Eliminate cr3 save/loading exiting when UG enabled
Next by Date: Re: [Xen-devel] [PATCH] xen: arm: process XENMEM_add_to_physmap_range forwards not backwards.
Previous by thread: Re: [Xen-devel] [PATCH 5/5] x86/HVM: cache emulated instruction for retry processing
Next by thread: Re: [Xen-devel] [PATCH 5/5] x86/HVM: cache emulated instruction for retry processing
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.