[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [PATCH v4 16/16] xen/arm: add SGI handling for GICv3

To: Julien Grall <julien.grall@xxxxxxxxxx>
From: Vijay Kilari <vijay.kilari@xxxxxxxxx>
Date: Fri, 20 Jun 2014 14:18:32 +0530
Cc: Ian Campbell <Ian.Campbell@xxxxxxxxxx>, Stefano Stabellini <stefano.stabellini@xxxxxxxxxxxxx>, Prasun Kapoor <Prasun.Kapoor@xxxxxxxxxxxxxxxxxx>, Vijaya Kumar K <vijaya.kumar@xxxxxxxxxxxxxxxxxx>, "xen-devel@xxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxx>, Stefano Stabellini <stefano.stabellini@xxxxxxxxxx>
Delivery-date: Fri, 20 Jun 2014 08:48:38 +0000
List-id: Xen developer discussion <xen-devel.lists.xen.org>

On Mon, Jun 16, 2014 at 12:14 AM, Julien Grall <julien.grall@xxxxxxxxxx> wrote:
> Hi Ian,
>
> On 13 June 2014 09:34, Ian Campbell <Ian.Campbell@xxxxxxxxxx> wrote:
>> On Thu, 2014-06-12 at 22:56 +0100, Julien Grall wrote:
>>>
>>> On 12/06/14 07:53, Vijay Kilari wrote:
>>> >     In GICv3 case the sending SGI by guest raises sysreg trap where
>>> > as in GICv2 it raises mmio write trap. So these traps lands in respective
>>> > vgic driver. ( mmio write trap => vgic-v2.c and sysreg => vgic-v3.c)
>>> > These vgic-v{2,3}.c driver calls generic vgic driver to inject SGI to 
>>> > VCPU.
>>>
>>> What does prevent a malicious buggy gicv2 guest too call the sysreg
>>> version? AFAIU nothing, so you will end up to interpret GICv2 data as
>>> GICv3 data which will result to a possible security issue.
>>
>> ICC_SRE_EL2.Enable should gate EL1's access to this register. We should
>> certainly set this to the appropriate value corresponding to what we
>> expose to the guest. (I haven't looked if this series does not).
>
> Thanks for information. I suspect the current GICv3 driver is not
> ready to support
> GICv2 guest. Actually this bit is not context switch.

As per GICv3 spec 4.8.17 it recommends to save and restore ICC_SRE_EL1
register on VM switch. I will added this in next version

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
http://lists.xen.org/xen-devel

References:
- Re: [Xen-devel] [PATCH v4 16/16] xen/arm: add SGI handling for GICv3
  - From: Julien Grall
- Re: [Xen-devel] [PATCH v4 16/16] xen/arm: add SGI handling for GICv3
  - From: Vijay Kilari
- Re: [Xen-devel] [PATCH v4 16/16] xen/arm: add SGI handling for GICv3
  - From: Julien Grall
- Re: [Xen-devel] [PATCH v4 16/16] xen/arm: add SGI handling for GICv3
  - From: Vijay Kilari
- Re: [Xen-devel] [PATCH v4 16/16] xen/arm: add SGI handling for GICv3
  - From: Julien Grall
- Re: [Xen-devel] [PATCH v4 16/16] xen/arm: add SGI handling for GICv3
  - From: Ian Campbell
- Re: [Xen-devel] [PATCH v4 16/16] xen/arm: add SGI handling for GICv3
  - From: Julien Grall

Prev by Date: Re: [Xen-devel] [PATCH v2 0/4] Support controlling the max C-state sub-state
Next by Date: Re: [Xen-devel] Xen 4.5 development update
Previous by thread: Re: [Xen-devel] [PATCH v4 16/16] xen/arm: add SGI handling for GICv3
Next by thread: Re: [Xen-devel] [PATCH v3] xen-blkback: defer freeing blkif to avoid blocking xenwatch
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.