Xen project Mailing List

Re: [Xen-devel] [PATCH RFC V3 4/5] xen, libxc: Request page fault injection via libxc

To: Tamas Lengyel <tamas.lengyel@xxxxxxxxxxxx>

From: Razvan Cojocaru <rcojocaru@xxxxxxxxxxxxxxx>

Date: Wed, 23 Jul 2014 17:08:43 +0300

Cc: kevin.tian@xxxxxxxxx, Ian Campbell <Ian.Campbell@xxxxxxxxxx>, Stefano Stabellini <stefano.stabellini@xxxxxxxxxxxxx>, Ian Jackson <Ian.Jackson@xxxxxxxxxxxxx>, eddie.dong@xxxxxxxxx, "xen-devel@xxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxx>, Jan Beulich <JBeulich@xxxxxxxx>, Andres Lagar-Cavilla <andres@xxxxxxxxxxxxxxxx>, jun.nakajima@xxxxxxxxx, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>

Comment: DomainKeys? See http://domainkeys.sourceforge.net/

Delivery-date: Wed, 23 Jul 2014 14:08:45 +0000

Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=default; d=bitdefender.com; b=qK86D+gHr+n3oLFVIvh4XooQe5SaD5ztpibX7d+X+gEU/HEJRoz0hRjlXS1E6zl+Pf2KvVNUS1E9JCyPw8YNgtwwrs4Y4T97pg8ZqOXTvKVAtEPgHXW1C4ix5K81qCRLHIqtu9jPzxcbG9/g5vPqhLI39TKtnv6HdIT7iaobWvbnF6p0l/WvBY6LZhqbFmvu8ZE/dU65eK4fAQOC2YxQHUymUhY1+sSoBLOtR75r1xWtgiBb7T+OKu510uQbMWkMwKa65xwHKY49+scUbitPSANFwkDqEvwfpjENDLe+1YtBU2xSbIb1Nl1tKnd6hmQZTWqwhQu2Iga0qaPrcZUyQQ==; h=Received:Received:Received:Received:Message-ID:Date:From:User-Agent:MIME-Version:To:CC:Subject:References:In-Reply-To:Content-Type:Content-Transfer-Encoding:X-BitDefender-Scanner:X-BitDefender-Spam:X-BitDefender-SpamStamp:X-BitDefender-CF-Stamp;

List-id: Xen developer discussion <xen-devel.lists.xen.org>

On 07/23/2014 04:40 PM, Tamas Lengyel wrote: > > @@ -3137,6 +3172,8 @@ void vmx_vmenter_helper(const struct > cpu_user_regs *regs) > if ( unlikely(need_flush) ) > vpid_sync_all(); > > + check_pf_injection(); > > > The function check_pf_injection isn't just 'checking', it does issue the > page fault injection as well under the right circumstances, and as such > the naming of the function is a bit misleading. Breaking it into two > functions might be an improvement where the actual check itself could be That's a good point. I'll split it into two functions (and add a vmx_ prefix to their names while I'm at it). > wrapped into an unlikely(). But isn't this a bit of an overkill at every > VMENTER for every domain? Surely there are less invasive mechanisms to > trigger a VMEXIT when you know your VM will be in a state where you can > inject your page fault, without incurring an overhead for every domain. It's not much of an overhead, basically if d->arch.hvm_domain.fault_info.virtual_address == 0 (which is almost always the case), nothing happens. > Another question is, how do you know when the page fault had been > handled and the page can be inspected? You would need some other trigger > just at the right point in the execution of the VM or the page could be > swapped out again before you had a chance to inspect it. In our case, this always happens while the VCPU is paused waiting for a mem_event reply, so it fits quite well. > Also, it might make sense to perform some sanity checks on the vaddr and > address space before injection (ie. is the page really swapped out). > There is no guarantee that the page is still swapped out, even if you > checked before issuing xc_domain_set_pagefault_info, unless the domain > had been paused for both checking and setting. As said above, the particular VCPU is in our case paused and waiting for a mem_event reply. The assumption is that other clients will work under similar circumstances, however it's always a good idea to check everything that can be checked. Thanks, Razvan Cojocaru _______________________________________________ Xen-devel mailing list Xen-devel@xxxxxxxxxxxxx http://lists.xen.org/xen-devel

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.