[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [RFC PATCH] dpci: Put the dpci back on the list if running on another CPU.

To: "Konrad Rzeszutek Wilk" <konrad.wilk@xxxxxxxxxx>
From: "Jan Beulich" <JBeulich@xxxxxxxx>
Date: Wed, 18 Mar 2015 16:43:40 +0000
Cc: andrew.cooper3@xxxxxxxxxx, malcolm.crossley@xxxxxxxxxx, xen-devel@xxxxxxxxxxxxxxxxxxxx, linux@xxxxxxxxxxxxxx
Delivery-date: Wed, 18 Mar 2015 16:43:44 +0000
List-id: Xen developer discussion <xen-devel.lists.xen.org>

>>> On 18.03.15 at 15:06, <konrad.wilk@xxxxxxxxxx> wrote:
> On Wed, Mar 18, 2015 at 07:41:55AM +0000, Jan Beulich wrote:
>> >>> On 17.03.15 at 18:44, <konrad.wilk@xxxxxxxxxx> wrote:
>> > As you can see to preserve the existing functionality such as
>> > being able to schedule N amount of interrupt injections
>> > for the N interrupts we might get - I modified '->masked'
>> > to be an atomic counter.
>> 
>> Why would that be? When an earlier interrupt wasn't fully handled,
>> real hardware wouldn't latch more than one further instance either.
> 
> We acknowledge the interrupt in the hypervisor - as in we call
> ->ack on the handler (which for MSI is an nop anyhow).

The case where ->ack is a nop (for the purposes here) is specifically
not a problem, as that means we defer ack-ing the LAPIC (hence
further instances can't show up).

> If the device is misconfigured and keeps on sending burst of
> interrupts every 10 msec for 1msec we can dead-lock.

How is this different from the hypervisor itself not being fast
enough to handle one instance before the next one shows up?
I've been trying to reconstruct the rationale for our current
treatment of maskable MSI sources (in that we ack them at the
LAPIC right away), but so far wasn't really successful (sadly
commit 5f4c1bb65e lacks any word of description other than
its title).

(Ill behaved devices shouldn't be handed to guests anyway.)

> Either way we should tell the guest about those interrupts.
>> 
>> > The end result is that we can still live-lock. Unless we:
>> >  - Drop on the floor the injection of N interrupts and
>> >    just deliever at max one per VMX_EXIT (and not bother
>> >    with interrupts arriving when we are in the VMX handler).
>> 
>> I'm afraid I again don't see the point here.
> 
> I am basing all of this on the assumption that we have
> many interrupts for the same device coming it - and we have
> not been able to tell the guest about it (the guest could
> be descheduled, too slow, etc) so that it can do what it
> needs to silence the device.

But that's the same as with the native hardware case: When there
are new interrupt instances before the earlier one was acked, at
most one will be seen at the point the interrupt becomes unmasked
again.

Jan

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
http://lists.xen.org/xen-devel

Follow-Ups:
- Re: [Xen-devel] [RFC PATCH] dpci: Put the dpci back on the list if running on another CPU.
  - From: Konrad Rzeszutek Wilk

References:
- Re: [Xen-devel] [RFC PATCH] dpci: Put the dpci back on the list if running on another CPU.
  - From: Konrad Rzeszutek Wilk
- Re: [Xen-devel] [RFC PATCH] dpci: Put the dpci back on the list if running on another CPU.
  - From: Jan Beulich
- Re: [Xen-devel] [RFC PATCH] dpci: Put the dpci back on the list if running on another CPU.
  - From: Konrad Rzeszutek Wilk

Prev by Date: Re: [Xen-devel] [PATCH v1] Fix libxc return -E misusage.
Next by Date: Re: [Xen-devel] [PATCH 09/14] libxl: Check xc_domain_maximum_gpfn for negative return values
Previous by thread: Re: [Xen-devel] [RFC PATCH] dpci: Put the dpci back on the list if running on another CPU.
Next by thread: Re: [Xen-devel] [RFC PATCH] dpci: Put the dpci back on the list if running on another CPU.
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.