[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [PATCH v2] xen/pvh: use a custom IO bitmap for PVH hardware domains

To: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, <xen-devel@xxxxxxxxxxxxxxxxxxxx>
From: Roger Pau MonnÃ <roger.pau@xxxxxxxxxx>
Date: Wed, 29 Apr 2015 17:51:20 +0200
Cc: Kevin Tian <kevin.tian@xxxxxxxxx>, Suravee Suthikulpanit <suravee.suthikulpanit@xxxxxxx>, Eddie Dong <eddie.dong@xxxxxxxxx>, Jan Beulich <jbeulich@xxxxxxxx>, Aravind Gopalakrishnan <Aravind.Gopalakrishnan@xxxxxxx>, Jun Nakajima <jun.nakajima@xxxxxxxxx>, Boris Ostrovsky <boris.ostrovsky@xxxxxxxxxx>
Delivery-date: Wed, 29 Apr 2015 15:51:45 +0000
List-id: Xen developer discussion <xen-devel.lists.xen.org>

El 29/04/15 a les 15.44, Andrew Cooper ha escrit:
> On 29/04/15 12:05, Roger Pau MonnÃ wrote:
>> El 29/04/15 a les 2.38, Andrew Cooper ha escrit:
>>>
>>>> +
>>>> +    if ( is_pvh_domain(d) )
>>>> +    {
>>>> +        for ( i = 0; i < 0x10000; i++ )
>>>> +            /* NB: 0xcf8 has special treatment so we need to trap
>>>> it. */
>>> Why?  (and irrespective of my question, cf8 expects a 4 byte access, and
>>> surely cfc would need similar treatment?)
>> 0xcfc-0xcff is already added to ioports_deny_access in construct_dom0. I
>> have no idea why 0xcf8 needs this special treatment, but Linux PVH fails
>> to enumerate PCI devices if Xen is not set to trap accesses to 0xcf8
>> (FreeBSD seems to be fine, either with 0xcf8 trapped or not).
> 
> Sorry for the noise on v3.  I replied before seeing this reply.
> 
> cf8/cfc are used as an indirect pair for access to PCI config space. 
> They must be strictly be controlled by a single entity in a system, or
> dom0 and Xen can race and interfere with each other.  As a result,
> permissions for cf8/cfc must never be set in the IO bitmap.

Ack, that's why I decided to add 0xcf8-0xcfa to the list of blocked
ports in v3 after looking at guest_io_write/admin_io_ok.

> There are other indirect pairs which need similar treatment.

Yes, I see there is at least another similar case related to RTC. I will
look into cleaning admin_io_ok and guest_io_{write/read} in next version.

Thanks, Roger.

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
http://lists.xen.org/xen-devel

References:
- [Xen-devel] [PATCH v2] xen/pvh: use a custom IO bitmap for PVH hardware domains
  - From: Roger Pau Monne
- Re: [Xen-devel] [PATCH v2] xen/pvh: use a custom IO bitmap for PVH hardware domains
  - From: Andrew Cooper
- Re: [Xen-devel] [PATCH v2] xen/pvh: use a custom IO bitmap for PVH hardware domains
  - From: Roger Pau MonnÃ
- Re: [Xen-devel] [PATCH v2] xen/pvh: use a custom IO bitmap for PVH hardware domains
  - From: Andrew Cooper

Prev by Date: [Xen-devel] [OSSTEST PATCH] ts-kernel-build: Enable CONFIG_SCSI_SAS_ATA
Next by Date: Re: [Xen-devel] [PATCH v3] xen: Suspend ticks on all CPUs during suspend
Previous by thread: Re: [Xen-devel] [PATCH v2] xen/pvh: use a custom IO bitmap for PVH hardware domains
Next by thread: [Xen-devel] [PATCH 0/4] A few event channel-related fixes
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.