[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [PATCH v3 3/5] ARM: ITS: Deny hardware domain access to ITS

To: Andre Przywara <andre.przywara@xxxxxxx>, mjaggi@xxxxxxxxxxxxxxxxxx, xen-devel@xxxxxxxxxxxxxxxxxxxx
From: Julien Grall <julien.grall@xxxxxxx>
Date: Thu, 14 Sep 2017 12:16:42 +0100
Cc: sstabellini@xxxxxxxxxx, Manish Jaggi <mjaggi@xxxxxxxxxx>
Delivery-date: Thu, 14 Sep 2017 11:17:04 +0000
List-id: Xen developer discussion <xen-devel.lists.xen.org>

On 07/09/17 17:57, Andre Przywara wrote:

Hi,

Hi,

On 05/09/17 18:14, mjaggi@xxxxxxxxxxxxxxxxxx wrote:

From: Manish Jaggi <mjaggi@xxxxxxxxxx>

This patch extends the gicv3_iomem_deny_access functionality by adding
support for ITS region as well. Add function gicv3_its_deny_access.

Signed-off-by: Manish Jaggi <mjaggi@xxxxxxxxxx>
---
  xen/arch/arm/gic-v3-its.c        | 22 ++++++++++++++++++++++
  xen/arch/arm/gic-v3.c            |  3 +++
  xen/include/asm-arm/gic_v3_its.h |  9 +++++++++
  3 files changed, 34 insertions(+)

diff --git a/xen/arch/arm/gic-v3-its.c b/xen/arch/arm/gic-v3-its.c
index 536b48d..0ab1466 100644
--- a/xen/arch/arm/gic-v3-its.c
+++ b/xen/arch/arm/gic-v3-its.c
@@ -20,6 +20,7 @@

#include <xen/lib.h>

  #include <xen/delay.h>
+#include <xen/iocap.h>
  #include <xen/libfdt/libfdt.h>
  #include <xen/mm.h>
  #include <xen/rbtree.h>
@@ -906,6 +907,27 @@ struct pending_irq *gicv3_assign_guest_event(struct domain 
*d,
      return pirq;
  }

+int gicv3_its_deny_access(const struct domain *d)

+{
+    int rc = 0;
+    unsigned long mfn, nr;
+    const struct host_its *its_data;
+
+    list_for_each_entry( its_data, &host_its_list, entry )
+    {
+        mfn = paddr_to_pfn(its_data->addr);
+        nr = PFN_UP(ACPI_GICV3_ITS_MEM_SIZE);


Shouldn't this not only cover the ITS register frame, but also the
following 64K page containing the doorbell address? Otherwise we leave
the doorbell address open, which seems to be asking for trouble ...

I think you are right. We don't want to allow the hardware domain to mapthe doorbell itself. This should only be done by Xen.


Cheers,

--
Julien Grall

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
https://lists.xen.org/xen-devel

References:
- [Xen-devel] [PATCH v3 0/5] ARM: ACPI: ITS: Add ITS Support for ACPI hardware domain
  - From: mjaggi
- [Xen-devel] [PATCH v3 3/5] ARM: ITS: Deny hardware domain access to ITS
  - From: mjaggi
- Re: [Xen-devel] [PATCH v3 3/5] ARM: ITS: Deny hardware domain access to ITS
  - From: Andre Przywara

Prev by Date: Re: [Xen-devel] [PATCH v3 2/5] ARM: ITS: Populate host_its_list from ACPI MADT Table
Next by Date: [Xen-devel] [ovmf test] 113418: regressions - FAIL
Previous by thread: Re: [Xen-devel] [PATCH v3 3/5] ARM: ITS: Deny hardware domain access to ITS
Next by thread: Re: [Xen-devel] [PATCH v3 3/5] ARM: ITS: Deny hardware domain access to ITS
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.