Xen project Mailing List

Re: [PATCH 2/9] vpci: Add hooks for PCI device assign/de-assign

To: Jan Beulich <jbeulich@xxxxxxxx>, Oleksandr Andrushchenko <andr2000@xxxxxxxxx>

From: Oleksandr Andrushchenko <Oleksandr_Andrushchenko@xxxxxxxx>

Date: Tue, 7 Sep 2021 08:33:26 +0000

Accept-language: en-US

Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=epam.com; dmarc=pass action=none header.from=epam.com; dkim=pass header.d=epam.com; arc=none

Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=rY4+RI5kbn/YbnzJ+0E6KYuPaJLPUxjFO5sxV5cpIII=; b=LZHIPId4CZTACxlfYQ9jjNtyuTQHhsk+v9NmfXOqK5KYTfFAbGgdWiDB2o3aj+p0Dhmm3eljWrdMF9mlqChMB3EfVpOLPFWBdlQBL3MvZZhXrbAa5HKW/y62h4A3msyZ4KuWnbnOJhjAYJVyof17arkEf7JIgAPUJsVhqa7EpUF2YrcS/g29IiGvzHmr1EfnVxRyfL5FH4SVsJfYOKvn7ipyntU23jAUw9bFAk7Ax7Xnjo0xoLPDQ9bq0p75DFPc2+TLjY3qRRim6KDdOIZK2ZJ+ZbdkQjtSSdiqErZc0vhY9C6OBIFhKW1Hu8KF9vpJKLn7B/0URPilxRT0yYQw3Q==

Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=JDy87PHSNQYi95Ze6iPaEQuNglrE13n+PSqy4ugqUQkDwI7OBG7DHq4700Y0H90DB9eRvMh7qxLK9N9/dgvekH88y4WcThESRdaiT5eKR/Ga+7WXxFsqAOGoFahvny42mMPbRmjX/SUqnbIkTbrd7cJhRRZgdnYgOiNdwB2DFUWfrkq2VR0Z3agQJVQ7zBfug6l4rSZEa/RXB5XSisrmo9nN27bnGwq8hZy9j5DUZ8Tw938if8CoMubDuBkwTpzNAf0KCsDuEo8SwTAL0rThOSATLzEVZJGqxkuDsh0n8xzhEgWB1Xxqdt/DAMB9G+bHXoeT8x9k2cGBeEq50JAsNA==

Authentication-results: suse.com; dkim=none (message not signed) header.d=none;suse.com; dmarc=none action=none header.from=epam.com;

Cc: "julien@xxxxxxx" <julien@xxxxxxx>, "sstabellini@xxxxxxxxxx" <sstabellini@xxxxxxxxxx>, Oleksandr Tyshchenko <Oleksandr_Tyshchenko@xxxxxxxx>, Volodymyr Babchuk <Volodymyr_Babchuk@xxxxxxxx>, Artem Mygaiev <Artem_Mygaiev@xxxxxxxx>, "roger.pau@xxxxxxxxxx" <roger.pau@xxxxxxxxxx>, Bertrand Marquis <bertrand.marquis@xxxxxxx>, Rahul Singh <rahul.singh@xxxxxxx>, "xen-devel@xxxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxxx>

Delivery-date: Tue, 07 Sep 2021 08:33:39 +0000

List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

Thread-index: AQHXoKuuObg1egaUxUKTttuKCAaWP6uXA1aAgAFBYAA=

Thread-topic: [PATCH 2/9] vpci: Add hooks for PCI device assign/de-assign

Hello, Jan! On 06.09.21 16:23, Jan Beulich wrote: > On 03.09.2021 12:08, Oleksandr Andrushchenko wrote: >> --- a/xen/drivers/passthrough/pci.c >> +++ b/xen/drivers/passthrough/pci.c >> @@ -864,6 +864,10 @@ static int deassign_device(struct domain *d, uint16_t >> seg, uint8_t bus, >> if ( ret ) >> goto out; >> >> + ret = vpci_deassign_device(d, pdev); >> + if ( ret ) >> + goto out; >> + >> if ( pdev->domain == hardware_domain ) >> pdev->quarantine = false; >> >> @@ -1425,6 +1429,11 @@ static int assign_device(struct domain *d, u16 seg, >> u8 bus, u8 devfn, u32 flag) >> rc = hd->platform_ops->assign_device(d, devfn, pci_to_dev(pdev), >> flag); >> } >> >> + if ( rc ) >> + goto done; >> + >> + rc = vpci_assign_device(d, pdev); >> + >> done: >> if ( rc ) >> printk(XENLOG_G_WARNING "%pd: assign (%pp) failed (%d)\n", > I have to admit that I'm worried by the further lack of unwinding in > case of error: We're not really good at this, I agree, but it would > be quite nice if the problem didn't get worse. At the very least if > the device was de-assigned from Dom0 and assignment to a DomU failed, > imo you will want to restore Dom0's settings. In the current design the error path is handled by the toolstack via XEN_DOMCTL_assign_device/XEN_DOMCTL_deassign_device, so this is why it is "ok" to have the code structured in the assign_device as it is, e.g. roll back will be handled on deassign_device. So, it is up to the toolstack to re-assign the device to Dom0 or DomIO(?) in case of error and we do rely on the toolstack in Xen. > > Also in the latter case don't you need to additionally call > vpci_deassign_device() for the prior owner of the device? Even if we wanted to help the toolstack with the roll-back in case of an error this would IMO make things even worth, e.g. we will de-assign for vPCI, but will leave IOMMU path untouched which would result in some mess. So, my only guess here is that we should rely on the toolstack completely as it was before PCI passthrough on Arm. > >> --- a/xen/drivers/vpci/vpci.c >> +++ b/xen/drivers/vpci/vpci.c >> @@ -86,6 +86,27 @@ int __hwdom_init vpci_add_handlers(struct pci_dev *pdev) >> >> return rc; >> } >> + >> +/* Notify vPCI that device is assigned to guest. */ >> +int vpci_assign_device(struct domain *d, struct pci_dev *dev) >> +{ >> + /* It only makes sense to assign for hwdom or guest domain. */ >> + if ( !has_vpci(d) || (d->domain_id >= DOMID_FIRST_RESERVED) ) > Please don't open-code is_system_domain(). I also think you want to > flip the two sides of the ||, to avoid evaluating whatever has_vcpi() > expands to for system domains. (Both again below.) Good catch, I missed is_system_domain completely, thank you! > >> --- a/xen/include/xen/vpci.h >> +++ b/xen/include/xen/vpci.h >> @@ -26,6 +26,12 @@ typedef int vpci_register_init_t(struct pci_dev *dev); >> /* Add vPCI handlers to device. */ >> int __must_check vpci_add_handlers(struct pci_dev *dev); >> >> +/* Notify vPCI that device is assigned to guest. */ >> +int __must_check vpci_assign_device(struct domain *d, struct pci_dev *dev); >> + >> +/* Notify vPCI that device is de-assigned from guest. */ >> +int __must_check vpci_deassign_device(struct domain *d, struct pci_dev >> *dev); > Is the expectation that "dev" may get altered? If not, it may want to > become pointer-to-const. (For "d" there might be the need to acquire > locks, so I guess it might not be a god idea to constify that one.) Just checked that and it is indeed possible to constify. Will do > > I also think that one comment ought to be enough for the two functions. Sure > > Jan > Thank you, Oleksandr

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.