[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Nonsensical XSM Flask denial

To: xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxxx>
From: Jason Andryuk <jandryuk@xxxxxxxxx>
Date: Thu, 17 Mar 2022 13:52:01 -0400
Delivery-date: Thu, 17 Mar 2022 17:52:26 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

I shut down a domU (HVM dom9 w/ Linux stubdom dom10) with a single PCI
device assigned.  Xen logged the following Flask denial for a second
PVH dom5 (uivm) without any PCI devices assigned.  This is Xen 4.14.4.

(XEN) avc:  denied  { remove_irq } for domid=5 irq=17
scontext=system_u:system_r:uivm_t
tcontext=system_u:object_r:shared_irq_t tclass=resource

Domain 5 as uivm_t and irq 17 as shared_irq_t both look correct.  But
it doesn't make sense that uivm would make a hypercall for an irq.

Could this be from RCU calling complete_domain_destroy() when current
is dom5 (uivm)?  What would current be set to when RCU runs its
callbacks?

Thanks,
Jason

Follow-Ups:
- Re: Nonsensical XSM Flask denial
  - From: Andrew Cooper

Prev by Date: Re: [XEN][RFC PATCH v3 13/14] tools/libs/light: Implement new libxl functions for device tree overlay ops
Next by Date: Re: Nonsensical XSM Flask denial
Previous by thread: [xen-unstable-smoke test] 168662: tolerable all pass - PUSHED
Next by thread: Re: Nonsensical XSM Flask denial
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.