Xen project Mailing List

Re: [PATCH v6] x86: detect CMOS aliasing on ports other than 0x70/0x71

From: Roger Pau Monné <roger.pau@xxxxxxxxxx>

Date: Tue, 18 Apr 2023 13:35:22 +0200

Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=citrix.com; dmarc=pass action=none header.from=citrix.com; dkim=pass header.d=citrix.com; arc=none

Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=zizeZKoON3GYLMqE9PBEpuYhnikQDbSQHcw9iMR0o0U=; b=D3L9qWbb1c0b5Df+Ynxup2rvxOzUWqcxGtVs87oU5ykC3KCf4svPV5O5BCEJAN/gBQC+xQ8VhlmWMjorgVf08ncyJ37OxqDbg3f8IPKQkuj4bOdXv5r101Rq54jRmSZWQeVT6HQCm4Tp66Vas2SZpLXGPZhfs6v2Ipt09cOmcJ5DeacvI1dID5NkQRCAhwc/eLDlAbujlm2gEaEXK6/MKe6mDzUBK0cIpVgKeUUsK7YmdPn8hbsEbK29CXrSC8DFb+YZ4EmrB4JbvFIyzuTvmLmOCFCpkq3vsOLgBa9i0UR5+OUnLVrhHBi72sCI0Vlsu/jzn6aMjhTeVSNZfOOd8Q==

Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=QvIRL90vYBgqZnuhb0wAZLI+byhgGfUmrkmOvs4tLF9wq4Fw1yKrt+dgOFQRIeUxnKhrWefX599i/t3Zypan4XYQ/b8crlQ5IdUTgFe5WoYVK07xITcSIgFhgEAFQBe8MAke/k+Ce/lnl9wkhzLcGn3M4Af6AiY0znB+SmFEsmVV36DGXkgsvoEeDI7DwE+oT1pAXoOgBumdiH9bxlZ6u3LV3C1ZEeEHN7qY3DMgQufGCYU8rv8DSUoDDYKc2J7ikjXGAC+JLF8TdwU/zjGBWuHg8CGWoOlKNvj5HEW10Ps90Z3pwL6BGivLGwhP8Sm9YqTLBwcF7WhCDAOo7YGhfA==

Authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=citrix.com;

Cc: "xen-devel@xxxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxxx>, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, Paul Durrant <paul@xxxxxxx>, Wei Liu <wl@xxxxxxx>

Delivery-date: Tue, 18 Apr 2023 11:35:47 +0000

Ironport-data: A9a23:RsxJkaBOmwKWHBVW/x3iw5YqxClBgxIJ4kV8jS/XYbTApGx00zZRm jQWDGmDP6qIajSjfoh0PImz/U1XuJfVm4Q1QQY4rX1jcSlH+JHPbTi7wuUcHAvJd5GeExg3h yk6QoOdRCzhZiaE/n9BCpC48T8nk/nOHuGmYAL9EngZbRd+Tys8gg5Ulec8g4p56fC0GArIs t7pyyHlEAbNNwVcbyRFuspvlDs15K6p4G9B7gRkDRx2lAS2e0c9Xcp3yZ6ZdxMUcqEMdsamS uDKyq2O/2+x13/B3fv8z94X2mVTKlLjFVDmZkh+AsBOsTAbzsAG6Y4pNeJ0VKtio27hc+ada jl6ncfYpQ8BZsUgkQmGOvVSO3kW0aZuoNcrLZUj2CA6IoKvn3bEmp1T4E8K0YIwxt1bLmAf3 tojAT08dxml29OW5a64Y7w57igjBJGD0II3nFhFlGucJ9B2BJfJTuPN+MNS2yo2ioZWB/HCa sEFaD1pKhPdfxlIPVRRA5U79AuqriCnL3sE9xTI+OxuvDK7IA9ZidABNPLPfdOHX4NNl1uwr WPa5WXpRBodMbRzzBLcqi/82rWSxHyTtIQ6T5bh3dEwhVmvl0s0VyQ5Tn2qruiXlRvrMz5YA wlOksY0loAw/kG2Stj2XzWjvWWJ+BUbXrJ4A+A8rQ2A1KfQywKYHXQfCC5MbsQ8s807TiBs0 UWG9/vxDCFrmK2YTzSa7Lj8hSy2ETgYKykFfyBscOcey9zqoYV2hBSfSN9mSfSxloesRmu2x C2Wpi8jgblVldQMy6iw4VHAhXSru4TNSQk2oA7QWwpJ8z9EWWJsXKTwgXCz0BqKBNzxooWp1 JTcp/Wj0Q==

Ironport-hdrordr: A9a23:YohI+6N+lChwP8BcTv6jsMiBIKoaSvp037Dk7TEJdfU1SL3hqy nKpp4mPHDP+VMssR0b6LK90ey7MBDhHP1OgLX5X43SODUO0VHAROpfBMnZowEIcBeOkdK1u5 0QFZSWy+edMbG5t6vHCcWDfOrICePozJyV

List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On Tue, Apr 18, 2023 at 11:24:19AM +0200, Jan Beulich wrote: > ... in order to also intercept Dom0 accesses through the alias ports. > > Also stop intercepting accesses to the CMOS ports if we won't ourselves > use the CMOS RTC, because of there being none. > > Note that rtc_init() deliberately uses 16 as the upper loop bound, > despite probe_cmos_alias() using 8: The higher bound is benign now, but > would save us touching the code (or, worse, missing to touch it) in case > the lower one was doubled. > > Signed-off-by: Jan Beulich <jbeulich@xxxxxxxx> Reviewed-by: Roger Pau Monné <roger.pau@xxxxxxxxxx> > --- > v6: Restore lost "return" in rtc_init(). Convert printk() to dprintk() > in probe_cmos_alias(). Correct is_cmos_port() for hwdom. > v5: Simplify logic in is_cmos_port(). Limit the scope of a local > variable. Adjust a comment that's being moved. > v4: Also conditionally mask top bit for guest index port accesses. Add > missing adjustments to rtc_init(). Re-work to avoid recursive > read_lock(). Also adjust guest_io_{read,write}(). Re-base. > v3: Re-base over change to earlier patch. > v2: Re-base. > > --- a/xen/arch/x86/hvm/rtc.c > +++ b/xen/arch/x86/hvm/rtc.c > @@ -27,7 +27,7 @@ > #include <asm/hvm/vpt.h> > #include <asm/hvm/io.h> > #include <asm/hvm/save.h> > -#include <asm/current.h> > +#include <asm/iocap.h> > #include <xen/trace.h> > #include <public/hvm/params.h> > > @@ -836,9 +836,19 @@ void rtc_init(struct domain *d) > > if ( !has_vrtc(d) ) > { > - if ( is_hardware_domain(d) ) > - /* Hardware domain gets mediated access to the physical RTC. */ > - register_portio_handler(d, RTC_PORT(0), 2, hw_rtc_io); > + unsigned int port; > + > + if ( !is_hardware_domain(d) ) > + return; > + > + /* > + * Hardware domain gets mediated access to the physical RTC/CMOS (of > + * course unless we don't use it ourselves, for there being none). > + */ > + for ( port = RTC_PORT(0); port < RTC_PORT(0) + 0x10; port += 2 ) > + if ( is_cmos_port(port, 2, d) ) > + register_portio_handler(d, port, 2, hw_rtc_io); > + > return; > } > > --- a/xen/arch/x86/include/asm/mc146818rtc.h > +++ b/xen/arch/x86/include/asm/mc146818rtc.h > @@ -9,6 +9,10 @@ > > extern spinlock_t rtc_lock; /* serialize CMOS RAM access */ > > +struct domain; > +bool is_cmos_port(unsigned int port, unsigned int bytes, > + const struct domain *d); > + > /********************************************************************** > * register summary > **********************************************************************/ > --- a/xen/arch/x86/pv/emul-priv-op.c > +++ b/xen/arch/x86/pv/emul-priv-op.c > @@ -208,7 +208,7 @@ static bool admin_io_okay(unsigned int p > return false; > > /* We also never permit direct access to the RTC/CMOS registers. */ Hm, it's unclear to me whether the comment above would need updating: we don't allow direct access to the RTC/CMOS registers, but we allow direct access to the RTC/CMOS ports if there's no device behind. Thanks, Roger.

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.