[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH v2 5/8] xen/arm/gic: Allow routing/removing interrupt to running VMs

To: Henry Wang <xin.wang2@xxxxxxx>, xen-devel@xxxxxxxxxxxxxxxxxxxx
From: Julien Grall <julien@xxxxxxx>
Date: Mon, 20 May 2024 10:50:45 +0100
Cc: Stefano Stabellini <sstabellini@xxxxxxxxxx>, Bertrand Marquis <bertrand.marquis@xxxxxxx>, Michal Orzel <michal.orzel@xxxxxxx>, Volodymyr Babchuk <Volodymyr_Babchuk@xxxxxxxx>
Delivery-date: Mon, 20 May 2024 09:50:56 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

Hi Henry,

On 20/05/2024 02:01, Henry Wang wrote:

Hi Julien,

On 5/19/2024 7:08 PM, Julien Grall wrote:

Hi,

On 17/05/2024 07:03, Henry Wang wrote:
@@ -444,14 +444,18 @@ int vgic_connect_hw_irq(struct domain *d,struct vcpu *v, unsigned int virq,
      {
          /* The VIRQ should not be already enabled by the guest */
This comment needs to be updated.


Yes, sorry. I will update this and the one in the new vGIC in v3.

          if ( !p->desc &&
-             !test_bit(GIC_IRQ_GUEST_ENABLED, &p->status) )
+             !test_bit(GIC_IRQ_GUEST_ENABLED, &p->status) &&
+             !test_bit(GIC_IRQ_GUEST_VISIBLE, &p->status) &&
+             !test_bit(GIC_IRQ_GUEST_ACTIVE, &p->status) )
              p->desc = desc;
          else
              ret = -EBUSY;
      }
      else
      {
-        if ( desc && p->desc != desc )
+        if ( desc && p->desc != desc &&
+             (test_bit(GIC_IRQ_GUEST_VISIBLE, &p->status) ||
+              test_bit(GIC_IRQ_GUEST_ACTIVE, &p->status)) )


This should be

+        if ( (desc && p->desc != desc) ||
+             test_bit(GIC_IRQ_GUEST_VISIBLE, &p->status) ||
+             test_bit(GIC_IRQ_GUEST_ACTIVE, &p->status) )

Looking at gic_set_lr(), we first check p->desc, before settingIRQ_GUEST_VISIBLE.

I can't find a common lock, so what would guarantee that p->desc isnot going to be used or IRQ_GUEST_VISIBLE set afterwards?

I think the gic_set_lr() is supposed to be called with v->arch.vgic.locktaken, at least the current two callers (gic_raise_guest_irq() andgic_restore_pending_irqs()) are doing it this way. Would this addressyour concern? Thanks.

I don't think it would address my concern. AFAICT, the lock is not takenby vgic_connect_hw_irq().

I also haven't touched the vGIC for quite a while and didn't have muchtime to dig into the code. Hence why I didn't propose a fix.

The vGIC code was mainly written by Stefano, so maybe he will have anidea how this could be fixed.


Cheers,

--
Julien Grall

Follow-Ups:
- Re: [PATCH v2 5/8] xen/arm/gic: Allow routing/removing interrupt to running VMs
  - From: Stefano Stabellini

References:
- [PATCH v2 0/8] Remaining patches for dynamic node programming using overlay dtbo
  - From: Henry Wang
- [PATCH v2 5/8] xen/arm/gic: Allow routing/removing interrupt to running VMs
  - From: Henry Wang
- Re: [PATCH v2 5/8] xen/arm/gic: Allow routing/removing interrupt to running VMs
  - From: Henry Wang
- Re: [PATCH v2 5/8] xen/arm/gic: Allow routing/removing interrupt to running VMs
  - From: Julien Grall
- Re: [PATCH v2 5/8] xen/arm/gic: Allow routing/removing interrupt to running VMs
  - From: Henry Wang

Prev by Date: Re: [PATCH v2 5/7] xen/arm: Rework heap page allocation outside allocate_bank_memory
Next by Date: Re: [PATCH v2 05/12] IOMMU: rename and re-type ats_enabled
Previous by thread: Re: [PATCH v2 5/8] xen/arm/gic: Allow routing/removing interrupt to running VMs
Next by thread: Re: [PATCH v2 5/8] xen/arm/gic: Allow routing/removing interrupt to running VMs
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.