From: Wei Liu <wei.liu2@citrix.com>
To: David Vrabel <david.vrabel@citrix.com>
Cc: boris.ostrovsky@oracle.com, Wei Liu <wei.liu2@citrix.com>,
Stefano Stabellini <stefano.stabellini@eu.citrix.com>,
xen-devel@lists.xen.org
Subject: Re: [PATCH] xen: fix __set_phys_to_machine
Date: Thu, 22 Aug 2013 13:48:34 +0100 [thread overview]
Message-ID: <20130822124834.GC20549@zion.uk.xensource.com> (raw)
In-Reply-To: <5215FF3D.80804@citrix.com>
On Thu, Aug 22, 2013 at 01:08:29PM +0100, David Vrabel wrote:
> On 22/08/13 11:10, Wei Liu wrote:
> > In commit cd9151e2: xen/balloon: set a mapping for ballooned out pages
> > we have the ballooned out page's mapping set to a scratch page. When the
> > page is ballooned in again its P2M entry can be the MFN of the scratch
> > page, hitting the BUG_ONs in __set_phys_to_machine.
>
> Looking at the commit that introduced this bug I wonder if the the
> correct fix is to restore the original call of
> __set_phys_to_machine(pfn, INVALID_P2M_ENTRY) in decrease_reservation().
>
> We only need a valid kernel mapping for the ballooned out page, the p2m
> should still be invalid for the ballooned out page, right?
>
Indeed, this is a simple and straightforward fix. Patch on the way.
Wei.
> > --- a/arch/x86/xen/p2m.c
> > +++ b/arch/x86/xen/p2m.c
> > @@ -793,17 +793,27 @@ unsigned long __init set_phys_range_identity(unsigned long pfn_s,
> > return pfn - pfn_s;
> > }
> >
> > +DECLARE_PER_CPU(struct page *, balloon_scratch_page);
> > /* Try to install p2m mapping; fail if intermediate bits missing */
> > bool __set_phys_to_machine(unsigned long pfn, unsigned long mfn)
> > {
> > unsigned topidx, mididx, idx;
> > + unsigned long balloon_scratch_pfn;
> > + unsigned long balloon_scratch_mfn;
> > +
> > + balloon_scratch_pfn = page_to_pfn(__get_cpu_var(balloon_scratch_page));
> > + balloon_scratch_mfn = pfn_to_mfn(balloon_scratch_pfn);
> >
> > if (unlikely(xen_feature(XENFEAT_auto_translated_physmap))) {
> > - BUG_ON(pfn != mfn && mfn != INVALID_P2M_ENTRY);
> > + BUG_ON(pfn != mfn &&
> > + pfn != balloon_scratch_mfn &&
> > + mfn != INVALID_P2M_ENTRY &&
> > + mfn != balloon_scratch_mfn);
> > return true;
> > }
> > if (unlikely(pfn >= MAX_P2M_PFN)) {
> > - BUG_ON(mfn != INVALID_P2M_ENTRY);
> > + BUG_ON(mfn != INVALID_P2M_ENTRY &&
> > + mfn != balloon_scratch_mfn);
>
> This bit looks wrong/unnecessary.
>
> David
prev parent reply other threads:[~2013-08-22 12:48 UTC|newest]
Thread overview: 4+ messages / expand[flat|nested] mbox.gz Atom feed top
2013-08-22 10:10 [PATCH] xen: fix __set_phys_to_machine Wei Liu
2013-08-22 11:45 ` Ian Campbell
2013-08-22 12:08 ` David Vrabel
2013-08-22 12:48 ` Wei Liu [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20130822124834.GC20549@zion.uk.xensource.com \
--to=wei.liu2@citrix.com \
--cc=boris.ostrovsky@oracle.com \
--cc=david.vrabel@citrix.com \
--cc=stefano.stabellini@eu.citrix.com \
--cc=xen-devel@lists.xen.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.