From: Alexander Graf <agraf@suse.de>
To: Paul Mackerras <paulus@samba.org>,
kvm@vger.kernel.org, kvm-ppc@vger.kernel.org
Subject: Re: [PATCH 3/3] KVM: PPC: Book3S: Make kvmppc_ld return a more accurate error indication
Date: Mon, 28 Jul 2014 12:26:01 +0000 [thread overview]
Message-ID: <53D64159.8050303@suse.de> (raw)
In-Reply-To: <1405756776-7634-4-git-send-email-paulus@samba.org>
On 19.07.14 09:59, Paul Mackerras wrote:
> At present, kvmppc_ld calls kvmppc_xlate, and if kvmppc_xlate returns
> any error indication, it returns -ENOENT, which is taken to mean an
> HPTE not found error. However, the error could have been a segment
> found (no SLB entry) or a permission error. Similarly,
> kvmppc_pte_to_hva currently does permission checking, but any error
> from it is taken by kvmppc_ld to mean that the access is an emulated
> MMIO access. Also, kvmppc_ld does no execute permission checking.
>
> This fixes these problems by (a) returning any error from kvmppc_xlate
> directly, (b) moving the permission check from kvmppc_pte_to_hva
> into kvmppc_ld, and (c) adding an execute permission check to kvmppc_ld.
>
> This is similar to what was done for kvmppc_st() by commit 82ff911317c3
> ("KVM: PPC: Deflect page write faults properly in kvmppc_st").
>
> Signed-off-by: Paul Mackerras <paulus@samba.org>
> ---
> arch/powerpc/kvm/book3s.c | 25 ++++++++++++-------------
> 1 file changed, 12 insertions(+), 13 deletions(-)
>
> diff --git a/arch/powerpc/kvm/book3s.c b/arch/powerpc/kvm/book3s.c
> index 31facfc..087f8f9 100644
> --- a/arch/powerpc/kvm/book3s.c
> +++ b/arch/powerpc/kvm/book3s.c
> @@ -413,17 +413,10 @@ static hva_t kvmppc_bad_hva(void)
> return PAGE_OFFSET;
> }
>
> -static hva_t kvmppc_pte_to_hva(struct kvm_vcpu *vcpu, struct kvmppc_pte *pte,
> - bool read)
> +static hva_t kvmppc_pte_to_hva(struct kvm_vcpu *vcpu, struct kvmppc_pte *pte)
> {
> hva_t hpage;
>
> - if (read && !pte->may_read)
> - goto err;
> -
> - if (!read && !pte->may_write)
> - goto err;
> -
> hpage = gfn_to_hva(vcpu->kvm, pte->raddr >> PAGE_SHIFT);
> if (kvm_is_error_hva(hpage))
> goto err;
> @@ -462,15 +455,23 @@ int kvmppc_ld(struct kvm_vcpu *vcpu, ulong *eaddr, int size, void *ptr,
> {
> struct kvmppc_pte pte;
> hva_t hva = *eaddr;
> + int rc;
>
> vcpu->stat.ld++;
>
> - if (kvmppc_xlate(vcpu, *eaddr, data, false, &pte))
> - goto nopte;
> + rc = kvmppc_xlate(vcpu, *eaddr, data, false, &pte);
> + if (rc)
> + return rc;
>
> *eaddr = pte.raddr;
>
> - hva = kvmppc_pte_to_hva(vcpu, &pte, true);
> + if (!pte.may_read)
> + return -EPERM;
> +
> + if (!data && !pte.may_execute)
> + return -ENOEXEC;
We should probably do a full audit of all that code and decide who is
responsible for returning errors where. IIRC our MMU frontends already
check pte.may* and return error codes respectively.
However, double-checking doesn't hurt for now, so I've applied this
patch regardless.
Alex
WARNING: multiple messages have this Message-ID (diff)
From: Alexander Graf <agraf@suse.de>
To: Paul Mackerras <paulus@samba.org>,
kvm@vger.kernel.org, kvm-ppc@vger.kernel.org
Subject: Re: [PATCH 3/3] KVM: PPC: Book3S: Make kvmppc_ld return a more accurate error indication
Date: Mon, 28 Jul 2014 14:26:01 +0200 [thread overview]
Message-ID: <53D64159.8050303@suse.de> (raw)
In-Reply-To: <1405756776-7634-4-git-send-email-paulus@samba.org>
On 19.07.14 09:59, Paul Mackerras wrote:
> At present, kvmppc_ld calls kvmppc_xlate, and if kvmppc_xlate returns
> any error indication, it returns -ENOENT, which is taken to mean an
> HPTE not found error. However, the error could have been a segment
> found (no SLB entry) or a permission error. Similarly,
> kvmppc_pte_to_hva currently does permission checking, but any error
> from it is taken by kvmppc_ld to mean that the access is an emulated
> MMIO access. Also, kvmppc_ld does no execute permission checking.
>
> This fixes these problems by (a) returning any error from kvmppc_xlate
> directly, (b) moving the permission check from kvmppc_pte_to_hva
> into kvmppc_ld, and (c) adding an execute permission check to kvmppc_ld.
>
> This is similar to what was done for kvmppc_st() by commit 82ff911317c3
> ("KVM: PPC: Deflect page write faults properly in kvmppc_st").
>
> Signed-off-by: Paul Mackerras <paulus@samba.org>
> ---
> arch/powerpc/kvm/book3s.c | 25 ++++++++++++-------------
> 1 file changed, 12 insertions(+), 13 deletions(-)
>
> diff --git a/arch/powerpc/kvm/book3s.c b/arch/powerpc/kvm/book3s.c
> index 31facfc..087f8f9 100644
> --- a/arch/powerpc/kvm/book3s.c
> +++ b/arch/powerpc/kvm/book3s.c
> @@ -413,17 +413,10 @@ static hva_t kvmppc_bad_hva(void)
> return PAGE_OFFSET;
> }
>
> -static hva_t kvmppc_pte_to_hva(struct kvm_vcpu *vcpu, struct kvmppc_pte *pte,
> - bool read)
> +static hva_t kvmppc_pte_to_hva(struct kvm_vcpu *vcpu, struct kvmppc_pte *pte)
> {
> hva_t hpage;
>
> - if (read && !pte->may_read)
> - goto err;
> -
> - if (!read && !pte->may_write)
> - goto err;
> -
> hpage = gfn_to_hva(vcpu->kvm, pte->raddr >> PAGE_SHIFT);
> if (kvm_is_error_hva(hpage))
> goto err;
> @@ -462,15 +455,23 @@ int kvmppc_ld(struct kvm_vcpu *vcpu, ulong *eaddr, int size, void *ptr,
> {
> struct kvmppc_pte pte;
> hva_t hva = *eaddr;
> + int rc;
>
> vcpu->stat.ld++;
>
> - if (kvmppc_xlate(vcpu, *eaddr, data, false, &pte))
> - goto nopte;
> + rc = kvmppc_xlate(vcpu, *eaddr, data, false, &pte);
> + if (rc)
> + return rc;
>
> *eaddr = pte.raddr;
>
> - hva = kvmppc_pte_to_hva(vcpu, &pte, true);
> + if (!pte.may_read)
> + return -EPERM;
> +
> + if (!data && !pte.may_execute)
> + return -ENOEXEC;
We should probably do a full audit of all that code and decide who is
responsible for returning errors where. IIRC our MMU frontends already
check pte.may* and return error codes respectively.
However, double-checking doesn't hurt for now, so I've applied this
patch regardless.
Alex
next prev parent reply other threads:[~2014-07-28 12:26 UTC|newest]
Thread overview: 12+ messages / expand[flat|nested] mbox.gz Atom feed top
2014-07-19 7:59 [PATCH 0/3] Fixes for PPC Book3S KVM Paul Mackerras
2014-07-19 7:59 ` Paul Mackerras
2014-07-19 7:59 ` [PATCH 1/3] KVM: PPC: Book3S: Fix LPCR one_reg interface Paul Mackerras
2014-07-19 7:59 ` Paul Mackerras
2014-07-19 7:59 ` [PATCH 2/3] KVM: PPC: Book3S PR: Take SRCU read lock around RTAS kvm_read_guest() call Paul Mackerras
2014-07-19 7:59 ` Paul Mackerras
2014-07-19 7:59 ` [PATCH 3/3] KVM: PPC: Book3S: Make kvmppc_ld return a more accurate error indication Paul Mackerras
2014-07-19 7:59 ` Paul Mackerras
2014-07-28 12:26 ` Alexander Graf [this message]
2014-07-28 12:26 ` Alexander Graf
2014-07-28 12:26 ` [PATCH 0/3] Fixes for PPC Book3S KVM Alexander Graf
2014-07-28 12:26 ` Alexander Graf
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=53D64159.8050303@suse.de \
--to=agraf@suse.de \
--cc=kvm-ppc@vger.kernel.org \
--cc=kvm@vger.kernel.org \
--cc=paulus@samba.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.