From: Paolo Bonzini <pbonzini@redhat.com>
To: Paul Durrant <Paul.Durrant@citrix.com>,
Stefano Stabellini <Stefano.Stabellini@citrix.com>
Cc: Peter Maydell <peter.maydell@linaro.org>,
Peter Crosthwaite <peter.crosthwaite@xilinx.com>,
Thomas Huth <thuth@linux.vnet.ibm.com>,
"Michael S. Tsirkin" <mst@redhat.com>,
Alexey Kardashevskiy <aik@ozlabs.ru>,
Stefan Weil <sw@weilnetz.de>, Michael Tokarev <mjt@tls.msk.ru>,
"qemu-devel@nongnu.org" <qemu-devel@nongnu.org>,
Alexander Graf <agraf@suse.de>, Gerd Hoffmann <kraxel@redhat.com>,
Stefan Hajnoczi <stefanha@redhat.com>,
"xen-devel@lists.xenproject.org" <xen-devel@lists.xenproject.org>,
"Andreas Faerber\"" <afaerber@suse.de>,
Eduardo Habkost <ehabkost@redhat.com>
Subject: Re: [Qemu-devel] [PATCH] Xen: Use the ioreq-server API when available
Date: Fri, 10 Oct 2014 17:04:16 +0200 [thread overview]
Message-ID: <5437F570.8070106@redhat.com> (raw)
In-Reply-To: <9AAE0902D5BC7E449B7C8E4E778ABCD0110FD875@AMSPEX01CL01.citrite.net>
Il 10/10/2014 16:52, Paul Durrant ha scritto:
>> -----Original Message-----
>> From: Stefano Stabellini [mailto:stefano.stabellini@eu.citrix.com]
>> Sent: 10 October 2014 15:40
>> To: Paul Durrant
>> Cc: qemu-devel@nongnu.org; xen-devel@lists.xenproject.org; Michael S.
>> Tsirkin; Stefano Stabellini; Peter Maydell; Paolo Bonzini; Michael Tokarev;
>> Stefan Hajnoczi; Stefan Weil; Andreas Faerber"; Thomas Huth; Peter
>> Crosthwaite; Eduardo Habkost; Gerd Hoffmann; Alexey Kardashevskiy;
>> Alexander Graf
>> Subject: Re: [PATCH] Xen: Use the ioreq-server API when available
>>
>> On Fri, 10 Oct 2014, Paul Durrant wrote:
>>> The ioreq-server API added to Xen 4.5 offers better security than
>>> the existing Xen/QEMU interface because the shared pages that are
>>> used to pass emulation request/results back and forth are removed
>>> from the guest's memory space before any requests are serviced.
>>> This prevents the guest from mapping these pages (they are in a
>>> well known location) and attempting to attack QEMU by synthesizing
>>> its own request structures. Hence, this patch modifies configure
>>> to detect whether the API is available, and adds the necessary
>>> code to use the API if it is.
>>>
>>> The ioreq-server API does require that PCI device models explicitly
>>> register with Xen for config space accesses, so to use the API the
>>> code in xen-hvm.c needs to be informed as PCI devices are added or
>>> removed from PCI buses. This patch therefore also adds a PCI bus
>>> listener interface akin to the memory listener interface to fulfil
>>> this need.
>>>
>>> Signed-off-by: Paul Durrant <paul.durrant@citrix.com>
>>> Cc: Michael S. Tsirkin <mst@redhat.com>
>>> Cc: Stefano Stabellini <stefano.stabellini@eu.citrix.com>
>>> Cc: Peter Maydell <peter.maydell@linaro.org>
>>> Cc: Paolo Bonzini <pbonzini@redhat.com>
>>> Cc: Michael Tokarev <mjt@tls.msk.ru>
>>> Cc: Stefan Hajnoczi <stefanha@redhat.com>
>>> Cc: Stefan Weil <sw@weilnetz.de>
>>> Cc: Andreas Faerber" <afaerber@suse.de>
>>> Cc: Thomas Huth <thuth@linux.vnet.ibm.com>
>>> Cc: Peter Crosthwaite <peter.crosthwaite@xilinx.com>
>>> Cc: Eduardo Habkost <ehabkost@redhat.com>
>>> Cc: Gerd Hoffmann <kraxel@redhat.com>
>>> Cc: Alexey Kardashevskiy <aik@ozlabs.ru>
>>> Cc: Alexander Graf <agraf@suse.de>
>>> ---
>>> configure | 29 ++++++
>>> hw/pci/pci.c | 65 ++++++++++++
>>> include/hw/pci/pci.h | 9 ++
>>> include/qemu/typedefs.h | 1 +
>>> trace-events | 8 ++
>>> xen-hvm.c | 251
>> +++++++++++++++++++++++++++++++++++++++++++----
>>> 6 files changed, 345 insertions(+), 18 deletions(-)
>>
>> Please split this patch into two: one to introduce the PCI listener
>> stuff and another for the Xen specific changes.
>>
>
> Originally it was, but I was uneasy about introducing an interface with no consumers. Is that generally acceptable?
It is the suggested way as long as the two patches are part of the same
series.
Paolo
prev parent reply other threads:[~2014-10-10 15:04 UTC|newest]
Thread overview: 4+ messages / expand[flat|nested] mbox.gz Atom feed top
2014-10-10 13:56 [Qemu-devel] [PATCH] Xen: Use the ioreq-server API when available Paul Durrant
2014-10-10 14:39 ` Stefano Stabellini
2014-10-10 14:52 ` Paul Durrant
2014-10-10 15:04 ` Paolo Bonzini [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=5437F570.8070106@redhat.com \
--to=pbonzini@redhat.com \
--cc=Paul.Durrant@citrix.com \
--cc=Stefano.Stabellini@citrix.com \
--cc=afaerber@suse.de \
--cc=agraf@suse.de \
--cc=aik@ozlabs.ru \
--cc=ehabkost@redhat.com \
--cc=kraxel@redhat.com \
--cc=mjt@tls.msk.ru \
--cc=mst@redhat.com \
--cc=peter.crosthwaite@xilinx.com \
--cc=peter.maydell@linaro.org \
--cc=qemu-devel@nongnu.org \
--cc=stefanha@redhat.com \
--cc=sw@weilnetz.de \
--cc=thuth@linux.vnet.ibm.com \
--cc=xen-devel@lists.xenproject.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).