[PATCH v3] x86/vpmu_intel: Fix hypervisor crash by masking PC bit in MSR_P6

xen-devel.lists.xenproject.org archive mirror
 help / color / mirror / Atom feed

* [PATCH v3] x86/vpmu_intel: Fix hypervisor crash by masking PC bit in MSR_P6_EVNTSEL
@ 2017-05-04 21:30 Mohit Gambhir
  2017-05-05 10:16 ` Jan Beulich
  0 siblings, 1 reply; 4+ messages in thread
From: Mohit Gambhir @ 2017-05-04 21:30 UTC (permalink / raw)
  To: kevin.tian, jun.nakajima, xen-devel
  Cc: Mohit Gambhir, boris.ostrovsky, mgambhir, JBeulich

Setting Pin Control (PC) bit (19) in MSR_P6_EVNTSEL results in a General
Protection Fault and thus results in a hypervisor crash. This behavior has
been observed on two generations of Intel processors namely, Haswell and
Broadwell. Other Intel processor generations were not tested. However, it
does seem to be a possible erratum that hasn't yet been confirmed by Intel.

To fix the problem this patch masks PC bit and returns an error in
case any guest tries to write to it on any Intel processor. In addition
to the fact that setting this bit crashes the hypervisor on Haswell and
Broadwell, the PC flag bit toggles a hardware pin on the physical CPU
every time the programmed event occurs and the hardware behavior in
response to the toggle is undefined in the SDM, which makes this bit
unsafe to be used by guests and hence should be masked on all machines.

Signed-off-by: Mohit Gambhir <mohit.gambhir@oracle.com>
---
 xen/arch/x86/cpu/vpmu_intel.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/xen/arch/x86/cpu/vpmu_intel.c b/xen/arch/x86/cpu/vpmu_intel.c
index 3f0322c..6d768cb 100644
--- a/xen/arch/x86/cpu/vpmu_intel.c
+++ b/xen/arch/x86/cpu/vpmu_intel.c
@@ -76,12 +76,13 @@ static bool_t __read_mostly full_width_write;
 #define FIXED_CTR_CTRL_ANYTHREAD_MASK 0x4

 #define ARCH_CNTR_ENABLED   (1ULL << 22)
+#define ARCH_CNTR_PIN_CONTROL (1ULL << 19)

 /* Number of general-purpose and fixed performance counters */
 static unsigned int __read_mostly arch_pmc_cnt, fixed_pmc_cnt;

 /* Masks used for testing whether and MSR is valid */
-#define ARCH_CTRL_MASK  (~((1ull << 32) - 1) | (1ull << 21))
+#define ARCH_CTRL_MASK  (~((1ull << 32) - 1) | (1ull << 21) | ARCH_CNTR_PIN_CONTROL)
 static uint64_t __read_mostly fixed_ctrl_mask, fixed_counters_mask;
 static uint64_t __read_mostly global_ovf_ctrl_mask, global_ctrl_mask;

-- 
2.9.3

_______________________________________________
Xen-devel mailing list
Xen-devel@lists.xen.org
https://lists.xen.org/xen-devel

^ permalink raw reply related	[flat|nested] 4+ messages in thread

* Re: [PATCH v3] x86/vpmu_intel: Fix hypervisor crash by masking PC bit in MSR_P6_EVNTSEL
  2017-05-04 21:30 [PATCH v3] x86/vpmu_intel: Fix hypervisor crash by masking PC bit in MSR_P6_EVNTSEL Mohit Gambhir
@ 2017-05-05 10:16 ` Jan Beulich
  2017-05-07 22:58   ` Tian, Kevin
  2017-05-08 10:30   ` Julien Grall
  0 siblings, 2 replies; 4+ messages in thread
From: Jan Beulich @ 2017-05-05 10:16 UTC (permalink / raw)
  To: Mohit Gambhir
  Cc: kevin.tian, mgambhir, xen-devel, Julien Grall, jun.nakajima,
	boris.ostrovsky

>>> On 04.05.17 at 23:30, <mohit.gambhir@oracle.com> wrote:
> Setting Pin Control (PC) bit (19) in MSR_P6_EVNTSEL results in a General
> Protection Fault and thus results in a hypervisor crash. This behavior has
> been observed on two generations of Intel processors namely, Haswell and
> Broadwell. Other Intel processor generations were not tested. However, it
> does seem to be a possible erratum that hasn't yet been confirmed by Intel.
> 
> To fix the problem this patch masks PC bit and returns an error in
> case any guest tries to write to it on any Intel processor. In addition
> to the fact that setting this bit crashes the hypervisor on Haswell and
> Broadwell, the PC flag bit toggles a hardware pin on the physical CPU
> every time the programmed event occurs and the hardware behavior in
> response to the toggle is undefined in the SDM, which makes this bit
> unsafe to be used by guests and hence should be masked on all machines.
> 
> Signed-off-by: Mohit Gambhir <mohit.gambhir@oracle.com>

Reviewed-by: Jan Beulich <jbeulich@suse.com>

Iirc the intention was to have this in 4.9, in which case you should
have Cc-ed Juline (now added).

Jan


_______________________________________________
Xen-devel mailing list
Xen-devel@lists.xen.org
https://lists.xen.org/xen-devel

^ permalink raw reply	[flat|nested] 4+ messages in thread

* Re: [PATCH v3] x86/vpmu_intel: Fix hypervisor crash by masking PC bit in MSR_P6_EVNTSEL
  2017-05-05 10:16 ` Jan Beulich
@ 2017-05-07 22:58   ` Tian, Kevin
  2017-05-08 10:30   ` Julien Grall
  1 sibling, 0 replies; 4+ messages in thread
From: Tian, Kevin @ 2017-05-07 22:58 UTC (permalink / raw)
  To: Jan Beulich, Mohit Gambhir
  Cc: boris.ostrovsky@oracle.com, Julien Grall, mgambhir@outlook.com,
	Nakajima, Jun, xen-devel@lists.xen.org

> From: Jan Beulich
> Sent: Friday, May 5, 2017 6:16 PM
> 
> >>> On 04.05.17 at 23:30, <mohit.gambhir@oracle.com> wrote:
> > Setting Pin Control (PC) bit (19) in MSR_P6_EVNTSEL results in a General
> > Protection Fault and thus results in a hypervisor crash. This behavior has
> > been observed on two generations of Intel processors namely, Haswell and
> > Broadwell. Other Intel processor generations were not tested. However, it
> > does seem to be a possible erratum that hasn't yet been confirmed by Intel.
> >
> > To fix the problem this patch masks PC bit and returns an error in
> > case any guest tries to write to it on any Intel processor. In addition
> > to the fact that setting this bit crashes the hypervisor on Haswell and
> > Broadwell, the PC flag bit toggles a hardware pin on the physical CPU
> > every time the programmed event occurs and the hardware behavior in
> > response to the toggle is undefined in the SDM, which makes this bit
> > unsafe to be used by guests and hence should be masked on all machines.
> >
> > Signed-off-by: Mohit Gambhir <mohit.gambhir@oracle.com>
> 
> Reviewed-by: Jan Beulich <jbeulich@suse.com>
> 
> Iirc the intention was to have this in 4.9, in which case you should
> have Cc-ed Juline (now added).
> 

Acked-by: Kevin Tian <kevin.tian@intel.com>
_______________________________________________
Xen-devel mailing list
Xen-devel@lists.xen.org
https://lists.xen.org/xen-devel

^ permalink raw reply	[flat|nested] 4+ messages in thread

* Re: [PATCH v3] x86/vpmu_intel: Fix hypervisor crash by masking PC bit in MSR_P6_EVNTSEL
  2017-05-05 10:16 ` Jan Beulich
  2017-05-07 22:58   ` Tian, Kevin
@ 2017-05-08 10:30   ` Julien Grall
  1 sibling, 0 replies; 4+ messages in thread
From: Julien Grall @ 2017-05-08 10:30 UTC (permalink / raw)
  To: Jan Beulich, Mohit Gambhir
  Cc: kevin.tian, mgambhir, boris.ostrovsky, jun.nakajima, xen-devel

Hi Jan,

On 05/05/17 11:16, Jan Beulich wrote:
>>>> On 04.05.17 at 23:30, <mohit.gambhir@oracle.com> wrote:
>> Setting Pin Control (PC) bit (19) in MSR_P6_EVNTSEL results in a General
>> Protection Fault and thus results in a hypervisor crash. This behavior has
>> been observed on two generations of Intel processors namely, Haswell and
>> Broadwell. Other Intel processor generations were not tested. However, it
>> does seem to be a possible erratum that hasn't yet been confirmed by Intel.
>>
>> To fix the problem this patch masks PC bit and returns an error in
>> case any guest tries to write to it on any Intel processor. In addition
>> to the fact that setting this bit crashes the hypervisor on Haswell and
>> Broadwell, the PC flag bit toggles a hardware pin on the physical CPU
>> every time the programmed event occurs and the hardware behavior in
>> response to the toggle is undefined in the SDM, which makes this bit
>> unsafe to be used by guests and hence should be masked on all machines.
>>
>> Signed-off-by: Mohit Gambhir <mohit.gambhir@oracle.com>
>
> Reviewed-by: Jan Beulich <jbeulich@suse.com>
>
> Iirc the intention was to have this in 4.9, in which case you should
> have Cc-ed Juline (now added).

Release-acked-by: Julien Grall <julien.grall@arm.com>

Cheers,

-- 
Julien Grall

_______________________________________________
Xen-devel mailing list
Xen-devel@lists.xen.org
https://lists.xen.org/xen-devel

^ permalink raw reply	[flat|nested] 4+ messages in thread

end of thread, other threads:[~2017-05-08 10:30 UTC | newest]

Thread overview: 4+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2017-05-04 21:30 [PATCH v3] x86/vpmu_intel: Fix hypervisor crash by masking PC bit in MSR_P6_EVNTSEL Mohit Gambhir
2017-05-05 10:16 ` Jan Beulich
2017-05-07 22:58   ` Tian, Kevin
2017-05-08 10:30   ` Julien Grall

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).