From: Andrew Cooper <andrew.cooper3@citrix.com>
To: Razvan Cojocaru <rcojocaru@bitdefender.com>, xen-devel@lists.xen.org
Cc: keir@xen.org, jbeulich@suse.com
Subject: Re: [PATCH V2] x86/monitor: Disallow setting mem_access_emulate_each_rep when vm_event is NULL
Date: Fri, 8 Apr 2016 14:06:54 +0100 [thread overview]
Message-ID: <5707ACEE.6010807@citrix.com> (raw)
In-Reply-To: <1460118913-5321-1-git-send-email-rcojocaru@bitdefender.com>
On 08/04/16 13:35, Razvan Cojocaru wrote:
> It is meaningless (and potentially dangerous - see hvmemul_virtual_to_linear())
> to set mem_access_emulate_each_rep before xc_monitor_enable() (which allocates
> vcpu->arch.vm_event) has been called, so return an error from the
> XEN_DOMCTL_MONITOR_OP_EMULATE_EACH_REP hypercall when that is the case.
>
> Signed-off-by: Razvan Cojocaru <rcojocaru@bitdefender.com>
>
> ---
> Changes since V1:
> - Fixed the if() condition.
> - Introduced an rc return variable to simplify the code.
> ---
> xen/include/asm-x86/monitor.h | 16 +++++++++++++---
> 1 file changed, 13 insertions(+), 3 deletions(-)
>
> diff --git a/xen/include/asm-x86/monitor.h b/xen/include/asm-x86/monitor.h
> index 0954b59..a66760d 100644
> --- a/xen/include/asm-x86/monitor.h
> +++ b/xen/include/asm-x86/monitor.h
> @@ -32,19 +32,29 @@
> static inline
> int arch_monitor_domctl_op(struct domain *d, struct xen_domctl_monitor_op *mop)
> {
> + int rc = 0;
> +
> switch ( mop->op )
> {
> case XEN_DOMCTL_MONITOR_OP_EMULATE_EACH_REP:
> domain_pause(d);
> - d->arch.mem_access_emulate_each_rep = !!mop->event;
> + /*
> + * Enabling mem_access_emulate_each_rep without a vm_event subscriber
> + * is meaningless.
> + */
> + if ( d->vcpu && d->vcpu[0]->arch.vm_event )
Sorry - I forgot to mention this before, but this check is slightly
buggy. You want
if ( d->max_vcpus && d->vcpu[0] && d->vcpu[0]->arch.vm_event )
d->max_vcpus being non-zero guarentees that d->vcpu has been allocated,
but you still need to check that d->vcpu[0] has been allocated before
following the pointer.
With that fixed, Reviewed-by: Andrew Cooper <andrew.cooper3@citirx.com>
> + d->arch.mem_access_emulate_each_rep = !!mop->event;
> + else
> + rc = -EINVAL;
> +
> domain_unpause(d);
> break;
>
> default:
> - return -EOPNOTSUPP;
> + rc = -EOPNOTSUPP;
> }
>
> - return 0;
> + return rc;
> }
>
> int arch_monitor_domctl_event(struct domain *d,
_______________________________________________
Xen-devel mailing list
Xen-devel@lists.xen.org
http://lists.xen.org/xen-devel
prev parent reply other threads:[~2016-04-08 13:06 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2016-04-08 12:35 [PATCH V2] x86/monitor: Disallow setting mem_access_emulate_each_rep when vm_event is NULL Razvan Cojocaru
2016-04-08 13:06 ` Andrew Cooper [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=5707ACEE.6010807@citrix.com \
--to=andrew.cooper3@citrix.com \
--cc=jbeulich@suse.com \
--cc=keir@xen.org \
--cc=rcojocaru@bitdefender.com \
--cc=xen-devel@lists.xen.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).