From: Andrew Cooper <andrew.cooper3@citrix.com>
To: Konrad Rzeszutek Wilk <konrad.wilk@oracle.com>,
ross.lagerwall@citrix.com, mpohlack@amazon.com,
xen-devel@lists.xensource.com,
Marcos Matsunaga <Marcos.Matsunaga@oracle.com>
Subject: Re: Livepatch for Xen 4.9
Date: Mon, 3 Oct 2016 16:33:33 +0100 [thread overview]
Message-ID: <e63992dc-bc7c-ab7c-18d5-c097dfe0b7b6@citrix.com> (raw)
In-Reply-To: <20161003141641.GG20896@char.us.oracle.com>
On 03/10/16 15:16, Konrad Rzeszutek Wilk wrote:
> Hey!
>
> [CC-ing xen-devel]
>
> Xen 4.8-rc1 is out and means taking a break from some of the Livepatch hypervisor
> parts for me.
>
> My plan for 4.8 is to concentrate on any livepatch fallout and doing OSSTest along
> with Marcos (CC-ed) and see if we can wrestle it to expand on what
> we want to have done.
>
> However going forward (Xen 4.9) I believe the top issues we need
> to get addressed are:
>
> a) "A better mechanism to "mask" NMIs during patching. The existing mechanism looses
> NMI if they have been sent and we don't have a mechanism to replay them. Note that
> this is also fixes alternative section patching. Could (like Linux) annotate handlers don't get patched."
> (https://wiki.xenproject.org/wiki/LivePatch).
You cant mask NMIs, and as we have alternatives at the head of the
entrypoints, we need to work towards making patching safe on these
paths. The traditional way is with 0xcc and magic in the debug trap
handler to take over the responsibility of patching.
> b) Restart the shrinking of code using__LINE__
+1 (shame these patches missed 4.8)
> c) When figuring out the new_addr, take into account name being <symbol>+<offset>.
> d) Make asm code be in its own section. That eases the livepatch tools work in figuring out a change.
> See https://lkml.org/lkml/2009/2/24/364
d.1) Reducing the quantity of ASM code outright.
As a start, {,compat_}create_bounce_frame() should definitely be written
in C, and would half the quantity of runtime ASM we have. (Worse, we
already have C versions of create_bounce_frame() with
ever-so-slighty-different semantics). I also have my eye on the general
exception handling path, which I think can safely move up into C.
~Andrew
_______________________________________________
Xen-devel mailing list
Xen-devel@lists.xen.org
https://lists.xen.org/xen-devel
next prev parent reply other threads:[~2016-10-03 15:33 UTC|newest]
Thread overview: 4+ messages / expand[flat|nested] mbox.gz Atom feed top
2016-10-03 14:16 Livepatch for Xen 4.9 Konrad Rzeszutek Wilk
2016-10-03 14:37 ` Jan Beulich
2016-10-03 15:33 ` Andrew Cooper [this message]
2016-10-24 11:25 ` Ross Lagerwall
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=e63992dc-bc7c-ab7c-18d5-c097dfe0b7b6@citrix.com \
--to=andrew.cooper3@citrix.com \
--cc=Marcos.Matsunaga@oracle.com \
--cc=konrad.wilk@oracle.com \
--cc=mpohlack@amazon.com \
--cc=ross.lagerwall@citrix.com \
--cc=xen-devel@lists.xensource.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).