[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Xen-devel] Re: bogus check in get_page_from_l1e()?


  • To: Jan Beulich <JBeulich@xxxxxxxxxx>
  • From: Keir Fraser <keir.xen@xxxxxxxxx>
  • Date: Tue, 08 Mar 2011 15:19:04 +0000
  • Cc: "xen-devel@xxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxx>
  • Delivery-date: Tue, 08 Mar 2011 07:22:38 -0800
  • Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=user-agent:date:subject:from:to:cc:message-id:thread-topic :thread-index:in-reply-to:mime-version:content-type :content-transfer-encoding; b=kns/xcGCFgfpoOvNr8u+pyEj2Y2OOl9YwQNS+osGO38sOpv2urI2Ceqx/YxR8yc/qv XEWKHV27d/91XYqsp5WnRH8IptzlkqztRdPj/PfMe7PRZYLygvA6kluPOgfpkJRDlg5/ Uogul+gbijeM2kbfYB1H705f3gf+ydyDGJueg=
  • List-id: Xen developer discussion <xen-devel.lists.xensource.com>
  • Thread-index: AcvdpCja9RDtxM5mMkmF1bA9S1Yg9Q==
  • Thread-topic: bogus check in get_page_from_l1e()?

On 08/03/2011 11:07, "Jan Beulich" <JBeulich@xxxxxxxxxx> wrote:

> Keir,
> 
> in the I/O page code path, we have
> 
>         if ( !iomem_access_permitted(pg_owner, mfn, mfn) )
>         {
>             if ( mfn != (PADDR_MASK >> PAGE_SHIFT) ) /* INVALID_MFN? */
>                 MEM_LOG("Non-privileged (%u) attempt to map I/O space %08lx",
>                         pg_owner->domain_id, mfn);
>             return 0;
>         }
> 
> What is the reason to suppress the warning for the one specific
> (PADDR_MASK >> PAGE_SHIFT) MFN value, i.e. where could this
> validly come from and hence warrant not to issue the warning?
> 
> Also, the message seems to be having the potential of being
> misleading (these days at least, but perhaps it always was), as
> it clearly is possible for Dom0 to also be denied a mapping here
> (and hence the "Non-privileged" can be wrong).
> 
> Bottom line question: Should we issue the warning unconditionally,
> just stating the domain ID?

Long time a go, but ISTR that some PV guests (e.g., some versions of our
Linux patches) would attempt to map things during boot that they may not
have access to, and this would manifest as failed attempt to map
INVALID_MFN. Since it's not a genuine real I/O address that is failing to be
mapped, it also seems not so useful to log it.

That said, I'd be open to removing the check if it turns out that these days
failed mappings of INVALID_MFN never 'legitimately' happen. I'm skeptical of
that though.

 -- Keir

> Thanks, Jan
> 



_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel


 


Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.