[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] Issue policing writes from Xen to PV domain memory

To: Jan Beulich <JBeulich@xxxxxxxx>
From: "Aravindh Puthiyaparambil (aravindp)" <aravindp@xxxxxxxxx>
Date: Wed, 7 May 2014 19:37:00 +0000
Accept-language: en-US
Cc: "xen-devel@xxxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxxx>, "TimDeegan\(tim@xxxxxxx\)" <tim@xxxxxxx>
Delivery-date: Wed, 07 May 2014 19:37:47 +0000
List-id: Xen developer discussion <xen-devel.lists.xen.org>
Thread-index: Ac9kBh2tUJWI8Pt1R5ScY+6HxANwigAZteGAABVfxTAAUzWYAAAFEsLAAAkZ2jAAgw0LgAAQcqHAACVFp4AAC7jQAAAjpSiAABAZ4GA=
Thread-topic: Issue policing writes from Xen to PV domain memory

>> This happens only when the access listener first attaches to a PV domain for
>> write events. It occurs in the window between mem_access has been
>enabled and
>> the listener is ready to handle events. I have not seen it happen once the
>> listener starts handling events. And I have not run in to this issue with
>> execute violations.
>
>Which is still only describing observations, not anything leading to an
>understanding of why this is happening.

>I can only repeat what I said above: You first need to understand
>why the ring is (or appears to be) full. But even with that clarified
>you still need to have a proper solution for the case where the ring
>might end up being full for valid reasons. And as also said earlier, I
>am of the opinion that the behavior regarding Xen accesses would
>ideally not differ between HVM, PVH, and PV.

I dug in further to figure out if there is any difference between HVM and PV 
domains with policing writes emanating from Xen. I started with how the 
runstate area in the guest is updated. It is done using __copy_to_guest(). Here 
is the flow for PV and HVM.

For PV:
__copy_to_guest -> __copy_to_guest_offset -> __raw_copy_to_guest 

I think in the above scenario, the page permissions that are present in the 
shadow are adhered to for PV domains running with shadow and hence faults can 
occur.

For HVM:
__copy_to_guest -> __copy_to_guest_offset -> __raw_copy_to_guest -> 
copy_to_user_hvm -> hvm_copy_to_guest_virt_nofault  -> __hvm_copy(flags = 
HVMCOPY_to_guest | HVMCOPY_no_fault | HVMCOPY_virt)

If I look in __hvm_copy(), I see that access permissions are not adhered to. 
Writes to guest memory will go through even if the p2m_access type for that 
page has it set as non-writable.  So it seems that we do not police writes to 
guest memory that emanate from Xen even for the HVM case. Is my reading of the 
code correct?

Thanks,
Aravindh


_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
http://lists.xen.org/xen-devel

Follow-Ups:
- Re: [Xen-devel] Issue policing writes from Xen to PV domain memory
  - From: Jan Beulich

References:
- Re: [Xen-devel] Issue policing writes from Xen to PV domain memory
  - From: Jan Beulich
- Re: [Xen-devel] Issue policing writes from Xen to PV domain memory
  - From: Aravindh Puthiyaparambil (aravindp)
- Re: [Xen-devel] Issue policing writes from Xen to PV domain memory
  - From: Jan Beulich
- Re: [Xen-devel] Issue policing writes from Xen to PV domain memory
  - From: Aravindh Puthiyaparambil (aravindp)
- Re: [Xen-devel] Issue policing writes from Xen to PV domain memory
  - From: Jan Beulich
- Re: [Xen-devel] Issue policing writes from Xen to PV domain memory
  - From: Aravindh Puthiyaparambil (aravindp)
- Re: [Xen-devel] Issue policing writes from Xen to PV domain memory
  - From: Jan Beulich

Prev by Date: Re: [Xen-devel] [PATCH v10 00/19] qspinlock: a 4-byte queue spinlock with PV support
Next by Date: Re: [Xen-devel] [PATCH v3] Hvmloader: Modify ACPI to only supply _EJ0 methods for PCIslots that support hotplug by runtime patching
Previous by thread: Re: [Xen-devel] Issue policing writes from Xen to PV domain memory
Next by thread: Re: [Xen-devel] Issue policing writes from Xen to PV domain memory
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.