[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [PATCH] libxc: Pause & unpause the domain in xc_mem_event_enable based on its initial state.

To: Tamas K Lengyel <tamas.k.lengyel@xxxxxx>
From: "Aravindh Puthiyaparambil (aravindp)" <aravindp@xxxxxxxxx>
Date: Mon, 30 Jun 2014 22:54:47 +0000
Accept-language: en-US
Cc: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, "stefano.stabellini@xxxxxxxxxxxxx" <stefano.stabellini@xxxxxxxxxxxxx>, "ian.jackson@xxxxxxxxxxxxx" <ian.jackson@xxxxxxxxxxxxx>, Ian Campbell <ian.campbell@xxxxxxxxxx>, "xen-devel@xxxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxxx>
Delivery-date: Mon, 30 Jun 2014 22:55:25 +0000
List-id: Xen developer discussion <xen-devel.lists.xen.org>
Thread-index: AQHPlKy3B0GC27KLVUKdG+lINmW0JJuKOAUA
Thread-topic: [Xen-devel] [PATCH] libxc: Pause & unpause the domain in xc_mem_event_enable based on its initial state.

>>> As indicated in the other thread regarding the correctness of
>>> properly refcounting in Xen, this is a TOCTOU race which doesn't fix
>>> the problem in the general case.
>>>
>>> It is my opinion that this is impossible to correctly fix in the dom0
>>> userspace.
>>>
>>> ~Andrew
>>
>> Indeed, if there are multiple user-space tools trying to control the domain,
>this patch doesn't ensure safety. That issue is however beyond the scope of
>what this patch is trying to address.
>>
>> This patch doesn't even assure safety for two threads in the same process
>dealing with the same domain.
>>
>> ~Andrew
>
>Again, I agree, but that is not the problem this patch is trying to address. 
>The
>problem you are talking about is present xc_mem_event_enable as it is right
>now as well. For example, nothing prevents another thread/process from
>unpausing the domain while the event ring setup is in process. This patch
>operates with the same assumption the current code makes: only one user-
>space tool/thread is controlling the domain at a time. This patch just ensures
>the domain is left in the same state it was before the function was called.

Tamas, 

Thanks for finding this issue. I agree with Andrew that the correct fix for 
this can only be done in the hypervisor. But I see there is some resistance to 
that. If that is the case, I would hope this patch is accepted. You could also 
add a comment about this situation in xenctrl.h.

Thanks,
Aravindh

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
http://lists.xen.org/xen-devel

References:
- [Xen-devel] [PATCH] libxc: Pause & unpause the domain in xc_mem_event_enable based on its initial state.
  - From: Tamas K Lengyel
- Re: [Xen-devel] [PATCH] libxc: Pause & unpause the domain in xc_mem_event_enable based on its initial state.
  - From: Andrew Cooper
- Re: [Xen-devel] [PATCH] libxc: Pause & unpause the domain in xc_mem_event_enable based on its initial state.
  - From: Tamas K Lengyel
- Re: [Xen-devel] [PATCH] libxc: Pause & unpause the domain in xc_mem_event_enable based on its initial state.
  - From: Andrew Cooper
- Re: [Xen-devel] [PATCH] libxc: Pause & unpause the domain in xc_mem_event_enable based on its initial state.
  - From: Tamas K Lengyel

Prev by Date: Re: [Xen-devel] Issues regarding "mem_access: Add helper API to setup ring and enable mem_access"
Next by Date: Re: [Xen-devel] [libvirt] [PATCH] libxl: add PV console if not explicitly specified
Previous by thread: Re: [Xen-devel] [PATCH] libxc: Pause & unpause the domain in xc_mem_event_enable based on its initial state.
Next by thread: [Xen-devel] [PATCH] libxc: arm: Load the zImage to the rambase address + 2MB
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.