Xen project Mailing List

Re: [PATCH v6 10/13] vpci/header: reset the command register when adding devices

To: Oleksandr Andrushchenko <Oleksandr_Andrushchenko@xxxxxxxx>

Date: Mon, 7 Feb 2022 13:38:33 +0100

Arc-authentication-results: i=1; mx.microsoft.com 1; spf=none; dmarc=none; dkim=none; arc=none

Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=ZVwdK2e0+//SUF7WggRKgo4oJIYl1NTAT0qMqKjbX8M=; b=jJwHdlXm+EYIf+YgrouEejj6cCV5/YAj/p4b0exD+Wbp33DZLvJOw+8zvd1C6rjkLxOyoqVpdf5vI6zStX9LRGBpG/MODzJ5AZWDC9DnTcQJbMzghJXb40721677ALuatPqgxAfgj4Q7olvcj7JEvKTKBRKATNOsopJeX0K3x+WP4vuYY9INb1TOPqDLr6qEgxrrfIA2E34OxM2ynZ8RcNeiogLAFcfEGq/xH4UlRJnPW9uxKMEmD5RdE7dbXyX1V+5A31ILbpKHyxoKT4HtawOJlkR9Yu+JCnchfXiQ8VO9FKAFfhlWd8uWFRzcYzFBiLeRpz0gMzYQWp/w0DQCOQ==

Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=QKFCV8GaP9mHD+oUZW+jWMRsd0ESgmHR3bnAw5z/wbuyEtJvcrtdd770YCbSWluCm/oxNcwWRa711JJeNpwnt+b3GQRK1msppOgz55FnDXQD8qx1uFmW8KrZ6fKIfuwOBVIpmjVxfQcI9SGEpqfxAlP/M2zeNi2KCXV5uL6AqcnRj9bZP/dpIitFi7LjUkOqJ3k/AQZN0bd6gX2ahFIJHT32FRF/Ry4BbXJBbbXuiRtuEUHuX89r6z7wQ1zqxJzNDAmEccAnRTrG/SZTWsjEOI6dbIHhCa6V4YJybA518R0qWumzZIMS/iQrlmay58Epc4aOJPndDftLGZIHt2xGkA==

Authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=suse.com;

Cc: "julien@xxxxxxx" <julien@xxxxxxx>, "sstabellini@xxxxxxxxxx" <sstabellini@xxxxxxxxxx>, Oleksandr Tyshchenko <Oleksandr_Tyshchenko@xxxxxxxx>, Volodymyr Babchuk <Volodymyr_Babchuk@xxxxxxxx>, Artem Mygaiev <Artem_Mygaiev@xxxxxxxx>, "roger.pau@xxxxxxxxxx" <roger.pau@xxxxxxxxxx>, "andrew.cooper3@xxxxxxxxxx" <andrew.cooper3@xxxxxxxxxx>, "george.dunlap@xxxxxxxxxx" <george.dunlap@xxxxxxxxxx>, "paul@xxxxxxx" <paul@xxxxxxx>, Bertrand Marquis <bertrand.marquis@xxxxxxx>, Rahul Singh <rahul.singh@xxxxxxx>, "xen-devel@xxxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxxx>

Delivery-date: Mon, 07 Feb 2022 12:38:42 +0000

List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On 07.02.2022 12:27, Oleksandr Andrushchenko wrote: > > > On 07.02.22 09:29, Jan Beulich wrote: >> On 04.02.2022 15:37, Oleksandr Andrushchenko wrote: >>> On 04.02.22 16:30, Jan Beulich wrote: >>>> On 04.02.2022 07:34, Oleksandr Andrushchenko wrote: >>>>> Reset the command register when assigning a PCI device to a guest: >>>>> according to the PCI spec the PCI_COMMAND register is typically all 0's >>>>> after reset. >>>> It's not entirely clear to me whether setting the hardware register to >>>> zero is okay. What wants to be zero is the value the guest observes >>>> initially. >>> "the PCI spec says the PCI_COMMAND register is typically all 0's after >>> reset." >>> Why wouldn't it be ok? What is the exact concern here? >> The concern is - as voiced is similar ways before, perhaps in other >> contexts - that you need to consider bit-by-bit whether overwriting >> with 0 what is currently there is okay. Xen and/or Dom0 may have put >> values there which they expect to remain unaltered. I guess >> PCI_COMMAND_SERR is a good example: While the guest's view of this >> will want to be zero initially, the host having set it to 1 may not >> easily be overwritten with 0, or else you'd effectively imply giving >> the guest control of the bit. > We have already discussed in great detail PCI_COMMAND emulation [1]. > At the end you wrote [1]: > "Well, in order for the whole thing to be security supported it needs to > be explained for every bit why it is safe to allow the guest to drive it. > Until you mean vPCI to reach that state, leaving TODO notes in the code > for anything not investigated may indeed be good enough. > > Jan" > > So, this is why I left a TODO in the PCI_COMMAND emulation for now and only > care about INTx which is honored with the code in this patch. Right. The issue I see is that the description does not have any mention of this, but instead talks about simply writing zero. Jan

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.