Xen project Mailing List

Re: [PATCH v6 10/13] vpci/header: reset the command register when adding devices

From: Oleksandr Andrushchenko <Oleksandr_Andrushchenko@xxxxxxxx>

Date: Mon, 7 Feb 2022 12:51:35 +0000

Accept-language: en-US

Arc-authentication-results: i=1; mx.microsoft.com 1; spf=none; dmarc=none; dkim=none; arc=none

Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=hFUU194To8W+mV03GI198BEReCHaKlCmeWf+2yC75do=; b=EZMCcA2luwiIQiEB6mqFEb9MG9r+PRCj47DqmNlf+sy0/c1dhr4YF0S5rDehTM1mfUlN/jQ2Y8sHV005bOJk4X7vzHOzSK2wslmvOP6O3BYMq4ATbcy/2jQ8o/twpgsxcS/fQLRaBq2DhCGSx4rcVag21VB0ch62oY2WY0Qsb6Bz/xRZuOP+ogqmNGspXhAV+azNyb1u2biFy+fd0IWDyC0/ciMcOSZsOxeETNlEcOgzPFyO+o+ZSaGJyzNmEMiP+90joslzS4xfzeQDdgBGAR4R5m4qI5WZWsRKhsef6lLs9a7l+vDnZkJOIbokMiLobO5FcIcdxZS0Gsz/r9j5mg==

Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=WkTgNck5XFF76tB4rLHfNrcm4EPbu4FUm29muvKmt3SDcWE/p57amPYfYc8jOX6QTjBAS9fDtGngxCRWmD3+JAzNoSElA8T6rUkY1iNxYJR6DP7PfuPf3WWjjJKwzrOLs+VRUMbLIkrCijai6gaOVcJaPyH4ciZDsFhI+GgrChhLJ5DyOnNkHx2OuhNZk+PTAN3x6rCeNgoeDiReaYPd081ArSVIl/Et579VuEMWlo5yQ5Y2Ra+leV8M7SxHOmE6U91UVQsJlC0J+rnWr0CGOROIK+DrGamQPbaqbSylCnvKuU7W0X8K2MRkKw5+19yQOzM3Eq4S7c2dOOcifTcfSg==

Cc: "julien@xxxxxxx" <julien@xxxxxxx>, "sstabellini@xxxxxxxxxx" <sstabellini@xxxxxxxxxx>, Oleksandr Tyshchenko <Oleksandr_Tyshchenko@xxxxxxxx>, Volodymyr Babchuk <Volodymyr_Babchuk@xxxxxxxx>, Artem Mygaiev <Artem_Mygaiev@xxxxxxxx>, "roger.pau@xxxxxxxxxx" <roger.pau@xxxxxxxxxx>, "andrew.cooper3@xxxxxxxxxx" <andrew.cooper3@xxxxxxxxxx>, "george.dunlap@xxxxxxxxxx" <george.dunlap@xxxxxxxxxx>, "paul@xxxxxxx" <paul@xxxxxxx>, Bertrand Marquis <bertrand.marquis@xxxxxxx>, Rahul Singh <rahul.singh@xxxxxxx>, "xen-devel@xxxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxxx>, Oleksandr Andrushchenko <Oleksandr_Andrushchenko@xxxxxxxx>

Delivery-date: Mon, 07 Feb 2022 12:51:50 +0000

List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

Thread-index: AQHYGZFg3nazYSvfA0G+yHTbxcxX2ayDdFgAgAAB6wCABD+NgIAAQmgAgAAT4YCAAAOjAA==

Thread-topic: [PATCH v6 10/13] vpci/header: reset the command register when adding devices

On 07.02.22 14:38, Jan Beulich wrote: > On 07.02.2022 12:27, Oleksandr Andrushchenko wrote: >> >> On 07.02.22 09:29, Jan Beulich wrote: >>> On 04.02.2022 15:37, Oleksandr Andrushchenko wrote: >>>> On 04.02.22 16:30, Jan Beulich wrote: >>>>> On 04.02.2022 07:34, Oleksandr Andrushchenko wrote: >>>>>> Reset the command register when assigning a PCI device to a guest: >>>>>> according to the PCI spec the PCI_COMMAND register is typically all 0's >>>>>> after reset. >>>>> It's not entirely clear to me whether setting the hardware register to >>>>> zero is okay. What wants to be zero is the value the guest observes >>>>> initially. >>>> "the PCI spec says the PCI_COMMAND register is typically all 0's after >>>> reset." >>>> Why wouldn't it be ok? What is the exact concern here? >>> The concern is - as voiced is similar ways before, perhaps in other >>> contexts - that you need to consider bit-by-bit whether overwriting >>> with 0 what is currently there is okay. Xen and/or Dom0 may have put >>> values there which they expect to remain unaltered. I guess >>> PCI_COMMAND_SERR is a good example: While the guest's view of this >>> will want to be zero initially, the host having set it to 1 may not >>> easily be overwritten with 0, or else you'd effectively imply giving >>> the guest control of the bit. >> We have already discussed in great detail PCI_COMMAND emulation [1]. >> At the end you wrote [1]: >> "Well, in order for the whole thing to be security supported it needs to >> be explained for every bit why it is safe to allow the guest to drive it. >> Until you mean vPCI to reach that state, leaving TODO notes in the code >> for anything not investigated may indeed be good enough. >> >> Jan" >> >> So, this is why I left a TODO in the PCI_COMMAND emulation for now and only >> care about INTx which is honored with the code in this patch. > Right. The issue I see is that the description does not have any > mention of this, but instead talks about simply writing zero. How do you want that mentioned? Extended commit message or just a link to the thread [1]? With the above done, do you think that writing 0's is an acceptable approach as of now? > Jan > Thank you, Oleksandr

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.