[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH] xen: arm: Don't use stop_cpu() in halt_this_cpu()

To: Stefano Stabellini <sstabellini@xxxxxxxxxx>
From: Julien Grall <julien@xxxxxxx>
Date: Wed, 29 Jun 2022 09:23:25 +0100
Cc: dmitry.semenets@xxxxxxxxx, xen-devel@xxxxxxxxxxxxxxxxxxxx, Dmytro Semenets <dmytro_semenets@xxxxxxxx>, Bertrand Marquis <bertrand.marquis@xxxxxxx>, Volodymyr Babchuk <Volodymyr_Babchuk@xxxxxxxx>
Delivery-date: Wed, 29 Jun 2022 08:23:38 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

Hi Stefano,

On 28/06/2022 23:56, Stefano Stabellini wrote:

The advantage of the panic() is it will remind us that some needs to be fixed.
With a warning (or WARN()) people will tend to ignore it.


I know that this specific code path (cpu off) is probably not super
relevant for what I am about to say, but as we move closer to safety
certifiability we need to get away from using "panic" and BUG_ON as a
reminder that more work is needed to have a fully correct implementation
of something.

I don't think we have many places at runtime using BUG_ON()/panic().They are often used because we think Xen would not be able to recover ifthe condition is hit.

I am happy to remove them, but this should not be at the expense tointroduce other potential weird bugs.


I also see your point and agree that ASSERT is not acceptable for
external input but from my point of view panic is the same (slightly
worse because it doesn't go away in production builds).

I think it depends on your target. Would you be happy if Xen continue torun with potentially a fatal flaw?


Julien if you are going to ack the patch feel free to go ahead.


I will do and commit it.

Cheers,

--
Julien Grall

Follow-Ups:
- Re: [PATCH] xen: arm: Don't use stop_cpu() in halt_this_cpu()
  - From: Stefano Stabellini

References:
- [PATCH] xen: arm: Don't use stop_cpu() in halt_this_cpu()
  - From: dmitry . semenets
- Re: [PATCH] xen: arm: Don't use stop_cpu() in halt_this_cpu()
  - From: Stefano Stabellini
- Re: [PATCH] xen: arm: Don't use stop_cpu() in halt_this_cpu()
  - From: Julien Grall
- Re: [PATCH] xen: arm: Don't use stop_cpu() in halt_this_cpu()
  - From: Stefano Stabellini
- Re: [PATCH] xen: arm: Don't use stop_cpu() in halt_this_cpu()
  - From: Julien Grall
- Re: [PATCH] xen: arm: Don't use stop_cpu() in halt_this_cpu()
  - From: Stefano Stabellini

Prev by Date: RE: [PATCH v5 5/8] xen/arm: Add additional reference to owner domain when the owner is allocated
Next by Date: RE: [PATCH v5 1/8] xen/arm: introduce static shared memory
Previous by thread: Re: [PATCH] xen: arm: Don't use stop_cpu() in halt_this_cpu()
Next by thread: Re: [PATCH] xen: arm: Don't use stop_cpu() in halt_this_cpu()
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.