[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [XEN PATCH v9 02/24] xen/arm: add TEE teardown to arch_domain_teardown()

To: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>
From: Jens Wiklander <jens.wiklander@xxxxxxxxxx>
Date: Thu, 13 Jul 2023 08:14:08 +0200
Cc: xen-devel@xxxxxxxxxxxxxxxxxxxx, Stefano Stabellini <sstabellini@xxxxxxxxxx>, Julien Grall <julien@xxxxxxx>, Volodymyr Babchuk <Volodymyr_Babchuk@xxxxxxxx>, Bertrand.Marquis@xxxxxxx, Anthony PERARD <anthony.perard@xxxxxxxxxx>, Juergen Gross <jgross@xxxxxxxx>, Wei Liu <wl@xxxxxxx>, Marc Bonnici <marc.bonnici@xxxxxxx>, Achin Gupta <achin.gupta@xxxxxxx>
Delivery-date: Thu, 13 Jul 2023 06:14:32 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

Hi,

On Wed, Jul 12, 2023 at 10:31 AM Andrew Cooper
<andrew.cooper3@xxxxxxxxxx> wrote:
>
> On 05/07/2023 10:34 am, Jens Wiklander wrote:
> > diff --git a/xen/arch/arm/domain.c b/xen/arch/arm/domain.c
> > index 15d9709a97d2..18171decdc66 100644
> > --- a/xen/arch/arm/domain.c
> > +++ b/xen/arch/arm/domain.c
> > @@ -795,6 +795,42 @@ fail:
> >
> >  int arch_domain_teardown(struct domain *d)
> >  {
> > +    int ret = 0;
> > +
> > +    BUG_ON(!d->is_dying);
> > +
> > +    /* See domain_teardown() for an explanation of all of this magic. */
> > +    switch ( d->teardown.arch_val )
> > +    {
> > +#define PROGRESS(x)                             \
> > +        d->teardown.arch_val = PROG_ ## x;      \
> > +        fallthrough;                            \
> > +    case PROG_ ## x
> > +
> > +        enum {
> > +            PROG_none,
> > +            PROG_tee,
> > +            PROG_done,
> > +        };
> > +
> > +    case PROG_none:
> > +        BUILD_BUG_ON(PROG_none != 0);
> > +
> > +    PROGRESS(tee):
> > +        ret = tee_domain_teardown(d);
> > +        if ( ret )
> > +            return ret;
> > +        break;
>
> This unconditional break isn't correct.
>
> The logic functions right now (because upon hitting return 0, you don't
> re-enter this function), but will cease working when you add a new
> PROG_*, or when the calling code gets more complicated.
>
> > +
> > +    PROGRESS(done):
> > +        break;
>
> This needs to be the only break in the switch statement, for it to
> behave in the intended manner.

Got it, thanks for the explanation. I'll fix it in the next version.

Thanks,
Jens

>
> ~Andrew

References:
- [XEN PATCH v9 00/24] Xen FF-A mediator
  - From: Jens Wiklander
- [XEN PATCH v9 02/24] xen/arm: add TEE teardown to arch_domain_teardown()
  - From: Jens Wiklander
- Re: [XEN PATCH v9 02/24] xen/arm: add TEE teardown to arch_domain_teardown()
  - From: Andrew Cooper

Prev by Date: Re: [PATCH v3 35/52] xen/arm: map static memory on demand
Next by Date: Re: [PATCH v5 06/15] cpufreq: Add Hardware P-State (HWP) driver
Previous by thread: Re: [XEN PATCH v9 02/24] xen/arm: add TEE teardown to arch_domain_teardown()
Next by thread: Re: [XEN PATCH v9 02/24] xen/arm: add TEE teardown to arch_domain_teardown()
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.