Xen project Mailing List

Re: [PATCH v9 4/5] xen/riscv: enable GENERIC_BUG_FRAME

To: Oleksii <oleksii.kurochko@xxxxxxxxx>

Date: Thu, 11 Jul 2024 16:33:25 +0200

Autocrypt: addr=jbeulich@xxxxxxxx; keydata= xsDiBFk3nEQRBADAEaSw6zC/EJkiwGPXbWtPxl2xCdSoeepS07jW8UgcHNurfHvUzogEq5xk hu507c3BarVjyWCJOylMNR98Yd8VqD9UfmX0Hb8/BrA+Hl6/DB/eqGptrf4BSRwcZQM32aZK 7Pj2XbGWIUrZrd70x1eAP9QE3P79Y2oLrsCgbZJfEwCgvz9JjGmQqQkRiTVzlZVCJYcyGGsD /0tbFCzD2h20ahe8rC1gbb3K3qk+LpBtvjBu1RY9drYk0NymiGbJWZgab6t1jM7sk2vuf0Py O9Hf9XBmK0uE9IgMaiCpc32XV9oASz6UJebwkX+zF2jG5I1BfnO9g7KlotcA/v5ClMjgo6Gl MDY4HxoSRu3i1cqqSDtVlt+AOVBJBACrZcnHAUSuCXBPy0jOlBhxPqRWv6ND4c9PH1xjQ3NP nxJuMBS8rnNg22uyfAgmBKNLpLgAGVRMZGaGoJObGf72s6TeIqKJo/LtggAS9qAUiuKVnygo 3wjfkS9A3DRO+SpU7JqWdsveeIQyeyEJ/8PTowmSQLakF+3fote9ybzd880fSmFuIEJldWxp Y2ggPGpiZXVsaWNoQHN1c2UuY29tPsJgBBMRAgAgBQJZN5xEAhsDBgsJCAcDAgQVAggDBBYC AwECHgECF4AACgkQoDSui/t3IH4J+wCfQ5jHdEjCRHj23O/5ttg9r9OIruwAn3103WUITZee e7Sbg12UgcQ5lv7SzsFNBFk3nEQQCACCuTjCjFOUdi5Nm244F+78kLghRcin/awv+IrTcIWF hUpSs1Y91iQQ7KItirz5uwCPlwejSJDQJLIS+QtJHaXDXeV6NI0Uef1hP20+y8qydDiVkv6l IreXjTb7DvksRgJNvCkWtYnlS3mYvQ9NzS9PhyALWbXnH6sIJd2O9lKS1Mrfq+y0IXCP10eS FFGg+Av3IQeFatkJAyju0PPthyTqxSI4lZYuJVPknzgaeuJv/2NccrPvmeDg6Coe7ZIeQ8Yj t0ARxu2xytAkkLCel1Lz1WLmwLstV30g80nkgZf/wr+/BXJW/oIvRlonUkxv+IbBM3dX2OV8 AmRv1ySWPTP7AAMFB/9PQK/VtlNUJvg8GXj9ootzrteGfVZVVT4XBJkfwBcpC/XcPzldjv+3 HYudvpdNK3lLujXeA5fLOH+Z/G9WBc5pFVSMocI71I8bT8lIAzreg0WvkWg5V2WZsUMlnDL9 mpwIGFhlbM3gfDMs7MPMu8YQRFVdUvtSpaAs8OFfGQ0ia3LGZcjA6Ik2+xcqscEJzNH+qh8V m5jjp28yZgaqTaRbg3M/+MTbMpicpZuqF4rnB0AQD12/3BNWDR6bmh+EkYSMcEIpQmBM51qM EKYTQGybRCjpnKHGOxG0rfFY1085mBDZCH5Kx0cl0HVJuQKC+dV2ZY5AqjcKwAxpE75MLFkr wkkEGBECAAkFAlk3nEQCGwwACgkQoDSui/t3IH7nnwCfcJWUDUFKdCsBH/E5d+0ZnMQi+G0A nAuWpQkjM1ASeQwSHEeAWPgskBQL

Cc: Alistair Francis <alistair.francis@xxxxxxx>, Bob Eshleman <bobbyeshleman@xxxxxxxxx>, Connor Davis <connojdavis@xxxxxxxxx>, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, Julien Grall <julien@xxxxxxx>, Stefano Stabellini <sstabellini@xxxxxxxxxx>, xen-devel@xxxxxxxxxxxxxxxxxxxx

Delivery-date: Thu, 11 Jul 2024 14:33:54 +0000

List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On 11.07.2024 14:14, Oleksii wrote: > On Thu, 2024-07-11 at 11:25 +0200, Jan Beulich wrote: >> On 11.07.2024 10:50, Oleksii wrote: >>> On Wed, 2024-07-10 at 12:01 +0200, Jan Beulich wrote: >>>> On 02.07.2024 13:23, Oleksii Kurochko wrote: >>>>> @@ -101,8 +102,38 @@ static void do_unexpected_trap(const >>>>> struct >>>>> cpu_user_regs *regs) >>>>> die(); >>>>> } >>>>> >>>>> +static bool is_valid_bug_insn(uint32_t insn) >>>>> +{ >>>>> + return insn == BUG_INSN_32 || >>>>> + (insn & COMPRESSED_INSN_MASK) == BUG_INSN_16; >>>>> +} >>>>> + >>>>> +/* Should be used only on Xen code */ >>>>> +static uint32_t read_instr(unsigned long pc) >>>>> +{ >>>>> + uint16_t instr16 = *(uint16_t *)pc; >>>>> + >>>>> + ASSERT(is_kernel_text(pc + 1) || is_kernel_inittext(pc + >>>>> 1)); >>>>> + >>>>> + if ( GET_INSN_LENGTH(instr16) == 2 ) >>>>> + return instr16; >>>>> + >>>>> + ASSERT(is_kernel_text(pc + 3) || is_kernel_inittext(pc + >>>>> 3)); >>>>> + >>>>> + return *(uint32_t *)pc; >>>>> +} >>>> >>>> Related to the point made further down: If either of these >>>> assertions >>>> fails, >>>> won't we come back again right here? If either of the >>>> is_kernel_*text() >>>> wasn't working quite right, wouldn't we be at risk of entering an >>>> infinite >>>> loop (presumably not quite infinite because of the stack >>>> overflowing >>>> at some >>>> point)? >>> It is really possible to have infinite loop here so it should be >>> better >>> to use 'if' with die() or panic(). >>> >>>> >>>>> void do_trap(struct cpu_user_regs *cpu_regs) >>>>> { >>>>> + register_t pc = cpu_regs->sepc; >>>>> + uint32_t instr = read_instr(pc); >>>>> + >>>>> + if ( ( is_valid_bug_insn(instr) ) && ( >>>>> do_bug_frame(cpu_regs, >>>>> pc) >= 0 ) ) >>>> >>>> No consideration of the kind of exception? I'd expect it is one >>>> very >>>> specific one which the BUG insn would raise, and then there's no >>>> point >>>> fetching the insn when it's a different kind of exception. >>> Good point. >>> >>> We should have 0x3 ( breakpoint exception ) in scause register. We >>> can >>> just check that without reading instruction and then also >>> is_valid_bug_insn could be dropped too. >> >> Just that then you'll also lose the is_kernel_*text() checking, which >> I >> understand is there to remind you/us that one this becomes reachable >> from non-Xen code, adjustments are going to be needed. > One thing I wrote incorrectly is that we still need fetch instruction > or at least 16 bits to identify the length of instruction to set proper > sepc: > cpu_regs->sepc += GET_INSN_LENGTH(instr); > > We could write that in the following way: > cpu_regs->sepc += GET_INSN_LENGTH(*(uint16_t *)pc); > Would it be okay? I think so, as long as you retain the assertion in some way, ahead of the deref of pc. Jan

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.