WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-devel

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Xen-devel] Re: [PATCH] xen/p2m/m2p/gnttab: do not add failed grant maps

from [Konrad Rzeszutek Wilk] [Permanent Link][Original]
To: Ian Campbell <Ian.Campbell@xxxxxxxxxxxxx>
Subject: [Xen-devel] Re: [PATCH] xen/p2m/m2p/gnttab: do not add failed grant maps to m2p override
From: Konrad Rzeszutek Wilk <konrad.wilk@xxxxxxxxxx>
Date: Wed, 9 Mar 2011 11:44:18 -0500
Cc: Daniel De Graaf <dgdegra@xxxxxxxxxxxxx>, "xen-devel@xxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxx>, Jeremy Fitzhardinge <Jeremy.Fitzhardinge@xxxxxxxxxx>, Stefano Stabellini <Stefano.Stabellini@xxxxxxxxxxxxx>
Delivery-date: Wed, 09 Mar 2011 08:46:06 -0800
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <1299260828.17339.21.camel@xxxxxxxxxxxxxxxxxxxxxx>
List-help: <mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id: Xen developer discussion <xen-devel.lists.xensource.com>
List-post: <mailto:xen-devel@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
References: <1299260301-28955-1-git-send-email-ian.campbell@xxxxxxxxxx> <1299260828.17339.21.camel@xxxxxxxxxxxxxxxxxxxxxx>
Sender: xen-devel-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: Mutt/1.5.20 (2009-06-14) 
On Fri, Mar 04, 2011 at 05:47:08PM +0000, Ian Campbell wrote:
> On Fri, 2011-03-04 at 17:38 +0000, Ian Campbell wrote:
> > The caller will not undo a mapping which failed and therefore the
> > override will not be removed.
> > 
> > This is especially bad in the case of GNTMAP_contains_pte mapping type
> > mappings where m2p_add_override will destroy the kernel mapping of the
> > page.
> > 
> > This was observed via a failure of map_grant_pages in gntdev_mmap (due
> > to userspace using a bad grant reference), which left the page in
> > question unmapped (because it was a GNTMAP_contains_pte mapping) which
> > led to a crash later on.
> 
> My original motivation for looking into this was a dom0 kernel crash in
> gntdev exposed by using the qemu disk backend on 2.6.32 (by mistake due
> to not loading blktap). The crash was in mn_release but was root caused
> by a map_grant_pages() failing (due to a bogus grant ref).
> 
> It seems that Daniel's "xen-gntdev: Add reference counting to maps" +

This one:
http://article.gmane.org/gmane.comp.emulators.xen.devel/100076 ?

> "xen/p2m/m2p/gnttab: do not add failed grant maps to m2p override" +
> this fix are sufficient to fix it for 2.6.38-rc7+ but I wonder if we

Can you point me to the "this fix" ? You mention three patches but
the last one is the same as 
"xen/p2m/m2p/gnttab: do not add failed grant maps to m2p override"

so that looks to be two patches.

> also want it fixed for 2.6.32? I think in that case backporting Daniel's
> patches is the best bet. (this fix won't be necessary, no m2p overlay in
> 2.6.32).
> 
> Ian.
> 
> > 
> > Signed-off-by: Ian Campbell <ian.campbell@xxxxxxxxxx>
> > Cc: Konrad Rzeszutek Wilk <konrad.wilk@xxxxxxxxxx>
> > Cc: Daniel De Graaf <dgdegra@xxxxxxxxxxxxx>
> > Cc: Stefano Stabellini <stefano.stabellini@xxxxxxxxxxxxx>
> > Cc: Jeremy Fitzhardinge <jeremy.fitzhardinge@xxxxxxxxxx>
> > ---
> >  drivers/xen/grant-table.c |    4 ++++
> >  1 files changed, 4 insertions(+), 0 deletions(-)
> > 
> > diff --git a/drivers/xen/grant-table.c b/drivers/xen/grant-table.c
> > index 1a9bc2b..d0e30ce 100644
> > --- a/drivers/xen/grant-table.c
> > +++ b/drivers/xen/grant-table.c
> > @@ -462,6 +462,10 @@ int gnttab_map_refs(struct gnttab_map_grant_ref 
> > *map_ops,
> >             return ret;
> >  
> >     for (i = 0; i < count; i++) {
> > +           /* Do not add to override if the map failed. */
> > +           if (map_ops[i].status)
> > +                   continue;
> > +
> >             if (map_ops[i].flags & GNTMAP_contains_pte) {
> >                     pte = (pte_t *) 
> > (mfn_to_virt(PFN_DOWN(map_ops[i].host_addr)) +
> >                             (map_ops[i].host_addr & ~PAGE_MASK));
> 

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Xen-devel] [PATCH 10/11] move various bits into .init.* sections, Jan Beulich
Next by Date:  [Xen-devel] Re: [PATCH] xen/p2m/m2p/gnttab: do not add failed grant maps to m2p override, Ian Campbell
Previous by Thread:  [Xen-devel] Re: [PATCH] xen/p2m/m2p/gnttab: do not add failed grant maps to m2p override, Ian Campbell
Next by Thread:  [Xen-devel] Re: [PATCH] xen/p2m/m2p/gnttab: do not add failed grant maps to m2p override, Ian Campbell
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy