[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [PATCH] VTd/dmar: Tweak how the DMAR table is clobbered

> From: Andrew Cooper [mailto:andrew.cooper3@xxxxxxxxxx]
> Sent: Tuesday, April 14, 2015 5:09 PM
> 
> On 14/04/15 08:50, Jan Beulich wrote:
> >>>> On 10.04.15 at 11:08, <andrew.cooper3@xxxxxxxxxx> wrote:
> >> On 10/04/15 02:23, Tian, Kevin wrote:
> >>>> From: Andrew Cooper [mailto:andrew.cooper3@xxxxxxxxxx]
> >>>> Sent: Thursday, April 09, 2015 3:45 AM
> >>>>
> >>>> Intead of clobbering DMAR -> XMAR and back, clobber to RMAD instead.
> >>>> This
> >>>> means that changing the signature does not alter the checksum, which
> allows
> >>>> the clobbering/unclobbering to be peformed atomically and
> idempotently,
> >>>> which
> >>>> is an advantage on the kexec path which can reenter
> acpi_dmar_reinstate().
> >>>>
> >>>> Signed-off-by: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>
> >>>> CC: Yang Zhang <yang.z.zhang@xxxxxxxxx>
> >>>> CC: Kevin Tian <kevin.tian@xxxxxxxxx>
> >>> Acked-by: Kevin Tian <kevin.tian@xxxxxxxxx>
> >>>
> >>> and curious do you observe a real atomic issue in kexec or just catch this
> >>> potential issue when reading code? :-)
> >> I have run over it once in the past, but mainly it is one small thing on
> >> a very long list of tweaks to make the crash path for reliable.
> >>
> >> As indicated in the other thread, I think the best direction moving
> >> forwards is to see about positively preventing dom0 having access,
> >> rather than simply hiding the table, but that is a job for another time.
> > And possibly not doable, as this might crash Dom0. What made me
> > wonder for a very long time though is why similar clobbering isn't
> > needed for AMD.
> 
> Any dom0 driver will be capable of not crashing if it can't get to
> certain pages, or it wouldn't last for any meaningful time on a system
> with buggy firmware.  It is the very fact that this hack is only used on
> Intel which leads me to suspect that it is the wrong thing to be doing
> overall.
> 
> >
> > In any event, David's point of the now chosen signature perhaps
> > posing a higher risk of colliding with a real table is an issue that
> > shouldn't have been discarded before committing.
> 
> I don't believe the new name is plausibly at a higher risk of colliding.
> 
> > Unless Kevin or
> > Yang object, I'd therefore suggest reverting the change. Once
> > we determined why VT-d needs what AMD Vi doesn't need, and
> > once we settled on the risk of name collision (perhaps using an
> > underscore prefixed name would further reduce this risk), we could
> > then do this another way (zap the table from XSDT/RSDT instead?),
> > or leave it as it was without the change.
> 
> It is my hope that this can be resolved in the longterm without any
> modification to the acpi tables.  Currently, it is not possible to dump
> the ACPI tables from dom0 without knowing how to hexedit the XMAR table
> back into life.  This is an impediment to debugging.
> 
> However, I still believe that the current change is a positive
> improvement over what happened previously.
> 

I'm OK with this patch itself as it does improve current situation a bit,
though we do need to figure out the mysterious reason why AMD doesn't
require same hack. My gut-feeling is that hypervisor has to do something
so an unmodified dom0 iommu driver is not activated to use iommu, unless
the dom0 iommu driver has some awareness to give up proactively. 

Add more relevant people to see any input...

Thanks
Kevin

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
http://lists.xen.org/xen-devel

 

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.