[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [PATCH V4] x86/altp2m: Hypercall to set altp2m view visibility

To: Alexandru Stefan ISAILA <aisaila@xxxxxxxxxxxxxxx>
From: Jan Beulich <jbeulich@xxxxxxxx>
Date: Fri, 21 Feb 2020 17:39:10 +0100
Cc: Kevin Tian <kevin.tian@xxxxxxxxx>, Stefano Stabellini <sstabellini@xxxxxxxxxx>, Julien Grall <julien@xxxxxxx>, Wei Liu <wl@xxxxxxx>, Konrad Rzeszutek Wilk <konrad.wilk@xxxxxxxxxx>, George Dunlap <George.Dunlap@xxxxxxxxxxxxx>, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, Ian Jackson <ian.jackson@xxxxxxxxxxxxx>, Jun Nakajima <jun.nakajima@xxxxxxxxx>, "xen-devel@xxxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxxx>, Roger Pau Monné <roger.pau@xxxxxxxxxx>
Delivery-date: Fri, 21 Feb 2020 16:39:14 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On 21.02.2020 09:30, Alexandru Stefan ISAILA wrote:
> @@ -4835,6 +4836,26 @@ static int do_altp2m_op(
>          break;
>      }
>  
> +    case HVMOP_altp2m_set_visibility:
> +    {
> +        uint16_t idx = a.u.set_visibility.altp2m_idx;
> +
> +        if ( a.u.set_visibility.pad ||
> +             idx >= min(ARRAY_SIZE(d->arch.altp2m_p2m), MAX_EPTP) ||

Why min() here? You only access MAX_EPTP-dimensioned arrays afaics. If
this is intentional, I think it deserves a comment.

> +             d->arch.altp2m_eptp[array_index_nospec(idx, MAX_EPTP)] ==
> +             mfn_x(INVALID_MFN) )
> +            rc = -EINVAL;
> +        else if ( !altp2m_active(d) )
> +            rc = -EOPNOTSUPP;
> +        else if ( a.u.set_visibility.visible )
> +            d->arch.altp2m_working_eptp[array_index_nospec(idx, MAX_EPTP)] =
> +                d->arch.altp2m_eptp[array_index_nospec(idx, MAX_EPTP)];
> +        else
> +            d->arch.altp2m_working_eptp[array_index_nospec(idx, MAX_EPTP)] =
> +                mfn_x(INVALID_MFN);
> +        break;

You don't seem to be holding any locks. At the very least this means
the in-range-index-is-valid check further up will have become stale
by the time you actually consume the slot.

> @@ -2638,7 +2639,9 @@ int p2m_destroy_altp2m_by_id(struct domain *d, unsigned 
> int idx)
>          {
>              p2m_reset_altp2m(d, idx, ALTP2M_DEACTIVATE);
>              d->arch.altp2m_eptp[array_index_nospec(idx, MAX_EPTP)] =
> -            mfn_x(INVALID_MFN);
> +                mfn_x(INVALID_MFN);
> +            d->arch.altp2m_working_eptp[array_index_nospec(idx, MAX_EPTP)] =
> +                mfn_x(INVALID_MFN);

I appreciate you also adjusting the bogus indentation of the pre-
existing line.

Jan

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxxx
https://lists.xenproject.org/mailman/listinfo/xen-devel

Follow-Ups:
- Re: [Xen-devel] [PATCH V4] x86/altp2m: Hypercall to set altp2m view visibility
  - From: Alexandru Stefan ISAILA

References:
- [Xen-devel] [PATCH V4] x86/altp2m: Hypercall to set altp2m view visibility
  - From: Alexandru Stefan ISAILA

Prev by Date: Re: [Xen-devel] [PATCH v7 01/11] qapi/error: add (Error **errp) cleaning APIs
Next by Date: Re: [Xen-devel] [PATCH 4/8] xen/vmap: allow vm_init_type to be called during early_boot
Previous by thread: [Xen-devel] [PATCH V4] x86/altp2m: Hypercall to set altp2m view visibility
Next by thread: Re: [Xen-devel] [PATCH V4] x86/altp2m: Hypercall to set altp2m view visibility
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.