| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 25 Aug 2010 08:52:08 +0100 From: "Jan Beulich" <JBeulich@...ell.com> To: "Jeremy Fitzhardinge" <jeremy@...p.org> Cc: "Tom Kopec" <tek@....org>, "Daniel Stodden" <daniel.stodden@...rix.com>, "Stable Kernel" <stable@...nel.org>, "Linus Torvalds" <torvalds@...ux-foundation.org>, "Xen-devel@...ts.xensource.com" <Xen-devel@...ts.xensource.com>, "Linux Kernel Mailing List" <linux-kernel@...r.kernel.org> Subject: Re: [Xen-devel] [GIT PULL] Fix lost interrupt race in Xen event channels >>> On 24.08.10 at 23:35, Jeremy Fitzhardinge <jeremy@...p.org> wrote: > We worked out the root cause was that it was incorrectly treating Xen > events as level rather than edge triggered interrupts, which works fine > unless you're handling one interrupt, the interrupt gets migrated to > another cpu and then re-raised. This ends up losing the interrupt > because the edge-triggering of the second interrupt is lost. While this description would seem plausible at the first glance, it doesn't match up with unmask_evtchn() already taking care of exactly this case. Or are you implicitly saying that this code is broken in some way (if so, how, and shouldn't it then be that code that needs fixing, or removing if you want to stay with the edge handling)? I do however agree that using handle_level_irq() is problematic (see http://lists.xensource.com/archives/html/xen-devel/2010-04/msg01178.html), but as said there I think using the fasteoi logic is preferable. No matter whether using edge or level, the ->end() method will never be called (whereas fasteoi calls ->eoi(), which would just need to be vectored to the same function as ->end()). Without end_pirq() ever called, you can't let Xen know of bad PIRQs (so that it can disable them instead of continuing to call the [now shortcut] handler in the owning domain). > The other change changes IPI and VIRQ event sources to use > handle_percpu_irq, because treating them as level is also wrong, and > they're actually inherently percpu events, much like LAPIC vectors. This doesn't seem right for the general VIRQ case: global ones should not be disallowed migration between CPUs. Since in your model the requestor has to pass IRQF_PERCPU anyway, shouldn't you make the selection of the handler dependent upon this flag? Jan -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists