| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 24 Aug 2012 12:57:51 +0100 From: Stefano Stabellini <stefano.stabellini@...citrix.com> To: Konrad Rzeszutek Wilk <konrad.wilk@...cle.com> CC: Borislav Petkov <bp@...en8.de>, Attilio Rao <attilio.rao@...rix.com>, Thomas Gleixner <tglx@...utronix.de>, "linux-kernel@...r.kernel.org" <linux-kernel@...r.kernel.org>, "mingo@...hat.com" <mingo@...hat.com>, "hpa@...or.com" <hpa@...or.com>, "x86@...nel.org" <x86@...nel.org>, Stefano Stabellini <Stefano.Stabellini@...citrix.com> Subject: Re: [PATCH v4 1/2] XEN/X86: Improve semantic support for x86_init.mapping.pagetable_reserve On Fri, 24 Aug 2012, Konrad Rzeszutek Wilk wrote: > On Fri, Aug 24, 2012 at 12:03:09PM +0200, Borislav Petkov wrote: > > On Thu, Aug 23, 2012 at 06:13:39PM +0100, Attilio Rao wrote: > > > You seriously think that adding a single-check, that will be > > > certainly skipped (now), in a boot-time function is going to add any > > > performance burden? > > > > > > >What you are doing is actively wrong. You suggest that it's fine to > > > >call that function with something different than pgt_buf_start as the > > > >start argument. That's complete nonsense. The early pages are > > > >allocated bottom up beginning at pgt_buf_start. So what the heck would > > > >make it sane to change that argument ever? > > > > > > If you really don't like this approach, at this point I think the > > > best thing to do is to assume that the start address will be > > > pgt_buf_start and loose the starting argument at all. > > > If you agree I can make a patch for that. > > > > One thing I don't understand is why is xen touching x86 code when it > > doesn't have to? At least I cannot find a single reason for it in this > > thread. > > Has this discussion gotten off the wrong track... The underlaying reason > for this x86_init.mapping.pagetable_reserve is to fix Xen guests from > crashing at bootup time b/c the pagetables that were hooked up were not > labeled as RO (but as RW). The git commit for the line in question > should say that. There was also a lengthy discussion about this and > why other attempts (like sticking the check in xen_set_pte_init and > not have pagetable_reserve) did not work. And Stefano also posted a > patch series that would remove the x86_init.mapping.pagetable_reserve > and change the logic in the earlier code to determine the _exact_ size > of the pagetable that is required. Ingo liked it, but Peter was not to > thrilled (or maybe he was OK but that was the timeline when his son was > born) and decided that we will stick with the > x86_init.mapping.pagetable_reserve for now. > > (Sorry about not posting the links to the discussions - will to that in > a couple of hours). Here are a couple of links to the original discussions about the bug that pagetable_reserve now solves: http://marc.info/?l=linux-kernel&m=129901609503574 http://marc.info/?l=linux-kernel&m=130133909408229 If you are interested in the subject it is worth starting from the beginning of the two threads. Just to give you a bit of background: Xen PV guests predate VMX, they just run in ring3 (ring1 on x86_32); they have a different entry point and pagetable pages have to be mapped RO so that's why they need special treatment. > > Here's a simple answer: if it doesn't fix a bug on x86 baremetal (and > > you're changing x86 native code only for the sake of xen), there's no > > reason wasting energy to create patches. I really wish that it would never be necessary to modify x86 native code only for the sake of Xen, but unfortunately, given the peculiarities mentioned above, sometimes it has proven to be necessary in the past. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists