| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 10 May 2019 18:21:51 +0200
From: Pierre Morel <pmorel@...ux.ibm.com>
To: Tony Krowiak <akrowiak@...ux.ibm.com>, borntraeger@...ibm.com
Cc: alex.williamson@...hat.com, cohuck@...hat.com,
linux-kernel@...r.kernel.org, linux-s390@...r.kernel.org,
kvm@...r.kernel.org, frankja@...ux.ibm.com, pasic@...ux.ibm.com,
david@...hat.com, schwidefsky@...ibm.com,
heiko.carstens@...ibm.com, freude@...ux.ibm.com, mimu@...ux.ibm.com
Subject: Re: [PATCH v8 3/4] s390: ap: implement PAPQ AQIC interception in
kernel
On 08/05/2019 22:17, Tony Krowiak wrote:
> On 5/2/19 1:34 PM, Pierre Morel wrote:
>> We register a AP PQAP instruction hook during the open
>> of the mediated device. And unregister it on release.
>>
>> During the probe of the AP device, we allocate a vfio_ap_queue
>> structure to keep track of the information we need for the
>> PQAP/AQIC instruction interception.
>>
>> In the AP PQAP instruction hook, if we receive a demand to
>> enable IRQs,
>> - we retrieve the vfio_ap_queue based on the APQN we receive
>> in REG1,
>> - we retrieve the page of the guest address, (NIB), from
>> register REG2
>> - we retrieve the mediated device to use the VFIO pinning
>> infrastructure to pin the page of the guest address,
>> - we retrieve the pointer to KVM to register the guest ISC
>> and retrieve the host ISC
>> - finaly we activate GISA
>>
>> If we receive a demand to disable IRQs,
>> - we deactivate GISA
>> - unregister from the GIB
>> - unping the NIB
>
> s/unping/unpin
yes, thanks,
>
...snip...
>> static void vfio_ap_queue_dev_remove(struct ap_device *apdev)
>> {
>> - /* Nothing to do yet */
>> + struct vfio_ap_queue *q;
>> + int apid, apqi;
>> +
>> + mutex_lock(&matrix_dev->lock);
>> + q = dev_get_drvdata(&apdev->device);
>> + dev_set_drvdata(&apdev->device, NULL);
>> + if (q) {
>> + apid = AP_QID_CARD(q->apqn);
>> + apqi = AP_QID_QUEUE(q->apqn);
>> + vfio_ap_mdev_reset_queue(apid, apqi, 1);
>
> As you know, there is another patch series (s390: vfio-ap: dynamic
> configuration support) posted concurrently with this series. That series
> handles reset on remove of an AP queue device. It looks like your
> choices here will greatly conflict with the reset processing in the
> other patch series and create a nasty merge conflict. My suggestion is
> that you build this patch series on top of the other series and do
> the following:
>
> There are two new functions introduced in vfio_ap_private.h:
> void vfio_ap_mdev_remove_queue(struct ap_queue *queue);
> void vfio_ap_mdev_probe_queue(struct ap_queue *queue);
>
> These are called from the probe and remove callbacks in vfio_ap_drv.c.
> If you embed your changes to the probe and remove functions above into
> those new functions, that will make merging the two much easier and
> the code cleaner IMHO.
The merging is really limited
The dynamic configuration patches series is new and I am not sure it
will satisfy Harald and Reinhard, doing so would delay the IRQ patch
series for an unknown among of time.
I am not sure it is so wise.
May be an other opinion?
Whatever, we can share the reset function, it is independent of the
series, for my opinion it could go its own way.
I can take your patch.
...snip...
>> +struct ap_queue_status vfio_ap_irq_disable(struct vfio_ap_queue *q)
>> +{
>> + struct ap_qirq_ctrl aqic_gisa;
>> + struct ap_queue_status status = {
>> + .response_code = AP_RESPONSE_Q_NOT_AVAIL,
>> + };
>> + int retry_tapq = 5;
>> + int retry_aqic = 5;
>> +
>> + if (!q)
>
> When will q ever be NULL? I checked all places where this is called and
> it looks to me like this will never happen.
>
OK, I check, may be too carefull.
>> + return status;
>> +
>> +again:
>
> I'm not crazy about using a label, why not a do/while
> loop or something of that nature?
I will try this way.
>
>> + status = ap_aqic(q->apqn, aqic_gisa, NULL);
>> + switch (status.response_code) {
>> + case AP_RESPONSE_OTHERWISE_CHANGED:
>> + case AP_RESPONSE_RESET_IN_PROGRESS:
>> + case AP_RESPONSE_NORMAL: /* Fall through */
>> + while (status.irq_enabled && retry_tapq--) {
>> + msleep(20);
>> + status = ap_tapq(q->apqn, NULL);
>
> Shouldn't you be checking response codes from the TAPQ
> function? Maybe there should be a function call here to
> with for IRQ disabled?
OK
Thanks,
Pierre
--
Pierre Morel
Linux/KVM/QEMU in Böblingen - Germany
Powered by blists - more mailing lists