From: Aravindh Puthiyaparambil <aravindh@virtuata.com>
To: Christian.Limpach@gmail.com
Cc: tim@xen.org, xen-devel@lists.xen.org
Subject: Re: [PATCH 0 of 2] Add libxc API that sets mem_access type for an array of gfns
Date: Fri, 4 May 2012 15:02:28 -0700 [thread overview]
Message-ID: <CAB10MZAoKnoR3OHv7J1TcQa_Zuwn+yZtOBRTrL5=hZxOOoyNYQ@mail.gmail.com> (raw)
In-Reply-To: <CAHDtvhrjCZLvbj9JMk6Cgng52D7ycHnrx4fc4iOkc9yq2U3Lsg@mail.gmail.com>
[-- Attachment #1.1: Type: text/plain, Size: 5782 bytes --]
On Wed, May 2, 2012 at 8:28 PM, Christian Limpach <
christian.limpach@gmail.com> wrote:
> On Fri, Apr 27, 2012 at 9:22 PM, Aravindh Puthiyaparambil
> <aravindh@virtuata.com> wrote:
>>>> Let me re-iterate:
>>>> - if it's a leaf entry, then there's no need to call ept_free_entry
>>>> - if you don't need to call ept_free_entry, then you can defer
>>>> ept_sync_domain (subject to the iommu case)
>>>> - you could pass in a pointer to a bool to indicate to the caller that
>>>> ept_sync_domain was deferred and that the caller needs to do it, with
>>>> a NULL pointer indicating that the caller doesn't support defer
>>
>> How does this look?
>
> It's missing the "leaf entry" part of my description of how I think
> things should work. Without that, you're effectively ignoring the
> following comment at the end of ept_set_entry:
> /* Release the old intermediate tables, if any. This has to be the
> last thing we do, after the ept_sync_domain() and removal
> from the iommu tables, so as to avoid a potential
> use-after-free. */
>
> See inline comments in your patch below for how I'd change this,
untested...
>
> christian
>
>> @@ -293,6 +296,7 @@ ept_set_entry(struct p2m_domain *p2m, un
>> int needs_sync = 1;
>> struct domain *d = p2m->domain;
>> ept_entry_t old_entry = { .epte = 0 };
>> + bool_t _sync_deferred = 0;
>
> don't need that
>
>> /*
>> * the caller must make sure:
>> @@ -309,6 +313,9 @@ ept_set_entry(struct p2m_domain *p2m, un
>> (target == 1 && hvm_hap_has_2mb(d)) ||
>> (target == 0));
>>
>> + if (sync_deferred)
>> + *sync_deferred = 1;
>> +
>> table = map_domain_page(ept_get_asr(d));
>>
>> for ( i = ept_get_wl(d); i > target; i-- )
>> @@ -346,7 +353,11 @@ ept_set_entry(struct p2m_domain *p2m, un
>>
>> /* No need to flush if the old entry wasn't valid */
>> if ( !is_epte_present(ept_entry) )
>> needs_sync = 0;
>
> This should be:
> if ( !is_epte_present(ept_entry) ||
> (!target && sync_deferred) ) {
> needs_sync = 0;
> if (sync_deferred)
> *sync_deferred = 0;
> }
>
> This expresses the notion that we're going to skip the call to
> ept_free_entry since it's a leaf entry (target == 0) and that the
> caller will make the ept_sync_domain call (sync_deferred != NULL).
>
>>
>> /* If we're replacing a non-leaf entry with a leaf entry
>> (1GiB or 2MiB),
>> * the intermediate tables will be freed below after the ept
flush
>> @@ -385,6 +396,9 @@ ept_set_entry(struct p2m_domain *p2m, un
>>
>> ASSERT(is_epte_superpage(ept_entry));
>>
>> + if ( sync_deferred )
>> + _sync_deferred = 1;
>> +
>
> don't need that
>
>> split_ept_entry = atomic_read_ept_entry(ept_entry);
>>
>> if ( !ept_split_super_page(p2m, &split_ept_entry, i, target) )
>> @@ -438,7 +452,7 @@ ept_set_entry(struct p2m_domain *p2m, un
>> out:
>> unmap_domain_page(table);
>>
>> - if ( needs_sync )
>> + if ( needs_sync && !_sync_deferred )
>> ept_sync_domain(p2m->domain);
>
> don't need that change, test on needs_sync is sufficient
>
>>
>> if ( rv && iommu_enabled && need_iommu(p2m->domain) &&
>> need_modify_vtd_table )
>
> Then at the end of ept_set_pte add the test for non-leaf, which is
> more like an optimization/clarification since ept_free_entry has the
> same test already.
>
> if ( target && is_epte_present(&old_entry) )
> ept_free_entry(p2m, &old_entry, target);
Sorry for not following and thanks for your patience. Hopefully this looks
correct. I have just included the pertinent bit of the patch you were
commenting on.
diff -r 9dda0efd8ce1 -r c180942992bf xen/arch/x86/mm/p2m-ept.c
--- a/xen/arch/x86/mm/p2m-ept.c Fri Apr 27 17:57:55 2012 +0200
+++ b/xen/arch/x86/mm/p2m-ept.c Fri May 04 14:56:12 2012 -0700
@@ -274,10 +274,13 @@ static int ept_next_level(struct p2m_dom
/*
* ept_set_entry() computes 'need_modify_vtd_table' for itself,
* by observing whether any gfn->mfn translations are modified.
+ * If sync_deferred is not NULL, then the caller will take care of
+ * calling ept_sync_domain() in the cases where it can be deferred.
*/
static int
ept_set_entry(struct p2m_domain *p2m, unsigned long gfn, mfn_t mfn,
- unsigned int order, p2m_type_t p2mt, p2m_access_t p2ma)
+ unsigned int order, p2m_type_t p2mt, p2m_access_t p2ma,
+ bool_t *sync_deferred)
{
ept_entry_t *table, *ept_entry = NULL;
unsigned long gfn_remainder = gfn;
@@ -309,6 +312,9 @@ ept_set_entry(struct p2m_domain *p2m, un
(target == 1 && hvm_hap_has_2mb(d)) ||
(target == 0));
+ if (sync_deferred)
+ *sync_deferred = 1;
+
table = map_domain_page(ept_get_asr(d));
for ( i = ept_get_wl(d); i > target; i-- )
@@ -345,8 +351,12 @@ ept_set_entry(struct p2m_domain *p2m, un
ept_entry_t new_entry = { .epte = 0 };
/* No need to flush if the old entry wasn't valid */
- if ( !is_epte_present(ept_entry) )
+ if ( !is_epte_present(ept_entry) || (!target && sync_deferred) )
+ {
needs_sync = 0;
+ if ( sync_deferred )
+ *sync_deferred = 0;
+ }
/* If we're replacing a non-leaf entry with a leaf entry (1GiB or
2MiB),
* the intermediate tables will be freed below after the ept flush
@@ -477,7 +487,7 @@ out:
last thing we do, after the ept_sync_domain() and removal
from the iommu tables, so as to avoid a potential
use-after-free. */
- if ( is_epte_present(&old_entry) )
+ if ( target && is_epte_present(&old_entry) )
ept_free_entry(p2m, &old_entry, target);
return rv;
[-- Attachment #1.2: Type: text/html, Size: 7539 bytes --]
[-- Attachment #2: Type: text/plain, Size: 126 bytes --]
_______________________________________________
Xen-devel mailing list
Xen-devel@lists.xen.org
http://lists.xen.org/xen-devel
next prev parent reply other threads:[~2012-05-04 22:02 UTC|newest]
Thread overview: 17+ messages / expand[flat|nested] mbox.gz Atom feed top
2012-04-26 18:33 [PATCH 0 of 2] Add libxc API that sets mem_access type for an array of gfns Aravindh Puthiyaparambil
2012-04-26 18:33 ` [PATCH 1 of 2] x86/mm: Split ept_set_entry() Aravindh Puthiyaparambil
2012-04-26 18:33 ` [PATCH 2 of 2] mem_access: Add xc_hvm_mem_access_bulk() API Aravindh Puthiyaparambil
2012-04-26 20:20 ` [PATCH 0 of 2] Add libxc API that sets mem_access type for an array of gfns Christian Limpach
2012-04-26 22:41 ` Aravindh Puthiyaparambil
2012-04-27 0:15 ` Aravindh Puthiyaparambil
2012-04-27 1:06 ` Christian Limpach
2012-04-27 1:36 ` Aravindh Puthiyaparambil
2012-04-27 8:48 ` Tim Deegan
2012-04-27 18:26 ` Aravindh Puthiyaparambil
2012-04-27 17:37 ` Christian Limpach
2012-04-27 18:25 ` Aravindh Puthiyaparambil
2012-04-28 4:22 ` Aravindh Puthiyaparambil
2012-05-03 3:28 ` Christian Limpach
2012-05-04 22:02 ` Aravindh Puthiyaparambil [this message]
2012-05-17 10:05 ` Tim Deegan
2012-05-17 18:43 ` Aravindh Puthiyaparambil
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='CAB10MZAoKnoR3OHv7J1TcQa_Zuwn+yZtOBRTrL5=hZxOOoyNYQ@mail.gmail.com' \
--to=aravindh@virtuata.com \
--cc=Christian.Limpach@gmail.com \
--cc=tim@xen.org \
--cc=xen-devel@lists.xen.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.