From: Jan Beulich <jbeulich@suse.com>
To: Julien Grall <julien@xen.org>
Cc: Juergen Gross <jgross@suse.com>,
Stefano Stabellini <sstabellini@kernel.org>, Wei Liu <wl@xen.org>,
Andrew Cooper <andrew.cooper3@citrix.com>,
Julien Grall <jgrall@amazon.com>,
Ian Jackson <ian.jackson@eu.citrix.com>,
George Dunlap <george.dunlap@citrix.com>,
xen-devel@lists.xenproject.org
Subject: Re: [PATCH] pvcalls: Document explicitly the padding for all arches
Date: Mon, 20 Apr 2020 15:45:41 +0200 [thread overview]
Message-ID: <6fc59120-664e-6a07-5196-57e1dbfb0dde@suse.com> (raw)
In-Reply-To: <78288649-5930-9d01-bb8f-85e15406e4ef@xen.org>
On 20.04.2020 15:34, Julien Grall wrote:
> Hi Jan,
>
> On 20/04/2020 09:04, Jan Beulich wrote:
>> On 19.04.2020 12:49, Julien Grall wrote:
>>> --- a/docs/misc/pvcalls.pandoc
>>> +++ b/docs/misc/pvcalls.pandoc
>>> @@ -246,9 +246,7 @@ The format is defined as follows:
>>> uint32_t domain;
>>> uint32_t type;
>>> uint32_t protocol;
>>> - #ifdef CONFIG_X86_32
>>> uint8_t pad[4];
>>> - #endif
>>> } socket;
>>> struct xen_pvcalls_connect {
>>> uint64_t id;
>>> @@ -257,16 +255,12 @@ The format is defined as follows:
>>> uint32_t flags;
>>> grant_ref_t ref;
>>> uint32_t evtchn;
>>> - #ifdef CONFIG_X86_32
>>> uint8_t pad[4];
>>> - #endif
>>> } connect;
>>> struct xen_pvcalls_release {
>>> uint64_t id;
>>> uint8_t reuse;
>>> - #ifdef CONFIG_X86_32
>>> uint8_t pad[7];
>>> - #endif
>>> } release;
>>> struct xen_pvcalls_bind {
>>> uint64_t id;
>>> @@ -276,9 +270,7 @@ The format is defined as follows:
>>> struct xen_pvcalls_listen {
>>> uint64_t id;
>>> uint32_t backlog;
>>> - #ifdef CONFIG_X86_32
>>> uint8_t pad[4];
>>> - #endif
>>> } listen;
>>> struct xen_pvcalls_accept {
>>> uint64_t id;
>>
>> I wonder on what grounds these #ifdef-s had been there - they're
>> plain wrong with the types used in the public header.
>>
>>> --- a/xen/include/public/io/pvcalls.h
>>> +++ b/xen/include/public/io/pvcalls.h
>>> @@ -65,6 +65,7 @@ struct xen_pvcalls_request {
>>> uint32_t domain;
>>> uint32_t type;
>>> uint32_t protocol;
>>> + uint8_t pad[4];
>>> } socket;
>>> struct xen_pvcalls_connect {
>>> uint64_t id;
>>> @@ -73,10 +74,12 @@ struct xen_pvcalls_request {
>>> uint32_t flags;
>>> grant_ref_t ref;
>>> uint32_t evtchn;
>>> + uint8_t pad[4];
>>> } connect;
>>> struct xen_pvcalls_release {
>>> uint64_t id;
>>> uint8_t reuse;
>>> + uint8_t pad[7];
>>> } release;
>>> struct xen_pvcalls_bind {
>>> uint64_t id;
>>> @@ -86,6 +89,7 @@ struct xen_pvcalls_request {
>>> struct xen_pvcalls_listen {
>>> uint64_t id;
>>> uint32_t backlog;
>>> + uint8_t pad[4];
>>> } listen;
>>
>> I'm afraid we can't change these in such a way - your additions
>> change sizeof() for the respective sub-structures on 32-bit x86,
>> and hence this is not a backwards compatible adjustment.
>
> This is a bit confusing, each structure contain a 64-bit field so
> I would have thought it the structure would be 8-byte aligned (as
> on 32-bit Arm). But looking at the spec, a uint64_t will only
> aligned to 4-byte.
>
> However, I am not sure why sizeof() matters here. I understand
> the value would be different, but AFAICT, this is not used as part
> of the protocol.
Two independent components of a consumer of our interface could
have a function taking (pointer to) struct xen_pvcalls_connect.
If one component gets re-built with the new definition and the
other doesn't, they'll disagree on what range of memory needs
to be accessible. The instantiating side (using the old header)
may have ended up placing the struct immediately ahead of a
page boundary. The consuming side (using the changed header)
would then encounter a fault if it wanted to access the struct
as a whole (assignment, memcpy()).
Jan
next prev parent reply other threads:[~2020-04-20 13:45 UTC|newest]
Thread overview: 14+ messages / expand[flat|nested] mbox.gz Atom feed top
2020-04-19 10:49 [PATCH] pvcalls: Document explicitly the padding for all arches Julien Grall
2020-04-20 8:04 ` Jan Beulich
2020-04-20 13:34 ` Julien Grall
2020-04-20 13:45 ` Jan Beulich [this message]
2020-04-21 23:27 ` Stefano Stabellini
2020-04-22 9:20 ` Jan Beulich
2020-04-29 14:01 ` Julien Grall
2020-04-29 14:05 ` Jan Beulich
2020-04-29 14:14 ` Julien Grall
2020-04-29 14:56 ` Jan Beulich
2020-04-29 15:06 ` Julien Grall
2020-04-29 15:23 ` Jan Beulich
2020-04-29 15:30 ` Julien Grall
2020-04-29 15:57 ` Jan Beulich
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=6fc59120-664e-6a07-5196-57e1dbfb0dde@suse.com \
--to=jbeulich@suse.com \
--cc=andrew.cooper3@citrix.com \
--cc=george.dunlap@citrix.com \
--cc=ian.jackson@eu.citrix.com \
--cc=jgrall@amazon.com \
--cc=jgross@suse.com \
--cc=julien@xen.org \
--cc=sstabellini@kernel.org \
--cc=wl@xen.org \
--cc=xen-devel@lists.xenproject.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.