From: Razvan Cojocaru <rcojocaru@bitdefender.com>
To: xen-devel@lists.xenproject.org
Cc: kevin.tian@intel.com, ian.campbell@citrix.com,
Razvan Cojocaru <rcojocaru@bitdefender.com>,
stefano.stabellini@eu.citrix.com, jun.nakajima@intel.com,
andrew.cooper3@citrix.com, eddie.dong@intel.com, tim@xen.org,
JBeulich@suse.com, ian.jackson@eu.citrix.com
Subject: [PATCH RFC V10 4/5] xen, libxc: Request page fault injection via libxc
Date: Tue, 2 Sep 2014 18:29:17 +0300 [thread overview]
Message-ID: <1409671758-19450-4-git-send-email-rcojocaru@bitdefender.com> (raw)
In-Reply-To: <1409671758-19450-1-git-send-email-rcojocaru@bitdefender.com>
Extended HVMOP_inject_trap to allow asking for trap injection done
by the first available CPU, when it's in user mode and its CR3
matches the one for an interesting application inside the guest.
This mechanism allows bringing in swapped-out pages for inspection.
Signed-off-by: Razvan Cojocaru <rcojocaru@bitdefender.com>
---
tools/libxc/xc_misc.c | 5 +-
tools/libxc/xenctrl.h | 3 +-
xen/arch/x86/hvm/hvm.c | 103 +++++++++++++++++++++++++++++++++-----
xen/include/asm-x86/hvm/domain.h | 3 ++
xen/include/asm-x86/hvm/hvm.h | 1 +
xen/include/public/hvm/hvm_op.h | 2 +
6 files changed, 101 insertions(+), 16 deletions(-)
diff --git a/tools/libxc/xc_misc.c b/tools/libxc/xc_misc.c
index e253a58..6773446 100644
--- a/tools/libxc/xc_misc.c
+++ b/tools/libxc/xc_misc.c
@@ -597,7 +597,7 @@ int xc_hvm_set_mem_type(
int xc_hvm_inject_trap(
xc_interface *xch, domid_t dom, int vcpu, uint32_t vector,
uint32_t type, uint32_t error_code, uint32_t insn_len,
- uint64_t cr2)
+ uint64_t cr2, uint64_t cr3)
{
DECLARE_HYPERCALL;
DECLARE_HYPERCALL_BUFFER(struct xen_hvm_inject_trap, arg);
@@ -611,12 +611,13 @@ int xc_hvm_inject_trap(
}
arg->domid = dom;
- arg->vcpuid = vcpu;
+ arg->vcpuid = (vcpu == -1 ? (uint32_t)~0 : vcpu);
arg->vector = vector;
arg->type = type;
arg->error_code = error_code;
arg->insn_len = insn_len;
arg->cr2 = cr2;
+ arg->cr3 = cr3;
hypercall.op = __HYPERVISOR_hvm_op;
hypercall.arg[0] = HVMOP_inject_trap;
diff --git a/tools/libxc/xenctrl.h b/tools/libxc/xenctrl.h
index 28b5562..5bf0173 100644
--- a/tools/libxc/xenctrl.h
+++ b/tools/libxc/xenctrl.h
@@ -1816,11 +1816,12 @@ int xc_hvm_set_mem_type(
/*
* Injects a hardware/software CPU trap, to take effect the next time the HVM
* resumes.
+ * Cr3 is only taken into account if vcpu == -1 (wildcard for "any vcpu").
*/
int xc_hvm_inject_trap(
xc_interface *xch, domid_t dom, int vcpu, uint32_t vector,
uint32_t type, uint32_t error_code, uint32_t insn_len,
- uint64_t cr2);
+ uint64_t cr2, uint64_t cr3);
/*
* LOGGING AND ERROR REPORTING
diff --git a/xen/arch/x86/hvm/hvm.c b/xen/arch/x86/hvm/hvm.c
index 5761ff9..bfd047b 100644
--- a/xen/arch/x86/hvm/hvm.c
+++ b/xen/arch/x86/hvm/hvm.c
@@ -420,6 +420,52 @@ static bool_t hvm_wait_for_io(struct hvm_ioreq_vcpu *sv, ioreq_t *p)
return 1;
}
+static bool_t hvm_is_pf_requested(struct vcpu *v)
+{
+ const struct domain *d = v->domain;
+ struct segment_register seg;
+// unsigned long ev;
+// uint32_t pending_event = 0;
+ uint64_t mask;
+
+/*
+ if ( !is_hvm_domain(currd) ||
+ likely(!currd->arch.hvm_domain.request_pagefault_info.valid) )
+ return 0;
+*/
+
+ hvm_get_segment_register(v, x86_seg_ss, &seg);
+
+ if ( seg.attr.fields.dpl != 3 ) /* Guest is not in user mode */
+ return 0;
+
+ if ( hvm_long_mode_enabled(v) )
+ mask = PADDR_MASK & PAGE_MASK; /* Bits 51:12. */
+ else if ( hvm_pae_enabled(v) )
+ mask = 0x00000000ffffffe0; /* Bits 31:5. */
+ else
+ mask = (uint32_t)PAGE_MASK; /* Bits 31:12. */
+
+ if ( (v->arch.hvm_vcpu.guest_cr[3] & mask) !=
+ (d->arch.hvm_domain.inject_trap.cr3 & mask) )
+ return 0;
+
+ return 1;
+
+/*
+ vmx_vmcs_enter(curr);
+ __vmread(VM_ENTRY_INTR_INFO, &ev);
+ vmx_vmcs_exit(curr);
+
+ if ( (ev & INTR_INFO_VALID_MASK) &&
+ hvm_event_needs_reinjection(MASK_EXTR(ev, INTR_INFO_INTR_TYPE_MASK),
+ ev & INTR_INFO_VECTOR_MASK) )
+ pending_event = ev;
+
+ return pending_event == 0;
+*/
+}
+
void hvm_do_resume(struct vcpu *v)
{
struct domain *d = v->domain;
@@ -451,6 +497,16 @@ void hvm_do_resume(struct vcpu *v)
}
/* Inject pending hw/sw trap */
+ if ( d->arch.hvm_domain.inject_trap.vector != -1 &&
+ v->arch.hvm_vcpu.inject_trap.vector == -1 &&
+ hvm_is_pf_requested(v) )
+ {
+ printk("Injected\n");
+ hvm_inject_trap(&d->arch.hvm_domain.inject_trap);
+ d->arch.hvm_domain.inject_trap.vector = -1;
+ }
+
+ /* Inject pending hw/sw trap */
if ( v->arch.hvm_vcpu.inject_trap.vector != -1 )
{
hvm_inject_trap(&v->arch.hvm_vcpu.inject_trap);
@@ -1473,9 +1529,10 @@ int hvm_domain_initialise(struct domain *d)
printk(XENLOG_G_INFO "PVH guest must have HAP on\n");
return -EINVAL;
}
-
}
+ d->arch.hvm_domain.inject_trap.vector = -1;
+
spin_lock_init(&d->arch.hvm_domain.ioreq_server.lock);
INIT_LIST_HEAD(&d->arch.hvm_domain.ioreq_server.list);
spin_lock_init(&d->arch.hvm_domain.irq_lock);
@@ -6086,19 +6143,39 @@ long do_hvm_op(unsigned long op, XEN_GUEST_HANDLE_PARAM(void) arg)
goto param_fail8;
rc = -ENOENT;
- if ( tr.vcpuid >= d->max_vcpus || (v = d->vcpu[tr.vcpuid]) == NULL )
- goto param_fail8;
-
- if ( v->arch.hvm_vcpu.inject_trap.vector != -1 )
- rc = -EBUSY;
- else
+
+ if ( tr.vcpuid == (uint32_t)~0 ) /* Any VCPU. */
{
- v->arch.hvm_vcpu.inject_trap.vector = tr.vector;
- v->arch.hvm_vcpu.inject_trap.type = tr.type;
- v->arch.hvm_vcpu.inject_trap.error_code = tr.error_code;
- v->arch.hvm_vcpu.inject_trap.insn_len = tr.insn_len;
- v->arch.hvm_vcpu.inject_trap.cr2 = tr.cr2;
- rc = 0;
+ if ( d->arch.hvm_domain.inject_trap.vector != -1 )
+ rc = -EBUSY;
+ else
+ {
+ d->arch.hvm_domain.inject_trap.vector = tr.vector;
+ d->arch.hvm_domain.inject_trap.type = tr.type;
+ d->arch.hvm_domain.inject_trap.error_code = tr.error_code;
+ d->arch.hvm_domain.inject_trap.insn_len = tr.insn_len;
+ d->arch.hvm_domain.inject_trap.cr2 = tr.cr2;
+ d->arch.hvm_domain.inject_trap.cr3 = tr.cr3;
+ rc = 0;
+ }
+ }
+ else
+ {
+ if ( tr.vcpuid >= d->max_vcpus || (v = d->vcpu[tr.vcpuid]) == NULL )
+ goto param_fail8;
+
+ if ( v->arch.hvm_vcpu.inject_trap.vector != -1 )
+ rc = -EBUSY;
+ else
+ {
+ v->arch.hvm_vcpu.inject_trap.vector = tr.vector;
+ v->arch.hvm_vcpu.inject_trap.type = tr.type;
+ v->arch.hvm_vcpu.inject_trap.error_code = tr.error_code;
+ v->arch.hvm_vcpu.inject_trap.insn_len = tr.insn_len;
+ v->arch.hvm_vcpu.inject_trap.cr2 = tr.cr2;
+ v->arch.hvm_vcpu.inject_trap.cr3 = tr.cr3;
+ rc = 0;
+ }
}
param_fail8:
diff --git a/xen/include/asm-x86/hvm/domain.h b/xen/include/asm-x86/hvm/domain.h
index 30d4aa3..b432874 100644
--- a/xen/include/asm-x86/hvm/domain.h
+++ b/xen/include/asm-x86/hvm/domain.h
@@ -146,6 +146,9 @@ struct hvm_domain {
struct vmx_domain vmx;
struct svm_domain svm;
};
+
+ /* Pending hw/sw interrupt (.vector = -1 means nothing pending). */
+ struct hvm_trap inject_trap;
};
#define hap_enabled(d) ((d)->arch.hvm_domain.hap_enabled)
diff --git a/xen/include/asm-x86/hvm/hvm.h b/xen/include/asm-x86/hvm/hvm.h
index 121d053..3b0bde9 100644
--- a/xen/include/asm-x86/hvm/hvm.h
+++ b/xen/include/asm-x86/hvm/hvm.h
@@ -78,6 +78,7 @@ struct hvm_trap {
int error_code; /* HVM_DELIVER_NO_ERROR_CODE if n/a */
int insn_len; /* Instruction length */
unsigned long cr2; /* Only for TRAP_page_fault h/w exception */
+ unsigned long cr3; /* Only for TRAP_page_fault h/w exception */
};
/*
diff --git a/xen/include/public/hvm/hvm_op.h b/xen/include/public/hvm/hvm_op.h
index eeb0a60..5c229b7 100644
--- a/xen/include/public/hvm/hvm_op.h
+++ b/xen/include/public/hvm/hvm_op.h
@@ -197,6 +197,8 @@ struct xen_hvm_inject_trap {
uint32_t insn_len;
/* CR2 for page faults */
uint64_aligned_t cr2;
+ /* If vcpuid == -1, any CPU with a matching CR3 will inject. */
+ uint64_aligned_t cr3;
};
typedef struct xen_hvm_inject_trap xen_hvm_inject_trap_t;
DEFINE_XEN_GUEST_HANDLE(xen_hvm_inject_trap_t);
--
1.7.9.5
next prev parent reply other threads:[~2014-09-02 15:29 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2014-09-02 15:29 [PATCH RFC V10 1/5] xen: Emulate with no writes Razvan Cojocaru
2014-09-02 15:29 ` [PATCH RFC V10 2/5] xen: Optimize introspection access to guest state Razvan Cojocaru
2014-09-02 15:29 ` [PATCH RFC V10 3/5] xen, libxc: Force-enable relevant MSR events Razvan Cojocaru
2014-09-02 15:29 ` Razvan Cojocaru [this message]
2014-09-02 15:29 ` [PATCH RFC V10 5/5] xen: Handle resumed instruction based on previous mem_event reply Razvan Cojocaru
-- strict thread matches above, loose matches on Subject: below --
2014-08-28 13:10 [PATCH RFC V10 1/5] xen: Emulate with no writes Razvan Cojocaru
2014-08-28 13:10 ` [PATCH RFC V10 4/5] xen, libxc: Request page fault injection via libxc Razvan Cojocaru
2014-08-28 13:31 ` Jan Beulich
2014-08-28 13:32 ` Razvan Cojocaru
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1409671758-19450-4-git-send-email-rcojocaru@bitdefender.com \
--to=rcojocaru@bitdefender.com \
--cc=JBeulich@suse.com \
--cc=andrew.cooper3@citrix.com \
--cc=eddie.dong@intel.com \
--cc=ian.campbell@citrix.com \
--cc=ian.jackson@eu.citrix.com \
--cc=jun.nakajima@intel.com \
--cc=kevin.tian@intel.com \
--cc=stefano.stabellini@eu.citrix.com \
--cc=tim@xen.org \
--cc=xen-devel@lists.xenproject.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.