* [PATCH v5 4/7] X86: generic MSRs save/restore
@ 2013-12-03 14:50 Liu, Jinsong
2013-12-04 14:18 ` Jan Beulich
0 siblings, 1 reply; 32+ messages in thread
From: Liu, Jinsong @ 2013-12-03 14:50 UTC (permalink / raw)
To: Jan Beulich, xen-devel; +Cc: Andrew Cooper, keir, Ian.Campbell, haoxudong.hao
[-- Attachment #1: Type: text/plain, Size: 5924 bytes --]
>From 54fe7e722dd4ebba91bde16a1860f49a1cce4e5e Mon Sep 17 00:00:00 2001
From: Liu Jinsong <jinsong.liu@intel.com>
Date: Wed, 4 Dec 2013 00:57:23 +0800
Subject: [PATCH v5 4/7] X86: generic MSRs save/restore
This patch introduced a generic MSRs save/restore mechanism, so that
in the future new MSRs save/restore could be added w/ smaller change
than the full blown addition of a new save/restore type.
Suggested-by: Jan Beulich <jbeulich@suse.com>
Signed-off-by: Liu Jinsong <jinsong.liu@intel.com>
---
xen/arch/x86/hvm/hvm.c | 74 ++++++++++++++++++++++++++++++++
xen/arch/x86/hvm/vmx/vmx.c | 17 +++++++
xen/include/asm-x86/hvm/hvm.h | 3 +
xen/include/public/arch-x86/hvm/save.h | 18 +++++++-
4 files changed, 111 insertions(+), 1 deletions(-)
diff --git a/xen/arch/x86/hvm/hvm.c b/xen/arch/x86/hvm/hvm.c
index 0f7178b..fb46e4b 100644
--- a/xen/arch/x86/hvm/hvm.c
+++ b/xen/arch/x86/hvm/hvm.c
@@ -702,6 +702,80 @@ static int hvm_load_tsc_adjust(struct domain *d, hvm_domain_context_t *h)
HVM_REGISTER_SAVE_RESTORE(TSC_ADJUST, hvm_save_tsc_adjust,
hvm_load_tsc_adjust, 1, HVMSR_PER_VCPU);
+/* Temporarily NULL, could be added in the future */
+static void hvm_save_msr_common(struct vcpu *v, struct hvm_msr *ctxt)
+{
+}
+
+/*
+ * Temporarily NULL, could be added in the future:
+ * For msr load fail, return error (other than -ENOENT);
+ * For msr load success, return 0;
+ * For msr not found, return -ENOENT;
+ */
+static int hvm_load_msr_common(struct vcpu *v, struct hvm_msr *ctxt)
+{
+ return -ENOENT;
+}
+
+static int hvm_save_msr(struct domain *d, hvm_domain_context_t *h)
+{
+ struct vcpu *v;
+ struct hvm_msr ctxt;
+ int err = 0;
+
+ for_each_vcpu ( d, v )
+ {
+ memset(&ctxt, 0, sizeof(ctxt));
+
+ /* For common msrs */
+ hvm_save_msr_common(v, &ctxt);
+
+ /* For vmx/svm specific msrs */
+ if ( hvm_funcs.save_msr )
+ hvm_funcs.save_msr(v, &ctxt);
+
+ err = hvm_save_entry(HVM_MSR, v->vcpu_id, h, &ctxt);
+ if ( err )
+ break;
+ }
+
+ return err;
+}
+
+static int hvm_load_msr(struct domain *d, hvm_domain_context_t *h)
+{
+ unsigned int vcpuid = hvm_load_instance(h);
+ struct vcpu *v;
+ struct hvm_msr ctxt;
+ int ret;
+
+ if ( vcpuid >= d->max_vcpus || (v = d->vcpu[vcpuid]) == NULL )
+ {
+ dprintk(XENLOG_G_ERR, "HVM restore: dom%d has no vcpu%u\n",
+ d->domain_id, vcpuid);
+ return -EINVAL;
+ }
+
+ if ( hvm_load_entry(HVM_MSR, h, &ctxt) != 0 )
+ return -EINVAL;
+
+ /* For common msrs */
+ ret = hvm_load_msr_common(v, &ctxt);
+ if ( ret == -ENOENT )
+ {
+ /* For vmx/svm specific msrs */
+ if ( hvm_funcs.load_msr )
+ return hvm_funcs.load_msr(v, &ctxt);
+ else
+ return -EINVAL;
+ }
+ return ret;
+}
+
+HVM_REGISTER_SAVE_RESTORE(HVM_MSR, hvm_save_msr,
+ hvm_load_msr, 1, HVMSR_PER_VCPU);
+
static int hvm_save_cpu_ctxt(struct domain *d, hvm_domain_context_t *h)
{
struct vcpu *v;
diff --git a/xen/arch/x86/hvm/vmx/vmx.c b/xen/arch/x86/hvm/vmx/vmx.c
index f0132a4..bac19f3 100644
--- a/xen/arch/x86/hvm/vmx/vmx.c
+++ b/xen/arch/x86/hvm/vmx/vmx.c
@@ -580,6 +580,21 @@ static int vmx_load_vmcs_ctxt(struct vcpu *v, struct hvm_hw_cpu *ctxt)
return 0;
}
+/* Temporarily NULL, could be added in the future */
+static void vmx_save_msr(struct vcpu *v, struct hvm_msr *ctxt)
+{
+}
+
+/*
+ * Temporarily NULL, could be added in the future:
+ * For msr load fail, or msr not found, return error;
+ * For msr load success, return 0;
+ */
+static int vmx_load_msr(struct vcpu *v, struct hvm_msr *ctxt)
+{
+ return 0;
+}
+
static void vmx_fpu_enter(struct vcpu *v)
{
vcpu_restore_fpu_lazy(v);
@@ -1606,6 +1621,8 @@ static struct hvm_function_table __initdata vmx_function_table = {
.vcpu_destroy = vmx_vcpu_destroy,
.save_cpu_ctxt = vmx_save_vmcs_ctxt,
.load_cpu_ctxt = vmx_load_vmcs_ctxt,
+ .save_msr = vmx_save_msr,
+ .load_msr = vmx_load_msr,
.get_interrupt_shadow = vmx_get_interrupt_shadow,
.set_interrupt_shadow = vmx_set_interrupt_shadow,
.guest_x86_mode = vmx_guest_x86_mode,
diff --git a/xen/include/asm-x86/hvm/hvm.h b/xen/include/asm-x86/hvm/hvm.h
index a8ba06d..1c09d41 100644
--- a/xen/include/asm-x86/hvm/hvm.h
+++ b/xen/include/asm-x86/hvm/hvm.h
@@ -109,6 +109,9 @@ struct hvm_function_table {
void (*save_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
int (*load_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
+ void (*save_msr)(struct vcpu *v, struct hvm_msr *ctxt);
+ int (*load_msr)(struct vcpu *v, struct hvm_msr *ctxt);
+
/* Examine specifics of the guest state. */
unsigned int (*get_interrupt_shadow)(struct vcpu *v);
void (*set_interrupt_shadow)(struct vcpu *v, unsigned int intr_shadow);
diff --git a/xen/include/public/arch-x86/hvm/save.h b/xen/include/public/arch-x86/hvm/save.h
index 3664aaf..e440eb5 100644
--- a/xen/include/public/arch-x86/hvm/save.h
+++ b/xen/include/public/arch-x86/hvm/save.h
@@ -592,9 +592,25 @@ struct hvm_tsc_adjust {
DECLARE_HVM_SAVE_TYPE(TSC_ADJUST, 19, struct hvm_tsc_adjust);
+enum {
+ HVM_MSR_COUNT,
+};
+
+struct msr_save_load {
+ uint32_t index;
+ uint64_t val;
+};
+
+struct hvm_msr {
+ uint32_t count;
+ struct msr_save_load msr[HVM_MSR_COUNT];
+};
+
+DECLARE_HVM_SAVE_TYPE(HVM_MSR, 20, struct hvm_msr);
+
/*
* Largest type-code in use
*/
-#define HVM_SAVE_CODE_MAX 19
+#define HVM_SAVE_CODE_MAX 20
#endif /* __XEN_PUBLIC_HVM_SAVE_X86_H__ */
--
1.7.1
[-- Attachment #2: 0004-X86-generic-MSRs-save-restore.patch --]
[-- Type: application/octet-stream, Size: 5736 bytes --]
From 54fe7e722dd4ebba91bde16a1860f49a1cce4e5e Mon Sep 17 00:00:00 2001
From: Liu Jinsong <jinsong.liu@intel.com>
Date: Wed, 4 Dec 2013 00:57:23 +0800
Subject: [PATCH 4/7] X86: generic MSRs save/restore
This patch introduced a generic MSRs save/restore mechanism, so that
in the future new MSRs save/restore could be added w/ smaller change
than the full blown addition of a new save/restore type.
Suggested-by: Jan Beulich <jbeulich@suse.com>
Signed-off-by: Liu Jinsong <jinsong.liu@intel.com>
---
xen/arch/x86/hvm/hvm.c | 74 ++++++++++++++++++++++++++++++++
xen/arch/x86/hvm/vmx/vmx.c | 17 +++++++
xen/include/asm-x86/hvm/hvm.h | 3 +
xen/include/public/arch-x86/hvm/save.h | 18 +++++++-
4 files changed, 111 insertions(+), 1 deletions(-)
diff --git a/xen/arch/x86/hvm/hvm.c b/xen/arch/x86/hvm/hvm.c
index 0f7178b..fb46e4b 100644
--- a/xen/arch/x86/hvm/hvm.c
+++ b/xen/arch/x86/hvm/hvm.c
@@ -702,6 +702,80 @@ static int hvm_load_tsc_adjust(struct domain *d, hvm_domain_context_t *h)
HVM_REGISTER_SAVE_RESTORE(TSC_ADJUST, hvm_save_tsc_adjust,
hvm_load_tsc_adjust, 1, HVMSR_PER_VCPU);
+/* Temporarily NULL, could be added in the future */
+static void hvm_save_msr_common(struct vcpu *v, struct hvm_msr *ctxt)
+{
+}
+
+/*
+ * Temporarily NULL, could be added in the future:
+ * For msr load fail, return error (other than -ENOENT);
+ * For msr load success, return 0;
+ * For msr not found, return -ENOENT;
+ */
+static int hvm_load_msr_common(struct vcpu *v, struct hvm_msr *ctxt)
+{
+ return -ENOENT;
+}
+
+static int hvm_save_msr(struct domain *d, hvm_domain_context_t *h)
+{
+ struct vcpu *v;
+ struct hvm_msr ctxt;
+ int err = 0;
+
+ for_each_vcpu ( d, v )
+ {
+ memset(&ctxt, 0, sizeof(ctxt));
+
+ /* For common msrs */
+ hvm_save_msr_common(v, &ctxt);
+
+ /* For vmx/svm specific msrs */
+ if ( hvm_funcs.save_msr )
+ hvm_funcs.save_msr(v, &ctxt);
+
+ err = hvm_save_entry(HVM_MSR, v->vcpu_id, h, &ctxt);
+ if ( err )
+ break;
+ }
+
+ return err;
+}
+
+static int hvm_load_msr(struct domain *d, hvm_domain_context_t *h)
+{
+ unsigned int vcpuid = hvm_load_instance(h);
+ struct vcpu *v;
+ struct hvm_msr ctxt;
+ int ret;
+
+ if ( vcpuid >= d->max_vcpus || (v = d->vcpu[vcpuid]) == NULL )
+ {
+ dprintk(XENLOG_G_ERR, "HVM restore: dom%d has no vcpu%u\n",
+ d->domain_id, vcpuid);
+ return -EINVAL;
+ }
+
+ if ( hvm_load_entry(HVM_MSR, h, &ctxt) != 0 )
+ return -EINVAL;
+
+ /* For common msrs */
+ ret = hvm_load_msr_common(v, &ctxt);
+ if ( ret == -ENOENT )
+ {
+ /* For vmx/svm specific msrs */
+ if ( hvm_funcs.load_msr )
+ return hvm_funcs.load_msr(v, &ctxt);
+ else
+ return -EINVAL;
+ }
+ return ret;
+}
+
+HVM_REGISTER_SAVE_RESTORE(HVM_MSR, hvm_save_msr,
+ hvm_load_msr, 1, HVMSR_PER_VCPU);
+
static int hvm_save_cpu_ctxt(struct domain *d, hvm_domain_context_t *h)
{
struct vcpu *v;
diff --git a/xen/arch/x86/hvm/vmx/vmx.c b/xen/arch/x86/hvm/vmx/vmx.c
index f0132a4..bac19f3 100644
--- a/xen/arch/x86/hvm/vmx/vmx.c
+++ b/xen/arch/x86/hvm/vmx/vmx.c
@@ -580,6 +580,21 @@ static int vmx_load_vmcs_ctxt(struct vcpu *v, struct hvm_hw_cpu *ctxt)
return 0;
}
+/* Temporarily NULL, could be added in the future */
+static void vmx_save_msr(struct vcpu *v, struct hvm_msr *ctxt)
+{
+}
+
+/*
+ * Temporarily NULL, could be added in the future:
+ * For msr load fail, or msr not found, return error;
+ * For msr load success, return 0;
+ */
+static int vmx_load_msr(struct vcpu *v, struct hvm_msr *ctxt)
+{
+ return 0;
+}
+
static void vmx_fpu_enter(struct vcpu *v)
{
vcpu_restore_fpu_lazy(v);
@@ -1606,6 +1621,8 @@ static struct hvm_function_table __initdata vmx_function_table = {
.vcpu_destroy = vmx_vcpu_destroy,
.save_cpu_ctxt = vmx_save_vmcs_ctxt,
.load_cpu_ctxt = vmx_load_vmcs_ctxt,
+ .save_msr = vmx_save_msr,
+ .load_msr = vmx_load_msr,
.get_interrupt_shadow = vmx_get_interrupt_shadow,
.set_interrupt_shadow = vmx_set_interrupt_shadow,
.guest_x86_mode = vmx_guest_x86_mode,
diff --git a/xen/include/asm-x86/hvm/hvm.h b/xen/include/asm-x86/hvm/hvm.h
index a8ba06d..1c09d41 100644
--- a/xen/include/asm-x86/hvm/hvm.h
+++ b/xen/include/asm-x86/hvm/hvm.h
@@ -109,6 +109,9 @@ struct hvm_function_table {
void (*save_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
int (*load_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
+ void (*save_msr)(struct vcpu *v, struct hvm_msr *ctxt);
+ int (*load_msr)(struct vcpu *v, struct hvm_msr *ctxt);
+
/* Examine specifics of the guest state. */
unsigned int (*get_interrupt_shadow)(struct vcpu *v);
void (*set_interrupt_shadow)(struct vcpu *v, unsigned int intr_shadow);
diff --git a/xen/include/public/arch-x86/hvm/save.h b/xen/include/public/arch-x86/hvm/save.h
index 3664aaf..e440eb5 100644
--- a/xen/include/public/arch-x86/hvm/save.h
+++ b/xen/include/public/arch-x86/hvm/save.h
@@ -592,9 +592,25 @@ struct hvm_tsc_adjust {
DECLARE_HVM_SAVE_TYPE(TSC_ADJUST, 19, struct hvm_tsc_adjust);
+enum {
+ HVM_MSR_COUNT,
+};
+
+struct msr_save_load {
+ uint32_t index;
+ uint64_t val;
+};
+
+struct hvm_msr {
+ uint32_t count;
+ struct msr_save_load msr[HVM_MSR_COUNT];
+};
+
+DECLARE_HVM_SAVE_TYPE(HVM_MSR, 20, struct hvm_msr);
+
/*
* Largest type-code in use
*/
-#define HVM_SAVE_CODE_MAX 19
+#define HVM_SAVE_CODE_MAX 20
#endif /* __XEN_PUBLIC_HVM_SAVE_X86_H__ */
--
1.7.1
[-- Attachment #3: Type: text/plain, Size: 126 bytes --]
_______________________________________________
Xen-devel mailing list
Xen-devel@lists.xen.org
http://lists.xen.org/xen-devel
^ permalink raw reply related [flat|nested] 32+ messages in thread
* Re: [PATCH v5 4/7] X86: generic MSRs save/restore
2013-12-03 14:50 [PATCH v5 4/7] X86: generic MSRs save/restore Liu, Jinsong
@ 2013-12-04 14:18 ` Jan Beulich
2013-12-13 7:50 ` Liu, Jinsong
2013-12-13 7:57 ` Liu, Jinsong
0 siblings, 2 replies; 32+ messages in thread
From: Jan Beulich @ 2013-12-04 14:18 UTC (permalink / raw)
To: Jinsong Liu; +Cc: Andrew Cooper, xen-devel, keir, Ian.Campbell, haoxudong.hao
[-- Attachment #1: Type: text/plain, Size: 473 bytes --]
>>> On 03.12.13 at 15:50, "Liu, Jinsong" <jinsong.liu@intel.com> wrote:
> Subject: [PATCH v5 4/7] X86: generic MSRs save/restore
>
> This patch introduced a generic MSRs save/restore mechanism, so that
> in the future new MSRs save/restore could be added w/ smaller change
> than the full blown addition of a new save/restore type.
>
> Suggested-by: Jan Beulich <jbeulich@suse.com>
Attached is (obviously compile tested only) what I really suggested.
Jan
[-- Attachment #2: x86-MSR-sr.patch --]
[-- Type: text/plain, Size: 6069 bytes --]
x86: generic MSRs save/restore
This patch introduces a generic MSRs save/restore mechanism, so that
in the future new MSRs save/restore could be added w/ smaller change
than the full blown addition of a new save/restore type.
Signed-off-by: Jan Beulich <jbeulich@suse.com>
--- a/xen/arch/x86/hvm/hvm.c
+++ b/xen/arch/x86/hvm/hvm.c
@@ -1127,10 +1127,110 @@ static int hvm_load_cpu_xsave_states(str
return 0;
}
-/* We need variable length data chunk for xsave area, hence customized
- * declaration other than HVM_REGISTER_SAVE_RESTORE.
+#define HVM_CPU_MSR_SIZE(cnt) offsetof(struct hvm_msr, msr[cnt])
+static unsigned int __read_mostly msr_count_max;
+
+static int hvm_save_cpu_msrs(struct domain *d, hvm_domain_context_t *h)
+{
+ struct vcpu *v;
+
+ if ( !msr_count_max )
+ return 0;
+
+ for_each_vcpu ( d, v )
+ {
+ struct hvm_msr *ctxt;
+ unsigned int i;
+
+ if ( _hvm_init_entry(h, CPU_MSR_CODE, v->vcpu_id,
+ HVM_CPU_MSR_SIZE(msr_count_max)) )
+ return 1;
+ ctxt = (struct hvm_msr *)&h->data[h->cur];
+ ctxt->count = 0;
+
+ if ( hvm_funcs.save_msr )
+ hvm_funcs.save_msr(v, ctxt);
+
+ for ( i = 0; i < ctxt->count; ++i )
+ ctxt->msr[i]._rsvd = 0;
+
+ if ( ctxt->count )
+ h->cur += HVM_CPU_MSR_SIZE(ctxt->count);
+ else
+ h->cur -= sizeof(struct hvm_save_descriptor);
+ }
+
+ return 0;
+}
+
+static int hvm_load_cpu_msrs(struct domain *d, hvm_domain_context_t *h)
+{
+ unsigned int i, vcpuid = hvm_load_instance(h);
+ struct vcpu *v;
+ const struct hvm_save_descriptor *desc;
+ const struct hvm_msr *ctxt;
+ int err = 0;
+
+ if ( vcpuid >= d->max_vcpus || (v = d->vcpu[vcpuid]) == NULL )
+ {
+ dprintk(XENLOG_G_ERR, "HVM restore: dom%d has no vcpu%u\n",
+ d->domain_id, vcpuid);
+ return -EINVAL;
+ }
+
+ /* Customized checking for entry since our entry is of variable length */
+ desc = (struct hvm_save_descriptor *)&h->data[h->cur];
+ if ( sizeof (*desc) > h->size - h->cur)
+ {
+ printk(XENLOG_G_WARNING
+ "HVM%d.%d restore: not enough data left to read MSR descriptor\n",
+ d->domain_id, vcpuid);
+ return -ENODATA;
+ }
+ if ( desc->length + sizeof (*desc) > h->size - h->cur)
+ {
+ printk(XENLOG_G_WARNING
+ "HVM%d.%d restore: not enough data left to read %u MSR bytes\n",
+ d->domain_id, vcpuid, desc->length);
+ return -ENODATA;
+ }
+ if ( desc->length < HVM_CPU_MSR_SIZE(1) )
+ {
+ printk(XENLOG_G_WARNING
+ "HVM%d.%d restore mismatch: MSR length %u < %zu\n",
+ d->domain_id, vcpuid, desc->length, HVM_CPU_MSR_SIZE(1));
+ return -EINVAL;
+ }
+
+ h->cur += sizeof(*desc);
+ ctxt = (struct hvm_msr *)&h->data[h->cur];
+ h->cur += desc->length;
+
+ if ( desc->length != HVM_CPU_MSR_SIZE(ctxt->count) )
+ {
+ printk(XENLOG_G_WARNING
+ "HVM%d.%d restore mismatch: MSR length %u != %zu\n",
+ d->domain_id, vcpuid, desc->length,
+ HVM_CPU_MSR_SIZE(ctxt->count));
+ return -EOPNOTSUPP;
+ }
+ /* Checking finished */
+
+ for ( i = 0; i < ctxt->count; ++i )
+ {
+ if ( hvm_funcs.load_msr )
+ err = hvm_funcs.load_msr(v, &ctxt->msr[i]);
+ if ( err )
+ break;
+ }
+
+ return err;
+}
+
+/* We need variable length data chunks for XSAVE area and MSRs, hence
+ * a custom declaration rather than HVM_REGISTER_SAVE_RESTORE.
*/
-static int __init __hvm_register_CPU_XSAVE_save_and_restore(void)
+static int __init hvm_register_CPU_save_and_restore(void)
{
hvm_register_savevm(CPU_XSAVE_CODE,
"CPU_XSAVE",
@@ -1139,9 +1239,22 @@ static int __init __hvm_register_CPU_XSA
HVM_CPU_XSAVE_SIZE(xfeature_mask) +
sizeof(struct hvm_save_descriptor),
HVMSR_PER_VCPU);
+
+ if ( hvm_funcs.init_msr )
+ msr_count_max += hvm_funcs.init_msr();
+
+ if ( msr_count_max )
+ hvm_register_savevm(CPU_MSR_CODE,
+ "CPU_MSR",
+ hvm_save_cpu_msrs,
+ hvm_load_cpu_msrs,
+ HVM_CPU_MSR_SIZE(msr_count_max) +
+ sizeof(struct hvm_save_descriptor),
+ HVMSR_PER_VCPU);
+
return 0;
}
-__initcall(__hvm_register_CPU_XSAVE_save_and_restore);
+__initcall(hvm_register_CPU_save_and_restore);
int hvm_vcpu_initialise(struct vcpu *v)
{
--- a/xen/include/asm-x86/hvm/hvm.h
+++ b/xen/include/asm-x86/hvm/hvm.h
@@ -109,6 +109,10 @@ struct hvm_function_table {
void (*save_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
int (*load_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
+ unsigned int (*init_msr)(void);
+ void (*save_msr)(struct vcpu *, struct hvm_msr *);
+ int (*load_msr)(struct vcpu *, const struct hvm_one_msr *);
+
/* Examine specifics of the guest state. */
unsigned int (*get_interrupt_shadow)(struct vcpu *v);
void (*set_interrupt_shadow)(struct vcpu *v, unsigned int intr_shadow);
--- a/xen/include/public/arch-x86/hvm/save.h
+++ b/xen/include/public/arch-x86/hvm/save.h
@@ -592,9 +592,21 @@ struct hvm_tsc_adjust {
DECLARE_HVM_SAVE_TYPE(TSC_ADJUST, 19, struct hvm_tsc_adjust);
+
+struct hvm_msr {
+ uint32_t count;
+ struct hvm_one_msr {
+ uint32_t index;
+ uint32_t _rsvd;
+ uint64_t val;
+ } msr[1 /* variable size */];
+};
+
+#define CPU_MSR_CODE 16
+
/*
* Largest type-code in use
*/
-#define HVM_SAVE_CODE_MAX 19
+#define HVM_SAVE_CODE_MAX 20
#endif /* __XEN_PUBLIC_HVM_SAVE_X86_H__ */
[-- Attachment #3: x86-MPX-sr.patch --]
[-- Type: text/plain, Size: 2253 bytes --]
x86: MSR_IA32_BNDCFGS save/restore
Signed-off-by: Jan Beulich <jbeulich@suse.com>
--- a/xen/arch/x86/hvm/vmx/vmx.c
+++ b/xen/arch/x86/hvm/vmx/vmx.c
@@ -580,6 +580,50 @@ static int vmx_load_vmcs_ctxt(struct vcp
return 0;
}
+static unsigned int __init vmx_init_msr(void)
+{
+ return !!cpu_has_mpx;
+}
+
+static void vmx_save_msr(struct vcpu *v, struct hvm_msr *ctxt)
+{
+ vmx_vmcs_enter(v);
+
+ if ( cpu_has_mpx )
+ {
+ __vmread(GUEST_BNDCFGS, &ctxt->msr[ctxt->count].val);
+ if ( ctxt->msr[ctxt->count].val )
+ ctxt->msr[ctxt->count++].index = MSR_IA32_BNDCFGS;
+ }
+
+ vmx_vmcs_exit(v);
+}
+
+static int vmx_load_msr(struct vcpu *v, const struct hvm_one_msr *msr)
+{
+ int err = 0;
+
+ vmx_vmcs_enter(v);
+
+ switch ( msr->index )
+ {
+ case MSR_IA32_BNDCFGS:
+ if ( cpu_has_mpx )
+ __vmwrite(GUEST_BNDCFGS, msr->val);
+ else
+ err = -ENXIO;
+ break;
+
+ default:
+ err = -ENOENT;
+ break;
+ }
+
+ vmx_vmcs_exit(v);
+
+ return err;
+}
+
static void vmx_fpu_enter(struct vcpu *v)
{
vcpu_restore_fpu_lazy(v);
@@ -1606,6 +1650,9 @@ static struct hvm_function_table __initd
.vcpu_destroy = vmx_vcpu_destroy,
.save_cpu_ctxt = vmx_save_vmcs_ctxt,
.load_cpu_ctxt = vmx_load_vmcs_ctxt,
+ .init_msr = vmx_init_msr,
+ .save_msr = vmx_save_msr,
+ .load_msr = vmx_load_msr,
.get_interrupt_shadow = vmx_get_interrupt_shadow,
.set_interrupt_shadow = vmx_set_interrupt_shadow,
.guest_x86_mode = vmx_guest_x86_mode,
--- a/xen/include/asm-x86/hvm/vmx/vmcs.h
+++ b/xen/include/asm-x86/hvm/vmx/vmcs.h
@@ -367,6 +367,8 @@ enum vmcs_field {
GUEST_PDPTR2_HIGH = 0x0000280f,
GUEST_PDPTR3 = 0x00002810,
GUEST_PDPTR3_HIGH = 0x00002811,
+ GUEST_BNDCFGS = 0x00002812,
+ GUEST_BNDCFGS_HIGH = 0x00002813,
HOST_PAT = 0x00002c00,
HOST_PAT_HIGH = 0x00002c01,
HOST_EFER = 0x00002c02,
[-- Attachment #4: Type: text/plain, Size: 126 bytes --]
_______________________________________________
Xen-devel mailing list
Xen-devel@lists.xen.org
http://lists.xen.org/xen-devel
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: [PATCH v5 4/7] X86: generic MSRs save/restore
2013-12-04 14:18 ` Jan Beulich
@ 2013-12-13 7:50 ` Liu, Jinsong
2013-12-13 9:44 ` Jan Beulich
2013-12-13 7:57 ` Liu, Jinsong
1 sibling, 1 reply; 32+ messages in thread
From: Liu, Jinsong @ 2013-12-13 7:50 UTC (permalink / raw)
To: Jan Beulich; +Cc: Andrew Cooper, xen-devel, keir, Ian.Campbell, haoxudong.hao
x86: generic MSRs save/restore
This patch introduces a generic MSRs save/restore mechanism, so that
in the future new MSRs save/restore could be added w/ smaller change
than the full blown addition of a new save/restore type.
Signed-off-by: Jan Beulich <jbeulich@suse.com>
--- a/xen/arch/x86/hvm/hvm.c
+++ b/xen/arch/x86/hvm/hvm.c
@@ -1127,10 +1127,110 @@ static int hvm_load_cpu_xsave_states(str
return 0;
}
-/* We need variable length data chunk for xsave area, hence customized
- * declaration other than HVM_REGISTER_SAVE_RESTORE.
+#define HVM_CPU_MSR_SIZE(cnt) offsetof(struct hvm_msr, msr[cnt])
+static unsigned int __read_mostly msr_count_max;
+
+static int hvm_save_cpu_msrs(struct domain *d, hvm_domain_context_t *h)
+{
+ struct vcpu *v;
+
+ if ( !msr_count_max )
+ return 0;
ASSERT( msr_count_mas ); ?
+
+ for_each_vcpu ( d, v )
+ {
+ struct hvm_msr *ctxt;
+ unsigned int i;
+
+ if ( _hvm_init_entry(h, CPU_MSR_CODE, v->vcpu_id,
+ HVM_CPU_MSR_SIZE(msr_count_max)) )
+ return 1;
+ ctxt = (struct hvm_msr *)&h->data[h->cur];
+ ctxt->count = 0;
+
+ if ( hvm_funcs.save_msr )
+ hvm_funcs.save_msr(v, ctxt);
+
+ for ( i = 0; i < ctxt->count; ++i )
+ ctxt->msr[i]._rsvd = 0;
What _rsvd for? seems not used at the patches.
+
+ if ( ctxt->count )
+ h->cur += HVM_CPU_MSR_SIZE(ctxt->count);
+ else
+ h->cur -= sizeof(struct hvm_save_descriptor);
+ }
+
+ return 0;
+}
+
+static int hvm_load_cpu_msrs(struct domain *d, hvm_domain_context_t *h)
+{
+ unsigned int i, vcpuid = hvm_load_instance(h);
+ struct vcpu *v;
+ const struct hvm_save_descriptor *desc;
+ const struct hvm_msr *ctxt;
+ int err = 0;
+
+ if ( vcpuid >= d->max_vcpus || (v = d->vcpu[vcpuid]) == NULL )
+ {
+ dprintk(XENLOG_G_ERR, "HVM restore: dom%d has no vcpu%u\n",
+ d->domain_id, vcpuid);
+ return -EINVAL;
+ }
+
+ /* Customized checking for entry since our entry is of variable length */
+ desc = (struct hvm_save_descriptor *)&h->data[h->cur];
+ if ( sizeof (*desc) > h->size - h->cur)
+ {
+ printk(XENLOG_G_WARNING
+ "HVM%d.%d restore: not enough data left to read MSR descriptor\n",
+ d->domain_id, vcpuid);
+ return -ENODATA;
+ }
+ if ( desc->length + sizeof (*desc) > h->size - h->cur)
+ {
+ printk(XENLOG_G_WARNING
+ "HVM%d.%d restore: not enough data left to read %u MSR bytes\n",
+ d->domain_id, vcpuid, desc->length);
+ return -ENODATA;
+ }
+ if ( desc->length < HVM_CPU_MSR_SIZE(1) )
+ {
+ printk(XENLOG_G_WARNING
+ "HVM%d.%d restore mismatch: MSR length %u < %zu\n",
+ d->domain_id, vcpuid, desc->length, HVM_CPU_MSR_SIZE(1));
+ return -EINVAL;
+ }
+
+ h->cur += sizeof(*desc);
+ ctxt = (struct hvm_msr *)&h->data[h->cur];
+ h->cur += desc->length;
+
+ if ( desc->length != HVM_CPU_MSR_SIZE(ctxt->count) )
+ {
+ printk(XENLOG_G_WARNING
+ "HVM%d.%d restore mismatch: MSR length %u != %zu\n",
+ d->domain_id, vcpuid, desc->length,
+ HVM_CPU_MSR_SIZE(ctxt->count));
+ return -EOPNOTSUPP;
+ }
+ /* Checking finished */
+
+ for ( i = 0; i < ctxt->count; ++i )
+ {
+ if ( hvm_funcs.load_msr )
+ err = hvm_funcs.load_msr(v, &ctxt->msr[i]);
+ if ( err )
+ break;
+ }
Is it for vmx/svm specific msrs, or, will extend to generic msrs?
If these patches are generic save/load mechanism supporting generic msrs and vmx/sve specific msrs, it need update here.
+
+ return err;
+}
+
+/* We need variable length data chunks for XSAVE area and MSRs, hence
+ * a custom declaration rather than HVM_REGISTER_SAVE_RESTORE.
*/
-static int __init __hvm_register_CPU_XSAVE_save_and_restore(void)
+static int __init hvm_register_CPU_save_and_restore(void)
{
hvm_register_savevm(CPU_XSAVE_CODE,
"CPU_XSAVE",
@@ -1139,9 +1239,22 @@ static int __init __hvm_register_CPU_XSA
HVM_CPU_XSAVE_SIZE(xfeature_mask) +
sizeof(struct hvm_save_descriptor),
HVMSR_PER_VCPU);
+
+ if ( hvm_funcs.init_msr )
+ msr_count_max += hvm_funcs.init_msr();
+
+ if ( msr_count_max )
+ hvm_register_savevm(CPU_MSR_CODE,
+ "CPU_MSR",
+ hvm_save_cpu_msrs,
+ hvm_load_cpu_msrs,
+ HVM_CPU_MSR_SIZE(msr_count_max) +
+ sizeof(struct hvm_save_descriptor),
+ HVMSR_PER_VCPU);
+
return 0;
}
-__initcall(__hvm_register_CPU_XSAVE_save_and_restore);
+__initcall(hvm_register_CPU_save_and_restore);
int hvm_vcpu_initialise(struct vcpu *v)
{
--- a/xen/include/asm-x86/hvm/hvm.h
+++ b/xen/include/asm-x86/hvm/hvm.h
@@ -109,6 +109,10 @@ struct hvm_function_table {
void (*save_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
int (*load_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
+ unsigned int (*init_msr)(void);
+ void (*save_msr)(struct vcpu *, struct hvm_msr *);
+ int (*load_msr)(struct vcpu *, const struct hvm_one_msr *);
+
/* Examine specifics of the guest state. */
unsigned int (*get_interrupt_shadow)(struct vcpu *v);
void (*set_interrupt_shadow)(struct vcpu *v, unsigned int intr_shadow);
--- a/xen/include/public/arch-x86/hvm/save.h
+++ b/xen/include/public/arch-x86/hvm/save.h
@@ -592,9 +592,21 @@ struct hvm_tsc_adjust {
DECLARE_HVM_SAVE_TYPE(TSC_ADJUST, 19, struct hvm_tsc_adjust);
+
+struct hvm_msr {
+ uint32_t count;
+ struct hvm_one_msr {
+ uint32_t index;
+ uint32_t _rsvd;
+ uint64_t val;
+ } msr[1 /* variable size */];
+};
+
+#define CPU_MSR_CODE 16
+
It's incorrect, conflict with CPU_XSAVE_CODE and panic when hvm_register_savevm(CPU_MSR_CODE, ...)
Why not 20?
/*
* Largest type-code in use
*/
-#define HVM_SAVE_CODE_MAX 19
+#define HVM_SAVE_CODE_MAX 20
#endif /* __XEN_PUBLIC_HVM_SAVE_X86_H__ */
^ permalink raw reply [flat|nested] 32+ messages in thread
* X86: generic MSRs save/restore
2013-12-04 14:18 ` Jan Beulich
2013-12-13 7:50 ` Liu, Jinsong
@ 2013-12-13 7:57 ` Liu, Jinsong
2013-12-13 9:47 ` Jan Beulich
` (2 more replies)
1 sibling, 3 replies; 32+ messages in thread
From: Liu, Jinsong @ 2013-12-13 7:57 UTC (permalink / raw)
To: Jan Beulich; +Cc: Andrew Cooper, xen-devel, keir, Ian.Campbell, haoxudong.hao
x86: MSR_IA32_BNDCFGS save/restore
Signed-off-by: Jan Beulich <jbeulich@suse.com>
--- a/xen/arch/x86/hvm/vmx/vmx.c
+++ b/xen/arch/x86/hvm/vmx/vmx.c
@@ -580,6 +580,50 @@ static int vmx_load_vmcs_ctxt(struct vcp
return 0;
}
+static unsigned int __init vmx_init_msr(void)
+{
+ return !!cpu_has_mpx;
+}
+
+static void vmx_save_msr(struct vcpu *v, struct hvm_msr *ctxt)
+{
+ vmx_vmcs_enter(v);
+
+ if ( cpu_has_mpx )
+ {
+ __vmread(GUEST_BNDCFGS, &ctxt->msr[ctxt->count].val);
+ if ( ctxt->msr[ctxt->count].val )
Isn't it better to remove if()?
+ ctxt->msr[ctxt->count++].index = MSR_IA32_BNDCFGS;
+ }
+
+ vmx_vmcs_exit(v);
+}
+
+static int vmx_load_msr(struct vcpu *v, const struct hvm_one_msr *msr)
+{
+ int err = 0;
+
+ vmx_vmcs_enter(v);
+
+ switch ( msr->index )
+ {
+ case MSR_IA32_BNDCFGS:
+ if ( cpu_has_mpx )
+ __vmwrite(GUEST_BNDCFGS, msr->val);
+ else
+ err = -ENXIO;
+ break;
+
+ default:
+ err = -ENOENT;
+ break;
+ }
+
+ vmx_vmcs_exit(v);
+
+ return err;
+}
+
static void vmx_fpu_enter(struct vcpu *v)
{
vcpu_restore_fpu_lazy(v);
@@ -1606,6 +1650,9 @@ static struct hvm_function_table __initd
.vcpu_destroy = vmx_vcpu_destroy,
.save_cpu_ctxt = vmx_save_vmcs_ctxt,
.load_cpu_ctxt = vmx_load_vmcs_ctxt,
+ .init_msr = vmx_init_msr,
+ .save_msr = vmx_save_msr,
+ .load_msr = vmx_load_msr,
.get_interrupt_shadow = vmx_get_interrupt_shadow,
.set_interrupt_shadow = vmx_set_interrupt_shadow,
.guest_x86_mode = vmx_guest_x86_mode,
--- a/xen/include/asm-x86/hvm/vmx/vmcs.h
+++ b/xen/include/asm-x86/hvm/vmx/vmcs.h
@@ -367,6 +367,8 @@ enum vmcs_field {
GUEST_PDPTR2_HIGH = 0x0000280f,
GUEST_PDPTR3 = 0x00002810,
GUEST_PDPTR3_HIGH = 0x00002811,
+ GUEST_BNDCFGS = 0x00002812,
+ GUEST_BNDCFGS_HIGH = 0x00002813,
HOST_PAT = 0x00002c00,
HOST_PAT_HIGH = 0x00002c01,
HOST_EFER = 0x00002c02,
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: [PATCH v5 4/7] X86: generic MSRs save/restore
2013-12-13 7:50 ` Liu, Jinsong
@ 2013-12-13 9:44 ` Jan Beulich
0 siblings, 0 replies; 32+ messages in thread
From: Jan Beulich @ 2013-12-13 9:44 UTC (permalink / raw)
To: Jinsong Liu; +Cc: Andrew Cooper, xen-devel, keir, Ian.Campbell, haoxudong.hao
>>> On 13.12.13 at 08:50, "Liu, Jinsong" <jinsong.liu@intel.com> wrote:
Please get your reply quoting fixed.
> --- a/xen/arch/x86/hvm/hvm.c
> +++ b/xen/arch/x86/hvm/hvm.c
> @@ -1127,10 +1127,110 @@ static int hvm_load_cpu_xsave_states(str
> return 0;
> }
>
> -/* We need variable length data chunk for xsave area, hence customized
> - * declaration other than HVM_REGISTER_SAVE_RESTORE.
> +#define HVM_CPU_MSR_SIZE(cnt) offsetof(struct hvm_msr, msr[cnt])
> +static unsigned int __read_mostly msr_count_max;
> +
> +static int hvm_save_cpu_msrs(struct domain *d, hvm_domain_context_t *h)
> +{
> + struct vcpu *v;
> +
> + if ( !msr_count_max )
> + return 0;
>
> ASSERT( msr_count_mas ); ?
Right. Left from before the registration was made conditional.
> +
> + for_each_vcpu ( d, v )
> + {
> + struct hvm_msr *ctxt;
> + unsigned int i;
> +
> + if ( _hvm_init_entry(h, CPU_MSR_CODE, v->vcpu_id,
> + HVM_CPU_MSR_SIZE(msr_count_max)) )
> + return 1;
> + ctxt = (struct hvm_msr *)&h->data[h->cur];
> + ctxt->count = 0;
> +
> + if ( hvm_funcs.save_msr )
> + hvm_funcs.save_msr(v, ctxt);
> +
> + for ( i = 0; i < ctxt->count; ++i )
> + ctxt->msr[i]._rsvd = 0;
>
> What _rsvd for? seems not used at the patches.
See XSA-77 and
http://lists.xenproject.org/archives/html/xen-devel/2013-12/msg01522.html
- avoid leaking hypervisor data.
> +static int hvm_load_cpu_msrs(struct domain *d, hvm_domain_context_t *h)
> +{
> + unsigned int i, vcpuid = hvm_load_instance(h);
> + struct vcpu *v;
> + const struct hvm_save_descriptor *desc;
> + const struct hvm_msr *ctxt;
> + int err = 0;
> +
> + if ( vcpuid >= d->max_vcpus || (v = d->vcpu[vcpuid]) == NULL )
> + {
> + dprintk(XENLOG_G_ERR, "HVM restore: dom%d has no vcpu%u\n",
> + d->domain_id, vcpuid);
> + return -EINVAL;
> + }
> +
> + /* Customized checking for entry since our entry is of variable length */
> + desc = (struct hvm_save_descriptor *)&h->data[h->cur];
> + if ( sizeof (*desc) > h->size - h->cur)
> + {
> + printk(XENLOG_G_WARNING
> + "HVM%d.%d restore: not enough data left to read MSR descriptor\n",
> + d->domain_id, vcpuid);
> + return -ENODATA;
> + }
> + if ( desc->length + sizeof (*desc) > h->size - h->cur)
> + {
> + printk(XENLOG_G_WARNING
> + "HVM%d.%d restore: not enough data left to read %u MSR bytes\n",
> + d->domain_id, vcpuid, desc->length);
> + return -ENODATA;
> + }
> + if ( desc->length < HVM_CPU_MSR_SIZE(1) )
> + {
> + printk(XENLOG_G_WARNING
> + "HVM%d.%d restore mismatch: MSR length %u < %zu\n",
> + d->domain_id, vcpuid, desc->length, HVM_CPU_MSR_SIZE(1));
> + return -EINVAL;
> + }
> +
> + h->cur += sizeof(*desc);
> + ctxt = (struct hvm_msr *)&h->data[h->cur];
> + h->cur += desc->length;
> +
> + if ( desc->length != HVM_CPU_MSR_SIZE(ctxt->count) )
> + {
> + printk(XENLOG_G_WARNING
> + "HVM%d.%d restore mismatch: MSR length %u != %zu\n",
> + d->domain_id, vcpuid, desc->length,
> + HVM_CPU_MSR_SIZE(ctxt->count));
> + return -EOPNOTSUPP;
> + }
> + /* Checking finished */
> +
> + for ( i = 0; i < ctxt->count; ++i )
> + {
> + if ( hvm_funcs.load_msr )
> + err = hvm_funcs.load_msr(v, &ctxt->msr[i]);
> + if ( err )
> + break;
> + }
>
> Is it for vmx/svm specific msrs, or, will extend to generic msrs?
> If these patches are generic save/load mechanism supporting generic msrs and
> vmx/sve specific msrs, it need update here.
In which way?
But I'll re-write this anyway, so that we don't need to handle MSRs
one by one (leveraging the _rsvd field).
> --- a/xen/include/public/arch-x86/hvm/save.h
> +++ b/xen/include/public/arch-x86/hvm/save.h
> @@ -592,9 +592,21 @@ struct hvm_tsc_adjust {
>
> DECLARE_HVM_SAVE_TYPE(TSC_ADJUST, 19, struct hvm_tsc_adjust);
>
> +
> +struct hvm_msr {
> + uint32_t count;
> + struct hvm_one_msr {
> + uint32_t index;
> + uint32_t _rsvd;
> + uint64_t val;
> + } msr[1 /* variable size */];
> +};
> +
> +#define CPU_MSR_CODE 16
> +
>
> It's incorrect, conflict with CPU_XSAVE_CODE and panic when
> hvm_register_savevm(CPU_MSR_CODE, ...)
> Why not 20?
Copy-n-paste mistake. Thanks for spotting.
Jan
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: X86: generic MSRs save/restore
2013-12-13 7:57 ` Liu, Jinsong
@ 2013-12-13 9:47 ` Jan Beulich
2013-12-13 12:04 ` Andrew Cooper
2013-12-13 14:01 ` [PATCH v2] x86: " Jan Beulich
2013-12-13 14:02 ` [PATCH v2] x86: MSR_IA32_BNDCFGS save/restore Jan Beulich
2 siblings, 1 reply; 32+ messages in thread
From: Jan Beulich @ 2013-12-13 9:47 UTC (permalink / raw)
To: Jinsong Liu; +Cc: Andrew Cooper, xen-devel, keir, Ian.Campbell, haoxudong.hao
>>> On 13.12.13 at 08:57, "Liu, Jinsong" <jinsong.liu@intel.com> wrote:
> --- a/xen/arch/x86/hvm/vmx/vmx.c
> +++ b/xen/arch/x86/hvm/vmx/vmx.c
> @@ -580,6 +580,50 @@ static int vmx_load_vmcs_ctxt(struct vcp
> return 0;
> }
>
> +static unsigned int __init vmx_init_msr(void)
> +{
> + return !!cpu_has_mpx;
> +}
> +
> +static void vmx_save_msr(struct vcpu *v, struct hvm_msr *ctxt)
> +{
> + vmx_vmcs_enter(v);
> +
> + if ( cpu_has_mpx )
> + {
> + __vmread(GUEST_BNDCFGS, &ctxt->msr[ctxt->count].val);
> + if ( ctxt->msr[ctxt->count].val )
>
>
> Isn't it better to remove if()?
Definitely not: That way, if the hardware support MPX but the
guest never used it, restoring the guest on an MPX-incapable
host will be possible. And when the MSR is zero, restoring on an
MPX-capable host will be correct too, as the respective VMCS
field starts out zeroed.
Jan
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: X86: generic MSRs save/restore
2013-12-13 9:47 ` Jan Beulich
@ 2013-12-13 12:04 ` Andrew Cooper
2013-12-13 12:26 ` Jan Beulich
0 siblings, 1 reply; 32+ messages in thread
From: Andrew Cooper @ 2013-12-13 12:04 UTC (permalink / raw)
To: Jan Beulich, Jinsong Liu; +Cc: xen-devel, keir, Ian.Campbell, haoxudong.hao
On 13/12/2013 09:47, Jan Beulich wrote:
>>>> On 13.12.13 at 08:57, "Liu, Jinsong" <jinsong.liu@intel.com> wrote:
>> --- a/xen/arch/x86/hvm/vmx/vmx.c
>> +++ b/xen/arch/x86/hvm/vmx/vmx.c
>> @@ -580,6 +580,50 @@ static int vmx_load_vmcs_ctxt(struct vcp
>> return 0;
>> }
>>
>> +static unsigned int __init vmx_init_msr(void)
>> +{
>> + return !!cpu_has_mpx;
>> +}
>> +
>> +static void vmx_save_msr(struct vcpu *v, struct hvm_msr *ctxt)
>> +{
>> + vmx_vmcs_enter(v);
>> +
>> + if ( cpu_has_mpx )
>> + {
>> + __vmread(GUEST_BNDCFGS, &ctxt->msr[ctxt->count].val);
>> + if ( ctxt->msr[ctxt->count].val )
>>
>>
>> Isn't it better to remove if()?
> Definitely not: That way, if the hardware support MPX but the
> guest never used it, restoring the guest on an MPX-incapable
> host will be possible. And when the MSR is zero, restoring on an
> MPX-capable host will be correct too, as the respective VMCS
> field starts out zeroed.
>
> Jan
>
Furthermore, this looks as if is heading straight for an ABI breakage.
What guarantee is that that the MSRs shall aways be saved and restored
in this specific order forever more in the future?
I think ctxt->count needs to be replaced with an ABI constant.
~Andrew
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: X86: generic MSRs save/restore
2013-12-13 12:04 ` Andrew Cooper
@ 2013-12-13 12:26 ` Jan Beulich
0 siblings, 0 replies; 32+ messages in thread
From: Jan Beulich @ 2013-12-13 12:26 UTC (permalink / raw)
To: Andrew Cooper; +Cc: Jinsong Liu, xen-devel, keir, Ian.Campbell, haoxudong.hao
>>> On 13.12.13 at 13:04, Andrew Cooper <andrew.cooper3@citrix.com> wrote:
> On 13/12/2013 09:47, Jan Beulich wrote:
>>>>> On 13.12.13 at 08:57, "Liu, Jinsong" <jinsong.liu@intel.com> wrote:
>>> --- a/xen/arch/x86/hvm/vmx/vmx.c
>>> +++ b/xen/arch/x86/hvm/vmx/vmx.c
>>> @@ -580,6 +580,50 @@ static int vmx_load_vmcs_ctxt(struct vcp
>>> return 0;
>>> }
>>>
>>> +static unsigned int __init vmx_init_msr(void)
>>> +{
>>> + return !!cpu_has_mpx;
>>> +}
>>> +
>>> +static void vmx_save_msr(struct vcpu *v, struct hvm_msr *ctxt)
>>> +{
>>> + vmx_vmcs_enter(v);
>>> +
>>> + if ( cpu_has_mpx )
>>> + {
>>> + __vmread(GUEST_BNDCFGS, &ctxt->msr[ctxt->count].val);
>>> + if ( ctxt->msr[ctxt->count].val )
>>>
>>>
>>> Isn't it better to remove if()?
>> Definitely not: That way, if the hardware support MPX but the
>> guest never used it, restoring the guest on an MPX-incapable
>> host will be possible. And when the MSR is zero, restoring on an
>> MPX-capable host will be correct too, as the respective VMCS
>> field starts out zeroed.
>
> Furthermore, this looks as if is heading straight for an ABI breakage.
>
> What guarantee is that that the MSRs shall aways be saved and restored
> in this specific order forever more in the future?
>
> I think ctxt->count needs to be replaced with an ABI constant.
???
Jan
^ permalink raw reply [flat|nested] 32+ messages in thread
* [PATCH v2] x86: generic MSRs save/restore
2013-12-13 7:57 ` Liu, Jinsong
2013-12-13 9:47 ` Jan Beulich
@ 2013-12-13 14:01 ` Jan Beulich
2013-12-13 17:44 ` Andrew Cooper
` (2 more replies)
2013-12-13 14:02 ` [PATCH v2] x86: MSR_IA32_BNDCFGS save/restore Jan Beulich
2 siblings, 3 replies; 32+ messages in thread
From: Jan Beulich @ 2013-12-13 14:01 UTC (permalink / raw)
To: Jinsong Liu; +Cc: Andrew Cooper, xen-devel, keir, Ian.Campbell, haoxudong.hao
[-- Attachment #1: Type: text/plain, Size: 6216 bytes --]
This patch introduces a generic MSRs save/restore mechanism, so that
in the future new MSRs save/restore could be added w/ smaller change
than the full blown addition of a new save/restore type.
Signed-off-by: Jan Beulich <jbeulich@suse.com>
--- a/xen/arch/x86/hvm/hvm.c
+++ b/xen/arch/x86/hvm/hvm.c
@@ -1127,10 +1127,117 @@ static int hvm_load_cpu_xsave_states(str
return 0;
}
-/* We need variable length data chunk for xsave area, hence customized
- * declaration other than HVM_REGISTER_SAVE_RESTORE.
+#define HVM_CPU_MSR_SIZE(cnt) offsetof(struct hvm_msr, msr[cnt])
+static unsigned int __read_mostly msr_count_max;
+
+static int hvm_save_cpu_msrs(struct domain *d, hvm_domain_context_t *h)
+{
+ struct vcpu *v;
+
+ for_each_vcpu ( d, v )
+ {
+ struct hvm_msr *ctxt;
+ unsigned int i;
+
+ if ( _hvm_init_entry(h, CPU_MSR_CODE, v->vcpu_id,
+ HVM_CPU_MSR_SIZE(msr_count_max)) )
+ return 1;
+ ctxt = (struct hvm_msr *)&h->data[h->cur];
+ ctxt->count = 0;
+
+ if ( hvm_funcs.save_msr )
+ hvm_funcs.save_msr(v, ctxt);
+
+ for ( i = 0; i < ctxt->count; ++i )
+ ctxt->msr[i]._rsvd = 0;
+
+ if ( ctxt->count )
+ h->cur += HVM_CPU_MSR_SIZE(ctxt->count);
+ else
+ h->cur -= sizeof(struct hvm_save_descriptor);
+ }
+
+ return 0;
+}
+
+static int hvm_load_cpu_msrs(struct domain *d, hvm_domain_context_t *h)
+{
+ unsigned int i, vcpuid = hvm_load_instance(h);
+ struct vcpu *v;
+ const struct hvm_save_descriptor *desc;
+ struct hvm_msr *ctxt;
+ int err = 0;
+
+ if ( vcpuid >= d->max_vcpus || (v = d->vcpu[vcpuid]) == NULL )
+ {
+ dprintk(XENLOG_G_ERR, "HVM restore: dom%d has no vcpu%u\n",
+ d->domain_id, vcpuid);
+ return -EINVAL;
+ }
+
+ /* Customized checking for entry since our entry is of variable length */
+ desc = (struct hvm_save_descriptor *)&h->data[h->cur];
+ if ( sizeof (*desc) > h->size - h->cur)
+ {
+ printk(XENLOG_G_WARNING
+ "HVM%d.%d restore: not enough data left to read MSR descriptor\n",
+ d->domain_id, vcpuid);
+ return -ENODATA;
+ }
+ if ( desc->length + sizeof (*desc) > h->size - h->cur)
+ {
+ printk(XENLOG_G_WARNING
+ "HVM%d.%d restore: not enough data left to read %u MSR bytes\n",
+ d->domain_id, vcpuid, desc->length);
+ return -ENODATA;
+ }
+ if ( desc->length < HVM_CPU_MSR_SIZE(1) )
+ {
+ printk(XENLOG_G_WARNING
+ "HVM%d.%d restore mismatch: MSR length %u < %zu\n",
+ d->domain_id, vcpuid, desc->length, HVM_CPU_MSR_SIZE(1));
+ return -EINVAL;
+ }
+
+ h->cur += sizeof(*desc);
+ ctxt = (struct hvm_msr *)&h->data[h->cur];
+ h->cur += desc->length;
+
+ if ( desc->length != HVM_CPU_MSR_SIZE(ctxt->count) )
+ {
+ printk(XENLOG_G_WARNING
+ "HVM%d.%d restore mismatch: MSR length %u != %zu\n",
+ d->domain_id, vcpuid, desc->length,
+ HVM_CPU_MSR_SIZE(ctxt->count));
+ return -EOPNOTSUPP;
+ }
+
+ for ( i = 0; i < ctxt->count; ++i )
+ if ( ctxt->msr[i]._rsvd )
+ return -EOPNOTSUPP;
+ /* Checking finished */
+
+ if ( hvm_funcs.load_msr )
+ err = hvm_funcs.load_msr(v, ctxt);
+
+ for ( i = 0; !err && i < ctxt->count; ++i )
+ {
+ switch ( ctxt->msr[i].index )
+ {
+ default:
+ if ( !ctxt->msr[i]._rsvd )
+ err = -ENXIO;
+ break;
+ }
+ }
+
+ return err;
+}
+
+/* We need variable length data chunks for XSAVE area and MSRs, hence
+ * a custom declaration rather than HVM_REGISTER_SAVE_RESTORE.
*/
-static int __init __hvm_register_CPU_XSAVE_save_and_restore(void)
+static int __init hvm_register_CPU_save_and_restore(void)
{
hvm_register_savevm(CPU_XSAVE_CODE,
"CPU_XSAVE",
@@ -1139,9 +1246,22 @@ static int __init __hvm_register_CPU_XSA
HVM_CPU_XSAVE_SIZE(xfeature_mask) +
sizeof(struct hvm_save_descriptor),
HVMSR_PER_VCPU);
+
+ if ( hvm_funcs.init_msr )
+ msr_count_max += hvm_funcs.init_msr();
+
+ if ( msr_count_max )
+ hvm_register_savevm(CPU_MSR_CODE,
+ "CPU_MSR",
+ hvm_save_cpu_msrs,
+ hvm_load_cpu_msrs,
+ HVM_CPU_MSR_SIZE(msr_count_max) +
+ sizeof(struct hvm_save_descriptor),
+ HVMSR_PER_VCPU);
+
return 0;
}
-__initcall(__hvm_register_CPU_XSAVE_save_and_restore);
+__initcall(hvm_register_CPU_save_and_restore);
int hvm_vcpu_initialise(struct vcpu *v)
{
--- a/xen/include/asm-x86/hvm/hvm.h
+++ b/xen/include/asm-x86/hvm/hvm.h
@@ -109,6 +109,10 @@ struct hvm_function_table {
void (*save_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
int (*load_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
+ unsigned int (*init_msr)(void);
+ void (*save_msr)(struct vcpu *, struct hvm_msr *);
+ int (*load_msr)(struct vcpu *, struct hvm_msr *);
+
/* Examine specifics of the guest state. */
unsigned int (*get_interrupt_shadow)(struct vcpu *v);
void (*set_interrupt_shadow)(struct vcpu *v, unsigned int intr_shadow);
--- a/xen/include/public/arch-x86/hvm/save.h
+++ b/xen/include/public/arch-x86/hvm/save.h
@@ -592,9 +592,21 @@ struct hvm_tsc_adjust {
DECLARE_HVM_SAVE_TYPE(TSC_ADJUST, 19, struct hvm_tsc_adjust);
+
+struct hvm_msr {
+ uint32_t count;
+ struct hvm_one_msr {
+ uint32_t index;
+ uint32_t _rsvd;
+ uint64_t val;
+ } msr[1 /* variable size */];
+};
+
+#define CPU_MSR_CODE 20
+
/*
* Largest type-code in use
*/
-#define HVM_SAVE_CODE_MAX 19
+#define HVM_SAVE_CODE_MAX 20
#endif /* __XEN_PUBLIC_HVM_SAVE_X86_H__ */
[-- Attachment #2: x86-MSR-sr.patch --]
[-- Type: text/plain, Size: 6246 bytes --]
x86: generic MSRs save/restore
This patch introduces a generic MSRs save/restore mechanism, so that
in the future new MSRs save/restore could be added w/ smaller change
than the full blown addition of a new save/restore type.
Signed-off-by: Jan Beulich <jbeulich@suse.com>
--- a/xen/arch/x86/hvm/hvm.c
+++ b/xen/arch/x86/hvm/hvm.c
@@ -1127,10 +1127,117 @@ static int hvm_load_cpu_xsave_states(str
return 0;
}
-/* We need variable length data chunk for xsave area, hence customized
- * declaration other than HVM_REGISTER_SAVE_RESTORE.
+#define HVM_CPU_MSR_SIZE(cnt) offsetof(struct hvm_msr, msr[cnt])
+static unsigned int __read_mostly msr_count_max;
+
+static int hvm_save_cpu_msrs(struct domain *d, hvm_domain_context_t *h)
+{
+ struct vcpu *v;
+
+ for_each_vcpu ( d, v )
+ {
+ struct hvm_msr *ctxt;
+ unsigned int i;
+
+ if ( _hvm_init_entry(h, CPU_MSR_CODE, v->vcpu_id,
+ HVM_CPU_MSR_SIZE(msr_count_max)) )
+ return 1;
+ ctxt = (struct hvm_msr *)&h->data[h->cur];
+ ctxt->count = 0;
+
+ if ( hvm_funcs.save_msr )
+ hvm_funcs.save_msr(v, ctxt);
+
+ for ( i = 0; i < ctxt->count; ++i )
+ ctxt->msr[i]._rsvd = 0;
+
+ if ( ctxt->count )
+ h->cur += HVM_CPU_MSR_SIZE(ctxt->count);
+ else
+ h->cur -= sizeof(struct hvm_save_descriptor);
+ }
+
+ return 0;
+}
+
+static int hvm_load_cpu_msrs(struct domain *d, hvm_domain_context_t *h)
+{
+ unsigned int i, vcpuid = hvm_load_instance(h);
+ struct vcpu *v;
+ const struct hvm_save_descriptor *desc;
+ struct hvm_msr *ctxt;
+ int err = 0;
+
+ if ( vcpuid >= d->max_vcpus || (v = d->vcpu[vcpuid]) == NULL )
+ {
+ dprintk(XENLOG_G_ERR, "HVM restore: dom%d has no vcpu%u\n",
+ d->domain_id, vcpuid);
+ return -EINVAL;
+ }
+
+ /* Customized checking for entry since our entry is of variable length */
+ desc = (struct hvm_save_descriptor *)&h->data[h->cur];
+ if ( sizeof (*desc) > h->size - h->cur)
+ {
+ printk(XENLOG_G_WARNING
+ "HVM%d.%d restore: not enough data left to read MSR descriptor\n",
+ d->domain_id, vcpuid);
+ return -ENODATA;
+ }
+ if ( desc->length + sizeof (*desc) > h->size - h->cur)
+ {
+ printk(XENLOG_G_WARNING
+ "HVM%d.%d restore: not enough data left to read %u MSR bytes\n",
+ d->domain_id, vcpuid, desc->length);
+ return -ENODATA;
+ }
+ if ( desc->length < HVM_CPU_MSR_SIZE(1) )
+ {
+ printk(XENLOG_G_WARNING
+ "HVM%d.%d restore mismatch: MSR length %u < %zu\n",
+ d->domain_id, vcpuid, desc->length, HVM_CPU_MSR_SIZE(1));
+ return -EINVAL;
+ }
+
+ h->cur += sizeof(*desc);
+ ctxt = (struct hvm_msr *)&h->data[h->cur];
+ h->cur += desc->length;
+
+ if ( desc->length != HVM_CPU_MSR_SIZE(ctxt->count) )
+ {
+ printk(XENLOG_G_WARNING
+ "HVM%d.%d restore mismatch: MSR length %u != %zu\n",
+ d->domain_id, vcpuid, desc->length,
+ HVM_CPU_MSR_SIZE(ctxt->count));
+ return -EOPNOTSUPP;
+ }
+
+ for ( i = 0; i < ctxt->count; ++i )
+ if ( ctxt->msr[i]._rsvd )
+ return -EOPNOTSUPP;
+ /* Checking finished */
+
+ if ( hvm_funcs.load_msr )
+ err = hvm_funcs.load_msr(v, ctxt);
+
+ for ( i = 0; !err && i < ctxt->count; ++i )
+ {
+ switch ( ctxt->msr[i].index )
+ {
+ default:
+ if ( !ctxt->msr[i]._rsvd )
+ err = -ENXIO;
+ break;
+ }
+ }
+
+ return err;
+}
+
+/* We need variable length data chunks for XSAVE area and MSRs, hence
+ * a custom declaration rather than HVM_REGISTER_SAVE_RESTORE.
*/
-static int __init __hvm_register_CPU_XSAVE_save_and_restore(void)
+static int __init hvm_register_CPU_save_and_restore(void)
{
hvm_register_savevm(CPU_XSAVE_CODE,
"CPU_XSAVE",
@@ -1139,9 +1246,22 @@ static int __init __hvm_register_CPU_XSA
HVM_CPU_XSAVE_SIZE(xfeature_mask) +
sizeof(struct hvm_save_descriptor),
HVMSR_PER_VCPU);
+
+ if ( hvm_funcs.init_msr )
+ msr_count_max += hvm_funcs.init_msr();
+
+ if ( msr_count_max )
+ hvm_register_savevm(CPU_MSR_CODE,
+ "CPU_MSR",
+ hvm_save_cpu_msrs,
+ hvm_load_cpu_msrs,
+ HVM_CPU_MSR_SIZE(msr_count_max) +
+ sizeof(struct hvm_save_descriptor),
+ HVMSR_PER_VCPU);
+
return 0;
}
-__initcall(__hvm_register_CPU_XSAVE_save_and_restore);
+__initcall(hvm_register_CPU_save_and_restore);
int hvm_vcpu_initialise(struct vcpu *v)
{
--- a/xen/include/asm-x86/hvm/hvm.h
+++ b/xen/include/asm-x86/hvm/hvm.h
@@ -109,6 +109,10 @@ struct hvm_function_table {
void (*save_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
int (*load_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
+ unsigned int (*init_msr)(void);
+ void (*save_msr)(struct vcpu *, struct hvm_msr *);
+ int (*load_msr)(struct vcpu *, struct hvm_msr *);
+
/* Examine specifics of the guest state. */
unsigned int (*get_interrupt_shadow)(struct vcpu *v);
void (*set_interrupt_shadow)(struct vcpu *v, unsigned int intr_shadow);
--- a/xen/include/public/arch-x86/hvm/save.h
+++ b/xen/include/public/arch-x86/hvm/save.h
@@ -592,9 +592,21 @@ struct hvm_tsc_adjust {
DECLARE_HVM_SAVE_TYPE(TSC_ADJUST, 19, struct hvm_tsc_adjust);
+
+struct hvm_msr {
+ uint32_t count;
+ struct hvm_one_msr {
+ uint32_t index;
+ uint32_t _rsvd;
+ uint64_t val;
+ } msr[1 /* variable size */];
+};
+
+#define CPU_MSR_CODE 20
+
/*
* Largest type-code in use
*/
-#define HVM_SAVE_CODE_MAX 19
+#define HVM_SAVE_CODE_MAX 20
#endif /* __XEN_PUBLIC_HVM_SAVE_X86_H__ */
[-- Attachment #3: Type: text/plain, Size: 126 bytes --]
_______________________________________________
Xen-devel mailing list
Xen-devel@lists.xen.org
http://lists.xen.org/xen-devel
^ permalink raw reply [flat|nested] 32+ messages in thread
* [PATCH v2] x86: MSR_IA32_BNDCFGS save/restore
2013-12-13 7:57 ` Liu, Jinsong
2013-12-13 9:47 ` Jan Beulich
2013-12-13 14:01 ` [PATCH v2] x86: " Jan Beulich
@ 2013-12-13 14:02 ` Jan Beulich
2013-12-13 17:57 ` Andrew Cooper
2013-12-16 3:23 ` Liu, Jinsong
2 siblings, 2 replies; 32+ messages in thread
From: Jan Beulich @ 2013-12-13 14:02 UTC (permalink / raw)
To: Jinsong Liu; +Cc: Andrew Cooper, xen-devel, keir, Ian.Campbell, haoxudong.hao
[-- Attachment #1: Type: text/plain, Size: 2403 bytes --]
Signed-off-by: Jan Beulich <jbeulich@suse.com>
--- a/xen/arch/x86/hvm/vmx/vmx.c
+++ b/xen/arch/x86/hvm/vmx/vmx.c
@@ -580,6 +580,55 @@ static int vmx_load_vmcs_ctxt(struct vcp
return 0;
}
+static unsigned int __init vmx_init_msr(void)
+{
+ return !!cpu_has_mpx;
+}
+
+static void vmx_save_msr(struct vcpu *v, struct hvm_msr *ctxt)
+{
+ vmx_vmcs_enter(v);
+
+ if ( cpu_has_mpx )
+ {
+ __vmread(GUEST_BNDCFGS, &ctxt->msr[ctxt->count].val);
+ if ( ctxt->msr[ctxt->count].val )
+ ctxt->msr[ctxt->count++].index = MSR_IA32_BNDCFGS;
+ }
+
+ vmx_vmcs_exit(v);
+}
+
+static int vmx_load_msr(struct vcpu *v, struct hvm_msr *ctxt)
+{
+ unsigned int i;
+ int err = 0;
+
+ vmx_vmcs_enter(v);
+
+ for ( i = 0; i < ctxt->count; ++i )
+ {
+ switch ( ctxt->msr[i].index )
+ {
+ case MSR_IA32_BNDCFGS:
+ if ( cpu_has_mpx )
+ __vmwrite(GUEST_BNDCFGS, ctxt->msr[i].val);
+ else
+ err = -ENXIO;
+ break;
+ default:
+ continue;
+ }
+ if ( err )
+ break;
+ ctxt->msr[i]._rsvd = 1;
+ }
+
+ vmx_vmcs_exit(v);
+
+ return err;
+}
+
static void vmx_fpu_enter(struct vcpu *v)
{
vcpu_restore_fpu_lazy(v);
@@ -1602,6 +1651,9 @@ static struct hvm_function_table __initd
.vcpu_destroy = vmx_vcpu_destroy,
.save_cpu_ctxt = vmx_save_vmcs_ctxt,
.load_cpu_ctxt = vmx_load_vmcs_ctxt,
+ .init_msr = vmx_init_msr,
+ .save_msr = vmx_save_msr,
+ .load_msr = vmx_load_msr,
.get_interrupt_shadow = vmx_get_interrupt_shadow,
.set_interrupt_shadow = vmx_set_interrupt_shadow,
.guest_x86_mode = vmx_guest_x86_mode,
--- a/xen/include/asm-x86/hvm/vmx/vmcs.h
+++ b/xen/include/asm-x86/hvm/vmx/vmcs.h
@@ -367,6 +367,8 @@ enum vmcs_field {
GUEST_PDPTR2_HIGH = 0x0000280f,
GUEST_PDPTR3 = 0x00002810,
GUEST_PDPTR3_HIGH = 0x00002811,
+ GUEST_BNDCFGS = 0x00002812,
+ GUEST_BNDCFGS_HIGH = 0x00002813,
HOST_PAT = 0x00002c00,
HOST_PAT_HIGH = 0x00002c01,
HOST_EFER = 0x00002c02,
[-- Attachment #2: x86-MPX-sr.patch --]
[-- Type: text/plain, Size: 2435 bytes --]
x86: MSR_IA32_BNDCFGS save/restore
Signed-off-by: Jan Beulich <jbeulich@suse.com>
--- a/xen/arch/x86/hvm/vmx/vmx.c
+++ b/xen/arch/x86/hvm/vmx/vmx.c
@@ -580,6 +580,55 @@ static int vmx_load_vmcs_ctxt(struct vcp
return 0;
}
+static unsigned int __init vmx_init_msr(void)
+{
+ return !!cpu_has_mpx;
+}
+
+static void vmx_save_msr(struct vcpu *v, struct hvm_msr *ctxt)
+{
+ vmx_vmcs_enter(v);
+
+ if ( cpu_has_mpx )
+ {
+ __vmread(GUEST_BNDCFGS, &ctxt->msr[ctxt->count].val);
+ if ( ctxt->msr[ctxt->count].val )
+ ctxt->msr[ctxt->count++].index = MSR_IA32_BNDCFGS;
+ }
+
+ vmx_vmcs_exit(v);
+}
+
+static int vmx_load_msr(struct vcpu *v, struct hvm_msr *ctxt)
+{
+ unsigned int i;
+ int err = 0;
+
+ vmx_vmcs_enter(v);
+
+ for ( i = 0; i < ctxt->count; ++i )
+ {
+ switch ( ctxt->msr[i].index )
+ {
+ case MSR_IA32_BNDCFGS:
+ if ( cpu_has_mpx )
+ __vmwrite(GUEST_BNDCFGS, ctxt->msr[i].val);
+ else
+ err = -ENXIO;
+ break;
+ default:
+ continue;
+ }
+ if ( err )
+ break;
+ ctxt->msr[i]._rsvd = 1;
+ }
+
+ vmx_vmcs_exit(v);
+
+ return err;
+}
+
static void vmx_fpu_enter(struct vcpu *v)
{
vcpu_restore_fpu_lazy(v);
@@ -1602,6 +1651,9 @@ static struct hvm_function_table __initd
.vcpu_destroy = vmx_vcpu_destroy,
.save_cpu_ctxt = vmx_save_vmcs_ctxt,
.load_cpu_ctxt = vmx_load_vmcs_ctxt,
+ .init_msr = vmx_init_msr,
+ .save_msr = vmx_save_msr,
+ .load_msr = vmx_load_msr,
.get_interrupt_shadow = vmx_get_interrupt_shadow,
.set_interrupt_shadow = vmx_set_interrupt_shadow,
.guest_x86_mode = vmx_guest_x86_mode,
--- a/xen/include/asm-x86/hvm/vmx/vmcs.h
+++ b/xen/include/asm-x86/hvm/vmx/vmcs.h
@@ -367,6 +367,8 @@ enum vmcs_field {
GUEST_PDPTR2_HIGH = 0x0000280f,
GUEST_PDPTR3 = 0x00002810,
GUEST_PDPTR3_HIGH = 0x00002811,
+ GUEST_BNDCFGS = 0x00002812,
+ GUEST_BNDCFGS_HIGH = 0x00002813,
HOST_PAT = 0x00002c00,
HOST_PAT_HIGH = 0x00002c01,
HOST_EFER = 0x00002c02,
[-- Attachment #3: Type: text/plain, Size: 126 bytes --]
_______________________________________________
Xen-devel mailing list
Xen-devel@lists.xen.org
http://lists.xen.org/xen-devel
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: [PATCH v2] x86: generic MSRs save/restore
2013-12-13 14:01 ` [PATCH v2] x86: " Jan Beulich
@ 2013-12-13 17:44 ` Andrew Cooper
2013-12-16 3:12 ` Liu, Jinsong
2013-12-16 8:03 ` Jan Beulich
2013-12-16 3:01 ` Liu, Jinsong
2013-12-18 12:20 ` Liu, Jinsong
2 siblings, 2 replies; 32+ messages in thread
From: Andrew Cooper @ 2013-12-13 17:44 UTC (permalink / raw)
To: Jan Beulich, Jinsong Liu; +Cc: xen-devel, keir, Ian.Campbell, haoxudong.hao
On 13/12/2013 14:01, Jan Beulich wrote:
> This patch introduces a generic MSRs save/restore mechanism, so that
> in the future new MSRs save/restore could be added w/ smaller change
> than the full blown addition of a new save/restore type.
>
> Signed-off-by: Jan Beulich <jbeulich@suse.com>
>
> --- a/xen/arch/x86/hvm/hvm.c
> +++ b/xen/arch/x86/hvm/hvm.c
> @@ -1127,10 +1127,117 @@ static int hvm_load_cpu_xsave_states(str
> return 0;
> }
>
> -/* We need variable length data chunk for xsave area, hence customized
> - * declaration other than HVM_REGISTER_SAVE_RESTORE.
> +#define HVM_CPU_MSR_SIZE(cnt) offsetof(struct hvm_msr, msr[cnt])
> +static unsigned int __read_mostly msr_count_max;
> +
> +static int hvm_save_cpu_msrs(struct domain *d, hvm_domain_context_t *h)
> +{
> + struct vcpu *v;
> +
> + for_each_vcpu ( d, v )
> + {
> + struct hvm_msr *ctxt;
> + unsigned int i;
> +
> + if ( _hvm_init_entry(h, CPU_MSR_CODE, v->vcpu_id,
> + HVM_CPU_MSR_SIZE(msr_count_max)) )
> + return 1;
> + ctxt = (struct hvm_msr *)&h->data[h->cur];
> + ctxt->count = 0;
> +
> + if ( hvm_funcs.save_msr )
> + hvm_funcs.save_msr(v, ctxt);
> +
> + for ( i = 0; i < ctxt->count; ++i )
> + ctxt->msr[i]._rsvd = 0;
> +
> + if ( ctxt->count )
> + h->cur += HVM_CPU_MSR_SIZE(ctxt->count);
> + else
> + h->cur -= sizeof(struct hvm_save_descriptor);
On the last iteration of the loop, this will leave a stale CPU_MSR_CODE
header in the area between the end of the hvm record and the maximum
possible size of the record, which then gets copied into the toolstack-
provided buffer.
Luckily, it does appear that xc_domain_save() does deal with this
correctly and only send the valid subset of the entire record. I
presume we dont care about breaking any other toolstacks which might get
this wrong?
> + }
> +
> + return 0;
> +}
> +
> +static int hvm_load_cpu_msrs(struct domain *d, hvm_domain_context_t *h)
> +{
> + unsigned int i, vcpuid = hvm_load_instance(h);
> + struct vcpu *v;
> + const struct hvm_save_descriptor *desc;
> + struct hvm_msr *ctxt;
> + int err = 0;
> +
> + if ( vcpuid >= d->max_vcpus || (v = d->vcpu[vcpuid]) == NULL )
> + {
> + dprintk(XENLOG_G_ERR, "HVM restore: dom%d has no vcpu%u\n",
> + d->domain_id, vcpuid);
> + return -EINVAL;
> + }
> +
> + /* Customized checking for entry since our entry is of variable length */
> + desc = (struct hvm_save_descriptor *)&h->data[h->cur];
> + if ( sizeof (*desc) > h->size - h->cur)
> + {
> + printk(XENLOG_G_WARNING
> + "HVM%d.%d restore: not enough data left to read MSR descriptor\n",
> + d->domain_id, vcpuid);
> + return -ENODATA;
> + }
> + if ( desc->length + sizeof (*desc) > h->size - h->cur)
> + {
> + printk(XENLOG_G_WARNING
> + "HVM%d.%d restore: not enough data left to read %u MSR bytes\n",
> + d->domain_id, vcpuid, desc->length);
> + return -ENODATA;
> + }
> + if ( desc->length < HVM_CPU_MSR_SIZE(1) )
> + {
> + printk(XENLOG_G_WARNING
> + "HVM%d.%d restore mismatch: MSR length %u < %zu\n",
> + d->domain_id, vcpuid, desc->length, HVM_CPU_MSR_SIZE(1));
> + return -EINVAL;
> + }
> +
> + h->cur += sizeof(*desc);
> + ctxt = (struct hvm_msr *)&h->data[h->cur];
> + h->cur += desc->length;
> +
> + if ( desc->length != HVM_CPU_MSR_SIZE(ctxt->count) )
> + {
> + printk(XENLOG_G_WARNING
> + "HVM%d.%d restore mismatch: MSR length %u != %zu\n",
> + d->domain_id, vcpuid, desc->length,
> + HVM_CPU_MSR_SIZE(ctxt->count));
> + return -EOPNOTSUPP;
> + }
> +
> + for ( i = 0; i < ctxt->count; ++i )
> + if ( ctxt->msr[i]._rsvd )
> + return -EOPNOTSUPP;
> + /* Checking finished */
> +
> + if ( hvm_funcs.load_msr )
> + err = hvm_funcs.load_msr(v, ctxt);
> +
> + for ( i = 0; !err && i < ctxt->count; ++i )
> + {
> + switch ( ctxt->msr[i].index )
> + {
> + default:
> + if ( !ctxt->msr[i]._rsvd )
> + err = -ENXIO;
> + break;
> + }
> + }
> +
> + return err;
> +}
> +
> +/* We need variable length data chunks for XSAVE area and MSRs, hence
> + * a custom declaration rather than HVM_REGISTER_SAVE_RESTORE.
> */
> -static int __init __hvm_register_CPU_XSAVE_save_and_restore(void)
> +static int __init hvm_register_CPU_save_and_restore(void)
> {
> hvm_register_savevm(CPU_XSAVE_CODE,
> "CPU_XSAVE",
> @@ -1139,9 +1246,22 @@ static int __init __hvm_register_CPU_XSA
> HVM_CPU_XSAVE_SIZE(xfeature_mask) +
> sizeof(struct hvm_save_descriptor),
> HVMSR_PER_VCPU);
> +
> + if ( hvm_funcs.init_msr )
> + msr_count_max += hvm_funcs.init_msr();
Why += as opposed to direct assignment? Changing this value anywhere
other than here looks as if it will lead to problems.
> +
> + if ( msr_count_max )
> + hvm_register_savevm(CPU_MSR_CODE,
> + "CPU_MSR",
> + hvm_save_cpu_msrs,
> + hvm_load_cpu_msrs,
> + HVM_CPU_MSR_SIZE(msr_count_max) +
> + sizeof(struct hvm_save_descriptor),
> + HVMSR_PER_VCPU);
> +
> return 0;
> }
> -__initcall(__hvm_register_CPU_XSAVE_save_and_restore);
> +__initcall(hvm_register_CPU_save_and_restore);
>
> int hvm_vcpu_initialise(struct vcpu *v)
> {
> --- a/xen/include/asm-x86/hvm/hvm.h
> +++ b/xen/include/asm-x86/hvm/hvm.h
> @@ -109,6 +109,10 @@ struct hvm_function_table {
> void (*save_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
> int (*load_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
>
> + unsigned int (*init_msr)(void);
Possibly a comment to explain that this must return the number of MSRs
we expect to insert into an hvm msr record?
> + void (*save_msr)(struct vcpu *, struct hvm_msr *);
> + int (*load_msr)(struct vcpu *, struct hvm_msr *);
> +
> /* Examine specifics of the guest state. */
> unsigned int (*get_interrupt_shadow)(struct vcpu *v);
> void (*set_interrupt_shadow)(struct vcpu *v, unsigned int intr_shadow);
> --- a/xen/include/public/arch-x86/hvm/save.h
> +++ b/xen/include/public/arch-x86/hvm/save.h
> @@ -592,9 +592,21 @@ struct hvm_tsc_adjust {
>
> DECLARE_HVM_SAVE_TYPE(TSC_ADJUST, 19, struct hvm_tsc_adjust);
>
> +
> +struct hvm_msr {
> + uint32_t count;
> + struct hvm_one_msr {
> + uint32_t index;
> + uint32_t _rsvd;
> + uint64_t val;
> + } msr[1 /* variable size */];
Coverity is going to complain about using this with more than 1 record,
but I can't think of a better way of doing this without introducing a
VLA to the public header files.
As far as I can tell, the underlying implementation is safe to index off
the end of msr[].
~Andrew
> +};
> +
> +#define CPU_MSR_CODE 20
> +
> /*
> * Largest type-code in use
> */
> -#define HVM_SAVE_CODE_MAX 19
> +#define HVM_SAVE_CODE_MAX 20
>
> #endif /* __XEN_PUBLIC_HVM_SAVE_X86_H__ */
>
>
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: [PATCH v2] x86: MSR_IA32_BNDCFGS save/restore
2013-12-13 14:02 ` [PATCH v2] x86: MSR_IA32_BNDCFGS save/restore Jan Beulich
@ 2013-12-13 17:57 ` Andrew Cooper
2013-12-16 3:22 ` Liu, Jinsong
2013-12-16 8:06 ` Jan Beulich
2013-12-16 3:23 ` Liu, Jinsong
1 sibling, 2 replies; 32+ messages in thread
From: Andrew Cooper @ 2013-12-13 17:57 UTC (permalink / raw)
To: Jan Beulich, Jinsong Liu; +Cc: xen-devel, keir, Ian.Campbell, haoxudong.hao
On 13/12/2013 14:02, Jan Beulich wrote:
> Signed-off-by: Jan Beulich <jbeulich@suse.com>
>
> --- a/xen/arch/x86/hvm/vmx/vmx.c
> +++ b/xen/arch/x86/hvm/vmx/vmx.c
> @@ -580,6 +580,55 @@ static int vmx_load_vmcs_ctxt(struct vcp
> return 0;
> }
>
> +static unsigned int __init vmx_init_msr(void)
> +{
> + return !!cpu_has_mpx;
> +}
> +
> +static void vmx_save_msr(struct vcpu *v, struct hvm_msr *ctxt)
> +{
> + vmx_vmcs_enter(v);
> +
> + if ( cpu_has_mpx )
> + {
> + __vmread(GUEST_BNDCFGS, &ctxt->msr[ctxt->count].val);
> + if ( ctxt->msr[ctxt->count].val )
> + ctxt->msr[ctxt->count++].index = MSR_IA32_BNDCFGS;
> + }
> +
> + vmx_vmcs_exit(v);
> +}
> +
> +static int vmx_load_msr(struct vcpu *v, struct hvm_msr *ctxt)
> +{
> + unsigned int i;
> + int err = 0;
> +
> + vmx_vmcs_enter(v);
> +
> + for ( i = 0; i < ctxt->count; ++i )
> + {
> + switch ( ctxt->msr[i].index )
> + {
> + case MSR_IA32_BNDCFGS:
> + if ( cpu_has_mpx )
> + __vmwrite(GUEST_BNDCFGS, ctxt->msr[i].val);
> + else
> + err = -ENXIO;
> + break;
> + default:
> + continue;
This will skip setting _rsvd for an MSR we don't recognise. Doesn't
this interfere with the error checking in the caller?
~Andrew
> + }
> + if ( err )
> + break;
> + ctxt->msr[i]._rsvd = 1;
> + }
> +
> + vmx_vmcs_exit(v);
> +
> + return err;
> +}
> +
> static void vmx_fpu_enter(struct vcpu *v)
> {
> vcpu_restore_fpu_lazy(v);
> @@ -1602,6 +1651,9 @@ static struct hvm_function_table __initd
> .vcpu_destroy = vmx_vcpu_destroy,
> .save_cpu_ctxt = vmx_save_vmcs_ctxt,
> .load_cpu_ctxt = vmx_load_vmcs_ctxt,
> + .init_msr = vmx_init_msr,
> + .save_msr = vmx_save_msr,
> + .load_msr = vmx_load_msr,
> .get_interrupt_shadow = vmx_get_interrupt_shadow,
> .set_interrupt_shadow = vmx_set_interrupt_shadow,
> .guest_x86_mode = vmx_guest_x86_mode,
> --- a/xen/include/asm-x86/hvm/vmx/vmcs.h
> +++ b/xen/include/asm-x86/hvm/vmx/vmcs.h
> @@ -367,6 +367,8 @@ enum vmcs_field {
> GUEST_PDPTR2_HIGH = 0x0000280f,
> GUEST_PDPTR3 = 0x00002810,
> GUEST_PDPTR3_HIGH = 0x00002811,
> + GUEST_BNDCFGS = 0x00002812,
> + GUEST_BNDCFGS_HIGH = 0x00002813,
> HOST_PAT = 0x00002c00,
> HOST_PAT_HIGH = 0x00002c01,
> HOST_EFER = 0x00002c02,
>
>
>
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: [PATCH v2] x86: generic MSRs save/restore
2013-12-13 14:01 ` [PATCH v2] x86: " Jan Beulich
2013-12-13 17:44 ` Andrew Cooper
@ 2013-12-16 3:01 ` Liu, Jinsong
2013-12-16 8:04 ` Jan Beulich
2013-12-18 12:20 ` Liu, Jinsong
2 siblings, 1 reply; 32+ messages in thread
From: Liu, Jinsong @ 2013-12-16 3:01 UTC (permalink / raw)
To: Jan Beulich; +Cc: Andrew Cooper, xen-devel, keir, Ian.Campbell, haoxudong.hao
Jan Beulich wrote:
> This patch introduces a generic MSRs save/restore mechanism, so that
> in the future new MSRs save/restore could be added w/ smaller change
> than the full blown addition of a new save/restore type.
>
> Signed-off-by: Jan Beulich <jbeulich@suse.com>
>
> --- a/xen/arch/x86/hvm/hvm.c
> +++ b/xen/arch/x86/hvm/hvm.c
> @@ -1127,10 +1127,117 @@ static int hvm_load_cpu_xsave_states(str
> return 0;
> }
>
> -/* We need variable length data chunk for xsave area, hence
> customized
> - * declaration other than HVM_REGISTER_SAVE_RESTORE.
> +#define HVM_CPU_MSR_SIZE(cnt) offsetof(struct hvm_msr, msr[cnt])
> +static unsigned int __read_mostly msr_count_max;
> +
> +static int hvm_save_cpu_msrs(struct domain *d, hvm_domain_context_t
> *h) +{
> + struct vcpu *v;
> +
> + for_each_vcpu ( d, v )
> + {
> + struct hvm_msr *ctxt;
> + unsigned int i;
> +
> + if ( _hvm_init_entry(h, CPU_MSR_CODE, v->vcpu_id,
> + HVM_CPU_MSR_SIZE(msr_count_max)) )
> + return 1;
> + ctxt = (struct hvm_msr *)&h->data[h->cur];
> + ctxt->count = 0;
> +
> + if ( hvm_funcs.save_msr )
> + hvm_funcs.save_msr(v, ctxt);
> +
> + for ( i = 0; i < ctxt->count; ++i )
> + ctxt->msr[i]._rsvd = 0;
> +
> + if ( ctxt->count )
> + h->cur += HVM_CPU_MSR_SIZE(ctxt->count);
> + else
> + h->cur -= sizeof(struct hvm_save_descriptor);
> + }
> +
> + return 0;
> +}
> +
> +static int hvm_load_cpu_msrs(struct domain *d, hvm_domain_context_t
> *h) +{
> + unsigned int i, vcpuid = hvm_load_instance(h);
> + struct vcpu *v;
> + const struct hvm_save_descriptor *desc;
> + struct hvm_msr *ctxt;
> + int err = 0;
> +
> + if ( vcpuid >= d->max_vcpus || (v = d->vcpu[vcpuid]) == NULL )
> + {
> + dprintk(XENLOG_G_ERR, "HVM restore: dom%d has no vcpu%u\n",
> + d->domain_id, vcpuid);
> + return -EINVAL;
> + }
> +
> + /* Customized checking for entry since our entry is of variable
> length */ + desc = (struct hvm_save_descriptor *)&h->data[h->cur];
> + if ( sizeof (*desc) > h->size - h->cur)
> + {
> + printk(XENLOG_G_WARNING
> + "HVM%d.%d restore: not enough data left to read MSR
> descriptor\n", + d->domain_id, vcpuid);
> + return -ENODATA;
> + }
> + if ( desc->length + sizeof (*desc) > h->size - h->cur)
> + {
> + printk(XENLOG_G_WARNING
> + "HVM%d.%d restore: not enough data left to read %u
> MSR bytes\n", + d->domain_id, vcpuid, desc->length);
> + return -ENODATA;
> + }
> + if ( desc->length < HVM_CPU_MSR_SIZE(1) )
> + {
> + printk(XENLOG_G_WARNING
> + "HVM%d.%d restore mismatch: MSR length %u < %zu\n",
> + d->domain_id, vcpuid, desc->length,
> HVM_CPU_MSR_SIZE(1)); + return -EINVAL;
> + }
> +
> + h->cur += sizeof(*desc);
> + ctxt = (struct hvm_msr *)&h->data[h->cur];
> + h->cur += desc->length;
> +
> + if ( desc->length != HVM_CPU_MSR_SIZE(ctxt->count) )
> + {
> + printk(XENLOG_G_WARNING
> + "HVM%d.%d restore mismatch: MSR length %u != %zu\n",
> + d->domain_id, vcpuid, desc->length,
> + HVM_CPU_MSR_SIZE(ctxt->count));
> + return -EOPNOTSUPP;
> + }
> +
> + for ( i = 0; i < ctxt->count; ++i )
> + if ( ctxt->msr[i]._rsvd )
> + return -EOPNOTSUPP;
> + /* Checking finished */
> +
> + if ( hvm_funcs.load_msr )
> + err = hvm_funcs.load_msr(v, ctxt);
> +
> + for ( i = 0; !err && i < ctxt->count; ++i )
> + {
> + switch ( ctxt->msr[i].index )
> + {
> + default:
> + if ( !ctxt->msr[i]._rsvd )
> + err = -ENXIO;
> + break;
> + }
> + }
> +
> + return err;
> +}
> +
> +/* We need variable length data chunks for XSAVE area and MSRs, hence
> + * a custom declaration rather than HVM_REGISTER_SAVE_RESTORE.
> */
> -static int __init __hvm_register_CPU_XSAVE_save_and_restore(void)
> +static int __init hvm_register_CPU_save_and_restore(void)
> {
> hvm_register_savevm(CPU_XSAVE_CODE,
> "CPU_XSAVE",
> @@ -1139,9 +1246,22 @@ static int __init __hvm_register_CPU_XSA
> HVM_CPU_XSAVE_SIZE(xfeature_mask) +
> sizeof(struct hvm_save_descriptor),
> HVMSR_PER_VCPU);
> +
> + if ( hvm_funcs.init_msr )
> + msr_count_max += hvm_funcs.init_msr();
> +
> + if ( msr_count_max )
> + hvm_register_savevm(CPU_MSR_CODE,
> + "CPU_MSR",
> + hvm_save_cpu_msrs,
> + hvm_load_cpu_msrs,
> + HVM_CPU_MSR_SIZE(msr_count_max) +
> + sizeof(struct hvm_save_descriptor),
> + HVMSR_PER_VCPU);
> +
> return 0;
> }
> -__initcall(__hvm_register_CPU_XSAVE_save_and_restore);
> +__initcall(hvm_register_CPU_save_and_restore);
>
> int hvm_vcpu_initialise(struct vcpu *v)
> {
> --- a/xen/include/asm-x86/hvm/hvm.h
> +++ b/xen/include/asm-x86/hvm/hvm.h
> @@ -109,6 +109,10 @@ struct hvm_function_table {
> void (*save_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
> int (*load_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
>
> + unsigned int (*init_msr)(void);
> + void (*save_msr)(struct vcpu *, struct hvm_msr *);
> + int (*load_msr)(struct vcpu *, struct hvm_msr *);
> +
> /* Examine specifics of the guest state. */
> unsigned int (*get_interrupt_shadow)(struct vcpu *v);
> void (*set_interrupt_shadow)(struct vcpu *v, unsigned int
> intr_shadow); --- a/xen/include/public/arch-x86/hvm/save.h
> +++ b/xen/include/public/arch-x86/hvm/save.h
> @@ -592,9 +592,21 @@ struct hvm_tsc_adjust {
>
> DECLARE_HVM_SAVE_TYPE(TSC_ADJUST, 19, struct hvm_tsc_adjust);
>
> +
> +struct hvm_msr {
> + uint32_t count;
> + struct hvm_one_msr {
> + uint32_t index;
> + uint32_t _rsvd;
> + uint64_t val;
> + } msr[1 /* variable size */];
> +};
> +
> +#define CPU_MSR_CODE 20
> +
+DECLARE_HVM_SAVE_TYPE(CPU_MSR, CPU_MSR_CODE, struct hvm_msr);
+msr dump patch at tools/misc/xen-hvmctx.c
Thanks,
Jinsong
> /*
> * Largest type-code in use
> */
> -#define HVM_SAVE_CODE_MAX 19
> +#define HVM_SAVE_CODE_MAX 20
>
> #endif /* __XEN_PUBLIC_HVM_SAVE_X86_H__ */
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: [PATCH v2] x86: generic MSRs save/restore
2013-12-13 17:44 ` Andrew Cooper
@ 2013-12-16 3:12 ` Liu, Jinsong
2013-12-16 8:03 ` Jan Beulich
1 sibling, 0 replies; 32+ messages in thread
From: Liu, Jinsong @ 2013-12-16 3:12 UTC (permalink / raw)
To: Andrew Cooper, Jan Beulich; +Cc: xen-devel, keir, Ian.Campbell, haoxudong.hao
Andrew Cooper wrote:
> On 13/12/2013 14:01, Jan Beulich wrote:
>> This patch introduces a generic MSRs save/restore mechanism, so that
>> in the future new MSRs save/restore could be added w/ smaller change
>> than the full blown addition of a new save/restore type.
>>
>> Signed-off-by: Jan Beulich <jbeulich@suse.com>
>>
>> --- a/xen/arch/x86/hvm/hvm.c
>> +++ b/xen/arch/x86/hvm/hvm.c
>> @@ -1127,10 +1127,117 @@ static int hvm_load_cpu_xsave_states(str
>> return 0; }
>>
>> -/* We need variable length data chunk for xsave area, hence
>> customized
>> - * declaration other than HVM_REGISTER_SAVE_RESTORE.
>> +#define HVM_CPU_MSR_SIZE(cnt) offsetof(struct hvm_msr, msr[cnt])
>> +static unsigned int __read_mostly msr_count_max;
>> +
>> +static int hvm_save_cpu_msrs(struct domain *d, hvm_domain_context_t
>> *h) +{ + struct vcpu *v;
>> +
>> + for_each_vcpu ( d, v )
>> + {
>> + struct hvm_msr *ctxt;
>> + unsigned int i;
>> +
>> + if ( _hvm_init_entry(h, CPU_MSR_CODE, v->vcpu_id,
>> + HVM_CPU_MSR_SIZE(msr_count_max)) ) +
>> return 1; + ctxt = (struct hvm_msr *)&h->data[h->cur]; +
>> ctxt->count = 0; +
>> + if ( hvm_funcs.save_msr )
>> + hvm_funcs.save_msr(v, ctxt);
>> +
>> + for ( i = 0; i < ctxt->count; ++i )
>> + ctxt->msr[i]._rsvd = 0;
>> +
>> + if ( ctxt->count )
>> + h->cur += HVM_CPU_MSR_SIZE(ctxt->count); + else
>> + h->cur -= sizeof(struct hvm_save_descriptor);
>
> On the last iteration of the loop, this will leave a stale
> CPU_MSR_CODE header in the area between the end of the hvm record and
> the maximum possible size of the record, which then gets copied into
> the toolstack- provided buffer.
>
The stale CPU_MSR_CODE header would be covered by other header, or by END marker.
> Luckily, it does appear that xc_domain_save() does deal with this
> correctly and only send the valid subset of the entire record. I
> presume we dont care about breaking any other toolstacks which might
> get this wrong?
>
>> + }
>> +
>> + return 0;
>> +}
>> +
>> +static int hvm_load_cpu_msrs(struct domain *d, hvm_domain_context_t
>> *h) +{ + unsigned int i, vcpuid = hvm_load_instance(h); +
>> struct vcpu *v; + const struct hvm_save_descriptor *desc;
>> + struct hvm_msr *ctxt;
>> + int err = 0;
>> +
>> + if ( vcpuid >= d->max_vcpus || (v = d->vcpu[vcpuid]) == NULL )
>> + { + dprintk(XENLOG_G_ERR, "HVM restore: dom%d has no
>> vcpu%u\n", + d->domain_id, vcpuid);
>> + return -EINVAL;
>> + }
>> +
>> + /* Customized checking for entry since our entry is of variable
>> length */ + desc = (struct hvm_save_descriptor *)&h->data[h->cur];
>> + if ( sizeof (*desc) > h->size - h->cur)
>> + {
>> + printk(XENLOG_G_WARNING
>> + "HVM%d.%d restore: not enough data left to read MSR
>> descriptor\n", + d->domain_id, vcpuid);
>> + return -ENODATA;
>> + }
>> + if ( desc->length + sizeof (*desc) > h->size - h->cur) + {
>> + printk(XENLOG_G_WARNING
>> + "HVM%d.%d restore: not enough data left to read %u
>> MSR bytes\n", + d->domain_id, vcpuid, desc->length); +
>> return -ENODATA; + }
>> + if ( desc->length < HVM_CPU_MSR_SIZE(1) )
>> + {
>> + printk(XENLOG_G_WARNING
>> + "HVM%d.%d restore mismatch: MSR length %u < %zu\n",
>> + d->domain_id, vcpuid, desc->length,
>> HVM_CPU_MSR_SIZE(1)); + return -EINVAL; + }
>> +
>> + h->cur += sizeof(*desc);
>> + ctxt = (struct hvm_msr *)&h->data[h->cur];
>> + h->cur += desc->length;
>> +
>> + if ( desc->length != HVM_CPU_MSR_SIZE(ctxt->count) ) + {
>> + printk(XENLOG_G_WARNING
>> + "HVM%d.%d restore mismatch: MSR length %u != %zu\n",
>> + d->domain_id, vcpuid, desc->length,
>> + HVM_CPU_MSR_SIZE(ctxt->count));
>> + return -EOPNOTSUPP;
>> + }
>> +
>> + for ( i = 0; i < ctxt->count; ++i )
>> + if ( ctxt->msr[i]._rsvd )
>> + return -EOPNOTSUPP;
>> + /* Checking finished */
>> +
>> + if ( hvm_funcs.load_msr )
>> + err = hvm_funcs.load_msr(v, ctxt);
>> +
>> + for ( i = 0; !err && i < ctxt->count; ++i )
>> + {
>> + switch ( ctxt->msr[i].index )
>> + {
>> + default:
>> + if ( !ctxt->msr[i]._rsvd )
>> + err = -ENXIO;
>> + break;
>> + }
>> + }
>> +
>> + return err;
>> +}
>> +
>> +/* We need variable length data chunks for XSAVE area and MSRs,
>> hence + * a custom declaration rather than
>> HVM_REGISTER_SAVE_RESTORE. */ -static int __init
>> __hvm_register_CPU_XSAVE_save_and_restore(void) +static int __init
>> hvm_register_CPU_save_and_restore(void) {
>> hvm_register_savevm(CPU_XSAVE_CODE,
>> "CPU_XSAVE", @@ -1139,9 +1246,22 @@ static int __init
>> __hvm_register_CPU_XSA
>> HVM_CPU_XSAVE_SIZE(xfeature_mask) +
>> sizeof(struct hvm_save_descriptor),
>> HVMSR_PER_VCPU); +
>> + if ( hvm_funcs.init_msr )
>> + msr_count_max += hvm_funcs.init_msr();
>
> Why += as opposed to direct assignment? Changing this value anywhere
> other than here looks as if it will lead to problems.
>
I guess += here is for future extension of generic msr.
Thanks,
Jinsong
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: [PATCH v2] x86: MSR_IA32_BNDCFGS save/restore
2013-12-13 17:57 ` Andrew Cooper
@ 2013-12-16 3:22 ` Liu, Jinsong
2013-12-16 8:06 ` Jan Beulich
1 sibling, 0 replies; 32+ messages in thread
From: Liu, Jinsong @ 2013-12-16 3:22 UTC (permalink / raw)
To: Andrew Cooper, Jan Beulich; +Cc: xen-devel, keir, Ian.Campbell, haoxudong.hao
Andrew Cooper wrote:
> On 13/12/2013 14:02, Jan Beulich wrote:
>> Signed-off-by: Jan Beulich <jbeulich@suse.com>
>>
>> --- a/xen/arch/x86/hvm/vmx/vmx.c
>> +++ b/xen/arch/x86/hvm/vmx/vmx.c
>> @@ -580,6 +580,55 @@ static int vmx_load_vmcs_ctxt(struct vcp
>> return 0; }
>>
>> +static unsigned int __init vmx_init_msr(void)
>> +{
>> + return !!cpu_has_mpx;
>> +}
>> +
>> +static void vmx_save_msr(struct vcpu *v, struct hvm_msr *ctxt) +{
>> + vmx_vmcs_enter(v);
>> +
>> + if ( cpu_has_mpx )
>> + {
>> + __vmread(GUEST_BNDCFGS, &ctxt->msr[ctxt->count].val);
>> + if ( ctxt->msr[ctxt->count].val )
>> + ctxt->msr[ctxt->count++].index = MSR_IA32_BNDCFGS; +
>> } +
>> + vmx_vmcs_exit(v);
>> +}
>> +
>> +static int vmx_load_msr(struct vcpu *v, struct hvm_msr *ctxt) +{
>> + unsigned int i;
>> + int err = 0;
>> +
>> + vmx_vmcs_enter(v);
>> +
>> + for ( i = 0; i < ctxt->count; ++i )
>> + {
>> + switch ( ctxt->msr[i].index )
>> + {
>> + case MSR_IA32_BNDCFGS:
>> + if ( cpu_has_mpx )
>> + __vmwrite(GUEST_BNDCFGS, ctxt->msr[i].val); +
>> else + err = -ENXIO;
>> + break;
>> + default:
>> + continue;
>
> This will skip setting _rsvd for an MSR we don't recognise. Doesn't
> this interfere with the error checking in the caller?
>
It's OK. It's is for not-recognised-MSR got checked at the caller.
If a MSR was not recognised by vmx/svm specific handler or generic msr handler, return error.
Thanks,
Jinsong
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: [PATCH v2] x86: MSR_IA32_BNDCFGS save/restore
2013-12-13 14:02 ` [PATCH v2] x86: MSR_IA32_BNDCFGS save/restore Jan Beulich
2013-12-13 17:57 ` Andrew Cooper
@ 2013-12-16 3:23 ` Liu, Jinsong
1 sibling, 0 replies; 32+ messages in thread
From: Liu, Jinsong @ 2013-12-16 3:23 UTC (permalink / raw)
To: Jan Beulich; +Cc: Andrew Cooper, xen-devel, keir, Ian.Campbell, haoxudong.hao
Jan Beulich wrote:
> Signed-off-by: Jan Beulich <jbeulich@suse.com>
>
Reviewed-by: Liu Jinsong <jinsong.liu@intel.com>
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: [PATCH v2] x86: generic MSRs save/restore
2013-12-13 17:44 ` Andrew Cooper
2013-12-16 3:12 ` Liu, Jinsong
@ 2013-12-16 8:03 ` Jan Beulich
1 sibling, 0 replies; 32+ messages in thread
From: Jan Beulich @ 2013-12-16 8:03 UTC (permalink / raw)
To: Andrew Cooper; +Cc: Jinsong Liu, xen-devel, keir, Ian.Campbell, haoxudong.hao
>>> On 13.12.13 at 18:44, Andrew Cooper <andrew.cooper3@citrix.com> wrote:
> On 13/12/2013 14:01, Jan Beulich wrote:
>> +static int hvm_save_cpu_msrs(struct domain *d, hvm_domain_context_t *h)
>> +{
>> + struct vcpu *v;
>> +
>> + for_each_vcpu ( d, v )
>> + {
>> + struct hvm_msr *ctxt;
>> + unsigned int i;
>> +
>> + if ( _hvm_init_entry(h, CPU_MSR_CODE, v->vcpu_id,
>> + HVM_CPU_MSR_SIZE(msr_count_max)) )
>> + return 1;
>> + ctxt = (struct hvm_msr *)&h->data[h->cur];
>> + ctxt->count = 0;
>> +
>> + if ( hvm_funcs.save_msr )
>> + hvm_funcs.save_msr(v, ctxt);
>> +
>> + for ( i = 0; i < ctxt->count; ++i )
>> + ctxt->msr[i]._rsvd = 0;
>> +
>> + if ( ctxt->count )
>> + h->cur += HVM_CPU_MSR_SIZE(ctxt->count);
>> + else
>> + h->cur -= sizeof(struct hvm_save_descriptor);
>
> On the last iteration of the loop, this will leave a stale CPU_MSR_CODE
> header in the area between the end of the hvm record and the maximum
> possible size of the record, which then gets copied into the toolstack-
> provided buffer.
>
> Luckily, it does appear that xc_domain_save() does deal with this
> correctly and only send the valid subset of the entire record. I
> presume we dont care about breaking any other toolstacks which might get
> this wrong?
Wouldn't that be similarly a problem for the variable size XSAVE
record we already have? I.e. I think tool stacks are _required_
to cope with this.
>> @@ -1139,9 +1246,22 @@ static int __init __hvm_register_CPU_XSA
>> HVM_CPU_XSAVE_SIZE(xfeature_mask) +
>> sizeof(struct hvm_save_descriptor),
>> HVMSR_PER_VCPU);
>> +
>> + if ( hvm_funcs.init_msr )
>> + msr_count_max += hvm_funcs.init_msr();
>
> Why += as opposed to direct assignment? Changing this value anywhere
> other than here looks as if it will lead to problems.
The intention is for the variable to get initialized to non-zero as
soon as an architectural MSR appears that might always need
saving, or for the order of the increments to not matter when
further conditionals get added here.
>> --- a/xen/include/public/arch-x86/hvm/save.h
>> +++ b/xen/include/public/arch-x86/hvm/save.h
>> @@ -592,9 +592,21 @@ struct hvm_tsc_adjust {
>>
>> DECLARE_HVM_SAVE_TYPE(TSC_ADJUST, 19, struct hvm_tsc_adjust);
>>
>> +
>> +struct hvm_msr {
>> + uint32_t count;
>> + struct hvm_one_msr {
>> + uint32_t index;
>> + uint32_t _rsvd;
>> + uint64_t val;
>> + } msr[1 /* variable size */];
>
> Coverity is going to complain about using this with more than 1 record,
> but I can't think of a better way of doing this without introducing a
> VLA to the public header files.
If that's a concern, I'll switch to __STDC_VERSION__/__GNUC__
dependent code here, just like we do elsewhere in the public
headers:
struct hvm_msr {
uint32_t count;
struct hvm_one_msr {
uint32_t index;
uint32_t _rsvd;
uint64_t val;
#if defined(__STDC_VERSION__) && __STDC_VERSION__ >= 199901L
} msr[];
#elif defined(__GNUC__)
} msr[0];
#else
} msr[1 /* variable size */];
#endif
};
Jan
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: [PATCH v2] x86: generic MSRs save/restore
2013-12-16 3:01 ` Liu, Jinsong
@ 2013-12-16 8:04 ` Jan Beulich
2013-12-16 8:39 ` Liu, Jinsong
0 siblings, 1 reply; 32+ messages in thread
From: Jan Beulich @ 2013-12-16 8:04 UTC (permalink / raw)
To: Jinsong Liu; +Cc: Andrew Cooper, xen-devel, keir, Ian.Campbell, haoxudong.hao
>>> On 16.12.13 at 04:01, "Liu, Jinsong" <jinsong.liu@intel.com> wrote:
> Jan Beulich wrote:
>> This patch introduces a generic MSRs save/restore mechanism, so that
>> in the future new MSRs save/restore could be added w/ smaller change
>> than the full blown addition of a new save/restore type.
>>
>> Signed-off-by: Jan Beulich <jbeulich@suse.com>
>>
>> --- a/xen/arch/x86/hvm/hvm.c
>> +++ b/xen/arch/x86/hvm/hvm.c
>> @@ -1127,10 +1127,117 @@ static int hvm_load_cpu_xsave_states(str
>> return 0;
>> }
>>
>> -/* We need variable length data chunk for xsave area, hence
>> customized
>> - * declaration other than HVM_REGISTER_SAVE_RESTORE.
>> +#define HVM_CPU_MSR_SIZE(cnt) offsetof(struct hvm_msr, msr[cnt])
>> +static unsigned int __read_mostly msr_count_max;
>> +
>> +static int hvm_save_cpu_msrs(struct domain *d, hvm_domain_context_t
>> *h) +{
>> + struct vcpu *v;
>> +
>> + for_each_vcpu ( d, v )
>> + {
>> + struct hvm_msr *ctxt;
>> + unsigned int i;
>> +
>> + if ( _hvm_init_entry(h, CPU_MSR_CODE, v->vcpu_id,
>> + HVM_CPU_MSR_SIZE(msr_count_max)) )
>> + return 1;
>> + ctxt = (struct hvm_msr *)&h->data[h->cur];
>> + ctxt->count = 0;
>> +
>> + if ( hvm_funcs.save_msr )
>> + hvm_funcs.save_msr(v, ctxt);
>> +
>> + for ( i = 0; i < ctxt->count; ++i )
>> + ctxt->msr[i]._rsvd = 0;
>> +
>> + if ( ctxt->count )
>> + h->cur += HVM_CPU_MSR_SIZE(ctxt->count);
>> + else
>> + h->cur -= sizeof(struct hvm_save_descriptor);
>> + }
>> +
>> + return 0;
>> +}
>> +
>> +static int hvm_load_cpu_msrs(struct domain *d, hvm_domain_context_t
>> *h) +{
>> + unsigned int i, vcpuid = hvm_load_instance(h);
>> + struct vcpu *v;
>> + const struct hvm_save_descriptor *desc;
>> + struct hvm_msr *ctxt;
>> + int err = 0;
>> +
>> + if ( vcpuid >= d->max_vcpus || (v = d->vcpu[vcpuid]) == NULL )
>> + {
>> + dprintk(XENLOG_G_ERR, "HVM restore: dom%d has no vcpu%u\n",
>> + d->domain_id, vcpuid);
>> + return -EINVAL;
>> + }
>> +
>> + /* Customized checking for entry since our entry is of variable
>> length */ + desc = (struct hvm_save_descriptor *)&h->data[h->cur];
>> + if ( sizeof (*desc) > h->size - h->cur)
>> + {
>> + printk(XENLOG_G_WARNING
>> + "HVM%d.%d restore: not enough data left to read MSR
>> descriptor\n", + d->domain_id, vcpuid);
>> + return -ENODATA;
>> + }
>> + if ( desc->length + sizeof (*desc) > h->size - h->cur)
>> + {
>> + printk(XENLOG_G_WARNING
>> + "HVM%d.%d restore: not enough data left to read %u
>> MSR bytes\n", + d->domain_id, vcpuid, desc->length);
>> + return -ENODATA;
>> + }
>> + if ( desc->length < HVM_CPU_MSR_SIZE(1) )
>> + {
>> + printk(XENLOG_G_WARNING
>> + "HVM%d.%d restore mismatch: MSR length %u < %zu\n",
>> + d->domain_id, vcpuid, desc->length,
>> HVM_CPU_MSR_SIZE(1)); + return -EINVAL;
>> + }
>> +
>> + h->cur += sizeof(*desc);
>> + ctxt = (struct hvm_msr *)&h->data[h->cur];
>> + h->cur += desc->length;
>> +
>> + if ( desc->length != HVM_CPU_MSR_SIZE(ctxt->count) )
>> + {
>> + printk(XENLOG_G_WARNING
>> + "HVM%d.%d restore mismatch: MSR length %u != %zu\n",
>> + d->domain_id, vcpuid, desc->length,
>> + HVM_CPU_MSR_SIZE(ctxt->count));
>> + return -EOPNOTSUPP;
>> + }
>> +
>> + for ( i = 0; i < ctxt->count; ++i )
>> + if ( ctxt->msr[i]._rsvd )
>> + return -EOPNOTSUPP;
>> + /* Checking finished */
>> +
>> + if ( hvm_funcs.load_msr )
>> + err = hvm_funcs.load_msr(v, ctxt);
>> +
>> + for ( i = 0; !err && i < ctxt->count; ++i )
>> + {
>> + switch ( ctxt->msr[i].index )
>> + {
>> + default:
>> + if ( !ctxt->msr[i]._rsvd )
>> + err = -ENXIO;
>> + break;
>> + }
>> + }
>> +
>> + return err;
>> +}
>> +
>> +/* We need variable length data chunks for XSAVE area and MSRs, hence
>> + * a custom declaration rather than HVM_REGISTER_SAVE_RESTORE.
>> */
>> -static int __init __hvm_register_CPU_XSAVE_save_and_restore(void)
>> +static int __init hvm_register_CPU_save_and_restore(void)
>> {
>> hvm_register_savevm(CPU_XSAVE_CODE,
>> "CPU_XSAVE",
>> @@ -1139,9 +1246,22 @@ static int __init __hvm_register_CPU_XSA
>> HVM_CPU_XSAVE_SIZE(xfeature_mask) +
>> sizeof(struct hvm_save_descriptor),
>> HVMSR_PER_VCPU);
>> +
>> + if ( hvm_funcs.init_msr )
>> + msr_count_max += hvm_funcs.init_msr();
>> +
>> + if ( msr_count_max )
>> + hvm_register_savevm(CPU_MSR_CODE,
>> + "CPU_MSR",
>> + hvm_save_cpu_msrs,
>> + hvm_load_cpu_msrs,
>> + HVM_CPU_MSR_SIZE(msr_count_max) +
>> + sizeof(struct hvm_save_descriptor),
>> + HVMSR_PER_VCPU);
>> +
>> return 0;
>> }
>> -__initcall(__hvm_register_CPU_XSAVE_save_and_restore);
>> +__initcall(hvm_register_CPU_save_and_restore);
>>
>> int hvm_vcpu_initialise(struct vcpu *v)
>> {
>> --- a/xen/include/asm-x86/hvm/hvm.h
>> +++ b/xen/include/asm-x86/hvm/hvm.h
>> @@ -109,6 +109,10 @@ struct hvm_function_table {
>> void (*save_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
>> int (*load_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
>>
>> + unsigned int (*init_msr)(void);
>> + void (*save_msr)(struct vcpu *, struct hvm_msr *);
>> + int (*load_msr)(struct vcpu *, struct hvm_msr *);
>> +
>> /* Examine specifics of the guest state. */
>> unsigned int (*get_interrupt_shadow)(struct vcpu *v);
>> void (*set_interrupt_shadow)(struct vcpu *v, unsigned int
>> intr_shadow); --- a/xen/include/public/arch-x86/hvm/save.h
>> +++ b/xen/include/public/arch-x86/hvm/save.h
>> @@ -592,9 +592,21 @@ struct hvm_tsc_adjust {
>>
>> DECLARE_HVM_SAVE_TYPE(TSC_ADJUST, 19, struct hvm_tsc_adjust);
>>
>> +
>> +struct hvm_msr {
>> + uint32_t count;
>> + struct hvm_one_msr {
>> + uint32_t index;
>> + uint32_t _rsvd;
>> + uint64_t val;
>> + } msr[1 /* variable size */];
>> +};
>> +
>> +#define CPU_MSR_CODE 20
>> +
>
> +DECLARE_HVM_SAVE_TYPE(CPU_MSR, CPU_MSR_CODE, struct hvm_msr);
> +msr dump patch at tools/misc/xen-hvmctx.c
Sorry, I don't follow what this is to mean. If that other patch of
yours needs adjustment, then this surely doesn't belong here.
Jan
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: [PATCH v2] x86: MSR_IA32_BNDCFGS save/restore
2013-12-13 17:57 ` Andrew Cooper
2013-12-16 3:22 ` Liu, Jinsong
@ 2013-12-16 8:06 ` Jan Beulich
1 sibling, 0 replies; 32+ messages in thread
From: Jan Beulich @ 2013-12-16 8:06 UTC (permalink / raw)
To: Andrew Cooper, Jinsong Liu; +Cc: xen-devel, keir, Ian.Campbell, haoxudong.hao
>>> On 13.12.13 at 18:57, Andrew Cooper <andrew.cooper3@citrix.com> wrote:
> On 13/12/2013 14:02, Jan Beulich wrote:
>> +static int vmx_load_msr(struct vcpu *v, struct hvm_msr *ctxt)
>> +{
>> + unsigned int i;
>> + int err = 0;
>> +
>> + vmx_vmcs_enter(v);
>> +
>> + for ( i = 0; i < ctxt->count; ++i )
>> + {
>> + switch ( ctxt->msr[i].index )
>> + {
>> + case MSR_IA32_BNDCFGS:
>> + if ( cpu_has_mpx )
>> + __vmwrite(GUEST_BNDCFGS, ctxt->msr[i].val);
>> + else
>> + err = -ENXIO;
>> + break;
>> + default:
>> + continue;
>
> This will skip setting _rsvd for an MSR we don't recognise. Doesn't
> this interfere with the error checking in the caller?
No - that's exactly the purpose: Not setting _rsvd will allow the caller
to know this MSR was unrecognized by the vendor specific code, and
hence if the generic code also can#t deal with it, the restore _must_
fail.
Jan
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: [PATCH v2] x86: generic MSRs save/restore
2013-12-16 8:04 ` Jan Beulich
@ 2013-12-16 8:39 ` Liu, Jinsong
2013-12-16 8:52 ` Jan Beulich
0 siblings, 1 reply; 32+ messages in thread
From: Liu, Jinsong @ 2013-12-16 8:39 UTC (permalink / raw)
To: Jan Beulich; +Cc: Andrew Cooper, xen-devel, keir, Ian.Campbell, haoxudong.hao
Jan Beulich wrote:
>>>> On 16.12.13 at 04:01, "Liu, Jinsong" <jinsong.liu@intel.com> wrote:
>> Jan Beulich wrote:
>>> This patch introduces a generic MSRs save/restore mechanism, so that
>>> in the future new MSRs save/restore could be added w/ smaller change
>>> than the full blown addition of a new save/restore type.
>>>
>>> Signed-off-by: Jan Beulich <jbeulich@suse.com>
>>>
>>> --- a/xen/arch/x86/hvm/hvm.c
>>> +++ b/xen/arch/x86/hvm/hvm.c
>>> @@ -1127,10 +1127,117 @@ static int hvm_load_cpu_xsave_states(str
>>> return 0; }
>>>
>>> -/* We need variable length data chunk for xsave area, hence
>>> customized
>>> - * declaration other than HVM_REGISTER_SAVE_RESTORE.
>>> +#define HVM_CPU_MSR_SIZE(cnt) offsetof(struct hvm_msr, msr[cnt])
>>> +static unsigned int __read_mostly msr_count_max;
>>> +
>>> +static int hvm_save_cpu_msrs(struct domain *d,
>>> hvm_domain_context_t *h) +{ + struct vcpu *v;
>>> +
>>> + for_each_vcpu ( d, v )
>>> + {
>>> + struct hvm_msr *ctxt;
>>> + unsigned int i;
>>> +
>>> + if ( _hvm_init_entry(h, CPU_MSR_CODE, v->vcpu_id,
>>> + HVM_CPU_MSR_SIZE(msr_count_max)) ) +
>>> return 1; + ctxt = (struct hvm_msr *)&h->data[h->cur]; +
>>> ctxt->count = 0; +
>>> + if ( hvm_funcs.save_msr )
>>> + hvm_funcs.save_msr(v, ctxt);
>>> +
>>> + for ( i = 0; i < ctxt->count; ++i )
>>> + ctxt->msr[i]._rsvd = 0;
>>> +
>>> + if ( ctxt->count )
>>> + h->cur += HVM_CPU_MSR_SIZE(ctxt->count); + else
>>> + h->cur -= sizeof(struct hvm_save_descriptor); + }
>>> +
>>> + return 0;
>>> +}
>>> +
>>> +static int hvm_load_cpu_msrs(struct domain *d,
>>> hvm_domain_context_t *h) +{ + unsigned int i, vcpuid =
>>> hvm_load_instance(h); + struct vcpu *v; + const struct
>>> hvm_save_descriptor *desc; + struct hvm_msr *ctxt;
>>> + int err = 0;
>>> +
>>> + if ( vcpuid >= d->max_vcpus || (v = d->vcpu[vcpuid]) == NULL )
>>> + { + dprintk(XENLOG_G_ERR, "HVM restore: dom%d has no
>>> vcpu%u\n", + d->domain_id, vcpuid);
>>> + return -EINVAL;
>>> + }
>>> +
>>> + /* Customized checking for entry since our entry is of variable
>>> length */ + desc = (struct hvm_save_descriptor
>>> *)&h->data[h->cur]; + if ( sizeof (*desc) > h->size - h->cur)
>>> + {
>>> + printk(XENLOG_G_WARNING
>>> + "HVM%d.%d restore: not enough data left to read MSR
>>> descriptor\n", + d->domain_id, vcpuid); +
>>> return -ENODATA; + }
>>> + if ( desc->length + sizeof (*desc) > h->size - h->cur) + {
>>> + printk(XENLOG_G_WARNING
>>> + "HVM%d.%d restore: not enough data left to read %u
>>> MSR bytes\n", + d->domain_id, vcpuid, desc->length);
>>> + return -ENODATA; + }
>>> + if ( desc->length < HVM_CPU_MSR_SIZE(1) )
>>> + {
>>> + printk(XENLOG_G_WARNING
>>> + "HVM%d.%d restore mismatch: MSR length %u < %zu\n",
>>> + d->domain_id, vcpuid, desc->length,
>>> HVM_CPU_MSR_SIZE(1)); + return -EINVAL;
>>> + }
>>> +
>>> + h->cur += sizeof(*desc);
>>> + ctxt = (struct hvm_msr *)&h->data[h->cur];
>>> + h->cur += desc->length;
>>> +
>>> + if ( desc->length != HVM_CPU_MSR_SIZE(ctxt->count) ) + {
>>> + printk(XENLOG_G_WARNING
>>> + "HVM%d.%d restore mismatch: MSR length %u != %zu\n",
>>> + d->domain_id, vcpuid, desc->length,
>>> + HVM_CPU_MSR_SIZE(ctxt->count));
>>> + return -EOPNOTSUPP;
>>> + }
>>> +
>>> + for ( i = 0; i < ctxt->count; ++i )
>>> + if ( ctxt->msr[i]._rsvd )
>>> + return -EOPNOTSUPP;
>>> + /* Checking finished */
>>> +
>>> + if ( hvm_funcs.load_msr )
>>> + err = hvm_funcs.load_msr(v, ctxt);
>>> +
>>> + for ( i = 0; !err && i < ctxt->count; ++i )
>>> + {
>>> + switch ( ctxt->msr[i].index )
>>> + {
>>> + default:
>>> + if ( !ctxt->msr[i]._rsvd )
>>> + err = -ENXIO;
>>> + break;
>>> + }
>>> + }
>>> +
>>> + return err;
>>> +}
>>> +
>>> +/* We need variable length data chunks for XSAVE area and MSRs,
>>> hence + * a custom declaration rather than
>>> HVM_REGISTER_SAVE_RESTORE. */ -static int __init
>>> __hvm_register_CPU_XSAVE_save_and_restore(void) +static int __init
>>> hvm_register_CPU_save_and_restore(void) {
>>> hvm_register_savevm(CPU_XSAVE_CODE,
>>> "CPU_XSAVE", @@ -1139,9 +1246,22 @@ static int __init
>>> __hvm_register_CPU_XSA
>>> HVM_CPU_XSAVE_SIZE(xfeature_mask) +
>>> sizeof(struct hvm_save_descriptor),
>>> HVMSR_PER_VCPU); +
>>> + if ( hvm_funcs.init_msr )
>>> + msr_count_max += hvm_funcs.init_msr();
>>> +
>>> + if ( msr_count_max )
>>> + hvm_register_savevm(CPU_MSR_CODE,
>>> + "CPU_MSR",
>>> + hvm_save_cpu_msrs,
>>> + hvm_load_cpu_msrs,
>>> + HVM_CPU_MSR_SIZE(msr_count_max) +
>>> + sizeof(struct hvm_save_descriptor),
>>> + HVMSR_PER_VCPU);
>>> +
>>> return 0;
>>> }
>>> -__initcall(__hvm_register_CPU_XSAVE_save_and_restore);
>>> +__initcall(hvm_register_CPU_save_and_restore);
>>>
>>> int hvm_vcpu_initialise(struct vcpu *v)
>>> {
>>> --- a/xen/include/asm-x86/hvm/hvm.h
>>> +++ b/xen/include/asm-x86/hvm/hvm.h
>>> @@ -109,6 +109,10 @@ struct hvm_function_table {
>>> void (*save_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
>>> int (*load_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
>>>
>>> + unsigned int (*init_msr)(void);
>>> + void (*save_msr)(struct vcpu *, struct hvm_msr *);
>>> + int (*load_msr)(struct vcpu *, struct hvm_msr *); +
>>> /* Examine specifics of the guest state. */
>>> unsigned int (*get_interrupt_shadow)(struct vcpu *v);
>>> void (*set_interrupt_shadow)(struct vcpu *v, unsigned int
>>> intr_shadow); --- a/xen/include/public/arch-x86/hvm/save.h
>>> +++ b/xen/include/public/arch-x86/hvm/save.h
>>> @@ -592,9 +592,21 @@ struct hvm_tsc_adjust {
>>>
>>> DECLARE_HVM_SAVE_TYPE(TSC_ADJUST, 19, struct hvm_tsc_adjust);
>>>
>>> +
>>> +struct hvm_msr {
>>> + uint32_t count;
>>> + struct hvm_one_msr {
>>> + uint32_t index;
>>> + uint32_t _rsvd;
>>> + uint64_t val;
>>> + } msr[1 /* variable size */];
>>> +};
>>> +
>>> +#define CPU_MSR_CODE 20
>>> +
>>
>> +DECLARE_HVM_SAVE_TYPE(CPU_MSR, CPU_MSR_CODE, struct hvm_msr);
>> +msr dump patch at tools/misc/xen-hvmctx.c
>
> Sorry, I don't follow what this is to mean. If that other patch of
> yours needs adjustment, then this surely doesn't belong here.
>
OK, I will adjust tools side msr dump patch.
DECLARE_HVM_SAVE_TYPE(CPU_MSR, CPU_MSR_CODE, struct hvm_msr) is for msr dump tools side patch, so if you don't add it here I can use a distinct patch to add it.
Thanks,
Jinsong
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: [PATCH v2] x86: generic MSRs save/restore
2013-12-16 8:39 ` Liu, Jinsong
@ 2013-12-16 8:52 ` Jan Beulich
2013-12-16 9:13 ` Liu, Jinsong
0 siblings, 1 reply; 32+ messages in thread
From: Jan Beulich @ 2013-12-16 8:52 UTC (permalink / raw)
To: Jinsong Liu; +Cc: Andrew Cooper, xen-devel, keir, Ian.Campbell, haoxudong.hao
>>> On 16.12.13 at 09:39, "Liu, Jinsong" <jinsong.liu@intel.com> wrote:
> Jan Beulich wrote:
>>>>> On 16.12.13 at 04:01, "Liu, Jinsong" <jinsong.liu@intel.com> wrote:
>>> Jan Beulich wrote:
>>>> This patch introduces a generic MSRs save/restore mechanism, so that
>>>> in the future new MSRs save/restore could be added w/ smaller change
>>>> than the full blown addition of a new save/restore type.
>>>>
>>>> Signed-off-by: Jan Beulich <jbeulich@suse.com>
>>>>
>>>> --- a/xen/arch/x86/hvm/hvm.c
>>>> +++ b/xen/arch/x86/hvm/hvm.c
>>>> @@ -1127,10 +1127,117 @@ static int hvm_load_cpu_xsave_states(str
>>>> return 0; }
>>>>
>>>> -/* We need variable length data chunk for xsave area, hence
>>>> customized
>>>> - * declaration other than HVM_REGISTER_SAVE_RESTORE.
>>>> +#define HVM_CPU_MSR_SIZE(cnt) offsetof(struct hvm_msr, msr[cnt])
>>>> +static unsigned int __read_mostly msr_count_max;
>>>> +
>>>> +static int hvm_save_cpu_msrs(struct domain *d,
>>>> hvm_domain_context_t *h) +{ + struct vcpu *v;
>>>> +
>>>> + for_each_vcpu ( d, v )
>>>> + {
>>>> + struct hvm_msr *ctxt;
>>>> + unsigned int i;
>>>> +
>>>> + if ( _hvm_init_entry(h, CPU_MSR_CODE, v->vcpu_id,
>>>> + HVM_CPU_MSR_SIZE(msr_count_max)) ) +
>>>> return 1; + ctxt = (struct hvm_msr *)&h->data[h->cur]; +
>>>> ctxt->count = 0; +
>>>> + if ( hvm_funcs.save_msr )
>>>> + hvm_funcs.save_msr(v, ctxt);
>>>> +
>>>> + for ( i = 0; i < ctxt->count; ++i )
>>>> + ctxt->msr[i]._rsvd = 0;
>>>> +
>>>> + if ( ctxt->count )
>>>> + h->cur += HVM_CPU_MSR_SIZE(ctxt->count); + else
>>>> + h->cur -= sizeof(struct hvm_save_descriptor); + }
>>>> +
>>>> + return 0;
>>>> +}
>>>> +
>>>> +static int hvm_load_cpu_msrs(struct domain *d,
>>>> hvm_domain_context_t *h) +{ + unsigned int i, vcpuid =
>>>> hvm_load_instance(h); + struct vcpu *v; + const struct
>>>> hvm_save_descriptor *desc; + struct hvm_msr *ctxt;
>>>> + int err = 0;
>>>> +
>>>> + if ( vcpuid >= d->max_vcpus || (v = d->vcpu[vcpuid]) == NULL )
>>>> + { + dprintk(XENLOG_G_ERR, "HVM restore: dom%d has no
>>>> vcpu%u\n", + d->domain_id, vcpuid);
>>>> + return -EINVAL;
>>>> + }
>>>> +
>>>> + /* Customized checking for entry since our entry is of variable
>>>> length */ + desc = (struct hvm_save_descriptor
>>>> *)&h->data[h->cur]; + if ( sizeof (*desc) > h->size - h->cur)
>>>> + {
>>>> + printk(XENLOG_G_WARNING
>>>> + "HVM%d.%d restore: not enough data left to read MSR
>>>> descriptor\n", + d->domain_id, vcpuid); +
>>>> return -ENODATA; + }
>>>> + if ( desc->length + sizeof (*desc) > h->size - h->cur) + {
>>>> + printk(XENLOG_G_WARNING
>>>> + "HVM%d.%d restore: not enough data left to read %u
>>>> MSR bytes\n", + d->domain_id, vcpuid, desc->length);
>>>> + return -ENODATA; + }
>>>> + if ( desc->length < HVM_CPU_MSR_SIZE(1) )
>>>> + {
>>>> + printk(XENLOG_G_WARNING
>>>> + "HVM%d.%d restore mismatch: MSR length %u < %zu\n",
>>>> + d->domain_id, vcpuid, desc->length,
>>>> HVM_CPU_MSR_SIZE(1)); + return -EINVAL;
>>>> + }
>>>> +
>>>> + h->cur += sizeof(*desc);
>>>> + ctxt = (struct hvm_msr *)&h->data[h->cur];
>>>> + h->cur += desc->length;
>>>> +
>>>> + if ( desc->length != HVM_CPU_MSR_SIZE(ctxt->count) ) + {
>>>> + printk(XENLOG_G_WARNING
>>>> + "HVM%d.%d restore mismatch: MSR length %u != %zu\n",
>>>> + d->domain_id, vcpuid, desc->length,
>>>> + HVM_CPU_MSR_SIZE(ctxt->count));
>>>> + return -EOPNOTSUPP;
>>>> + }
>>>> +
>>>> + for ( i = 0; i < ctxt->count; ++i )
>>>> + if ( ctxt->msr[i]._rsvd )
>>>> + return -EOPNOTSUPP;
>>>> + /* Checking finished */
>>>> +
>>>> + if ( hvm_funcs.load_msr )
>>>> + err = hvm_funcs.load_msr(v, ctxt);
>>>> +
>>>> + for ( i = 0; !err && i < ctxt->count; ++i )
>>>> + {
>>>> + switch ( ctxt->msr[i].index )
>>>> + {
>>>> + default:
>>>> + if ( !ctxt->msr[i]._rsvd )
>>>> + err = -ENXIO;
>>>> + break;
>>>> + }
>>>> + }
>>>> +
>>>> + return err;
>>>> +}
>>>> +
>>>> +/* We need variable length data chunks for XSAVE area and MSRs,
>>>> hence + * a custom declaration rather than
>>>> HVM_REGISTER_SAVE_RESTORE. */ -static int __init
>>>> __hvm_register_CPU_XSAVE_save_and_restore(void) +static int __init
>>>> hvm_register_CPU_save_and_restore(void) {
>>>> hvm_register_savevm(CPU_XSAVE_CODE,
>>>> "CPU_XSAVE", @@ -1139,9 +1246,22 @@ static int __init
>>>> __hvm_register_CPU_XSA
>>>> HVM_CPU_XSAVE_SIZE(xfeature_mask) +
>>>> sizeof(struct hvm_save_descriptor),
>>>> HVMSR_PER_VCPU); +
>>>> + if ( hvm_funcs.init_msr )
>>>> + msr_count_max += hvm_funcs.init_msr();
>>>> +
>>>> + if ( msr_count_max )
>>>> + hvm_register_savevm(CPU_MSR_CODE,
>>>> + "CPU_MSR",
>>>> + hvm_save_cpu_msrs,
>>>> + hvm_load_cpu_msrs,
>>>> + HVM_CPU_MSR_SIZE(msr_count_max) +
>>>> + sizeof(struct hvm_save_descriptor),
>>>> + HVMSR_PER_VCPU);
>>>> +
>>>> return 0;
>>>> }
>>>> -__initcall(__hvm_register_CPU_XSAVE_save_and_restore);
>>>> +__initcall(hvm_register_CPU_save_and_restore);
>>>>
>>>> int hvm_vcpu_initialise(struct vcpu *v)
>>>> {
>>>> --- a/xen/include/asm-x86/hvm/hvm.h
>>>> +++ b/xen/include/asm-x86/hvm/hvm.h
>>>> @@ -109,6 +109,10 @@ struct hvm_function_table {
>>>> void (*save_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
>>>> int (*load_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
>>>>
>>>> + unsigned int (*init_msr)(void);
>>>> + void (*save_msr)(struct vcpu *, struct hvm_msr *);
>>>> + int (*load_msr)(struct vcpu *, struct hvm_msr *); +
>>>> /* Examine specifics of the guest state. */
>>>> unsigned int (*get_interrupt_shadow)(struct vcpu *v);
>>>> void (*set_interrupt_shadow)(struct vcpu *v, unsigned int
>>>> intr_shadow); --- a/xen/include/public/arch-x86/hvm/save.h
>>>> +++ b/xen/include/public/arch-x86/hvm/save.h
>>>> @@ -592,9 +592,21 @@ struct hvm_tsc_adjust {
>>>>
>>>> DECLARE_HVM_SAVE_TYPE(TSC_ADJUST, 19, struct hvm_tsc_adjust);
>>>>
>>>> +
>>>> +struct hvm_msr {
>>>> + uint32_t count;
>>>> + struct hvm_one_msr {
>>>> + uint32_t index;
>>>> + uint32_t _rsvd;
>>>> + uint64_t val;
>>>> + } msr[1 /* variable size */];
>>>> +};
>>>> +
>>>> +#define CPU_MSR_CODE 20
>>>> +
>>>
>>> +DECLARE_HVM_SAVE_TYPE(CPU_MSR, CPU_MSR_CODE, struct hvm_msr);
>>> +msr dump patch at tools/misc/xen-hvmctx.c
>>
>> Sorry, I don't follow what this is to mean. If that other patch of
>> yours needs adjustment, then this surely doesn't belong here.
>>
>
> OK, I will adjust tools side msr dump patch.
>
> DECLARE_HVM_SAVE_TYPE(CPU_MSR, CPU_MSR_CODE, struct hvm_msr) is for msr dump
> tools side patch, so if you don't add it here I can use a distinct patch to
> add it.
The main thing is - this does _not_ belong in the public header, just
like the XSAVE one has no such declaration there.
Jan
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: [PATCH v2] x86: generic MSRs save/restore
2013-12-16 8:52 ` Jan Beulich
@ 2013-12-16 9:13 ` Liu, Jinsong
2013-12-16 9:41 ` Jan Beulich
0 siblings, 1 reply; 32+ messages in thread
From: Liu, Jinsong @ 2013-12-16 9:13 UTC (permalink / raw)
To: Jan Beulich; +Cc: Andrew Cooper, xen-devel, keir, Ian.Campbell, haoxudong.hao
Jan Beulich wrote:
>>>> On 16.12.13 at 09:39, "Liu, Jinsong" <jinsong.liu@intel.com> wrote:
>> Jan Beulich wrote:
>>>>>> On 16.12.13 at 04:01, "Liu, Jinsong" <jinsong.liu@intel.com>
>>>>>> wrote:
>>>> Jan Beulich wrote:
>>>>> This patch introduces a generic MSRs save/restore mechanism, so
>>>>> that in the future new MSRs save/restore could be added w/
>>>>> smaller change than the full blown addition of a new save/restore
>>>>> type.
>>>>>
>>>>> Signed-off-by: Jan Beulich <jbeulich@suse.com>
>>>>>
>>>>> --- a/xen/arch/x86/hvm/hvm.c
>>>>> +++ b/xen/arch/x86/hvm/hvm.c
>>>>> @@ -1127,10 +1127,117 @@ static int hvm_load_cpu_xsave_states(str
>>>>> return 0; }
>>>>>
>>>>> -/* We need variable length data chunk for xsave area, hence
>>>>> customized
>>>>> - * declaration other than HVM_REGISTER_SAVE_RESTORE.
>>>>> +#define HVM_CPU_MSR_SIZE(cnt) offsetof(struct hvm_msr, msr[cnt])
>>>>> +static unsigned int __read_mostly msr_count_max;
>>>>> +
>>>>> +static int hvm_save_cpu_msrs(struct domain *d,
>>>>> hvm_domain_context_t *h) +{ + struct vcpu *v;
>>>>> +
>>>>> + for_each_vcpu ( d, v )
>>>>> + {
>>>>> + struct hvm_msr *ctxt;
>>>>> + unsigned int i;
>>>>> +
>>>>> + if ( _hvm_init_entry(h, CPU_MSR_CODE, v->vcpu_id,
>>>>> + HVM_CPU_MSR_SIZE(msr_count_max)) ) +
>>>>> return 1; + ctxt = (struct hvm_msr *)&h->data[h->cur]; +
>>>>> ctxt->count = 0; + + if ( hvm_funcs.save_msr )
>>>>> + hvm_funcs.save_msr(v, ctxt);
>>>>> +
>>>>> + for ( i = 0; i < ctxt->count; ++i )
>>>>> + ctxt->msr[i]._rsvd = 0;
>>>>> +
>>>>> + if ( ctxt->count )
>>>>> + h->cur += HVM_CPU_MSR_SIZE(ctxt->count); +
>>>>> else + h->cur -= sizeof(struct hvm_save_descriptor); +
>>>>> } + + return 0;
>>>>> +}
>>>>> +
>>>>> +static int hvm_load_cpu_msrs(struct domain *d,
>>>>> hvm_domain_context_t *h) +{ + unsigned int i, vcpuid =
>>>>> hvm_load_instance(h); + struct vcpu *v; + const struct
>>>>> hvm_save_descriptor *desc; + struct hvm_msr *ctxt; + int
>>>>> err = 0; +
>>>>> + if ( vcpuid >= d->max_vcpus || (v = d->vcpu[vcpuid]) == NULL
>>>>> ) + { + dprintk(XENLOG_G_ERR, "HVM restore: dom%d has no
>>>>> vcpu%u\n", + d->domain_id, vcpuid);
>>>>> + return -EINVAL;
>>>>> + }
>>>>> +
>>>>> + /* Customized checking for entry since our entry is of
>>>>> variable length */ + desc = (struct hvm_save_descriptor
>>>>> *)&h->data[h->cur]; + if ( sizeof (*desc) > h->size - h->cur)
>>>>> + { + printk(XENLOG_G_WARNING
>>>>> + "HVM%d.%d restore: not enough data left to read
>>>>> MSR descriptor\n", + d->domain_id, vcpuid); +
>>>>> return -ENODATA; + }
>>>>> + if ( desc->length + sizeof (*desc) > h->size - h->cur) + {
>>>>> + printk(XENLOG_G_WARNING
>>>>> + "HVM%d.%d restore: not enough data left to read %u
>>>>> MSR bytes\n", + d->domain_id, vcpuid, desc->length);
>>>>> + return -ENODATA; + }
>>>>> + if ( desc->length < HVM_CPU_MSR_SIZE(1) )
>>>>> + {
>>>>> + printk(XENLOG_G_WARNING
>>>>> + "HVM%d.%d restore mismatch: MSR length %u <
>>>>> %zu\n", + d->domain_id, vcpuid, desc->length,
>>>>> HVM_CPU_MSR_SIZE(1)); + return -EINVAL;
>>>>> + }
>>>>> +
>>>>> + h->cur += sizeof(*desc);
>>>>> + ctxt = (struct hvm_msr *)&h->data[h->cur];
>>>>> + h->cur += desc->length;
>>>>> +
>>>>> + if ( desc->length != HVM_CPU_MSR_SIZE(ctxt->count) ) + {
>>>>> + printk(XENLOG_G_WARNING
>>>>> + "HVM%d.%d restore mismatch: MSR length %u !=
>>>>> %zu\n", + d->domain_id, vcpuid, desc->length,
>>>>> + HVM_CPU_MSR_SIZE(ctxt->count));
>>>>> + return -EOPNOTSUPP;
>>>>> + }
>>>>> +
>>>>> + for ( i = 0; i < ctxt->count; ++i )
>>>>> + if ( ctxt->msr[i]._rsvd )
>>>>> + return -EOPNOTSUPP;
>>>>> + /* Checking finished */
>>>>> +
>>>>> + if ( hvm_funcs.load_msr )
>>>>> + err = hvm_funcs.load_msr(v, ctxt);
>>>>> +
>>>>> + for ( i = 0; !err && i < ctxt->count; ++i )
>>>>> + {
>>>>> + switch ( ctxt->msr[i].index )
>>>>> + {
>>>>> + default:
>>>>> + if ( !ctxt->msr[i]._rsvd )
>>>>> + err = -ENXIO;
>>>>> + break;
>>>>> + }
>>>>> + }
>>>>> +
>>>>> + return err;
>>>>> +}
>>>>> +
>>>>> +/* We need variable length data chunks for XSAVE area and MSRs,
>>>>> hence + * a custom declaration rather than
>>>>> HVM_REGISTER_SAVE_RESTORE. */ -static int __init
>>>>> __hvm_register_CPU_XSAVE_save_and_restore(void) +static int __init
>>>>> hvm_register_CPU_save_and_restore(void) {
>>>>> hvm_register_savevm(CPU_XSAVE_CODE,
>>>>> "CPU_XSAVE", @@ -1139,9 +1246,22 @@ static int __init
>>>>> __hvm_register_CPU_XSA
>>>>> HVM_CPU_XSAVE_SIZE(xfeature_mask) +
>>>>> sizeof(struct hvm_save_descriptor),
>>>>> HVMSR_PER_VCPU); + + if ( hvm_funcs.init_msr )
>>>>> + msr_count_max += hvm_funcs.init_msr();
>>>>> +
>>>>> + if ( msr_count_max )
>>>>> + hvm_register_savevm(CPU_MSR_CODE,
>>>>> + "CPU_MSR",
>>>>> + hvm_save_cpu_msrs,
>>>>> + hvm_load_cpu_msrs,
>>>>> + HVM_CPU_MSR_SIZE(msr_count_max) +
>>>>> + sizeof(struct
>>>>> hvm_save_descriptor), +
>>>>> HVMSR_PER_VCPU); +
>>>>> return 0;
>>>>> }
>>>>> -__initcall(__hvm_register_CPU_XSAVE_save_and_restore);
>>>>> +__initcall(hvm_register_CPU_save_and_restore);
>>>>>
>>>>> int hvm_vcpu_initialise(struct vcpu *v)
>>>>> {
>>>>> --- a/xen/include/asm-x86/hvm/hvm.h
>>>>> +++ b/xen/include/asm-x86/hvm/hvm.h
>>>>> @@ -109,6 +109,10 @@ struct hvm_function_table {
>>>>> void (*save_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu
>>>>> *ctxt); int (*load_cpu_ctxt)(struct vcpu *v, struct
>>>>> hvm_hw_cpu *ctxt);
>>>>>
>>>>> + unsigned int (*init_msr)(void);
>>>>> + void (*save_msr)(struct vcpu *, struct hvm_msr *);
>>>>> + int (*load_msr)(struct vcpu *, struct hvm_msr *); +
>>>>> /* Examine specifics of the guest state. */
>>>>> unsigned int (*get_interrupt_shadow)(struct vcpu *v);
>>>>> void (*set_interrupt_shadow)(struct vcpu *v, unsigned int
>>>>> intr_shadow); --- a/xen/include/public/arch-x86/hvm/save.h
>>>>> +++ b/xen/include/public/arch-x86/hvm/save.h
>>>>> @@ -592,9 +592,21 @@ struct hvm_tsc_adjust {
>>>>>
>>>>> DECLARE_HVM_SAVE_TYPE(TSC_ADJUST, 19, struct hvm_tsc_adjust);
>>>>>
>>>>> +
>>>>> +struct hvm_msr {
>>>>> + uint32_t count;
>>>>> + struct hvm_one_msr {
>>>>> + uint32_t index;
>>>>> + uint32_t _rsvd;
>>>>> + uint64_t val;
>>>>> + } msr[1 /* variable size */];
>>>>> +};
>>>>> +
>>>>> +#define CPU_MSR_CODE 20
>>>>> +
>>>>
>>>> +DECLARE_HVM_SAVE_TYPE(CPU_MSR, CPU_MSR_CODE, struct hvm_msr);
>>>> +msr dump patch at tools/misc/xen-hvmctx.c
>>>
>>> Sorry, I don't follow what this is to mean. If that other patch of
>>> yours needs adjustment, then this surely doesn't belong here.
>>>
>>
>> OK, I will adjust tools side msr dump patch.
>>
>> DECLARE_HVM_SAVE_TYPE(CPU_MSR, CPU_MSR_CODE, struct hvm_msr) is for
>> msr dump tools side patch, so if you don't add it here I can use a
>> distinct patch to add it.
>
> The main thing is - this does _not_ belong in the public header, just
> like the XSAVE one has no such declaration there.
>
> Jan
XSAVE didn't get dumped at xen-hvmctx.c, it just forget (?) to do so, hence it didn't declare at Xen side.
Thanks,
Jinsong
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: [PATCH v2] x86: generic MSRs save/restore
2013-12-16 9:13 ` Liu, Jinsong
@ 2013-12-16 9:41 ` Jan Beulich
2013-12-16 9:53 ` Liu, Jinsong
0 siblings, 1 reply; 32+ messages in thread
From: Jan Beulich @ 2013-12-16 9:41 UTC (permalink / raw)
To: Jinsong Liu; +Cc: Andrew Cooper, xen-devel, keir, Ian.Campbell, haoxudong.hao
>>> On 16.12.13 at 10:13, "Liu, Jinsong" <jinsong.liu@intel.com> wrote:
> Jan Beulich wrote:
>>>>> On 16.12.13 at 09:39, "Liu, Jinsong" <jinsong.liu@intel.com> wrote:
>>> Jan Beulich wrote:
>>>>>>> On 16.12.13 at 04:01, "Liu, Jinsong" <jinsong.liu@intel.com>
>>>>>>> wrote:
>>>>> Jan Beulich wrote:
>>>>>> This patch introduces a generic MSRs save/restore mechanism, so
>>>>>> that in the future new MSRs save/restore could be added w/
>>>>>> smaller change than the full blown addition of a new save/restore
>>>>>> type.
>>>>>>
>>>>>> Signed-off-by: Jan Beulich <jbeulich@suse.com>
>>>>>>
>>>>>> --- a/xen/arch/x86/hvm/hvm.c
>>>>>> +++ b/xen/arch/x86/hvm/hvm.c
>>>>>> @@ -1127,10 +1127,117 @@ static int hvm_load_cpu_xsave_states(str
>>>>>> return 0; }
>>>>>>
>>>>>> -/* We need variable length data chunk for xsave area, hence
>>>>>> customized
>>>>>> - * declaration other than HVM_REGISTER_SAVE_RESTORE.
>>>>>> +#define HVM_CPU_MSR_SIZE(cnt) offsetof(struct hvm_msr, msr[cnt])
>>>>>> +static unsigned int __read_mostly msr_count_max;
>>>>>> +
>>>>>> +static int hvm_save_cpu_msrs(struct domain *d,
>>>>>> hvm_domain_context_t *h) +{ + struct vcpu *v;
>>>>>> +
>>>>>> + for_each_vcpu ( d, v )
>>>>>> + {
>>>>>> + struct hvm_msr *ctxt;
>>>>>> + unsigned int i;
>>>>>> +
>>>>>> + if ( _hvm_init_entry(h, CPU_MSR_CODE, v->vcpu_id,
>>>>>> + HVM_CPU_MSR_SIZE(msr_count_max)) ) +
>>>>>> return 1; + ctxt = (struct hvm_msr *)&h->data[h->cur]; +
>>>>>> ctxt->count = 0; + + if ( hvm_funcs.save_msr )
>>>>>> + hvm_funcs.save_msr(v, ctxt);
>>>>>> +
>>>>>> + for ( i = 0; i < ctxt->count; ++i )
>>>>>> + ctxt->msr[i]._rsvd = 0;
>>>>>> +
>>>>>> + if ( ctxt->count )
>>>>>> + h->cur += HVM_CPU_MSR_SIZE(ctxt->count); +
>>>>>> else + h->cur -= sizeof(struct hvm_save_descriptor); +
>>>>>> } + + return 0;
>>>>>> +}
>>>>>> +
>>>>>> +static int hvm_load_cpu_msrs(struct domain *d,
>>>>>> hvm_domain_context_t *h) +{ + unsigned int i, vcpuid =
>>>>>> hvm_load_instance(h); + struct vcpu *v; + const struct
>>>>>> hvm_save_descriptor *desc; + struct hvm_msr *ctxt; + int
>>>>>> err = 0; +
>>>>>> + if ( vcpuid >= d->max_vcpus || (v = d->vcpu[vcpuid]) == NULL
>>>>>> ) + { + dprintk(XENLOG_G_ERR, "HVM restore: dom%d has no
>>>>>> vcpu%u\n", + d->domain_id, vcpuid);
>>>>>> + return -EINVAL;
>>>>>> + }
>>>>>> +
>>>>>> + /* Customized checking for entry since our entry is of
>>>>>> variable length */ + desc = (struct hvm_save_descriptor
>>>>>> *)&h->data[h->cur]; + if ( sizeof (*desc) > h->size - h->cur)
>>>>>> + { + printk(XENLOG_G_WARNING
>>>>>> + "HVM%d.%d restore: not enough data left to read
>>>>>> MSR descriptor\n", + d->domain_id, vcpuid); +
>>>>>> return -ENODATA; + }
>>>>>> + if ( desc->length + sizeof (*desc) > h->size - h->cur) + {
>>>>>> + printk(XENLOG_G_WARNING
>>>>>> + "HVM%d.%d restore: not enough data left to read %u
>>>>>> MSR bytes\n", + d->domain_id, vcpuid, desc->length);
>>>>>> + return -ENODATA; + }
>>>>>> + if ( desc->length < HVM_CPU_MSR_SIZE(1) )
>>>>>> + {
>>>>>> + printk(XENLOG_G_WARNING
>>>>>> + "HVM%d.%d restore mismatch: MSR length %u <
>>>>>> %zu\n", + d->domain_id, vcpuid, desc->length,
>>>>>> HVM_CPU_MSR_SIZE(1)); + return -EINVAL;
>>>>>> + }
>>>>>> +
>>>>>> + h->cur += sizeof(*desc);
>>>>>> + ctxt = (struct hvm_msr *)&h->data[h->cur];
>>>>>> + h->cur += desc->length;
>>>>>> +
>>>>>> + if ( desc->length != HVM_CPU_MSR_SIZE(ctxt->count) ) + {
>>>>>> + printk(XENLOG_G_WARNING
>>>>>> + "HVM%d.%d restore mismatch: MSR length %u !=
>>>>>> %zu\n", + d->domain_id, vcpuid, desc->length,
>>>>>> + HVM_CPU_MSR_SIZE(ctxt->count));
>>>>>> + return -EOPNOTSUPP;
>>>>>> + }
>>>>>> +
>>>>>> + for ( i = 0; i < ctxt->count; ++i )
>>>>>> + if ( ctxt->msr[i]._rsvd )
>>>>>> + return -EOPNOTSUPP;
>>>>>> + /* Checking finished */
>>>>>> +
>>>>>> + if ( hvm_funcs.load_msr )
>>>>>> + err = hvm_funcs.load_msr(v, ctxt);
>>>>>> +
>>>>>> + for ( i = 0; !err && i < ctxt->count; ++i )
>>>>>> + {
>>>>>> + switch ( ctxt->msr[i].index )
>>>>>> + {
>>>>>> + default:
>>>>>> + if ( !ctxt->msr[i]._rsvd )
>>>>>> + err = -ENXIO;
>>>>>> + break;
>>>>>> + }
>>>>>> + }
>>>>>> +
>>>>>> + return err;
>>>>>> +}
>>>>>> +
>>>>>> +/* We need variable length data chunks for XSAVE area and MSRs,
>>>>>> hence + * a custom declaration rather than
>>>>>> HVM_REGISTER_SAVE_RESTORE. */ -static int __init
>>>>>> __hvm_register_CPU_XSAVE_save_and_restore(void) +static int __init
>>>>>> hvm_register_CPU_save_and_restore(void) {
>>>>>> hvm_register_savevm(CPU_XSAVE_CODE,
>>>>>> "CPU_XSAVE", @@ -1139,9 +1246,22 @@ static int __init
>>>>>> __hvm_register_CPU_XSA
>>>>>> HVM_CPU_XSAVE_SIZE(xfeature_mask) +
>>>>>> sizeof(struct hvm_save_descriptor),
>>>>>> HVMSR_PER_VCPU); + + if ( hvm_funcs.init_msr )
>>>>>> + msr_count_max += hvm_funcs.init_msr();
>>>>>> +
>>>>>> + if ( msr_count_max )
>>>>>> + hvm_register_savevm(CPU_MSR_CODE,
>>>>>> + "CPU_MSR",
>>>>>> + hvm_save_cpu_msrs,
>>>>>> + hvm_load_cpu_msrs,
>>>>>> + HVM_CPU_MSR_SIZE(msr_count_max) +
>>>>>> + sizeof(struct
>>>>>> hvm_save_descriptor), +
>>>>>> HVMSR_PER_VCPU); +
>>>>>> return 0;
>>>>>> }
>>>>>> -__initcall(__hvm_register_CPU_XSAVE_save_and_restore);
>>>>>> +__initcall(hvm_register_CPU_save_and_restore);
>>>>>>
>>>>>> int hvm_vcpu_initialise(struct vcpu *v)
>>>>>> {
>>>>>> --- a/xen/include/asm-x86/hvm/hvm.h
>>>>>> +++ b/xen/include/asm-x86/hvm/hvm.h
>>>>>> @@ -109,6 +109,10 @@ struct hvm_function_table {
>>>>>> void (*save_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu
>>>>>> *ctxt); int (*load_cpu_ctxt)(struct vcpu *v, struct
>>>>>> hvm_hw_cpu *ctxt);
>>>>>>
>>>>>> + unsigned int (*init_msr)(void);
>>>>>> + void (*save_msr)(struct vcpu *, struct hvm_msr *);
>>>>>> + int (*load_msr)(struct vcpu *, struct hvm_msr *); +
>>>>>> /* Examine specifics of the guest state. */
>>>>>> unsigned int (*get_interrupt_shadow)(struct vcpu *v);
>>>>>> void (*set_interrupt_shadow)(struct vcpu *v, unsigned int
>>>>>> intr_shadow); --- a/xen/include/public/arch-x86/hvm/save.h
>>>>>> +++ b/xen/include/public/arch-x86/hvm/save.h
>>>>>> @@ -592,9 +592,21 @@ struct hvm_tsc_adjust {
>>>>>>
>>>>>> DECLARE_HVM_SAVE_TYPE(TSC_ADJUST, 19, struct hvm_tsc_adjust);
>>>>>>
>>>>>> +
>>>>>> +struct hvm_msr {
>>>>>> + uint32_t count;
>>>>>> + struct hvm_one_msr {
>>>>>> + uint32_t index;
>>>>>> + uint32_t _rsvd;
>>>>>> + uint64_t val;
>>>>>> + } msr[1 /* variable size */];
>>>>>> +};
>>>>>> +
>>>>>> +#define CPU_MSR_CODE 20
>>>>>> +
>>>>>
>>>>> +DECLARE_HVM_SAVE_TYPE(CPU_MSR, CPU_MSR_CODE, struct hvm_msr);
>>>>> +msr dump patch at tools/misc/xen-hvmctx.c
>>>>
>>>> Sorry, I don't follow what this is to mean. If that other patch of
>>>> yours needs adjustment, then this surely doesn't belong here.
>>>>
>>>
>>> OK, I will adjust tools side msr dump patch.
>>>
>>> DECLARE_HVM_SAVE_TYPE(CPU_MSR, CPU_MSR_CODE, struct hvm_msr) is for
>>> msr dump tools side patch, so if you don't add it here I can use a
>>> distinct patch to add it.
>>
>> The main thing is - this does _not_ belong in the public header, just
>> like the XSAVE one has no such declaration there.
>
> XSAVE didn't get dumped at xen-hvmctx.c, it just forget (?) to do so, hence
> it didn't declare at Xen side.
But that doesn't change the fact that having the declaration in the
public header is wrong for variable size save records.
Jan
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: [PATCH v2] x86: generic MSRs save/restore
2013-12-16 9:41 ` Jan Beulich
@ 2013-12-16 9:53 ` Liu, Jinsong
2013-12-16 10:01 ` Jan Beulich
0 siblings, 1 reply; 32+ messages in thread
From: Liu, Jinsong @ 2013-12-16 9:53 UTC (permalink / raw)
To: Jan Beulich; +Cc: Andrew Cooper, xen-devel, keir, Ian.Campbell, haoxudong.hao
Jan Beulich wrote:
>>>> On 16.12.13 at 10:13, "Liu, Jinsong" <jinsong.liu@intel.com> wrote:
>> Jan Beulich wrote:
>>>>>> On 16.12.13 at 09:39, "Liu, Jinsong" <jinsong.liu@intel.com>
>>>>>> wrote:
>>>> Jan Beulich wrote:
>>>>>>>> On 16.12.13 at 04:01, "Liu, Jinsong" <jinsong.liu@intel.com>
>>>>>>>> wrote:
>>>>>> Jan Beulich wrote:
>>>>>>> This patch introduces a generic MSRs save/restore mechanism, so
>>>>>>> that in the future new MSRs save/restore could be added w/
>>>>>>> smaller change than the full blown addition of a new
>>>>>>> save/restore type.
>>>>>>>
>>>>>>> Signed-off-by: Jan Beulich <jbeulich@suse.com>
>>>>>>>
>>>>>>> --- a/xen/arch/x86/hvm/hvm.c
>>>>>>> +++ b/xen/arch/x86/hvm/hvm.c
>>>>>>> @@ -1127,10 +1127,117 @@ static int
>>>>>>> hvm_load_cpu_xsave_states(str return 0; }
>>>>>>>
>>>>>>> -/* We need variable length data chunk for xsave area, hence
>>>>>>> customized
>>>>>>> - * declaration other than HVM_REGISTER_SAVE_RESTORE.
>>>>>>> +#define HVM_CPU_MSR_SIZE(cnt) offsetof(struct hvm_msr,
>>>>>>> msr[cnt]) +static unsigned int __read_mostly msr_count_max;
>>>>>>> +
>>>>>>> +static int hvm_save_cpu_msrs(struct domain *d,
>>>>>>> hvm_domain_context_t *h) +{ + struct vcpu *v;
>>>>>>> +
>>>>>>> + for_each_vcpu ( d, v )
>>>>>>> + {
>>>>>>> + struct hvm_msr *ctxt;
>>>>>>> + unsigned int i;
>>>>>>> +
>>>>>>> + if ( _hvm_init_entry(h, CPU_MSR_CODE, v->vcpu_id,
>>>>>>> + HVM_CPU_MSR_SIZE(msr_count_max))
>>>>>>> ) + return 1; + ctxt = (struct hvm_msr
>>>>>>> *)&h->data[h->cur]; + ctxt->count = 0; + + if (
>>>>>>> hvm_funcs.save_msr ) + hvm_funcs.save_msr(v, ctxt);
>>>>>>> +
>>>>>>> + for ( i = 0; i < ctxt->count; ++i )
>>>>>>> + ctxt->msr[i]._rsvd = 0;
>>>>>>> +
>>>>>>> + if ( ctxt->count )
>>>>>>> + h->cur += HVM_CPU_MSR_SIZE(ctxt->count); +
>>>>>>> else + h->cur -= sizeof(struct hvm_save_descriptor);
>>>>>>> + } + + return 0; +}
>>>>>>> +
>>>>>>> +static int hvm_load_cpu_msrs(struct domain *d,
>>>>>>> hvm_domain_context_t *h) +{ + unsigned int i, vcpuid =
>>>>>>> hvm_load_instance(h); + struct vcpu *v; + const struct
>>>>>>> hvm_save_descriptor *desc; + struct hvm_msr *ctxt; + int
>>>>>>> err = 0; + + if ( vcpuid >= d->max_vcpus || (v =
>>>>>>> d->vcpu[vcpuid]) == NULL ) + { +
>>>>>>> dprintk(XENLOG_G_ERR, "HVM restore: dom%d has no vcpu%u\n", +
>>>>>>> d->domain_id, vcpuid); + return -EINVAL;
>>>>>>> + }
>>>>>>> +
>>>>>>> + /* Customized checking for entry since our entry is of
>>>>>>> variable length */ + desc = (struct hvm_save_descriptor
>>>>>>> *)&h->data[h->cur]; + if ( sizeof (*desc) > h->size - h->cur)
>>>>>>> + { + printk(XENLOG_G_WARNING
>>>>>>> + "HVM%d.%d restore: not enough data left to read
>>>>>>> MSR descriptor\n", + d->domain_id, vcpuid); +
>>>>>>> return -ENODATA; + } + if ( desc->length + sizeof (*desc)
>>>>>>> > h->size - h->cur) + { + printk(XENLOG_G_WARNING
>>>>>>> + "HVM%d.%d restore: not enough data left to read
>>>>>>> %u MSR bytes\n", + d->domain_id, vcpuid,
>>>>>>> desc->length); + return -ENODATA; + }
>>>>>>> + if ( desc->length < HVM_CPU_MSR_SIZE(1) )
>>>>>>> + {
>>>>>>> + printk(XENLOG_G_WARNING
>>>>>>> + "HVM%d.%d restore mismatch: MSR length %u <
>>>>>>> %zu\n", + d->domain_id, vcpuid, desc->length,
>>>>>>> HVM_CPU_MSR_SIZE(1)); + return -EINVAL;
>>>>>>> + }
>>>>>>> +
>>>>>>> + h->cur += sizeof(*desc);
>>>>>>> + ctxt = (struct hvm_msr *)&h->data[h->cur];
>>>>>>> + h->cur += desc->length;
>>>>>>> +
>>>>>>> + if ( desc->length != HVM_CPU_MSR_SIZE(ctxt->count) ) + {
>>>>>>> + printk(XENLOG_G_WARNING
>>>>>>> + "HVM%d.%d restore mismatch: MSR length %u !=
>>>>>>> %zu\n", + d->domain_id, vcpuid, desc->length,
>>>>>>> + HVM_CPU_MSR_SIZE(ctxt->count));
>>>>>>> + return -EOPNOTSUPP;
>>>>>>> + }
>>>>>>> +
>>>>>>> + for ( i = 0; i < ctxt->count; ++i )
>>>>>>> + if ( ctxt->msr[i]._rsvd )
>>>>>>> + return -EOPNOTSUPP;
>>>>>>> + /* Checking finished */
>>>>>>> +
>>>>>>> + if ( hvm_funcs.load_msr )
>>>>>>> + err = hvm_funcs.load_msr(v, ctxt);
>>>>>>> +
>>>>>>> + for ( i = 0; !err && i < ctxt->count; ++i )
>>>>>>> + {
>>>>>>> + switch ( ctxt->msr[i].index )
>>>>>>> + {
>>>>>>> + default:
>>>>>>> + if ( !ctxt->msr[i]._rsvd )
>>>>>>> + err = -ENXIO;
>>>>>>> + break;
>>>>>>> + }
>>>>>>> + }
>>>>>>> +
>>>>>>> + return err;
>>>>>>> +}
>>>>>>> +
>>>>>>> +/* We need variable length data chunks for XSAVE area and MSRs,
>>>>>>> hence + * a custom declaration rather than
>>>>>>> HVM_REGISTER_SAVE_RESTORE. */ -static int __init
>>>>>>> __hvm_register_CPU_XSAVE_save_and_restore(void) +static int
>>>>>>> __init hvm_register_CPU_save_and_restore(void) {
>>>>>>> hvm_register_savevm(CPU_XSAVE_CODE,
>>>>>>> "CPU_XSAVE", @@ -1139,9 +1246,22 @@ static int __init
>>>>>>> __hvm_register_CPU_XSA
>>>>>>> HVM_CPU_XSAVE_SIZE(xfeature_mask) +
>>>>>>> sizeof(struct hvm_save_descriptor),
>>>>>>> HVMSR_PER_VCPU); + + if ( hvm_funcs.init_msr )
>>>>>>> + msr_count_max += hvm_funcs.init_msr();
>>>>>>> +
>>>>>>> + if ( msr_count_max )
>>>>>>> + hvm_register_savevm(CPU_MSR_CODE,
>>>>>>> + "CPU_MSR",
>>>>>>> + hvm_save_cpu_msrs,
>>>>>>> + hvm_load_cpu_msrs,
>>>>>>> + HVM_CPU_MSR_SIZE(msr_count_max) +
>>>>>>> + sizeof(struct
>>>>>>> hvm_save_descriptor), +
>>>>>>> HVMSR_PER_VCPU); +
>>>>>>> return 0;
>>>>>>> }
>>>>>>> -__initcall(__hvm_register_CPU_XSAVE_save_and_restore);
>>>>>>> +__initcall(hvm_register_CPU_save_and_restore);
>>>>>>>
>>>>>>> int hvm_vcpu_initialise(struct vcpu *v)
>>>>>>> {
>>>>>>> --- a/xen/include/asm-x86/hvm/hvm.h
>>>>>>> +++ b/xen/include/asm-x86/hvm/hvm.h
>>>>>>> @@ -109,6 +109,10 @@ struct hvm_function_table {
>>>>>>> void (*save_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu
>>>>>>> *ctxt); int (*load_cpu_ctxt)(struct vcpu *v, struct
>>>>>>> hvm_hw_cpu *ctxt);
>>>>>>>
>>>>>>> + unsigned int (*init_msr)(void);
>>>>>>> + void (*save_msr)(struct vcpu *, struct hvm_msr *);
>>>>>>> + int (*load_msr)(struct vcpu *, struct hvm_msr *); +
>>>>>>> /* Examine specifics of the guest state. */
>>>>>>> unsigned int (*get_interrupt_shadow)(struct vcpu *v);
>>>>>>> void (*set_interrupt_shadow)(struct vcpu *v, unsigned int
>>>>>>> intr_shadow); --- a/xen/include/public/arch-x86/hvm/save.h
>>>>>>> +++ b/xen/include/public/arch-x86/hvm/save.h
>>>>>>> @@ -592,9 +592,21 @@ struct hvm_tsc_adjust {
>>>>>>>
>>>>>>> DECLARE_HVM_SAVE_TYPE(TSC_ADJUST, 19, struct hvm_tsc_adjust);
>>>>>>>
>>>>>>> +
>>>>>>> +struct hvm_msr {
>>>>>>> + uint32_t count;
>>>>>>> + struct hvm_one_msr {
>>>>>>> + uint32_t index;
>>>>>>> + uint32_t _rsvd;
>>>>>>> + uint64_t val;
>>>>>>> + } msr[1 /* variable size */];
>>>>>>> +};
>>>>>>> +
>>>>>>> +#define CPU_MSR_CODE 20
>>>>>>> +
>>>>>>
>>>>>> +DECLARE_HVM_SAVE_TYPE(CPU_MSR, CPU_MSR_CODE, struct hvm_msr);
>>>>>> +msr dump patch at tools/misc/xen-hvmctx.c
>>>>>
>>>>> Sorry, I don't follow what this is to mean. If that other patch of
>>>>> yours needs adjustment, then this surely doesn't belong here.
>>>>>
>>>>
>>>> OK, I will adjust tools side msr dump patch.
>>>>
>>>> DECLARE_HVM_SAVE_TYPE(CPU_MSR, CPU_MSR_CODE, struct hvm_msr) is for
>>>> msr dump tools side patch, so if you don't add it here I can use a
>>>> distinct patch to add it.
>>>
>>> The main thing is - this does _not_ belong in the public header,
>>> just like the XSAVE one has no such declaration there.
>>
>> XSAVE didn't get dumped at xen-hvmctx.c, it just forget (?) to do
>> so, hence it didn't declare at Xen side.
>
> But that doesn't change the fact that having the declaration in the
> public header is wrong for variable size save records.
>
> Jan
We need this declaration in the public header for compiling reason, then handle variable size data specifically, like:
=================
diff --git a/tools/misc/xen-hvmctx.c b/tools/misc/xen-hvmctx.c
index 5a69245..4b33450 100644
--- a/tools/misc/xen-hvmctx.c
+++ b/tools/misc/xen-hvmctx.c
@@ -399,6 +399,26 @@ static void dump_tsc_adjust(void)
printf(" TSC_ADJUST: tsc_adjust %" PRIx64 "\n", p.tsc_adjust);
}
+#define HVM_CPU_MSR_SIZE(cnt) offsetof(struct hvm_msr, msr[cnt])
+static void dump_cpu_msr(void)
+{
+ int i;
+ HVM_SAVE_TYPE(CPU_MSR) *p = (void *)(buf + off);
+
+ if ( len - off < HVM_CPU_MSR_SIZE(p->count) )
+ {
+ fprintf(stderr, "Error: need another %u bytes, only %u available",
+ (unsigned int)HVM_CPU_MSR_SIZE(p->count), len - off);
+ exit(1);
+ }
+
+ for ( i = 0; i < p->count; i++ )
+ printf(" CPU_MSR: msr %" PRIx32 " val %" PRIx64 "\n",
+ p->msr[i].index, p->msr[i].val);
+
+ off += HVM_CPU_MSR_SIZE(p->count);
+}
+
int main(int argc, char **argv)
{
int entry, domid;
@@ -467,6 +487,7 @@ int main(int argc, char **argv)
case HVM_SAVE_CODE(VIRIDIAN_VCPU): dump_viridian_vcpu(); break;
case HVM_SAVE_CODE(VMCE_VCPU): dump_vmce_vcpu(); break;
case HVM_SAVE_CODE(TSC_ADJUST): dump_tsc_adjust(); break;
+ case HVM_SAVE_CODE(CPU_MSR): dump_cpu_msr(); break;
case HVM_SAVE_CODE(END): break;
default:
printf(" ** Don't understand type %u: skipping\n",
=======================
w/o the declaration, case HVM_SAVE_CODE(CPU_MSR) compiling fail.
Thanks,
Jinsong
^ permalink raw reply related [flat|nested] 32+ messages in thread
* Re: [PATCH v2] x86: generic MSRs save/restore
2013-12-16 9:53 ` Liu, Jinsong
@ 2013-12-16 10:01 ` Jan Beulich
2013-12-16 10:05 ` Liu, Jinsong
0 siblings, 1 reply; 32+ messages in thread
From: Jan Beulich @ 2013-12-16 10:01 UTC (permalink / raw)
To: Jinsong Liu; +Cc: Andrew Cooper, xen-devel, keir, Ian.Campbell, haoxudong.hao
>>> On 16.12.13 at 10:53, "Liu, Jinsong" <jinsong.liu@intel.com> wrote:
> @@ -467,6 +487,7 @@ int main(int argc, char **argv)
> case HVM_SAVE_CODE(VIRIDIAN_VCPU): dump_viridian_vcpu(); break;
> case HVM_SAVE_CODE(VMCE_VCPU): dump_vmce_vcpu(); break;
> case HVM_SAVE_CODE(TSC_ADJUST): dump_tsc_adjust(); break;
> + case HVM_SAVE_CODE(CPU_MSR): dump_cpu_msr(); break;
> case HVM_SAVE_CODE(END): break;
> default:
> printf(" ** Don't understand type %u: skipping\n",
> =======================
>
> w/o the declaration, case HVM_SAVE_CODE(CPU_MSR) compiling fail.
Right, because you ought to use CPU_MSR_CODE here, which the
public header does define.
Jan
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: [PATCH v2] x86: generic MSRs save/restore
2013-12-16 10:01 ` Jan Beulich
@ 2013-12-16 10:05 ` Liu, Jinsong
2013-12-16 11:11 ` Jan Beulich
0 siblings, 1 reply; 32+ messages in thread
From: Liu, Jinsong @ 2013-12-16 10:05 UTC (permalink / raw)
To: Jan Beulich; +Cc: Andrew Cooper, xen-devel, keir, Ian.Campbell, haoxudong.hao
Jan Beulich wrote:
>>>> On 16.12.13 at 10:53, "Liu, Jinsong" <jinsong.liu@intel.com> wrote:
>> @@ -467,6 +487,7 @@ int main(int argc, char **argv)
>> case HVM_SAVE_CODE(VIRIDIAN_VCPU): dump_viridian_vcpu();
>> break; case HVM_SAVE_CODE(VMCE_VCPU): dump_vmce_vcpu();
>> break; case HVM_SAVE_CODE(TSC_ADJUST): dump_tsc_adjust();
>> break; + case HVM_SAVE_CODE(CPU_MSR): dump_cpu_msr(); break;
>> case HVM_SAVE_CODE(END): break;
>> default:
>> printf(" ** Don't understand type %u: skipping\n",
>> =======================
>>
>> w/o the declaration, case HVM_SAVE_CODE(CPU_MSR) compiling fail.
>
> Right, because you ought to use CPU_MSR_CODE here, which the
> public header does define.
>
> Jan
Isn't it ugly? not unified style w/ other typecodes.
Why not simply add declaration at Xen side?
Thanks,
Jinsong
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: [PATCH v2] x86: generic MSRs save/restore
2013-12-16 10:05 ` Liu, Jinsong
@ 2013-12-16 11:11 ` Jan Beulich
2013-12-16 13:23 ` Liu, Jinsong
0 siblings, 1 reply; 32+ messages in thread
From: Jan Beulich @ 2013-12-16 11:11 UTC (permalink / raw)
To: Jinsong Liu; +Cc: Andrew Cooper, xen-devel, keir, Ian.Campbell, haoxudong.hao
>>> On 16.12.13 at 11:05, "Liu, Jinsong" <jinsong.liu@intel.com> wrote:
> Jan Beulich wrote:
>>>>> On 16.12.13 at 10:53, "Liu, Jinsong" <jinsong.liu@intel.com> wrote:
>>> @@ -467,6 +487,7 @@ int main(int argc, char **argv)
>>> case HVM_SAVE_CODE(VIRIDIAN_VCPU): dump_viridian_vcpu();
>>> break; case HVM_SAVE_CODE(VMCE_VCPU): dump_vmce_vcpu();
>>> break; case HVM_SAVE_CODE(TSC_ADJUST): dump_tsc_adjust();
>>> break; + case HVM_SAVE_CODE(CPU_MSR): dump_cpu_msr(); break;
>>> case HVM_SAVE_CODE(END): break;
>>> default:
>>> printf(" ** Don't understand type %u: skipping\n",
>>> =======================
>>>
>>> w/o the declaration, case HVM_SAVE_CODE(CPU_MSR) compiling fail.
>>
>> Right, because you ought to use CPU_MSR_CODE here, which the
>> public header does define.
>
> Isn't it ugly? not unified style w/ other typecodes.
> Why not simply add declaration at Xen side?
We absolutely should not declare things that aren't correct.
Jan
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: [PATCH v2] x86: generic MSRs save/restore
2013-12-16 11:11 ` Jan Beulich
@ 2013-12-16 13:23 ` Liu, Jinsong
2013-12-16 13:34 ` Jan Beulich
0 siblings, 1 reply; 32+ messages in thread
From: Liu, Jinsong @ 2013-12-16 13:23 UTC (permalink / raw)
To: Jan Beulich; +Cc: Andrew Cooper, xen-devel, keir, Ian.Campbell, haoxudong.hao
Jan Beulich wrote:
>>>> On 16.12.13 at 11:05, "Liu, Jinsong" <jinsong.liu@intel.com> wrote:
>> Jan Beulich wrote:
>>>>>> On 16.12.13 at 10:53, "Liu, Jinsong" <jinsong.liu@intel.com>
>>>>>> wrote:
>>>> @@ -467,6 +487,7 @@ int main(int argc, char **argv)
>>>> case HVM_SAVE_CODE(VIRIDIAN_VCPU): dump_viridian_vcpu();
>>>> break; case HVM_SAVE_CODE(VMCE_VCPU): dump_vmce_vcpu();
>>>> break; case HVM_SAVE_CODE(TSC_ADJUST): dump_tsc_adjust();
>>>> break; + case HVM_SAVE_CODE(CPU_MSR): dump_cpu_msr(); break;
>>>> case HVM_SAVE_CODE(END): break;
>>>> default:
>>>> printf(" ** Don't understand type %u: skipping\n",
>>>> =======================
>>>>
>>>> w/o the declaration, case HVM_SAVE_CODE(CPU_MSR) compiling fail.
>>>
>>> Right, because you ought to use CPU_MSR_CODE here, which the
>>> public header does define.
>>
>> Isn't it ugly? not unified style w/ other typecodes.
>> Why not simply add declaration at Xen side?
>
> We absolutely should not declare things that aren't correct.
>
> Jan
You have had the declaration in the public header with variable size data structure:
struct hvm_msr {
uint32_t count;
struct hvm_one_msr {
uint32_t index;
uint32_t _rsvd;
uint64_t val;
} msr[1 /* variable size */];
};
Why can't declare DECLARE_HVM_SAVE_TYPE(CPU_MSR, CPU_MSR_CODE, struct hvm_msr)? They are both variable size.
Thanks,
Jinsong
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: [PATCH v2] x86: generic MSRs save/restore
2013-12-16 13:23 ` Liu, Jinsong
@ 2013-12-16 13:34 ` Jan Beulich
2013-12-16 13:57 ` Liu, Jinsong
0 siblings, 1 reply; 32+ messages in thread
From: Jan Beulich @ 2013-12-16 13:34 UTC (permalink / raw)
To: Jinsong Liu; +Cc: Andrew Cooper, xen-devel, keir, Ian.Campbell, haoxudong.hao
>>> On 16.12.13 at 14:23, "Liu, Jinsong" <jinsong.liu@intel.com> wrote:
> Jan Beulich wrote:
>>>>> On 16.12.13 at 11:05, "Liu, Jinsong" <jinsong.liu@intel.com> wrote:
>>> Jan Beulich wrote:
>>>>>>> On 16.12.13 at 10:53, "Liu, Jinsong" <jinsong.liu@intel.com>
>>>>>>> wrote:
>>>>> @@ -467,6 +487,7 @@ int main(int argc, char **argv)
>>>>> case HVM_SAVE_CODE(VIRIDIAN_VCPU): dump_viridian_vcpu();
>>>>> break; case HVM_SAVE_CODE(VMCE_VCPU): dump_vmce_vcpu();
>>>>> break; case HVM_SAVE_CODE(TSC_ADJUST): dump_tsc_adjust();
>>>>> break; + case HVM_SAVE_CODE(CPU_MSR): dump_cpu_msr(); break;
>>>>> case HVM_SAVE_CODE(END): break;
>>>>> default:
>>>>> printf(" ** Don't understand type %u: skipping\n",
>>>>> =======================
>>>>>
>>>>> w/o the declaration, case HVM_SAVE_CODE(CPU_MSR) compiling fail.
>>>>
>>>> Right, because you ought to use CPU_MSR_CODE here, which the
>>>> public header does define.
>>>
>>> Isn't it ugly? not unified style w/ other typecodes.
>>> Why not simply add declaration at Xen side?
>>
>> We absolutely should not declare things that aren't correct.
>
> You have had the declaration in the public header with variable size data
> structure:
> struct hvm_msr {
> uint32_t count;
> struct hvm_one_msr {
> uint32_t index;
> uint32_t _rsvd;
> uint64_t val;
> } msr[1 /* variable size */];
> };
> Why can't declare DECLARE_HVM_SAVE_TYPE(CPU_MSR, CPU_MSR_CODE, struct
> hvm_msr)? They are both variable size.
That's not the point. We should make it impossible for someone to
erroneously use in particular HVM_SAVE_LENGTH() for variable
size records.
Anyway - why don't you simply bring this up with your colleagues
who introduced the XSAVE record? I'm really just following its
model...
Jan
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: [PATCH v2] x86: generic MSRs save/restore
2013-12-16 13:34 ` Jan Beulich
@ 2013-12-16 13:57 ` Liu, Jinsong
2013-12-16 14:01 ` Liu, Jinsong
0 siblings, 1 reply; 32+ messages in thread
From: Liu, Jinsong @ 2013-12-16 13:57 UTC (permalink / raw)
To: Jan Beulich; +Cc: Andrew Cooper, xen-devel, keir, Ian.Campbell, haoxudong.hao
Jan Beulich wrote:
>>>> On 16.12.13 at 14:23, "Liu, Jinsong" <jinsong.liu@intel.com> wrote:
>> Jan Beulich wrote:
>>>>>> On 16.12.13 at 11:05, "Liu, Jinsong" <jinsong.liu@intel.com>
>>>>>> wrote:
>>>> Jan Beulich wrote:
>>>>>>>> On 16.12.13 at 10:53, "Liu, Jinsong" <jinsong.liu@intel.com>
>>>>>>>> wrote:
>>>>>> @@ -467,6 +487,7 @@ int main(int argc, char **argv)
>>>>>> case HVM_SAVE_CODE(VIRIDIAN_VCPU): dump_viridian_vcpu();
>>>>>> break; case HVM_SAVE_CODE(VMCE_VCPU): dump_vmce_vcpu();
>>>>>> break; case HVM_SAVE_CODE(TSC_ADJUST):
>>>>>> dump_tsc_adjust(); break; + case HVM_SAVE_CODE(CPU_MSR):
>>>>>> dump_cpu_msr(); break; case HVM_SAVE_CODE(END): break;
>>>>>> default:
>>>>>> printf(" ** Don't understand type %u: skipping\n",
>>>>>> =======================
>>>>>>
>>>>>> w/o the declaration, case HVM_SAVE_CODE(CPU_MSR) compiling fail.
>>>>>
>>>>> Right, because you ought to use CPU_MSR_CODE here, which the
>>>>> public header does define.
>>>>
>>>> Isn't it ugly? not unified style w/ other typecodes.
>>>> Why not simply add declaration at Xen side?
>>>
>>> We absolutely should not declare things that aren't correct.
>>
>> You have had the declaration in the public header with variable size
>> data structure: struct hvm_msr {
>> uint32_t count;
>> struct hvm_one_msr {
>> uint32_t index;
>> uint32_t _rsvd;
>> uint64_t val;
>> } msr[1 /* variable size */];
>> };
>> Why can't declare DECLARE_HVM_SAVE_TYPE(CPU_MSR, CPU_MSR_CODE, struct
>> hvm_msr)? They are both variable size.
>
> That's not the point. We should make it impossible for someone to
> erroneously use in particular HVM_SAVE_LENGTH() for variable
> size records.
>
> Anyway - why don't you simply bring this up with your colleagues
> who introduced the XSAVE record? I'm really just following its
> model...
>
They are my ex-colleagues :(
Anyway, I adjust msr dump tools side patch:
diff --git a/tools/misc/xen-hvmctx.c b/tools/misc/xen-hvmctx.c
index 5a69245..8a4614d 100644
--- a/tools/misc/xen-hvmctx.c
+++ b/tools/misc/xen-hvmctx.c
@@ -399,6 +399,26 @@ static void dump_tsc_adjust(void)
printf(" TSC_ADJUST: tsc_adjust %" PRIx64 "\n", p.tsc_adjust);
}
+#define HVM_CPU_MSR_SIZE(cnt) offsetof(struct hvm_msr, msr[cnt])
+static void dump_cpu_msr(void)
+{
+ int i;
+ struct hvm_msr *p = (struct hvm_msr *)(buf + off);
+
+ if ( len - off < HVM_CPU_MSR_SIZE(p->count) )
+ {
+ fprintf(stderr, "Error: need another %u bytes, only %u available",
+ (unsigned int)HVM_CPU_MSR_SIZE(p->count), len - off);
+ exit(1);
+ }
+
+ for ( i = 0; i < p->count; i++ )
+ printf(" CPU_MSR: msr %" PRIx32 " val %" PRIx64 "\n",
+ p->msr[i].index, p->msr[i].val);
+
+ off += HVM_CPU_MSR_SIZE(p->count);
+}
+
int main(int argc, char **argv)
{
int entry, domid;
@@ -467,6 +487,7 @@ int main(int argc, char **argv)
case HVM_SAVE_CODE(VIRIDIAN_VCPU): dump_viridian_vcpu(); break;
case HVM_SAVE_CODE(VMCE_VCPU): dump_vmce_vcpu(); break;
case HVM_SAVE_CODE(TSC_ADJUST): dump_tsc_adjust(); break;
+ case CPU_MSR_CODE: dump_cpu_msr(); break;
case HVM_SAVE_CODE(END): break;
default:
printf(" ** Don't understand type %u: skipping\n",
Thanks,
Jinsong
^ permalink raw reply related [flat|nested] 32+ messages in thread
* Re: [PATCH v2] x86: generic MSRs save/restore
2013-12-16 13:57 ` Liu, Jinsong
@ 2013-12-16 14:01 ` Liu, Jinsong
0 siblings, 0 replies; 32+ messages in thread
From: Liu, Jinsong @ 2013-12-16 14:01 UTC (permalink / raw)
Cc: keir, Ian.Campbell, Andrew Cooper, xen-devel, haoxudong.hao, Jan Beulich
Ian,
Is it OK at tools side?
Thanks,
Jinsong
>
> diff --git a/tools/misc/xen-hvmctx.c b/tools/misc/xen-hvmctx.c
> index 5a69245..8a4614d 100644
> --- a/tools/misc/xen-hvmctx.c
> +++ b/tools/misc/xen-hvmctx.c
> @@ -399,6 +399,26 @@ static void dump_tsc_adjust(void)
> printf(" TSC_ADJUST: tsc_adjust %" PRIx64 "\n", p.tsc_adjust);
> }
>
> +#define HVM_CPU_MSR_SIZE(cnt) offsetof(struct hvm_msr, msr[cnt])
> +static void dump_cpu_msr(void)
> +{
> + int i;
> + struct hvm_msr *p = (struct hvm_msr *)(buf + off);
> +
> + if ( len - off < HVM_CPU_MSR_SIZE(p->count) )
> + {
> + fprintf(stderr, "Error: need another %u bytes, only %u
> available", + (unsigned
> int)HVM_CPU_MSR_SIZE(p->count), len - off); + exit(1);
> + }
> +
> + for ( i = 0; i < p->count; i++ )
> + printf(" CPU_MSR: msr %" PRIx32 " val %" PRIx64 "\n",
> + p->msr[i].index, p->msr[i].val);
> +
> + off += HVM_CPU_MSR_SIZE(p->count);
> +}
> +
> int main(int argc, char **argv)
> {
> int entry, domid;
> @@ -467,6 +487,7 @@ int main(int argc, char **argv)
> case HVM_SAVE_CODE(VIRIDIAN_VCPU): dump_viridian_vcpu();
> break; case HVM_SAVE_CODE(VMCE_VCPU): dump_vmce_vcpu();
> break; case HVM_SAVE_CODE(TSC_ADJUST): dump_tsc_adjust();
> break; + case CPU_MSR_CODE: dump_cpu_msr(); break;
> case HVM_SAVE_CODE(END): break;
> default:
> printf(" ** Don't understand type %u: skipping\n",
>
>
> Thanks,
> Jinsong
>
>
> _______________________________________________
> Xen-devel mailing list
> Xen-devel@lists.xen.org
> http://lists.xen.org/xen-devel
^ permalink raw reply [flat|nested] 32+ messages in thread
* Re: [PATCH v2] x86: generic MSRs save/restore
2013-12-13 14:01 ` [PATCH v2] x86: " Jan Beulich
2013-12-13 17:44 ` Andrew Cooper
2013-12-16 3:01 ` Liu, Jinsong
@ 2013-12-18 12:20 ` Liu, Jinsong
2 siblings, 0 replies; 32+ messages in thread
From: Liu, Jinsong @ 2013-12-18 12:20 UTC (permalink / raw)
To: Jan Beulich; +Cc: Andrew Cooper, xen-devel, keir, Ian.Campbell, haoxudong.hao
Jan Beulich wrote:
> This patch introduces a generic MSRs save/restore mechanism, so that
> in the future new MSRs save/restore could be added w/ smaller change
> than the full blown addition of a new save/restore type.
>
> Signed-off-by: Jan Beulich <jbeulich@suse.com>
Reviewed-by: Liu Jinsong <jinsong.liu@intel.com>
>
> --- a/xen/arch/x86/hvm/hvm.c
> +++ b/xen/arch/x86/hvm/hvm.c
> @@ -1127,10 +1127,117 @@ static int hvm_load_cpu_xsave_states(str
> return 0;
> }
>
> -/* We need variable length data chunk for xsave area, hence
> customized
> - * declaration other than HVM_REGISTER_SAVE_RESTORE.
> +#define HVM_CPU_MSR_SIZE(cnt) offsetof(struct hvm_msr, msr[cnt])
> +static unsigned int __read_mostly msr_count_max;
> +
> +static int hvm_save_cpu_msrs(struct domain *d, hvm_domain_context_t
> *h) +{
> + struct vcpu *v;
> +
> + for_each_vcpu ( d, v )
> + {
> + struct hvm_msr *ctxt;
> + unsigned int i;
> +
> + if ( _hvm_init_entry(h, CPU_MSR_CODE, v->vcpu_id,
> + HVM_CPU_MSR_SIZE(msr_count_max)) )
> + return 1;
> + ctxt = (struct hvm_msr *)&h->data[h->cur];
> + ctxt->count = 0;
> +
> + if ( hvm_funcs.save_msr )
> + hvm_funcs.save_msr(v, ctxt);
> +
> + for ( i = 0; i < ctxt->count; ++i )
> + ctxt->msr[i]._rsvd = 0;
> +
> + if ( ctxt->count )
> + h->cur += HVM_CPU_MSR_SIZE(ctxt->count);
> + else
> + h->cur -= sizeof(struct hvm_save_descriptor);
> + }
> +
> + return 0;
> +}
> +
> +static int hvm_load_cpu_msrs(struct domain *d, hvm_domain_context_t
> *h) +{
> + unsigned int i, vcpuid = hvm_load_instance(h);
> + struct vcpu *v;
> + const struct hvm_save_descriptor *desc;
> + struct hvm_msr *ctxt;
> + int err = 0;
> +
> + if ( vcpuid >= d->max_vcpus || (v = d->vcpu[vcpuid]) == NULL )
> + {
> + dprintk(XENLOG_G_ERR, "HVM restore: dom%d has no vcpu%u\n",
> + d->domain_id, vcpuid);
> + return -EINVAL;
> + }
> +
> + /* Customized checking for entry since our entry is of variable
> length */ + desc = (struct hvm_save_descriptor *)&h->data[h->cur];
> + if ( sizeof (*desc) > h->size - h->cur)
> + {
> + printk(XENLOG_G_WARNING
> + "HVM%d.%d restore: not enough data left to read MSR
> descriptor\n", + d->domain_id, vcpuid);
> + return -ENODATA;
> + }
> + if ( desc->length + sizeof (*desc) > h->size - h->cur)
> + {
> + printk(XENLOG_G_WARNING
> + "HVM%d.%d restore: not enough data left to read %u
> MSR bytes\n", + d->domain_id, vcpuid, desc->length);
> + return -ENODATA;
> + }
> + if ( desc->length < HVM_CPU_MSR_SIZE(1) )
> + {
> + printk(XENLOG_G_WARNING
> + "HVM%d.%d restore mismatch: MSR length %u < %zu\n",
> + d->domain_id, vcpuid, desc->length,
> HVM_CPU_MSR_SIZE(1)); + return -EINVAL;
> + }
> +
> + h->cur += sizeof(*desc);
> + ctxt = (struct hvm_msr *)&h->data[h->cur];
> + h->cur += desc->length;
> +
> + if ( desc->length != HVM_CPU_MSR_SIZE(ctxt->count) )
> + {
> + printk(XENLOG_G_WARNING
> + "HVM%d.%d restore mismatch: MSR length %u != %zu\n",
> + d->domain_id, vcpuid, desc->length,
> + HVM_CPU_MSR_SIZE(ctxt->count));
> + return -EOPNOTSUPP;
> + }
> +
> + for ( i = 0; i < ctxt->count; ++i )
> + if ( ctxt->msr[i]._rsvd )
> + return -EOPNOTSUPP;
> + /* Checking finished */
> +
> + if ( hvm_funcs.load_msr )
> + err = hvm_funcs.load_msr(v, ctxt);
> +
> + for ( i = 0; !err && i < ctxt->count; ++i )
> + {
> + switch ( ctxt->msr[i].index )
> + {
> + default:
> + if ( !ctxt->msr[i]._rsvd )
> + err = -ENXIO;
> + break;
> + }
> + }
> +
> + return err;
> +}
> +
> +/* We need variable length data chunks for XSAVE area and MSRs, hence
> + * a custom declaration rather than HVM_REGISTER_SAVE_RESTORE.
> */
> -static int __init __hvm_register_CPU_XSAVE_save_and_restore(void)
> +static int __init hvm_register_CPU_save_and_restore(void)
> {
> hvm_register_savevm(CPU_XSAVE_CODE,
> "CPU_XSAVE",
> @@ -1139,9 +1246,22 @@ static int __init __hvm_register_CPU_XSA
> HVM_CPU_XSAVE_SIZE(xfeature_mask) +
> sizeof(struct hvm_save_descriptor),
> HVMSR_PER_VCPU);
> +
> + if ( hvm_funcs.init_msr )
> + msr_count_max += hvm_funcs.init_msr();
> +
> + if ( msr_count_max )
> + hvm_register_savevm(CPU_MSR_CODE,
> + "CPU_MSR",
> + hvm_save_cpu_msrs,
> + hvm_load_cpu_msrs,
> + HVM_CPU_MSR_SIZE(msr_count_max) +
> + sizeof(struct hvm_save_descriptor),
> + HVMSR_PER_VCPU);
> +
> return 0;
> }
> -__initcall(__hvm_register_CPU_XSAVE_save_and_restore);
> +__initcall(hvm_register_CPU_save_and_restore);
>
> int hvm_vcpu_initialise(struct vcpu *v)
> {
> --- a/xen/include/asm-x86/hvm/hvm.h
> +++ b/xen/include/asm-x86/hvm/hvm.h
> @@ -109,6 +109,10 @@ struct hvm_function_table {
> void (*save_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
> int (*load_cpu_ctxt)(struct vcpu *v, struct hvm_hw_cpu *ctxt);
>
> + unsigned int (*init_msr)(void);
> + void (*save_msr)(struct vcpu *, struct hvm_msr *);
> + int (*load_msr)(struct vcpu *, struct hvm_msr *);
> +
> /* Examine specifics of the guest state. */
> unsigned int (*get_interrupt_shadow)(struct vcpu *v);
> void (*set_interrupt_shadow)(struct vcpu *v, unsigned int
> intr_shadow); --- a/xen/include/public/arch-x86/hvm/save.h
> +++ b/xen/include/public/arch-x86/hvm/save.h
> @@ -592,9 +592,21 @@ struct hvm_tsc_adjust {
>
> DECLARE_HVM_SAVE_TYPE(TSC_ADJUST, 19, struct hvm_tsc_adjust);
>
> +
> +struct hvm_msr {
> + uint32_t count;
> + struct hvm_one_msr {
> + uint32_t index;
> + uint32_t _rsvd;
> + uint64_t val;
> + } msr[1 /* variable size */];
> +};
> +
> +#define CPU_MSR_CODE 20
> +
> /*
> * Largest type-code in use
> */
> -#define HVM_SAVE_CODE_MAX 19
> +#define HVM_SAVE_CODE_MAX 20
>
> #endif /* __XEN_PUBLIC_HVM_SAVE_X86_H__ */
^ permalink raw reply [flat|nested] 32+ messages in thread
end of thread, other threads:[~2013-12-18 12:20 UTC | newest]
Thread overview: 32+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2013-12-03 14:50 [PATCH v5 4/7] X86: generic MSRs save/restore Liu, Jinsong
2013-12-04 14:18 ` Jan Beulich
2013-12-13 7:50 ` Liu, Jinsong
2013-12-13 9:44 ` Jan Beulich
2013-12-13 7:57 ` Liu, Jinsong
2013-12-13 9:47 ` Jan Beulich
2013-12-13 12:04 ` Andrew Cooper
2013-12-13 12:26 ` Jan Beulich
2013-12-13 14:01 ` [PATCH v2] x86: " Jan Beulich
2013-12-13 17:44 ` Andrew Cooper
2013-12-16 3:12 ` Liu, Jinsong
2013-12-16 8:03 ` Jan Beulich
2013-12-16 3:01 ` Liu, Jinsong
2013-12-16 8:04 ` Jan Beulich
2013-12-16 8:39 ` Liu, Jinsong
2013-12-16 8:52 ` Jan Beulich
2013-12-16 9:13 ` Liu, Jinsong
2013-12-16 9:41 ` Jan Beulich
2013-12-16 9:53 ` Liu, Jinsong
2013-12-16 10:01 ` Jan Beulich
2013-12-16 10:05 ` Liu, Jinsong
2013-12-16 11:11 ` Jan Beulich
2013-12-16 13:23 ` Liu, Jinsong
2013-12-16 13:34 ` Jan Beulich
2013-12-16 13:57 ` Liu, Jinsong
2013-12-16 14:01 ` Liu, Jinsong
2013-12-18 12:20 ` Liu, Jinsong
2013-12-13 14:02 ` [PATCH v2] x86: MSR_IA32_BNDCFGS save/restore Jan Beulich
2013-12-13 17:57 ` Andrew Cooper
2013-12-16 3:22 ` Liu, Jinsong
2013-12-16 8:06 ` Jan Beulich
2013-12-16 3:23 ` Liu, Jinsong
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.