From: "Roger Pau Monné" <roger.pau@citrix.com>
To: Andrew Cooper <andrew.cooper3@citrix.com>
Cc: <xen-devel@lists.xenproject.org>,
Ian Jackson <iwj@xenproject.org>, "Wei Liu" <wl@xen.org>,
George Dunlap <george.dunlap@citrix.com>,
Jan Beulich <jbeulich@suse.com>, Julien Grall <julien@xen.org>,
Stefano Stabellini <sstabellini@kernel.org>,
Anthony PERARD <anthony.perard@citrix.com>,
"Juergen Gross" <jgross@suse.com>,
Christian Lindig <christian.lindig@citrix.com>,
David Scott <dave@recoil.org>,
Volodymyr Babchuk <Volodymyr_Babchuk@epam.com>
Subject: Re: [PATCH 2/6] gnttab: allow per-domain control over transitive grants
Date: Mon, 20 Sep 2021 13:45:10 +0200 [thread overview]
Message-ID: <YUh0RtozVdav0iSQ@MacBook-Air-de-Roger.local> (raw)
In-Reply-To: <60295250-d6b2-1a0e-be30-d83b4f3c76bc@citrix.com>
On Mon, Sep 20, 2021 at 10:32:24AM +0100, Andrew Cooper wrote:
> On 17/09/2021 16:46, Roger Pau Monne wrote:
> > diff --git a/xen/include/public/domctl.h b/xen/include/public/domctl.h
> > index 7f8456c50e..fe2201fca1 100644
> > --- a/xen/include/public/domctl.h
> > +++ b/xen/include/public/domctl.h
> > @@ -96,6 +96,14 @@ struct xen_domctl_createdomain {
> > int32_t max_maptrack_frames;
> > int32_t max_grant_version;
> >
> > +/* Allow transitive grants. */
> > +#define _XEN_DOMCTL_GRANT_transitive 0
> > +#define XEN_DOMCTL_GRANT_transitive (1U << _XEN_DOMCTL_GRANT_transitive)
>
> There's no need for bit position variables.
>
> > +
> > +#define XEN_DOMCTL_GRANT_MAX XEN_DOMCTL_GRANT_transitive
> > +
> > + uint32_t grant_opts;
>
> So far, we've got 3 bits of information, v1, v2 and transitive, and
> we're tight on space in the structure with loads more to fit in.
>
> I was thinking grant_flags or equiv to contain these 3 settings, and any
> further which might appear.
What about using something like the below?
We also need to consider selecting the default version (whatever is
set on the hypervisor) and no grant table at all.
/* Grant version, use low 4 bits. */
#define XEN_DOMCTL_GRANT_disable 0
#define XEN_DOMCTL_GRANT_version_v1 1
#define XEN_DOMCTL_GRANT_version_v2 2
#define XEN_DOMCTL_GRANT_version_default 0xf
/* Allow transitive grants. */
#define _XEN_DOMCTL_GRANT_transitive 4
#define XEN_DOMCTL_GRANT_transitive (1U << _XEN_DOMCTL_GRANT_transitive)
#define XEN_DOMCTLGRANT_MAX XEN_DOMCTL_GRANT_transitive
uint32_t grant_opts;
>
>
> One thing which is missing however is the enumeration of which settings
> are available, and rejection of bad settings. If v2 is disabled
> globally, trying to create a VM with v2 needs to fail.
Right, I think this is already the case with the current
implementation. This doesn't happen however with the transitive
option, as I implemented it and'ing the hypervisor selection to the
tools provided one, partially due to the lack of a 'use hypervisor
default' option.
Thanks, Roger.
next prev parent reply other threads:[~2021-09-20 11:45 UTC|newest]
Thread overview: 25+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-09-17 15:46 [PATCH 0/6] gnttab: add per-domain controls Roger Pau Monne
2021-09-17 15:46 ` [PATCH 1/6] gnttab: allow setting max version per-domain Roger Pau Monne
2021-09-17 15:46 ` [PATCH 2/6] gnttab: allow per-domain control over transitive grants Roger Pau Monne
2021-09-20 9:32 ` Andrew Cooper
2021-09-20 11:45 ` Roger Pau Monné [this message]
2021-09-17 15:46 ` [PATCH 3/6] tools/console: use xenforeigmemory to map console ring Roger Pau Monne
2021-09-20 10:32 ` Ian Jackson
2021-09-17 15:46 ` [PATCH 4/6] tools/xenstored: use atexit to close interfaces Roger Pau Monne
2021-09-20 7:17 ` Roger Pau Monné
2021-09-20 9:22 ` Juergen Gross
2021-09-20 10:53 ` Roger Pau Monné
2021-09-20 10:57 ` Ian Jackson
2021-09-20 11:02 ` Juergen Gross
2021-09-20 12:21 ` Ian Jackson
2021-09-20 10:34 ` Ian Jackson
2021-09-20 10:39 ` Juergen Gross
2021-09-17 15:46 ` [PATCH DNA 5/6] tools/xenstored: restore support for mapping ring as foreign memory Roger Pau Monne
2021-09-20 8:24 ` Juergen Gross
2021-09-20 10:42 ` Roger Pau Monné
2021-09-20 10:51 ` Juergen Gross
2021-09-20 10:35 ` Ian Jackson
2021-09-17 15:46 ` [PATCH 6/6] gnttab: allow disabling grant table per-domain Roger Pau Monne
2021-09-17 16:06 ` [PATCH 0/6] gnttab: add per-domain controls Christian Lindig
2021-09-20 7:26 ` Roger Pau Monné
2021-09-20 8:24 ` Edwin Torok
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=YUh0RtozVdav0iSQ@MacBook-Air-de-Roger.local \
--to=roger.pau@citrix.com \
--cc=Volodymyr_Babchuk@epam.com \
--cc=andrew.cooper3@citrix.com \
--cc=anthony.perard@citrix.com \
--cc=christian.lindig@citrix.com \
--cc=dave@recoil.org \
--cc=george.dunlap@citrix.com \
--cc=iwj@xenproject.org \
--cc=jbeulich@suse.com \
--cc=jgross@suse.com \
--cc=julien@xen.org \
--cc=sstabellini@kernel.org \
--cc=wl@xen.org \
--cc=xen-devel@lists.xenproject.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.