projects / xen.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: df24285) | patch
VT-d: eliminate flush related timeouts
authorJan Beulich <JBeulich@suse.com>
Tue, 8 Jun 2021 16:38:55 +0000 (17:38 +0100)
committerAndrew Cooper <andrew.cooper3@citrix.com>
Tue, 8 Jun 2021 16:43:06 +0000 (17:43 +0100)
commit7c893abc4ee7e9af62297ba6fd5f27c89d0f33f5
tree74f1fcc6c1d8173ac79f6b93ea0f25db5a28ef72tree | snapshot
parentdf242851ddc93ac0b0a3a20ecab34acc29e3b36bcommit | diff
VT-d: eliminate flush related timeouts

Leaving an in-progress operation pending when it appears to take too
long is problematic: If e.g. a QI command completed later, the write to
the "poll slot" may instead be understood to signal a subsequently
started command's completion. Also our accounting of the timeout period
was actually wrong: We included the time it took for the command to
actually make it to the front of the queue, which could be heavily
affected by guests other than the one for which the flush is being
performed.

Do away with all timeout detection on all flush related code paths.
Log excessively long processing times (with a progressive threshold) to
have some indication of problems in this area.

Additionally log (once) if qinval_next_index() didn't immediately find
an available slot. Together with the earlier change sizing the queue(s)
dynamically, we should now have a guarantee that with our fully
synchronous model any demand for slots can actually be satisfied.

This is part of XSA-373 / CVE-2021-28692.

Signed-off-by: Jan Beulich <jbeulich@suse.com>
Reviewed-by: Paul Durrant <paul@xen.org>
xen/drivers/passthrough/vtd/dmar.h diff | blob | history
xen/drivers/passthrough/vtd/iommu.c diff | blob | history
xen/drivers/passthrough/vtd/qinval.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.