qemu-devel
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-devel] [PATCH v8 11/12] vfio: register aer resume notification

From: Zhou Jie
Subject: Re: [Qemu-devel] [PATCH v8 11/12] vfio: register aer resume notification handler for aer resume
Date: Wed, 22 Jun 2016 11:28:50 +0800
User-agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.1.0 
Hi Alex,


Hi Alex,
      on kernel side, I think if we don't trust the user behaviors, we
should
  disable the access of vfio-pci interface once vfio-pci driver got the
error_detected,
  we should disable all access to vfio fd regardless whether the vfio-pci
  was assigned to a VM, we also can return a EAGAIN error if user try
  to access it during the reset period until the host reset finished.
      on qemu side, when we got a error_detect, we pass through the
aer error to guest directly, ignore all access to vfio-pci during this
time,
when qemu need to do a hot reset, we can retry to get the info from
the get info ioctl until we got the info that vfio-pci has been reset
finished,
then do the hot_reset ioctl if need, the kernel should ensure the ioctl
become
//// accessible after host reset completed.



That sounds pretty thorough, the sticky point there is always disabling
the device mmaps w/o a revoke interface.  Do we invalidate the pfn
range and setup a fault handler that blocks on access?  I don't think
we have a whole lot of options, either block or sigbus, but having such
a mechanism might allow us to easily put a device in a "dead" state
where the user can't touch it, which could be useful for other purposes
too.  QEMU would also need to timeout after some number of reset
attempts and assume the device is not coming back.  Plus we'd need a
device flag to indicate this behavior.  Thanks,

Alex


In vfio I have some questions.
1. How can I disable the access by mmap?
   We can disable all access to vfio fd by returning a EAGAIN error
   if user try to access it during the reset period until the host
   reset finished.
   But about the bar region which is maped by vfio_pci_mmap.
   How can I disable it in vfio driver?
   Even there is a way to do it,
   how about the complexity to recovery the mmap?

In qemu I have following proposals.
1. Setup a fault handler that blocks on access of bar region.
   So the data transmission will be blocked.
2. Disable vfio_pci_write_config, but keep vfio_pci_read_config
   enabled.
   The VM can get the error information by reading configure space.
   But operation of writing the configure space will be ignored.
3. Get VFIO device infomation instend of receiving resume notification.
   When I tested the non-fatal error.
   I found that sometimes the qemu receive resume notification earlier
   than error notification.
   The notification receiving time between different eventfd is not
   in the order of sending time.

Sincerely
Zhoujie
reply via email to
[Prev in Thread] Current Thread [Next in Thread]