diff options
| author | David Vrabel <david.vrabel@citrix.com> | 2013-03-25 10:11:19 -0400 |
|---|---|---|
| committer | Konrad Rzeszutek Wilk <konrad.wilk@oracle.com> | 2013-03-27 12:06:04 -0400 |
| commit | c26377e62f4e6bfb4d99ef88526047209701a83f (patch) | |
| tree | 839a4e5cea1aa3dbdcbc9f585106b24b360a655a /drivers/xen | |
| parent | d3eb2c89e7ba996e8781b22a6e7d0a895ef55630 (diff) | |
xen/events: avoid race with raising an event in unmask_evtchn()
In unmask_evtchn(), when the mask bit is cleared after testing for
pending and the event becomes pending between the test and clear, then
the upcall will not become pending and the event may be lost or
delayed.
Avoid this by always clearing the mask bit before checking for
pending. If a hypercall is needed, remask the event as
EVTCHNOP_unmask will only retrigger pending events if they were
masked.
This fixes a regression introduced in 3.7 by
b5e579232d635b79a3da052964cb357ccda8d9ea (xen/events: fix
unmask_evtchn for PV on HVM guests) which reordered the clear mask and
check pending operations.
Changes in v2:
- set mask before hypercall.
Cc: stable@vger.kernel.org
Acked-by: Stefano Stabellini <stefano.stabellini@eu.citrix.com>
Signed-off-by: David Vrabel <david.vrabel@citrix.com>
Signed-off-by: Konrad Rzeszutek Wilk <konrad.wilk@oracle.com>
Diffstat (limited to 'drivers/xen')
| -rw-r--r-- | drivers/xen/events.c | 20 |
1 files changed, 15 insertions, 5 deletions
diff --git a/drivers/xen/events.c b/drivers/xen/events.c index d17aa41a9041..aa85881d17b2 100644 --- a/drivers/xen/events.c +++ b/drivers/xen/events.c | |||
| @@ -403,11 +403,23 @@ static void unmask_evtchn(int port) | |||
| 403 | 403 | ||
| 404 | if (unlikely((cpu != cpu_from_evtchn(port)))) | 404 | if (unlikely((cpu != cpu_from_evtchn(port)))) |
| 405 | do_hypercall = 1; | 405 | do_hypercall = 1; |
| 406 | else | 406 | else { |
| 407 | /* | ||
| 408 | * Need to clear the mask before checking pending to | ||
| 409 | * avoid a race with an event becoming pending. | ||
| 410 | * | ||
| 411 | * EVTCHNOP_unmask will only trigger an upcall if the | ||
| 412 | * mask bit was set, so if a hypercall is needed | ||
| 413 | * remask the event. | ||
| 414 | */ | ||
| 415 | sync_clear_bit(port, BM(&s->evtchn_mask[0])); | ||
| 407 | evtchn_pending = sync_test_bit(port, BM(&s->evtchn_pending[0])); | 416 | evtchn_pending = sync_test_bit(port, BM(&s->evtchn_pending[0])); |
| 408 | 417 | ||
| 409 | if (unlikely(evtchn_pending && xen_hvm_domain())) | 418 | if (unlikely(evtchn_pending && xen_hvm_domain())) { |
| 410 | do_hypercall = 1; | 419 | sync_set_bit(port, BM(&s->evtchn_mask[0])); |
| 420 | do_hypercall = 1; | ||
| 421 | } | ||
| 422 | } | ||
| 411 | 423 | ||
| 412 | /* Slow path (hypercall) if this is a non-local port or if this is | 424 | /* Slow path (hypercall) if this is a non-local port or if this is |
| 413 | * an hvm domain and an event is pending (hvm domains don't have | 425 | * an hvm domain and an event is pending (hvm domains don't have |
| @@ -418,8 +430,6 @@ static void unmask_evtchn(int port) | |||
| 418 | } else { | 430 | } else { |
| 419 | struct vcpu_info *vcpu_info = __this_cpu_read(xen_vcpu); | 431 | struct vcpu_info *vcpu_info = __this_cpu_read(xen_vcpu); |
| 420 | 432 | ||
| 421 | sync_clear_bit(port, BM(&s->evtchn_mask[0])); | ||
| 422 | |||
| 423 | /* | 433 | /* |
| 424 | * The following is basically the equivalent of | 434 | * The following is basically the equivalent of |
| 425 | * 'hw_resend_irq'. Just like a real IO-APIC we 'lose | 435 | * 'hw_resend_irq'. Just like a real IO-APIC we 'lose |