Re: [PATCH v2 5/6] x86/xen: Add a Xen-specific sync_core() implementation

From: Andy Lutomirski
Date: Fri Dec 02 2016 - 15:41:37 EST

Next message: kernel test robot: "a3a18061c9: WARNING: CPU: 0 PID: 1 at mm/hugetlb.c:2918 hugetlb_add_hstate"
Previous message: Larry Finger: "Re: [PATCH] net: wireless: realtek: constify rate_control_ops structures"
In reply to: Linus Torvalds: "Re: [PATCH v2 5/6] x86/xen: Add a Xen-specific sync_core() implementation"
Next in thread: Linus Torvalds: "Re: [PATCH v2 5/6] x86/xen: Add a Xen-specific sync_core() implementation"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Dec 2, 2016 at 11:35 AM, Linus Torvalds
<torvalds@xxxxxxxxxxxxxxxxxxxx> wrote:
> On Fri, Dec 2, 2016 at 11:30 AM, Andy Lutomirski <luto@xxxxxxxxxxxxxx> wrote:
>>
>> How's this?
>
> Looks ok. I do think that
>
>> I suppose it could be an unconditional IRET-to-self, but that's a good
>> deal slower and not a whole lot simpler. Although if we start doing
>> it right, performance won't really matter here.
>
> Considering you already got the iret-to-self wrong in the first
> version, I really like the "one single unconditional version" so that
> everybody tests that _one_ thing and there isn't anything subtle going
> on.
>
> Hmm?

Okay, sold. It makes the patchset much much shorter, too.

>
> And yes, if it turns out that performance matters, we almost certainly
> are doing something really wrong, and we shouldn't be using that
> sync_core() thing in that place anyway.

To play devil's advocate (and definitely out of scope for this
particular patchset), is user code permitted to do:

1. Map a page RX at one address and RW somewhere else (for nice ASLR).
2. Write to the RW mapping.
3. CPUID or IRET-to-self.
4. Jump to the RX mapping.

Because, if so, we should maybe serialize whenever we migrate a
process to a different CPU. (We *definitely* need to flush the store
buffer when migrating, because the x86 architecture makes some memory
ordering promises that get broken if a store from a thread stays in
the store buffer of a different CPU when the thread gets migrated.)
And if we're going to start serializing when migrating a thread, then
we actually care about performance, in which case we should optimize
the crap out of this thing, which probably means using MFENCE on AMD
CPUs (AMD promises that MFENCE flushes the pipeline. Intel seems to
be confused as to exactly what effect MFENCE has, or at least I'm
confused as to what Intel thinks MFENCE does.) And we should make
sure that we only do the extra flush when we don't switch mms.

--Andy

Next message: kernel test robot: "a3a18061c9: WARNING: CPU: 0 PID: 1 at mm/hugetlb.c:2918 hugetlb_add_hstate"
Previous message: Larry Finger: "Re: [PATCH] net: wireless: realtek: constify rate_control_ops structures"
In reply to: Linus Torvalds: "Re: [PATCH v2 5/6] x86/xen: Add a Xen-specific sync_core() implementation"
Next in thread: Linus Torvalds: "Re: [PATCH v2 5/6] x86/xen: Add a Xen-specific sync_core() implementation"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]