diff options
| author | Jan Beulich <jbeulich@suse.com> | 2013-03-08 14:05:34 +0100 |
|---|---|---|
| committer | Jan Beulich <jbeulich@suse.com> | 2013-03-08 14:05:34 +0100 |
| commit | 4245d331e0e75de8d1bddbbb518f3a8ce6d0bb7e (patch) | |
| tree | d83744a83a32179dec1ce6e7c00e3a01e06d29c7 /xen/include/xen/pci.h | |
| parent | 0f3b02d07e12b76c568ce82d7ec6bf80fdf3870f (diff) | |
| download | xen-4245d331e0e75de8d1bddbbb518f3a8ce6d0bb7e.tar.gz xen-4245d331e0e75de8d1bddbbb518f3a8ce6d0bb7e.tar.bz2 xen-4245d331e0e75de8d1bddbbb518f3a8ce6d0bb7e.zip | |
x86/MSI: add mechanism to fully protect MSI-X table from PV guest accesses
This adds two new physdev operations for Dom0 to invoke when resource
allocation for devices is known to be complete, so that the hypervisor
can arrange for the respective MMIO ranges to be marked read-only
before an eventual guest getting such a device assigned even gets
started, such that it won't be able to set up writable mappings for
these MMIO ranges before Xen has a chance to protect them.
This also addresses another issue with the code being modified here,
in that so far write protection for the address ranges in question got
set up only once during the lifetime of a device (i.e. until either
system shutdown or device hot removal), while teardown happened when
the last interrupt was disposed of by the guest (which at least allowed
the tables to be writable when the device got assigned to a second
guest [instance] after the first terminated).
Signed-off-by: Jan Beulich <jbeulich@suse.com>
Diffstat (limited to 'xen/include/xen/pci.h')
| -rw-r--r-- | xen/include/xen/pci.h | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/xen/include/xen/pci.h b/xen/include/xen/pci.h index 9724bb29c8..ca72a99434 100644 --- a/xen/include/xen/pci.h +++ b/xen/include/xen/pci.h @@ -57,6 +57,7 @@ struct pci_dev { int msix_table_refcnt[MAX_MSIX_TABLE_PAGES]; int msix_table_idx[MAX_MSIX_TABLE_PAGES]; spinlock_t msix_table_lock; + domid_t msix_warned; struct domain *domain; const u16 seg; |