Permalink
Switch branches/tags
Nothing to show
Commits on Nov 19, 2012
  1. xend: Remove old vtpm support from xm

    Matthew Fioravante committed Nov 19, 2012
    Signed-off-by: Matthew Fioravante <matthew.fioravante@jhuapl.edu>
    Acked-by: Ian Campbell <ian.campbell@citrix.com>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
  2. minios: Update mini-os license to support GPL features

    Matthew Fioravante committed Nov 19, 2012
    This patch updates extras/mini-os/COPYING to explain
    which optional features are GPL and what the implications
    of enabling them are.
    
    Signed-off-by: Matthew Fioravante <matthew.fioravante@jhuapl.edu>
    Acked-by: Ian Campbell <ian.campbell@citrix.com>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
  3. minios: fix bug in lseek for mini-os

    Matthew Fioravante committed Nov 19, 2012
    lseek always used files[fd].file.offset. It should
    use the offset of whatever union member is actually
    being used.
    
    Signed-off-by: Matthew Fioravante <matthew.fioravante@jhuapl.edu>
    Acked-by: Ian Campbell <ian.campbell@citrix.com>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
  4. xen/arm: get the number of cpus from device tree

    Stefano Stabellini committed Nov 19, 2012
    The system might have fewer cpus than the GIC supports.
    
    Signed-off-by: Stefano Stabellini <stefano.stabellini@eu.citrix.com>
    Acked-by: Ian Campbell <ian.campbell@citrix.com>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
  5. xen/arm: flush D-cache and I-cache when appropriate

    Stefano Stabellini committed Nov 19, 2012
    - invalidate tlb after setting WXN
    - flush D-cache and I-cache after relocation;
    - invalidate D-cache after writing to smp_up_cpu;
    - flush I-cache after changing HTTBR;
    - flush I-cache and branch predictor after writing Xen text ptes.
    
    Signed-off-by: Stefano Stabellini <stefano.stabellini@eu.citrix.com>
    Acked-by: Ian Campbell <ian.campbell@citrix.com>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
  6. vscsiif: minor cleanup

    jbeulich committed Nov 19, 2012
    Remove a definition not belonging into the interface, and correct a
    few typos in comments.
    
    Signed-off-by: Jan Beulich <jbeulich@suse.com>
    Acked-by: Keir Fraser <keir@xen.org>
  7. AMD IOMMU: Enable HPET broadcast msi remapping

    Wei Wang committed Nov 19, 2012
    This patch enables hpet msi remapping for amd iommu.
    
    Signed-off-by: Wei Wang <wei.wang2@amd.com>
    
    - use the existing ACPI_IVHD_* #define-s
    - warn on finding more than one IVHD HPET entry
    - consolidate parameters of update_intremap_entry_from_msi_msg()
    
    Signed-off-by: Jan Beulich <jbeulich@suse.com>
    Committed-by: Jan Beulich <jbeulich@suse.com>
Commits on Nov 15, 2012
  1. xen/arm: wake up secondary cpus

    Stefano Stabellini committed Nov 15, 2012
    Secondary cpus are held by the firmware until we send an IPI to them.
    
    Reordered non-boot cpu wait loop to perform the check before waiting
    for an event, to handled the case where the event has already
    happened when we reach the loop.
    
    Signed-off-by: Stefano Stabellini <stefano.stabellini@eu.citrix.com>
    Acked-by: Ian Campbell <ian.campbell@citrix.com>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
  2. xen/arm: set the SMP bit in the ACTLR register

    Stefano Stabellini committed Nov 15, 2012
    "Enables the processor to receive instruction cache, BTB, and TLB maintenance
    operations from other processors"
    
    ...
    
    "You must set this bit before enabling the caches and MMU, or
    performing any cache and TLB maintenance operations. The only time
    you must clear this bit is during a processor power-down sequence"
    
    Signed-off-by: Stefano Stabellini <stefano.stabellini@eu.citrix.com>
    Acked-by: Tim Deegan <tim@xen.org>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
  3. pl011: set baud and clock_hz to the right defaults for Versatile Express

    Stefano Stabellini committed Nov 15, 2012
    Signed-off-by: Stefano Stabellini <stefano.stabellini@eu.citrix.com>
    Acked-by: Tim Deegan <tim@xen.org>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
  4. xen/arm: setup the fixmap in head.S

    Stefano Stabellini committed Nov 15, 2012
    Setup the fixmap mapping directly in head.S rather than having a
    temporary mapping only to re-do it later in C.
    
    Signed-off-by: Stefano Stabellini <stefano.stabellini@eu.citrix.com>
    Acked-by: Ian Campbell <ian.campbell@citrix.com>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
  5. xen/arm: pass the correct bit-per-interrupt argument to vgic_irq_rank

    Stefano Stabellini committed Nov 15, 2012
    Use 1 for registers that have 1 bit per irq.
    
    Signed-off-by: Stefano Stabellini <stefano.stabellini@eu.citrix.com>
    Acked-by: Ian Campbell <ian.campbell@citrix.com>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
  6. libxl: Fix passing of application data to timeout_deregister hook

    jfehlig committed Nov 15, 2012
    When deregistering a timeout, the address of application data was
    being passed to the timeout_deregister hook instead of the data
    itself.
    
    Signed-off-by: Jim Fehlig <jfehlig@suse.com>
    Acked-by: Ian Campbell <ian.campbell@citrix.com>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
  7. x86/nmi: self_nmi() should not unconditionally enable interrupts

    andyhhp committed Nov 15, 2012
    It seems that all current callers have interrupts enabled, making the
    code currently safe but dangerous.  Also, fix a trailing whitespace
    issue.
    
    Signed-off-by: Andrew Cooper <andrew.cooper3@citrix.com>
    Committed-by: Keir Fraser <keir@xen.org>
  8. update MAINTAINERS file

    apritzel committed Nov 15, 2012
    There have been some "organizational changes" within AMD.
    Update the MAINTAINERS file accordingly.
    Please also feel free to use the new email addresses if there are
    any inquires related to code authored by Wei Wang, Christoph Egger
    or Andre Przywara.
    
    Signed-off-by: Andre Przywara <osp@andrep.de>
    Acked-by: Wei Wang <weiwang.dd@gmail.com>
    Acked-by: Boris Ostrovsky <boris.ostrovsky@amd.com>
    Acked-by: Wei Huang <wei.huang2@amd.com>
    Acked-by: Christoph Egger <Christoph_Egger@gmx.de>
    Committed-by: Keir Fraser <keir@xen.org>
Commits on Nov 14, 2012
  1. tools: rerun autoconf after 26144:170d45f7a2eb

    Ian Campbell committed Nov 14, 2012
    Signed-off-by: Ian Campbell <ian.campbell@citrix.com>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
  2. compat/gnttab: Prevent infinite loop in compat code

    ijackson-citrix committed Nov 14, 2012
    c/s 20281:95ea2052b41b, which introduces Grant Table version 2
    hypercalls introduces a vulnerability whereby the compat hypercall
    handler can fall into an infinite loop.
    
    If the watchdog is enabled, Xen will die after the timeout.
    
    This is a security problem, XSA-24 / CVE-2012-4539.
    
    Signed-off-by: Andrew Cooper <andrew.cooper3@citrix.com>
    Acked-by: Jan Beulich <jbeulich@suse.com>
    Acked-by: Ian Jackson <ian.jackson@eu.citrix.com>
    Committed-by: Ian Jackson <ian.jackson@eu.citrix.com>
  3. xen/mm/shadow: check toplevel pagetables are present before unhooking…

    ijackson-citrix committed Nov 14, 2012
    … them.
    
    If the guest has not fully populated its top-level PAE entries when it calls
    HVMOP_pagetable_dying, the shadow code could try to unhook entries from
    MFN 0.  Add a check to avoid that case.
    
    This issue was introduced by c/s 21239:b9d2db109cf5.
    
    This is a security problem, XSA-23 / CVE-2012-4538.
    
    Signed-off-by: Tim Deegan <tim@xen.org>
    Tested-by: Andrew Cooper <andrew.cooper3@citrix.com>
    Acked-by: Ian Campbell <ian.campbell@citrix.com>
    Committed-by: Ian Jackson <ian.jackson@eu.citrix.com>
  4. x86/physmap: Prevent incorrect updates of m2p mappings

    ijackson-citrix committed Nov 14, 2012
    In certain conditions, such as low memory, set_p2m_entry() can fail.
    Currently, the p2m and m2p tables will get out of sync because we still
    update the m2p table after the p2m update has failed.
    
    If that happens, subsequent guest-invoked memory operations can cause
    BUG()s and ASSERT()s to kill Xen.
    
    This is fixed by only updating the m2p table iff the p2m was
    successfully updated.
    
    This is a security problem, XSA-22 / CVE-2012-4537.
    
    Signed-off-by: Andrew Cooper <andrew.cooper3@citrix.com>
    Acked-by: Ian Campbell <ian.campbell@citrix.com>
    Acked-by: Ian Jackson <ian.jackson@eu.citrix.com>
    Committed-by: Ian Jackson <ian.jackson@eu.citrix.com>
  5. VCPU/timers: Prevent overflow in calculations, leading to DoS vulnera…

    ijackson-citrix committed Nov 14, 2012
    …bility
    
    The timer action for a vcpu periodic timer is to calculate the next
    expiry time, and to reinsert itself into the timer queue.  If the
    deadline ends up in the past, Xen never leaves __do_softirq().  The
    affected PCPU will stay in an infinite loop until Xen is killed by the
    watchdog (if enabled).
    
    This is a security problem, XSA-20 / CVE-2012-4535.
    
    Signed-off-by: Andrew Cooper <andrew.cooper3@citrix.com>
    Acked-by: Ian Campbell <ian.campbell@citrix.com>
    Committed-by: Ian Jackson <ian.jackson@eu.citrix.com>
  6. xen-tmem-list-parse: fix ugly parse output

    Dan Magenheimer committed Nov 14, 2012
    The program xen-tmem-list-parse parses the output of xm/xl tmem-list
    into human-readable format.  A missing NULL terminator sometimes
    causes garbage to be spewed where the two-letter pool type
    should be output.
    
    Signed-off-by: Dan Magenheimer <dan.magenheimer@oracle.com>
    Acked-by: Ian Campbell <ian.campbell@citrix.com>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
  7. hotplug/Linux: Fix locking in tools/hotplug/Linux/locking.sh

    Jajcus committed Nov 14, 2012
    The claim_lock() function would fail in the perl code with:
    
      Invalid argument at -e line 2.
    
    because the Perl snippet opens for reading the file descriptor, which
    was earlier opened for write (append).
    
    Signed-off-by: Jacek Konieczny <jajcus@jajcus.net>
    Acked-by: Ian Jackson <ian.jackson@eu.citrix.com>
    Acked-by: Ian Campbell <ian.campbell@citrix.com>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
Commits on Nov 13, 2012
  1. libxl: fix vfb related assertion problem when starting pv-domU

    Ronny Hegewald committed Nov 13, 2012
    When a config-file for a pv-domU has a vfb section with a vnc=0
    option then a "xl create" for that domU crashes with the message
    
    xl: libxl.c:252: libxl_defbool_val: Assertion `!libxl_defbool_is_default(db)'
    failed.
    
    and the domU hangs early in the start.
    
    This patch fixes the cause of the assertion and let the domU start
    normally.
    
    This problem exists since xen 4.2.
    
    Signed-off-by: Ronny Hegewald <Ronny.Hegewald@online.de>
    Acked-by: Ian Campbell <ian.campbell@citrix.com>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
  2. tools: Remove the vtpm process model

    Matthew Fioravante committed Nov 13, 2012
    Remove the old vtpm process model. It doesn't work very
    well and is no longer supported.
    
    Signed-off-by: Matthew Fioravante <matthew.fioravante@jhuapl.edu>
    Acked-by: Ian Campbell <ian.campbell@citrix.com>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
  3. libxl: add vtpm support

    Matthew Fioravante committed Nov 13, 2012
    This patch adds vtpm support to libxl. It adds vtpm parsing to config
    files and 3 new xl commands:
    vtpm-attach
    vtpm-detach
    vtpm-list
    
    Signed-off-by: Matthew Fioravante <matthew.fioravante@jhuapl.edu>
    Acked-by: Ian Campbell <ian.campbell@citrix.com>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
  4. minios: add tpmfront, tpm_tis, and tpmback drivers

    Matthew Fioravante committed Nov 13, 2012
    This patch adds 3 new drivers to mini-os.
    
    tpmfront - paravirtualized tpm frontend driver
    tpmback - paravirtualized tpm backend driver
    tpm_tis - hardware tpm driver
    
    Unfortunately these drivers were derived from GPL
    licensed linux kernel drivers so they must carry
    the GPL license. However, since mini-os now
    supports conditional compilation, hopefully these
    drivers can be included into the xen tree and
    conditionally removed from non-gpl projects.
    By default they are disabled in the makefile.
    
    Signed-off-by: Matthew Fioravante <matthew.fioravante@jhuapl.edu>
    Acked-by: Ian Campbell <ian.campbell@citrix.com>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
  5. minios: add xenbus_read_uuid

    Matthew Fioravante committed Nov 13, 2012
    Similar to xenbus_read_integer, this function reads a xenstore path
    and parses it as a uuid. See include/xenbus.h for details.
    
    Signed-off-by: Matthew Fioravante <matthew.fioravante@jhuapl.edu>
    Acked-by: Samuel Thibault <samuel.thibault@ens-lyon.org>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
  6. minios: Disable -DGNT_DEBUG and -DGNTMAP_DEBUG

    Matthew Fioravante committed Nov 13, 2012
    Disabling the above flags in default mini-os build. They generate a
    lot of spam.
    
    Signed-off-by: Matthew Fioravante <matthew.fioravante@jhuapl.edu>
    Acked-by: Samuel Thibault <samuel.thibault@ens-lyon.org>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
  7. fix xenctl_cpumap_to_cpumask() buffer size check

    Matthew Daley committed Nov 13, 2012
    xenctl_cpumap_to_cpumask incorrectly uses sizeof when checking whether
    bits should be masked off from the input cpumap bitmap or not.
    
    Fix by using the correct cpumask buffer size in place of sizeof.
    
    Signed-off-by: Matthew Daley <mattjd@gmail.com>
    
    Compare against copy_bytes instead, and use equality rather than less-
    or-equal.
    
    Further, this issue (introduced with c/s 23991:a7ccbc79fc17) is not
    security relevant (i.e. the bug could not cause memory corruption):
    _xmalloc() never returns chunks of data smaller than the size of a
    pointer, i.e. even if sizeof(void*) > guest_bytes > copy_bytes, the
    piece of memory erroneously written to would still be inside the
    allocation done at the top of the function.
    
    Signed-off-by: Jan Beulich <jbeulich@suse.com>
    Acked-by: Keir Fraser <keir@xen.org>
    Committed-by: Jan Beulich <jbeulich@suse.com>
Commits on Nov 12, 2012
  1. pygrub: Fix command line argument error handling

    Matthew Daley committed Nov 12, 2012
    pygrub's individual config file parsers do not correctly check the
    amount of command line arguments given to them. In addition, the LILO
    config parser would report an incorrect message.
    
    Use len() to correctly check the amount of arguments, and fix the LILO
    error message.
    
    Signed-off-by: Matthew Daley <mattjd@gmail.com>
    Acked-by: Ian Campbell <ian.campbell@citrix.com>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
  2. libxl: fix reboot failure of migrated domain

    Kouya Shimura committed Nov 12, 2012
    The same problem was once fixed by c/s 23878:59c7213b5949
    but c/s 25344:0f3b1e13d6af broke it.
    
    Signed-off-by: Kouya Shimura <kouya@jp.fujitsu.com>
    Acked-by: Ian Campbell <ian.campbell@citrix.com>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
  3. tools: Synchronize privcmd header constants

    Andres Lagar-Cavilla committed Nov 12, 2012
    Since Linux's git commit ceb90fa0a8008059ecbbf9114cb89dc71a730bb6,
    the privcmd.h interface between Linux and libxc specifies two new
    constants, PRIVCMD_MMAPBATCH_MFN_ERROR and
    PRIVCMD_MMAPBATCH_PAGED_ERROR. These constants represent the error
    codes encoded in the top nibble of an mfn slot passed to the legacy
    MMAPBATCH ioctl.
    
    In particular, libxenctrl checks for the equivalent of the latter
    constant when dealing with paged out frames that might be the target
    of a foreign map.
    
    Previously, the relevant constant was defined in the domctl hypervisor
    interface header (XEN_DOMCTL_PFINFO_PAGEDTAB). Because this
    top-nibble encoding is a contract between the dom0 kernel and libxc,
    a domctl.h definition is misplaced.
    
    - Sync the privcmd.h header to that now available in upstream Linux
    - Update libxc appropriately
    - Remove the unnecessary constant in domctl.h
    
    Signed-off-by: Andres Lagar-Cavilla <andres@lagarcavilla.org>
    Acked-by: Ian Campbell <ian.campbelL@citrix.com>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
  4. tools: Make restore work properly with PV superpage flag

    dcmccracken committed Nov 12, 2012
    For PV guests, the superpage flag means to unconditionally allocate all
    pages as superpages, which is required for Linux hugepages to work.  Support
    for this on restore was not supported.  This patch adds proper support for
    the superpage flag on restore.
    
    For HVM guests, the superpage flag has been used to mean attempt to allocate
    superpages if possible on restore.  This functionality has been preserved.
    
    Signed-off-by: Dave McCracken <dave.mccracken@oracle.com>
    Acked-by: George Dunlap <george.dunlap@eu.citrix.com>
    Committed-by: Ian Campbell <ian.campbell@citrix.com>
  5. x86/mm x86 shadow: Fix typo in sh_invlpg sl3 page presence check

    Matthew Daley committed Nov 12, 2012
    Signed-off-by: Matthew Daley <mattjd@gmail.com>
    Acked-by: Tim Deegan <tim@xen.org>
    Committed-by: Tim Deegan <tim@xen.org>
  6. IOMMU: don't immediately disable bus mastering on faults

    jbeulich committed Nov 12, 2012
    Instead, give the owning domain at least a small opportunity of fixing
    things up, and allow for rare faults to not bring down the device at
    all.
    
    Signed-off-by: Jan Beulich <jbeulich@suse.com>
    Acked-by: Tim Deegan <tim@xen.org>
    Acked-by: Dario Faggioli <dario.faggioli@citrix.com>