| Message ID | f877a1630ae671842ac9aeaa120dda63d82737d8.1434356309.git.chen.fan.fnst@cn.fujitsu.com |
|---|---|
| State | New |
| Headers | show |
On Tue, 2015-06-16 at 16:10 +0800, Chen Fan wrote: > Signed-off-by: Chen Fan <chen.fan.fnst@cn.fujitsu.com> > --- > hw/vfio/common.c | 9 ++++++++- > 1 file changed, 8 insertions(+), 1 deletion(-) > > diff --git a/hw/vfio/common.c b/hw/vfio/common.c > index df3171d..15f19a2 100644 > --- a/hw/vfio/common.c > +++ b/hw/vfio/common.c > @@ -808,11 +808,18 @@ VFIOGroup *vfio_get_group(int groupid, AddressSpace *as) > VFIOGroup *group; > char path[32]; > struct vfio_group_status status = { .argsz = sizeof(status) }; > + int ret; > > QLIST_FOREACH(group, &vfio_group_list, next) { > if (group->groupid == groupid) { > /* Found it. Now is it already in the right context? */ > - if (group->container->space->as == as) { > + if (as && !group->container->space->as) { > + ret = vfio_register_container_listener(group->container, as); > + if (ret) { > + return NULL; > + } > + } > + if (!as || group->container->space->as == as) { > group->ref++; > return group; > } else { No, this is broken. Look further down where we call vfio_connect_container(group, as). With as=NULL, that gives us a new VFIOAddressSpace with space.as=NULL. Then we walk the list of containers attached to that as, which is of course empty, so we create a new container for the device. If we have more than one group attached this way, they share this container. What happens latter if one or more of those devices are attached to the VM? In the best case we setup a memory listener for this container, but that breaks vfio locked memory accounting because previously they would have shared a container and now we have two separate containers for them. But to make things worse, any other groups that were attached to this space.as=NULL container are forced to share this new as, so it's impossible to add them to a separate as. So, this won't work. I also don't like the side-effect of taking implicit ownership of groups. IOMMU groups are challenging enough and changing the rules to care about not only groups but shared bus dependencies seems like a support nightmare. I keep trying to think how we could reduce the scope to make AER support more manageable. Should we simply require that all device affected by a bus reset are assigned to the VM? To do that we'd need to revert to your machine-init-done check for compliance. But then what becomes of hotplug? As soon as we hot-remove one of those devices, AER is broken and we can't hot-add device individually and maintain support. If we limit support to single function endpoints, our problems go away, but the number of devices we could enable AER for is nearly zero. If we include multi-function, then hotplug is a significant issue since each function is individually hot-pluggable. But we can solve that by requiring AER devices to have a 1:1 function mapping to the VM and requiring all the functions of the slot to be assigned to the VM. Hot-remove then works automatically since that's done on a slot basis. Hot-add is not possible since QEMU doesn't support hot-add of multi-function devices, but that's a problem that needs to be solved anyway. Thanks, Alex
diff --git a/hw/vfio/common.c b/hw/vfio/common.c index df3171d..15f19a2 100644 --- a/hw/vfio/common.c +++ b/hw/vfio/common.c @@ -808,11 +808,18 @@ VFIOGroup *vfio_get_group(int groupid, AddressSpace *as) VFIOGroup *group; char path[32]; struct vfio_group_status status = { .argsz = sizeof(status) }; + int ret; QLIST_FOREACH(group, &vfio_group_list, next) { if (group->groupid == groupid) { /* Found it. Now is it already in the right context? */ - if (group->container->space->as == as) { + if (as && !group->container->space->as) { + ret = vfio_register_container_listener(group->container, as); + if (ret) { + return NULL; + } + } + if (!as || group->container->space->as == as) { group->ref++; return group; } else {
Signed-off-by: Chen Fan <chen.fan.fnst@cn.fujitsu.com> --- hw/vfio/common.c | 9 ++++++++- 1 file changed, 8 insertions(+), 1 deletion(-)