Xen project Mailing List

Re: [PATCH v1 14/27] xen/riscv: introduce per-vCPU IMSIC state

To: Oleksii Kurochko <oleksii.kurochko@xxxxxxxxx>

Date: Mon, 20 Apr 2026 10:29:31 +0200

Authentication-results: eu.smtp.expurgate.cloud; dkim=pass header.s=google header.d=suse.com header.i="@suse.com" header.h="Content-Transfer-Encoding:In-Reply-To:Autocrypt:From:Content-Language:References:Cc:To:Subject:User-Agent:MIME-Version:Date:Message-ID"

Autocrypt: addr=jbeulich@xxxxxxxx; keydata= xsDiBFk3nEQRBADAEaSw6zC/EJkiwGPXbWtPxl2xCdSoeepS07jW8UgcHNurfHvUzogEq5xk hu507c3BarVjyWCJOylMNR98Yd8VqD9UfmX0Hb8/BrA+Hl6/DB/eqGptrf4BSRwcZQM32aZK 7Pj2XbGWIUrZrd70x1eAP9QE3P79Y2oLrsCgbZJfEwCgvz9JjGmQqQkRiTVzlZVCJYcyGGsD /0tbFCzD2h20ahe8rC1gbb3K3qk+LpBtvjBu1RY9drYk0NymiGbJWZgab6t1jM7sk2vuf0Py O9Hf9XBmK0uE9IgMaiCpc32XV9oASz6UJebwkX+zF2jG5I1BfnO9g7KlotcA/v5ClMjgo6Gl MDY4HxoSRu3i1cqqSDtVlt+AOVBJBACrZcnHAUSuCXBPy0jOlBhxPqRWv6ND4c9PH1xjQ3NP nxJuMBS8rnNg22uyfAgmBKNLpLgAGVRMZGaGoJObGf72s6TeIqKJo/LtggAS9qAUiuKVnygo 3wjfkS9A3DRO+SpU7JqWdsveeIQyeyEJ/8PTowmSQLakF+3fote9ybzd880fSmFuIEJldWxp Y2ggPGpiZXVsaWNoQHN1c2UuY29tPsJgBBMRAgAgBQJZN5xEAhsDBgsJCAcDAgQVAggDBBYC AwECHgECF4AACgkQoDSui/t3IH4J+wCfQ5jHdEjCRHj23O/5ttg9r9OIruwAn3103WUITZee e7Sbg12UgcQ5lv7SzsFNBFk3nEQQCACCuTjCjFOUdi5Nm244F+78kLghRcin/awv+IrTcIWF hUpSs1Y91iQQ7KItirz5uwCPlwejSJDQJLIS+QtJHaXDXeV6NI0Uef1hP20+y8qydDiVkv6l IreXjTb7DvksRgJNvCkWtYnlS3mYvQ9NzS9PhyALWbXnH6sIJd2O9lKS1Mrfq+y0IXCP10eS FFGg+Av3IQeFatkJAyju0PPthyTqxSI4lZYuJVPknzgaeuJv/2NccrPvmeDg6Coe7ZIeQ8Yj t0ARxu2xytAkkLCel1Lz1WLmwLstV30g80nkgZf/wr+/BXJW/oIvRlonUkxv+IbBM3dX2OV8 AmRv1ySWPTP7AAMFB/9PQK/VtlNUJvg8GXj9ootzrteGfVZVVT4XBJkfwBcpC/XcPzldjv+3 HYudvpdNK3lLujXeA5fLOH+Z/G9WBc5pFVSMocI71I8bT8lIAzreg0WvkWg5V2WZsUMlnDL9 mpwIGFhlbM3gfDMs7MPMu8YQRFVdUvtSpaAs8OFfGQ0ia3LGZcjA6Ik2+xcqscEJzNH+qh8V m5jjp28yZgaqTaRbg3M/+MTbMpicpZuqF4rnB0AQD12/3BNWDR6bmh+EkYSMcEIpQmBM51qM EKYTQGybRCjpnKHGOxG0rfFY1085mBDZCH5Kx0cl0HVJuQKC+dV2ZY5AqjcKwAxpE75MLFkr wkkEGBECAAkFAlk3nEQCGwwACgkQoDSui/t3IH7nnwCfcJWUDUFKdCsBH/E5d+0ZnMQi+G0A nAuWpQkjM1ASeQwSHEeAWPgskBQL

Cc: Romain Caritey <Romain.Caritey@xxxxxxxxxxxxx>, Alistair Francis <alistair.francis@xxxxxxx>, Connor Davis <connojdavis@xxxxxxxxx>, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, Anthony PERARD <anthony.perard@xxxxxxxxxx>, Michal Orzel <michal.orzel@xxxxxxx>, Julien Grall <julien@xxxxxxx>, Roger Pau Monné <roger.pau@xxxxxxxxxx>, Stefano Stabellini <sstabellini@xxxxxxxxxx>, xen-devel@xxxxxxxxxxxxxxxxxxxx

Delivery-date: Mon, 20 Apr 2026 08:29:44 +0000

List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On 17.04.2026 15:47, Oleksii Kurochko wrote: > On 4/16/26 2:31 PM, Jan Beulich wrote: >> On 14.04.2026 11:22, Oleksii Kurochko wrote: >>> On 4/2/26 1:31 PM, Jan Beulich wrote: >>>> On 10.03.2026 18:08, Oleksii Kurochko wrote: >>>>> --- a/xen/arch/riscv/imsic.c >>>>> +++ b/xen/arch/riscv/imsic.c >>>>> @@ -59,6 +59,29 @@ do { \ >>>>> csr_clear(CSR_SIREG, v); \ >>>>> } while (0) >>>>> >>>>> +unsigned int vcpu_guest_file_id(const struct vcpu *v) >>>>> +{ >>>>> + struct imsic_state *imsic_state = v->arch.imsic_state; >>>>> + unsigned long flags; >>>>> + unsigned int vsfile_id; >>>>> + >>>>> + read_lock_irqsave(&imsic_state->vsfile_lock, flags); >>>>> + vsfile_id = imsic_state->guest_file_id; >>>>> + read_unlock_irqrestore(&imsic_state->vsfile_lock, flags); >>>> >>>> What purpose does this locking have? Already ... >>>> >>>>> + return vsfile_id; >>>> >>>> ... here the value can be stale, if indeed there is a chance of races. >>>> Did you perhaps mean to use ACCESS_ONCE() here and where the value is >>>> set? >>> >>> ACCESS_ONCE() isn't guarantee only compiler re-ordering (as basically it >>> is just volatile-related stuff inisde the macros)? >>> >>> Generally, I think that that guest_file_id is needed to be updated only >>> during migration of vCPU from one pCPU to another and I expect that >>> during this migration vCPU isn't active, so no one will want to read >>> imsic_state->guest_file_id. But on the other hand, there is: >>> bool imsic_has_interrupt(const struct vcpu *vcpu) >>> { >>> ... >>> /* >>> * The IMSIC SW-file directly injects interrupt via hvip so >>> * only check for interrupt when IMSIC VS-file is being used. >>> */ >>> >>> read_lock_irqsave(&imsic_state->vsfile_lock, flags); >>> if ( imsic_state->vsfile_pcpu != NR_CPUS ) >>> ret = !!(csr_read(CSR_HGEIP) & BIT(imsic_state->guest_file_id, >>> UL)); >>> read_unlock_irqrestore(&imsic_state->vsfile_lock, flags); >>> ... >>> } >>> which I think could be called in parallel with with migration, so then >>> still lock are needed. >> >> None of this addresses my pointing out that the returned value will be >> stale by the point the caller gets to look at it. > > Yes, I agree that lock in vcpu_guest_file_id() is useless and it should > be on the caller side and used for the whole IMSIC state access. But ... > >> Which in turn raises >> said question about the use of a lock. If you read >> imsic_state->guest_file_id atomically (i.e. excluding tearing of reads), >> the value seen / used will be stale as with the lock in use. Unless of >> course there's yet another aspect hidden somewhere in what is not being >> explained. > > ... I am not sure that I get this part. > > If I am somewhere in migration code where I took write lock to update > imsic state (and of course ->guest_file_id as part of it) then if > someone else in parallel calls imsic_has_interrupt() then it won't enter > critical section where ->guest_file_id is trying to be read so no stale > ->guest_file_id will be read. Well, hence why I said "Unless of course there's yet another aspect hidden somewhere in what is not being explained." If I don't know the full picture, I can't very well judge whether a lock is needed, or whether ... > Then does it make sense to use ACCESS_ONCE() during read and write of > ->guest_file_id in such use cases? ... ACCESS_ONCE() would be enough. Jan

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.