vbox6: avoid race for NEM state checking

The commit avoids the race between checking for the NEM state and the decision to notify (poke) the NEM backend (nem.cc). - ever notify about POKE flag for remote vCPU - check synchronized for NEM state - store recheck flag and apply on next switch_to_hw Issue #4313
2025-01-30 16:14:13 +00:00 · 2021-10-26 16:07:30 +02:00 · 2021-10-26 16:07:30 +02:00 · 1a79bf2be2
commit 1a79bf2be2
parent 3701733c8f
4 changed files with 51 additions and 23 deletions
--- a/repos/ports/ports/virtualbox6.hash
+++ b/repos/ports/ports/virtualbox6.hash
@ -1 +1 @@
-95e5355642337757ad41218571699933eb420a16
+4520096005074d88433410752e88df1e748a80dd
--- a/repos/ports/src/virtualbox6/patches/exec_state.patch
+++ b/repos/ports/src/virtualbox6/patches/exec_state.patch
@ -0,0 +1,27 @@
+Avoid the race between checking a remote state and the decision.
+--- a/src/virtualbox6/src/VBox/VMM/VMMR3/VMEmt.cpp
+++ b/src/virtualbox6/src/VBox/VMM/VMMR3/VMEmt.cpp
+@@ -864,9 +864,10 @@
+                     AssertRC(rc);
+                 }
+             }
+-            else if (   enmState == VMCPUSTATE_STARTED_EXEC_NEM
+-                     || enmState == VMCPUSTATE_STARTED_EXEC_NEM_WAIT)
+            else {// if (   enmState == VMCPUSTATE_STARTED_EXEC_NEM
+                  //   || enmState == VMCPUSTATE_STARTED_EXEC_NEM_WAIT)
+                 NEMR3NotifyFF(pUVCpu->pVM, pVCpu, fFlags);
+            }
+         }
+     }
+     /* This probably makes little sense: */
+@@ -1006,8 +1007,8 @@
+         if (pVCpu)
+         {
+             VMCPUSTATE enmState = pVCpu->enmState;
+-            if (   enmState == VMCPUSTATE_STARTED_EXEC_NEM
+-                || enmState == VMCPUSTATE_STARTED_EXEC_NEM_WAIT)
+//            if (   enmState == VMCPUSTATE_STARTED_EXEC_NEM
+//                || enmState == VMCPUSTATE_STARTED_EXEC_NEM_WAIT)
+                 NEMR3NotifyFF(pUVCpu->pVM, pVCpu, fFlags);
+         }
+     }
--- a/repos/ports/src/virtualbox6/patches/series
+++ b/repos/ports/src/virtualbox6/patches/series
@ -6,3 +6,4 @@ network.patch
 devahci.patch
 smp_sipi.patch
 tm_poke.patch
+exec_state.patch
--- a/repos/ports/src/virtualbox6/sup_vcpu.cc
+++ b/repos/ports/src/virtualbox6/sup_vcpu.cc
@ -111,7 +111,9 @@ class Sup::Vcpu_impl : public Sup::Vcpu, Genode::Noncopyable

 		/* state machine between EMT and vCPU mode */
 		enum Current_state { RUNNING, PAUSED } _current_state { PAUSED };
-		enum Next_state    { PAUSE_EXIT, RUN } _next_state    { RUN };
+
+		Genode::Mutex _nem_guard { };
+		bool _check_force_flags = false;

 		/* interrupt-window exit requested */
 		bool _irq_window = false;
@ -160,10 +162,7 @@ template <typename T> void Sup::Vcpu_impl<T>::_handle_exit()
 {
 	_emt.switch_to_emt();

-	if (_next_state == RUN)
-		_vcpu.run(); /* resume vCPU */
-	else
-		_vcpu.pause(); /* cause pause exit */
+	_vcpu.run();
 }


@ -621,13 +620,6 @@ template <typename VIRT> VBOXSTRICTRC Sup::Vcpu_impl<VIRT>::_switch_to_hw()
 		/* run vCPU until next exit */
 		_emt.switch_to_vcpu();

-		/*
-		 * We left the VM, so we should "run" on next switch_to_vcpu(). Currently,
-		 * this may be changed by Sup::Vcpu::pause(), which induces a synchronized
-		 * "pause" exit on next switch.
-		 */
-		_next_state = RUN;
-
 		result = VIRT::handle_exit(_vcpu.state());

 		/* discharge by default */
@ -715,17 +707,15 @@ template <typename T> void Sup::Vcpu_impl<T>::wake_up()

 template <typename T> void Sup::Vcpu_impl<T>::pause()
 {
-	/* skip pause request as we requested interrupt-window exit already */
-	if (_irq_window)
-		return;
+	Genode::Mutex::Guard guard(_nem_guard);

-	/* XXX why do we need this special barrier here but nowhere else ? */
-	memory_barrier();
+	PVMCPU     pVCpu    = &_vmcpu;
+	VMCPUSTATE enmState = pVCpu->enmState;

-	if (_current_state != PAUSED)
+	if (enmState == VMCPUSTATE_STARTED_EXEC_NEM)
 		_vcpu.pause();
-
-	_next_state = PAUSE_EXIT;
+	else
+		_check_force_flags = true;
 }


@ -734,8 +724,18 @@ template <typename T> VBOXSTRICTRC Sup::Vcpu_impl<T>::run()
 	PVMCPU   pVCpu = &_vmcpu;
 	CPUMCTX &ctx   = *CPUMQueryGuestCtxPtr(pVCpu);

-	/* mimic state machine implemented in nemHCWinRunGC() etc. */
-	VMCPU_SET_STATE(pVCpu, VMCPUSTATE_STARTED_EXEC_NEM);
+	{
+		Genode::Mutex::Guard guard(_nem_guard);
+
+		if (_check_force_flags) {
+			_check_force_flags = false;
+			if (!Sup::Vcpu_impl<T>::_continue_hw_accelerated())
+				return VINF_SUCCESS;
+		}
+
+		/* mimic state machine implemented in nemHCWinRunGC() etc. */
+		VMCPU_SET_STATE(pVCpu, VMCPUSTATE_STARTED_EXEC_NEM);
+	}

 	_transfer_state_to_vcpu(ctx);