git.ipfire.org Git - thirdparty/kernel/stable.git/commit

author	Juergen Gross <jgross@suse.com>
	Mon, 14 Sep 2020 12:01:02 +0000 (14:01 +0200)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Thu, 5 Nov 2020 10:08:37 +0000 (11:08 +0100)
commit	c1f90a9cd988bae62273c99aa7c58bf24f9bf0c1
tree	a013c1af8059b4b19e5898ebcd627c29b07a18ba	tree
parent	17ef715c0c88fe2df485fba68aa7c6c6cb3004f9	commit \| diff

xen/events: block rogue events for some time

commit 5f7f77400ab5b357b5fdb7122c3442239672186c upstream.

In order to avoid high dom0 load due to rogue guests sending events at
high frequency, block those events in case there was no action needed
in dom0 to handle the events.

This is done by adding a per-event counter, which set to zero in case
an EOI without the XEN_EOI_FLAG_SPURIOUS is received from a backend
driver, and incremented when this flag has been set. In case the
counter is 2 or higher delay the EOI by 1 << (cnt - 2) jiffies, but
not more than 1 second.

In order not to waste memory shorten the per-event refcnt to two bytes
(it should normally never exceed a value of 2). Add an overflow check
to evtchn_get() to make sure the 2 bytes really won't overflow.

This is part of XSA-332.

Cc: stable@vger.kernel.org
Signed-off-by: Juergen Gross <jgross@suse.com>
Reviewed-by: Jan Beulich <jbeulich@suse.com>
Reviewed-by: Stefano Stabellini <sstabellini@kernel.org>
Reviewed-by: Wei Liu <wl@xen.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

drivers/xen/events/events_base.c		diff \| blob \| blame \| history
drivers/xen/events/events_internal.h		diff \| blob \| blame \| history