From: Laurent Pinchart <laurent.pinchart-ryLnwIuWjnjg/C1BVhZhaw@public.gmane.org>
To: Oleksandr Tyshchenko <olekstysh-Re5JQEeQqe8AvxtiuMwx3w@public.gmane.org>
Cc: laurent.pinchart+renesas-ryLnwIuWjnjg/C1BVhZhaw@public.gmane.org,
geert+renesas-gXvu3+zWzMSzQB+pC5nmwQ@public.gmane.org,
damm+renesas-yzvPICuk2ACczHhG9Qg4qA@public.gmane.org,
will.deacon-5wv7dgnIgG8@public.gmane.org,
Oleksandr Tyshchenko
<oleksandr_tyshchenko-uRwfk40T5oI@public.gmane.org>,
iommu-cunTk1MwBs9QetFLy7KEm3xJsTq8ys+cHZ5vskTnxNA@public.gmane.org
Subject: Re: [PATCH v1] iommu/ipmmu-vmsa: Set context_id to non-existent value if allocation failed
Date: Wed, 23 Aug 2017 00:25:10 +0300 [thread overview]
Message-ID: <3230921.pODNlFebuG@avalon> (raw)
In-Reply-To: <1503319241-2912-1-git-send-email-olekstysh-Re5JQEeQqe8AvxtiuMwx3w@public.gmane.org>
Hi Oleksandr,
Thank you for the patch.
On Monday, 21 August 2017 15:40:41 EEST Oleksandr Tyshchenko wrote:
> From: Oleksandr Tyshchenko <oleksandr_tyshchenko-uRwfk40T5oI@public.gmane.org>
>
> In ipmmu_domain_init_context() we are trying to allocate context and
> if allocation fails we will call free_io_pgtable_ops(),
> but "domain->context_id" hasn't been initialized yet (likely it is 0
> because of kzalloc). Having the following call stack:
> free_io_pgtable_ops() -> io_pgtable_tlb_flush_all() ->
> ipmmu_tlb_flush_all() -> ipmmu_tlb_invalidate()
> we will get a mistaken cache flush for a context pointed by
> uninitialized "domain->context_id".
>
> So, set context_id to non-existent value (IPMMU_CTX_MAX) before calling
> free_io_pgtable_ops() and check it for a valid value (< IPMMU_CTX_MAX)
> before calling ipmmu_tlb_invalidate().
>
> Signed-off-by: Oleksandr Tyshchenko <oleksandr_tyshchenko-uRwfk40T5oI@public.gmane.org>
> ---
> drivers/iommu/ipmmu-vmsa.c | 4 ++++
> 1 file changed, 4 insertions(+)
>
> diff --git a/drivers/iommu/ipmmu-vmsa.c b/drivers/iommu/ipmmu-vmsa.c
> index 2a38aa1..5b226c0 100644
> --- a/drivers/iommu/ipmmu-vmsa.c
> +++ b/drivers/iommu/ipmmu-vmsa.c
> @@ -303,6 +303,9 @@ static void ipmmu_tlb_flush_all(void *cookie)
> {
> struct ipmmu_vmsa_domain *domain = cookie;
>
> + if (domain->context_id >= IPMMU_CTX_MAX)
> + return;
> +
> ipmmu_tlb_invalidate(domain);
> }
>
> @@ -380,6 +383,7 @@ static int ipmmu_domain_init_context(struct
> ipmmu_vmsa_domain *domain) */
> ret = ipmmu_domain_allocate_context(domain->mmu, domain);
> if (ret == IPMMU_CTX_MAX) {
> + domain->context_id = IPMMU_CTX_MAX;
Wouldn't it make more sense to allocate the pgtable ops after initializing the
context (moving the ipmmu_domain_allocate_context() call to the very end of
the function) ? That way we would be less dependent on changes to pgtable ops
init/cleanup code that could require the context to be set up.
> free_io_pgtable_ops(domain->iop);
> return -EBUSY;
> }
--
Regards,
Laurent Pinchart
next prev parent reply other threads:[~2017-08-22 21:25 UTC|newest]
Thread overview: 11+ messages / expand[flat|nested] mbox.gz Atom feed top
2017-08-21 12:40 [PATCH v1] iommu/ipmmu-vmsa: Set context_id to non-existent value if allocation failed Oleksandr Tyshchenko
[not found] ` <1503319241-2912-1-git-send-email-olekstysh-Re5JQEeQqe8AvxtiuMwx3w@public.gmane.org>
2017-08-22 14:24 ` Joerg Roedel
[not found] ` <20170822142430.ft6yhl4etx2hhn7h-zLv9SwRftAIdnm+yROfE0A@public.gmane.org>
2017-08-22 14:43 ` Oleksandr Tyshchenko
2017-08-22 21:15 ` Laurent Pinchart
2017-08-22 21:34 ` Joerg Roedel
2017-08-22 21:25 ` Laurent Pinchart [this message]
2017-08-23 9:36 ` Oleksandr Tyshchenko
[not found] ` <CAPD2p-ksGxF6Kq+=sE9gM1LYx9a9aM-OuPAcbw_N7nHabbhH4Q-JsoAwUIsXosN+BqQ9rBEUg@public.gmane.org>
2017-08-23 10:05 ` Robin Murphy
[not found] ` <050cf91d-1edb-a791-fdd2-5867a1504cf5-5wv7dgnIgG8@public.gmane.org>
2017-08-23 11:58 ` Oleksandr Tyshchenko
[not found] ` <CAPD2p-n8M5eY1XHaW-3b-opecXo0ut6fSRXcPssrJ-TxsvkEtA-JsoAwUIsXosN+BqQ9rBEUg@public.gmane.org>
2017-08-23 13:46 ` Laurent Pinchart
2017-08-23 13:56 ` Oleksandr Tyshchenko
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=3230921.pODNlFebuG@avalon \
--to=laurent.pinchart-rylnwiuwjnjg/c1bvhzhaw@public.gmane.org \
--cc=damm+renesas-yzvPICuk2ACczHhG9Qg4qA@public.gmane.org \
--cc=geert+renesas-gXvu3+zWzMSzQB+pC5nmwQ@public.gmane.org \
--cc=iommu-cunTk1MwBs9QetFLy7KEm3xJsTq8ys+cHZ5vskTnxNA@public.gmane.org \
--cc=laurent.pinchart+renesas-ryLnwIuWjnjg/C1BVhZhaw@public.gmane.org \
--cc=oleksandr_tyshchenko-uRwfk40T5oI@public.gmane.org \
--cc=olekstysh-Re5JQEeQqe8AvxtiuMwx3w@public.gmane.org \
--cc=will.deacon-5wv7dgnIgG8@public.gmane.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.