From: David Daney <ddaney@caviumnetworks.com>
To: Will Deacon <will.deacon@arm.com>
Cc: David Daney <ddaney.cavm@gmail.com>,
"devicetree@vger.kernel.org" <devicetree@vger.kernel.org>,
"linux-kernel@vger.kernel.org" <linux-kernel@vger.kernel.org>,
Rob Herring <robh+dt@kernel.org>,
Frank Rowand <frowand.list@gmail.com>,
"grant.likely@linaro.org" <grant.likely@linaro.org>,
Bjorn Helgaas <bhelgaas@google.com>,
"linux-pci@vger.kernel.org" <linux-pci@vger.kernel.org>,
Pawel Moll <Pawel.Moll@arm.com>,
Mark Rutland <Mark.Rutland@arm.com>,
Ian Campbell <ijc+devicetree@hellion.org.uk>,
Kumar Gala <galak@codeaurora.org>,
"linux-arm-kernel@lists.infradead.org"
<linux-arm-kernel@lists.infradead.org>,
David Daney <david.daney@cavium.com>, <lorenzo.pieralisi@arm.com>
Subject: Re: [PATCH 4/6] PCI: generic: Correct, and avoid overflow, in bus_max calculation.
Date: Tue, 15 Sep 2015 11:02:54 -0700 [thread overview]
Message-ID: <55F85D4E.9020604@caviumnetworks.com> (raw)
In-Reply-To: <20150915174934.GL31157@arm.com>
On 09/15/2015 10:49 AM, Will Deacon wrote:
> On Sat, Sep 12, 2015 at 12:21:57AM +0100, David Daney wrote:
>> From: David Daney <david.daney@cavium.com>
>>
>> There are two problems with the bus_max calculation:
>>
>> 1) The u8 data type can overflow for large config space windows.
>>
>> 2) The calculation is incorrect for a bus range that doesn't start at
>> zero.
>>
>> Since the configuration space is relative to bus zero, make bus_max
>> just be the size of the config window scaled by bus_shift. Then clamp
>> it to a maximum of 255, per PCI. Use a data type of int to avoid
>> overflow problems.
>>
>> Signed-off-by: David Daney <david.daney@cavium.com>
>> ---
>> drivers/pci/host/pci-host-generic.c | 7 ++++---
>> 1 file changed, 4 insertions(+), 3 deletions(-)
>>
>> diff --git a/drivers/pci/host/pci-host-generic.c b/drivers/pci/host/pci-host-generic.c
>> index cd6f898..fce5bf7 100644
>> --- a/drivers/pci/host/pci-host-generic.c
>> +++ b/drivers/pci/host/pci-host-generic.c
>> @@ -164,7 +164,7 @@ out_release_res:
>> static int gen_pci_parse_map_cfg_windows(struct gen_pci *pci)
>> {
>> int err;
>> - u8 bus_max;
>> + int bus_max;
>> resource_size_t busn;
>> struct resource *bus_range;
>> struct device *dev = pci->host.dev.parent;
>> @@ -177,8 +177,9 @@ static int gen_pci_parse_map_cfg_windows(struct gen_pci *pci)
>> }
>>
>> /* Limit the bus-range to fit within reg */
>> - bus_max = pci->cfg.bus_range->start +
>> - (resource_size(&pci->cfg.res) >> pci->cfg.ops.bus_shift) - 1;
>> + bus_max = (resource_size(&pci->cfg.res) >> pci->cfg.ops.bus_shift) - 1;
>> + if (bus_max > 255)
>> + bus_max = 255;
>> pci->cfg.bus_range->end = min_t(resource_size_t,
>> pci->cfg.bus_range->end, bus_max);
>
> Hmm, this is changing the meaning of the bus-range property in the
> device-tree, which really needs to match what IEEE Std 1275-1994 requires.
I doesn't change the bus-range.
>
> My understanding was that the bus-range could be used to offset the config
> space, which is why it's subtracted from the bus number in
> gen_pci_map_cfg_bus_[e]cam.
There is an inconsistency in the current code. The calculation of the
cfg.win[?] pointers is done such that the beginning of the config space
specified in the "reg" property corresponds to bus 0.
The calculation that I am changing, was done such that the beginning of
the config space specified in the "reg" property corresponds to the
first bus of the "bus-range"
Which is correct? I assumed that the config space specified in the
"reg" property corresponds to bus 0. Based on this assumption, I made
the bus_max calculation match.
Due to hardware peculiarities, our bus-range starts at a non-zero bus
number. So, something has to be done to make all the code agree on a
single interpretation of the meaning "reg" property.
> Also, why is your config space so large that
> we end up overflowing bus_max?
It isn't. The part of the patch that changes the type from u8 to int
was just to add some sanity. The code was easily susceptible to
overflow failures, it seemed best to change to int.
David Daney
WARNING: multiple messages have this Message-ID (diff)
From: ddaney@caviumnetworks.com (David Daney)
To: linux-arm-kernel@lists.infradead.org
Subject: [PATCH 4/6] PCI: generic: Correct, and avoid overflow, in bus_max calculation.
Date: Tue, 15 Sep 2015 11:02:54 -0700 [thread overview]
Message-ID: <55F85D4E.9020604@caviumnetworks.com> (raw)
In-Reply-To: <20150915174934.GL31157@arm.com>
On 09/15/2015 10:49 AM, Will Deacon wrote:
> On Sat, Sep 12, 2015 at 12:21:57AM +0100, David Daney wrote:
>> From: David Daney <david.daney@cavium.com>
>>
>> There are two problems with the bus_max calculation:
>>
>> 1) The u8 data type can overflow for large config space windows.
>>
>> 2) The calculation is incorrect for a bus range that doesn't start at
>> zero.
>>
>> Since the configuration space is relative to bus zero, make bus_max
>> just be the size of the config window scaled by bus_shift. Then clamp
>> it to a maximum of 255, per PCI. Use a data type of int to avoid
>> overflow problems.
>>
>> Signed-off-by: David Daney <david.daney@cavium.com>
>> ---
>> drivers/pci/host/pci-host-generic.c | 7 ++++---
>> 1 file changed, 4 insertions(+), 3 deletions(-)
>>
>> diff --git a/drivers/pci/host/pci-host-generic.c b/drivers/pci/host/pci-host-generic.c
>> index cd6f898..fce5bf7 100644
>> --- a/drivers/pci/host/pci-host-generic.c
>> +++ b/drivers/pci/host/pci-host-generic.c
>> @@ -164,7 +164,7 @@ out_release_res:
>> static int gen_pci_parse_map_cfg_windows(struct gen_pci *pci)
>> {
>> int err;
>> - u8 bus_max;
>> + int bus_max;
>> resource_size_t busn;
>> struct resource *bus_range;
>> struct device *dev = pci->host.dev.parent;
>> @@ -177,8 +177,9 @@ static int gen_pci_parse_map_cfg_windows(struct gen_pci *pci)
>> }
>>
>> /* Limit the bus-range to fit within reg */
>> - bus_max = pci->cfg.bus_range->start +
>> - (resource_size(&pci->cfg.res) >> pci->cfg.ops.bus_shift) - 1;
>> + bus_max = (resource_size(&pci->cfg.res) >> pci->cfg.ops.bus_shift) - 1;
>> + if (bus_max > 255)
>> + bus_max = 255;
>> pci->cfg.bus_range->end = min_t(resource_size_t,
>> pci->cfg.bus_range->end, bus_max);
>
> Hmm, this is changing the meaning of the bus-range property in the
> device-tree, which really needs to match what IEEE Std 1275-1994 requires.
I doesn't change the bus-range.
>
> My understanding was that the bus-range could be used to offset the config
> space, which is why it's subtracted from the bus number in
> gen_pci_map_cfg_bus_[e]cam.
There is an inconsistency in the current code. The calculation of the
cfg.win[?] pointers is done such that the beginning of the config space
specified in the "reg" property corresponds to bus 0.
The calculation that I am changing, was done such that the beginning of
the config space specified in the "reg" property corresponds to the
first bus of the "bus-range"
Which is correct? I assumed that the config space specified in the
"reg" property corresponds to bus 0. Based on this assumption, I made
the bus_max calculation match.
Due to hardware peculiarities, our bus-range starts at a non-zero bus
number. So, something has to be done to make all the code agree on a
single interpretation of the meaning "reg" property.
> Also, why is your config space so large that
> we end up overflowing bus_max?
It isn't. The part of the patch that changes the type from u8 to int
was just to add some sanity. The code was easily susceptible to
overflow failures, it seemed best to change to int.
David Daney
WARNING: multiple messages have this Message-ID (diff)
From: David Daney <ddaney@caviumnetworks.com>
To: Will Deacon <will.deacon@arm.com>
Cc: David Daney <ddaney.cavm@gmail.com>,
"devicetree@vger.kernel.org" <devicetree@vger.kernel.org>,
"linux-kernel@vger.kernel.org" <linux-kernel@vger.kernel.org>,
Rob Herring <robh+dt@kernel.org>,
Frank Rowand <frowand.list@gmail.com>,
"grant.likely@linaro.org" <grant.likely@linaro.org>,
Bjorn Helgaas <bhelgaas@google.com>,
"linux-pci@vger.kernel.org" <linux-pci@vger.kernel.org>,
Pawel Moll <Pawel.Moll@arm.com>,
Mark Rutland <Mark.Rutland@arm.com>,
Ian Campbell <ijc+devicetree@hellion.org.uk>,
Kumar Gala <galak@codeaurora.org>,
"linux-arm-kernel@lists.infradead.org"
<linux-arm-kernel@lists.infradead.org>,
David Daney <david.daney@cavium.com>,
lorenzo.pieralisi@arm.com
Subject: Re: [PATCH 4/6] PCI: generic: Correct, and avoid overflow, in bus_max calculation.
Date: Tue, 15 Sep 2015 11:02:54 -0700 [thread overview]
Message-ID: <55F85D4E.9020604@caviumnetworks.com> (raw)
In-Reply-To: <20150915174934.GL31157@arm.com>
On 09/15/2015 10:49 AM, Will Deacon wrote:
> On Sat, Sep 12, 2015 at 12:21:57AM +0100, David Daney wrote:
>> From: David Daney <david.daney@cavium.com>
>>
>> There are two problems with the bus_max calculation:
>>
>> 1) The u8 data type can overflow for large config space windows.
>>
>> 2) The calculation is incorrect for a bus range that doesn't start at
>> zero.
>>
>> Since the configuration space is relative to bus zero, make bus_max
>> just be the size of the config window scaled by bus_shift. Then clamp
>> it to a maximum of 255, per PCI. Use a data type of int to avoid
>> overflow problems.
>>
>> Signed-off-by: David Daney <david.daney@cavium.com>
>> ---
>> drivers/pci/host/pci-host-generic.c | 7 ++++---
>> 1 file changed, 4 insertions(+), 3 deletions(-)
>>
>> diff --git a/drivers/pci/host/pci-host-generic.c b/drivers/pci/host/pci-host-generic.c
>> index cd6f898..fce5bf7 100644
>> --- a/drivers/pci/host/pci-host-generic.c
>> +++ b/drivers/pci/host/pci-host-generic.c
>> @@ -164,7 +164,7 @@ out_release_res:
>> static int gen_pci_parse_map_cfg_windows(struct gen_pci *pci)
>> {
>> int err;
>> - u8 bus_max;
>> + int bus_max;
>> resource_size_t busn;
>> struct resource *bus_range;
>> struct device *dev = pci->host.dev.parent;
>> @@ -177,8 +177,9 @@ static int gen_pci_parse_map_cfg_windows(struct gen_pci *pci)
>> }
>>
>> /* Limit the bus-range to fit within reg */
>> - bus_max = pci->cfg.bus_range->start +
>> - (resource_size(&pci->cfg.res) >> pci->cfg.ops.bus_shift) - 1;
>> + bus_max = (resource_size(&pci->cfg.res) >> pci->cfg.ops.bus_shift) - 1;
>> + if (bus_max > 255)
>> + bus_max = 255;
>> pci->cfg.bus_range->end = min_t(resource_size_t,
>> pci->cfg.bus_range->end, bus_max);
>
> Hmm, this is changing the meaning of the bus-range property in the
> device-tree, which really needs to match what IEEE Std 1275-1994 requires.
I doesn't change the bus-range.
>
> My understanding was that the bus-range could be used to offset the config
> space, which is why it's subtracted from the bus number in
> gen_pci_map_cfg_bus_[e]cam.
There is an inconsistency in the current code. The calculation of the
cfg.win[?] pointers is done such that the beginning of the config space
specified in the "reg" property corresponds to bus 0.
The calculation that I am changing, was done such that the beginning of
the config space specified in the "reg" property corresponds to the
first bus of the "bus-range"
Which is correct? I assumed that the config space specified in the
"reg" property corresponds to bus 0. Based on this assumption, I made
the bus_max calculation match.
Due to hardware peculiarities, our bus-range starts at a non-zero bus
number. So, something has to be done to make all the code agree on a
single interpretation of the meaning "reg" property.
> Also, why is your config space so large that
> we end up overflowing bus_max?
It isn't. The part of the patch that changes the type from u8 to int
was just to add some sanity. The code was easily susceptible to
overflow failures, it seemed best to change to int.
David Daney
next prev parent reply other threads:[~2015-09-15 18:03 UTC|newest]
Thread overview: 59+ messages / expand[flat|nested] mbox.gz Atom feed top
2015-09-11 23:21 [PATCH 0/6] PCI: generic: Misc. bug fixes and enhanced support for MSI David Daney
2015-09-11 23:21 ` David Daney
2015-09-11 23:21 ` [PATCH 1/6] PCI: Make global and export pdev_fixup_irq() David Daney
2015-09-11 23:21 ` David Daney
2015-09-11 23:21 ` [PATCH 2/6] PCI: generic: Only fixup irqs for bus we are creating David Daney
2015-09-11 23:21 ` David Daney
2015-09-15 17:36 ` Will Deacon
2015-09-15 17:36 ` Will Deacon
2015-09-15 17:36 ` Will Deacon
2015-09-15 17:49 ` David Daney
2015-09-15 17:49 ` David Daney
2015-09-15 17:49 ` David Daney
2015-09-16 10:32 ` Lorenzo Pieralisi
2015-09-16 10:32 ` Lorenzo Pieralisi
2015-09-16 10:32 ` Lorenzo Pieralisi
2015-09-17 17:13 ` David Daney
2015-09-17 17:13 ` David Daney
2015-09-11 23:21 ` [PATCH 3/6] PCI: generic: Quit clobbering our pci_ops David Daney
2015-09-11 23:21 ` David Daney
2015-09-15 17:40 ` Will Deacon
2015-09-15 17:40 ` Will Deacon
2015-09-11 23:21 ` [PATCH 4/6] PCI: generic: Correct, and avoid overflow, in bus_max calculation David Daney
2015-09-11 23:21 ` David Daney
2015-09-15 17:49 ` Will Deacon
2015-09-15 17:49 ` Will Deacon
2015-09-15 18:02 ` David Daney [this message]
2015-09-15 18:02 ` David Daney
2015-09-15 18:02 ` David Daney
2015-09-15 18:35 ` Will Deacon
2015-09-15 18:35 ` Will Deacon
2015-09-15 18:35 ` Will Deacon
2015-09-15 18:45 ` David Daney
2015-09-15 18:45 ` David Daney
2015-09-16 10:41 ` Will Deacon
2015-09-16 10:41 ` Will Deacon
2015-09-16 10:41 ` Will Deacon
2015-09-16 11:28 ` Lorenzo Pieralisi
2015-09-16 11:28 ` Lorenzo Pieralisi
2015-09-16 11:28 ` Lorenzo Pieralisi
2015-09-16 17:29 ` Will Deacon
2015-09-16 17:29 ` Will Deacon
2015-09-16 17:29 ` Will Deacon
2015-09-16 17:39 ` David Daney
2015-09-16 17:39 ` David Daney
2015-09-11 23:21 ` [PATCH 5/6] PCI: generic: Pass proper starting bus number to pci_scan_root_bus() David Daney
2015-09-11 23:21 ` David Daney
2015-09-15 17:55 ` Will Deacon
2015-09-15 17:55 ` Will Deacon
2015-09-11 23:21 ` [PATCH 6/6] PCI: generic: Allow bus default MSI controller to be specified David Daney
2015-09-11 23:21 ` David Daney
2015-09-15 17:53 ` Will Deacon
2015-09-15 17:53 ` Will Deacon
2015-09-15 17:53 ` Will Deacon
2015-09-15 18:25 ` David Daney
2015-09-15 18:25 ` David Daney
2015-09-15 18:25 ` David Daney
2015-09-15 18:06 ` [PATCH 0/6] PCI: generic: Misc. bug fixes and enhanced support for MSI David Daney
2015-09-15 18:06 ` David Daney
2015-09-15 18:06 ` David Daney
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=55F85D4E.9020604@caviumnetworks.com \
--to=ddaney@caviumnetworks.com \
--cc=Mark.Rutland@arm.com \
--cc=Pawel.Moll@arm.com \
--cc=bhelgaas@google.com \
--cc=david.daney@cavium.com \
--cc=ddaney.cavm@gmail.com \
--cc=devicetree@vger.kernel.org \
--cc=frowand.list@gmail.com \
--cc=galak@codeaurora.org \
--cc=grant.likely@linaro.org \
--cc=ijc+devicetree@hellion.org.uk \
--cc=linux-arm-kernel@lists.infradead.org \
--cc=linux-kernel@vger.kernel.org \
--cc=linux-pci@vger.kernel.org \
--cc=lorenzo.pieralisi@arm.com \
--cc=robh+dt@kernel.org \
--cc=will.deacon@arm.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.