From: Harald Freudenberger <freude@linux.ibm.com>
To: Holger Dengler <dengler@linux.ibm.com>
Cc: linux-s390@vger.kernel.org, herbert@gondor.apana.org.au,
ifranzki@linux.ibm.com, fcallies@linux.ibm.com,
hca@linux.ibm.com, gor@linux.ibm.com, agordeev@linux.ibm.com
Subject: Re: [PATCH v2 04/20] s390/ap/zcrypt: New xflag parameter and extension of the ap msg flags
Date: Mon, 24 Mar 2025 16:52:31 +0100 [thread overview]
Message-ID: <9117e4a4534a6c319df06a18993e0f86@linux.ibm.com> (raw)
In-Reply-To: <eb0c67b9-4f55-4a3d-854c-c7a28e651607@linux.ibm.com>
On 2025-03-18 13:16, Holger Dengler wrote:
> On 04/03/2025 18:21, Harald Freudenberger wrote:
>> Introduce a new flag parameter for the both cprb send functions
>> zcrypt_send_cprb() and zcrypt_send_ep11_cprb(). This new
>> xflags parameter ("execution flags") shall be used to provide
>> execution hints and flags for this crypto request.
>>
>> There are two flags implemented to be used with these functions:
>> * ZCRYPT_XFLAG_USERSPACE - indicates to the lower layers that
>> all the ptrs address userspace. So when construction the ap msg
>> copy_from_user() is to be used. If this flag is NOT set, the ptrs
>> address kernel memory and thus memcpy() is to be used.
>> * ZCRYPT_XFLAG_NOMEMALLOC - indicates that this task must not
>> allocate memory which may be allocated with io operations.
>> For the zcrypt layer this limits the number of EP11 targets
>> to 16 APQNs. But as this flag is passed down the stack, it
>> may induce further restrictions.
>>
>> For the AP bus and zcrypt message layer this means:
>> * The ZCRYPT_XFLAG_USERSPACE is mapped to the AP flag
>> AP_MSG_FLAG_USERSPACE stored into the flags field of each
>> ap message in the ap_message struct. This replaces the extra
>> function parameter "userspace" and makes some function
>> invocations simpler.
>> * The ZCRYPT_XFLAG_NOMEMALLOC causes the AP message buffer to
>> use buffer space from the AP message mempool instead of
>> allocating memory via kmalloc. Note that the buffer space
>> from the AP message mem pool is limited to 12KB per item.
>>
>> Signed-off-by: Harald Freudenberger <freude@linux.ibm.com>
>
> The boolean parameter `userspace` should only be merged with the
> xflags in functions, which has the need to handle
> ZCRYPT_XFLAG_USERSPACE and ZCRYPT_XFLAG_NOMEMALLOC, e.g
> _zcrypt_send_cprb(). Functions, which either only take one or the
> other flag may stay with the boolean parameter. There is also no need
> for a definition of AP_MSG_FLAG_USERSPACE, as the AP layer does not
> care about userspace pointers at all, only the zcrypt layer is
> affected by this flag. See my comments below.
>
>> ---
>> drivers/s390/crypto/ap_bus.c | 6 +-
>> drivers/s390/crypto/ap_bus.h | 11 ++--
>> drivers/s390/crypto/zcrypt_api.c | 90
>> +++++++++++++++------------
>> drivers/s390/crypto/zcrypt_api.h | 36 +++++++----
>> drivers/s390/crypto/zcrypt_ccamisc.c | 16 ++---
>> drivers/s390/crypto/zcrypt_ep11misc.c | 10 +--
>> drivers/s390/crypto/zcrypt_msgtype6.c | 12 ++--
>> drivers/s390/crypto/zcrypt_msgtype6.h | 4 +-
>> 8 files changed, 107 insertions(+), 78 deletions(-)
>>
> [...]
>> diff --git a/drivers/s390/crypto/ap_bus.h
>> b/drivers/s390/crypto/ap_bus.h
>> index a7bd44e5cc76..5581fb13af73 100644
>> --- a/drivers/s390/crypto/ap_bus.h
>> +++ b/drivers/s390/crypto/ap_bus.h
>> @@ -233,12 +233,13 @@ struct ap_message {
>> struct ap_message *);
>> };
>>
>> -#define AP_MSG_FLAG_SPECIAL 0x0001 /* flag msg as 'special' with
>> NQAP */
>> -#define AP_MSG_FLAG_USAGE 0x0002 /* CCA, EP11: usage (no admin)
>> msg */
>> -#define AP_MSG_FLAG_ADMIN 0x0004 /* CCA, EP11: admin (=control)
>> msg */
>> -#define AP_MSG_FLAG_MEMPOOL 0x0008 /* ap msg buffer allocated from
>> mempool */
>> +#define AP_MSG_FLAG_SPECIAL 0x0001 /* flag msg as 'special' with
>> NQAP */
>> +#define AP_MSG_FLAG_USAGE 0x0002 /* CCA, EP11: usage (no admin)
>> msg */
>> +#define AP_MSG_FLAG_ADMIN 0x0004 /* CCA, EP11: admin (=control)
>> msg */
>> +#define AP_MSG_FLAG_MEMPOOL 0x0008 /* ap msg buffer allocated
>> from mempool */
>> +#define AP_MSG_FLAG_USERSPACE 0x0010 /* pointers address userspace
>> memory */
>
> Do we really need this flag in the AP layer? IIRC it has only meaning
> in the zcrypt layer. If this is correct, please remove it.
>
>>
>> -int ap_init_apmsg(struct ap_message *ap_msg, bool use_mempool);
>> +int ap_init_apmsg(struct ap_message *ap_msg, u32 flags);
>> void ap_release_apmsg(struct ap_message *ap_msg);
>>
>> enum ap_sm_wait ap_sm_event(struct ap_queue *aq, enum ap_sm_event
>> event);
>> diff --git a/drivers/s390/crypto/zcrypt_api.c
>> b/drivers/s390/crypto/zcrypt_api.c
>> index ad09c5306e28..659fe7afb67e 100644
>> --- a/drivers/s390/crypto/zcrypt_api.c
>> +++ b/drivers/s390/crypto/zcrypt_api.c
>> @@ -648,7 +648,7 @@ static long zcrypt_rsa_modexpo(struct ap_perms
>> *perms,
>>
>> trace_s390_zcrypt_req(mex, TP_ICARSAMODEXPO);
>>
>> - rc = ap_init_apmsg(&ap_msg, false);
>> + rc = ap_init_apmsg(&ap_msg, AP_MSG_FLAG_USERSPACE);
>
> use_mempool == false should be changed to 0, not AP_MSG_FLAG_USERSPACE.
> rc = ap_init_apmsg(&ap_msg, 0);
>
>> if (rc)
>> goto out;
>>
>> @@ -753,7 +753,7 @@ static long zcrypt_rsa_crt(struct ap_perms *perms,
>>
>> trace_s390_zcrypt_req(crt, TP_ICARSACRT);
>>
>> - rc = ap_init_apmsg(&ap_msg, false);
>> + rc = ap_init_apmsg(&ap_msg, AP_MSG_FLAG_USERSPACE);
>
> Same here.
> rc = ap_init_apmsg(&ap_msg, 0);
>
>> if (rc)
>> goto out;
>>
> [...]
>> @@ -856,16 +856,19 @@ static long _zcrypt_send_cprb(bool userspace,
>> struct ap_perms *perms,
>> unsigned short *domain, tdom;
>> int cpen, qpen, qid = 0, rc;
>> struct module *mod;
>> + u32 flags;
>>
>> trace_s390_zcrypt_req(xcrb, TB_ZSECSENDCPRB);
>>
>> xcrb->status = 0;
>>
>> - rc = ap_init_apmsg(&ap_msg, false);
>> + flags = (xflags & ZCRYPT_XFLAG_USERSPACE ? AP_MSG_FLAG_USERSPACE :
>> 0) |
>> + (xflags & ZCRYPT_XFLAG_NOMEMALLOC ? AP_MSG_FLAG_MEMPOOL : 0);
>> + rc = ap_init_apmsg(&ap_msg, flags);
>
> There is no need to translate ZCRYPT_XFLAG_USERSPACE to ap-msg flags,
> the AP layer should not care about userspace/kernelspace pointer.
> rc = ap_init_apmsg(&ap_msg, xflags & ZCRYPT_XFLAG_NOMEMALLOC ?
> AP_MSG_FLAG_MEMPOOL : 0);
>
>> if (rc)
>> goto out;
>>
>> - rc = prep_cca_ap_msg(userspace, xcrb, &ap_msg, &func_code, &domain);
>> + rc = prep_cca_ap_msg(xcrb, &ap_msg, &func_code, &domain);
>
> The prep_cca_ap_msg() - and all functions below - can stay with the
> bool parameter.
> rc = prep_cca_ap_msg((xflags & ZCRYPT_XFLAG_USERSPACE), xcrb, &ap_msg,
> &func_code, &domain);
>
>> if (rc)
>> goto out;
>> print_hex_dump_debug("ccareq: ", DUMP_PREFIX_ADDRESS, 16, 1,
>> @@ -956,7 +959,7 @@ static long _zcrypt_send_cprb(bool userspace,
>> struct ap_perms *perms,
>> if (*domain == AUTOSEL_DOM)
>> *domain = AP_QID_QUEUE(qid);
>>
>> - rc = pref_zq->ops->send_cprb(userspace, pref_zq, xcrb, &ap_msg);
>> + rc = pref_zq->ops->send_cprb(pref_zq, xcrb, &ap_msg);
>
> Here as well, stay with the bool parameter userspace in the callback.
> rc = pref_zq->ops->send_cprb((xflags & ZCRYPT_XFLAG_USERSPACE),
> pref_zq, xcrb, &ap_msg);
>
>> if (!rc) {
>> print_hex_dump_debug("ccarpl: ", DUMP_PREFIX_ADDRESS, 16, 1,
>> ap_msg.msg, ap_msg.len, false);
> [...]
>> @@ -1029,52 +1032,58 @@ static bool is_desired_ep11_queue(unsigned int
>> dev_qid,
>> return false;
>> }
>>
>> -static long _zcrypt_send_ep11_cprb(bool userspace, struct ap_perms
>> *perms,
>> +static long _zcrypt_send_ep11_cprb(u32 xflags, struct ap_perms
>> *perms,
>> struct zcrypt_track *tr,
>> struct ep11_urb *xcrb)
>> {
>> struct zcrypt_card *zc, *pref_zc;
>> struct zcrypt_queue *zq, *pref_zq;
>> - struct ep11_target_dev *targets;
>> + struct ep11_target_dev targetbuf[16], *targets = NULL;
>> unsigned short target_num;
>> unsigned int wgt = 0, pref_wgt = 0;
>> unsigned int func_code = 0, domain;
>> struct ap_message ap_msg;
>> int cpen, qpen, qid = 0, rc;
>> struct module *mod;
>> + u32 flags;
>>
>> trace_s390_zcrypt_req(xcrb, TP_ZSENDEP11CPRB);
>>
>> - rc = ap_init_apmsg(&ap_msg, false);
>> + flags = (xflags & ZCRYPT_XFLAG_USERSPACE ? AP_MSG_FLAG_USERSPACE :
>> 0) |
>> + (xflags & ZCRYPT_XFLAG_NOMEMALLOC ? AP_MSG_FLAG_MEMPOOL : 0);
>> + rc = ap_init_apmsg(&ap_msg, flags);
>
> The AP layer does not care about the userspace flag. Please remove it.
> rc = ap_init_apmsg(&ap_msg, xflags & ZCRYPT_XFLAG_NOMEMALLOC ?
> AP_MSG_FLAG_MEMPOOL : 0);
>
>> if (rc)
>> goto out;
>>
>> target_num = (unsigned short)xcrb->targets_num;
>>
>> /* empty list indicates autoselect (all available targets) */
>> - targets = NULL;
>> + rc = -ENOMEM;
>> if (target_num != 0) {
>> struct ep11_target_dev __user *uptr;
>>
>> - targets = kcalloc(target_num, sizeof(*targets), GFP_KERNEL);
>> - if (!targets) {
>> - func_code = 0;
>> - rc = -ENOMEM;
>> + if (target_num <= ARRAY_SIZE(targetbuf)) {
>> + targets = targetbuf;
>> + } else if (xflags & ZCRYPT_XFLAG_NOMEMALLOC) {
>> goto out;
>> + } else {
>> + targets = kcalloc(target_num,
>> + sizeof(*targets), GFP_KERNEL);
>> + if (!targets)
>> + goto out;
>> }
>>
>> uptr = (struct ep11_target_dev __force __user *)xcrb->targets;
>> - if (z_copy_from_user(userspace, targets, uptr,
>> - target_num * sizeof(*targets))) {
>> - func_code = 0;
>> + if (z_copy_from_user(xflags & ZCRYPT_XFLAG_USERSPACE, targets,
>> + uptr, target_num * sizeof(*targets))) {
>> rc = -EFAULT;
>> - goto out_free;
>> + goto out;
>> }
>> }
>>
>> - rc = prep_ep11_ap_msg(userspace, xcrb, &ap_msg, &func_code,
>> &domain);
>> + rc = prep_ep11_ap_msg(xcrb, &ap_msg, &func_code, &domain);
>
> Stay here with the boolean parameter for userspace.
>
>> if (rc)
>> - goto out_free;
>> + goto out;
>> print_hex_dump_debug("ep11req: ", DUMP_PREFIX_ADDRESS, 16, 1,
>> ap_msg.msg, ap_msg.len, false);
>>
> [...]
>> @@ -1154,11 +1163,11 @@ static long _zcrypt_send_ep11_cprb(bool
>> userspace, struct ap_perms *perms,
>> pr_debug("no match for address ff.ffff => ENODEV\n");
>> }
>> rc = -ENODEV;
>> - goto out_free;
>> + goto out;
>> }
>>
>> qid = pref_zq->queue->qid;
>> - rc = pref_zq->ops->send_ep11_cprb(userspace, pref_zq, xcrb,
>> &ap_msg);
>> + rc = pref_zq->ops->send_ep11_cprb(pref_zq, xcrb, &ap_msg);
>
> Keep the boolean parameter for userspace here as well.
>
>> if (!rc) {
>> print_hex_dump_debug("ep11rpl: ", DUMP_PREFIX_ADDRESS, 16, 1,
>> ap_msg.msg, ap_msg.len, false);
> [...]
I've picked all your suggestions. See v3 (coming soon).
next prev parent reply other threads:[~2025-03-24 15:52 UTC|newest]
Thread overview: 55+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-03-04 17:20 [PATCH v2 00/20] AP bus/zcrypt/pkey/paes no-mem-alloc patches Harald Freudenberger
2025-03-04 17:20 ` [PATCH v2 01/20] s390/ap: Move response_type struct into ap_msg struct Harald Freudenberger
2025-03-17 9:38 ` Holger Dengler
2025-03-24 14:34 ` Harald Freudenberger
2025-03-04 17:20 ` [PATCH v2 02/20] s390/ap/zcrypt: Rework AP message buffer allocation Harald Freudenberger
2025-03-17 13:57 ` Holger Dengler
2025-03-04 17:20 ` [PATCH v2 03/20] s390/ap: Introduce ap message buffer pool Harald Freudenberger
2025-03-17 16:14 ` Holger Dengler
2025-03-24 14:41 ` Harald Freudenberger
2025-03-04 17:21 ` [PATCH v2 04/20] s390/ap/zcrypt: New xflag parameter and extension of the ap msg flags Harald Freudenberger
2025-03-18 12:16 ` Holger Dengler
2025-03-24 15:52 ` Harald Freudenberger [this message]
2025-03-04 17:21 ` [PATCH v2 05/20] s390/zcrypt: Introduce cprb mempool for cca misc functions Harald Freudenberger
2025-03-18 14:16 ` Holger Dengler
2025-03-25 8:26 ` Harald Freudenberger
2025-03-04 17:21 ` [PATCH v2 06/20] s390/zcrypt: Introduce cprb mempool for ep11 " Harald Freudenberger
2025-03-18 15:16 ` Holger Dengler
2025-03-25 8:36 ` Harald Freudenberger
2025-03-04 17:21 ` [PATCH v2 07/20] s390/zcrypt: Rework zcrypt function zcrypt_device_status_mask_ext Harald Freudenberger
2025-03-19 11:03 ` Holger Dengler
2025-03-25 9:24 ` Harald Freudenberger
2025-03-04 17:21 ` [PATCH v2 08/20] s390/zcrypt: Introduce pre-allocated device status array for cca misc Harald Freudenberger
2025-03-19 14:31 ` Holger Dengler
2025-03-25 10:51 ` Harald Freudenberger
2025-03-04 17:21 ` [PATCH v2 09/20] s390/zcrypt: Introduce pre-allocated device status array for ep11 misc Harald Freudenberger
2025-03-19 18:02 ` Holger Dengler
2025-03-25 11:09 ` Harald Freudenberger
2025-03-04 17:21 ` [PATCH v2 10/20] s390/zcrypt/pkey: Rework cca findcard() implementation and callers Harald Freudenberger
2025-03-19 17:58 ` Holger Dengler
2025-03-25 13:02 ` Harald Freudenberger
2025-03-04 17:21 ` [PATCH v2 11/20] s390/zcrypt/pkey: Rework ep11 " Harald Freudenberger
2025-03-20 8:30 ` Holger Dengler
2025-03-25 13:12 ` Harald Freudenberger
2025-03-04 17:21 ` [PATCH v2 12/20] s390/zcrypt: Rework cca misc functions kmallocs to use the cprb mempool Harald Freudenberger
2025-03-20 9:31 ` Holger Dengler
2025-03-04 17:21 ` [PATCH v2 13/20] s390/zcrypt: Add small mempool for cca info list entries Harald Freudenberger
2025-03-20 14:34 ` Holger Dengler
2025-03-25 13:32 ` Harald Freudenberger
2025-03-20 16:05 ` Holger Dengler
2025-03-04 17:21 ` [PATCH v2 14/20] s390/zcrypt: Locate ep11_domain_query_info onto the stack instead of kmalloc Harald Freudenberger
2025-03-20 14:41 ` Holger Dengler
2025-03-25 14:04 ` Harald Freudenberger
2025-03-04 17:21 ` [PATCH v2 15/20] s390/zcrypt: Rework ep11 misc functions to use cprb mempool Harald Freudenberger
2025-03-20 15:18 ` Holger Dengler
2025-03-04 17:21 ` [PATCH v2 16/20] s390/zcrypt: Add small mempool for ep11 card info list entries Harald Freudenberger
2025-03-20 16:09 ` Holger Dengler
2025-03-04 17:21 ` [PATCH v2 17/20] s390/pkey: Rework CCA pkey handler to use stack for small memory allocs Harald Freudenberger
2025-03-21 9:05 ` Holger Dengler
2025-03-04 17:21 ` [PATCH v2 18/20] s390/pkey: Rework EP11 " Harald Freudenberger
2025-03-21 9:06 ` Holger Dengler
2025-03-04 17:21 ` [PATCH v2 19/20] s390/zcrypt/pkey: Provide and pass xflags within pkey and zcrypt layers Harald Freudenberger
2025-03-20 16:30 ` Holger Dengler
2025-03-04 17:21 ` [PATCH v2 20/20] s390/pkey/crypto: Introduce xflags param for pkey in-kernel API Harald Freudenberger
2025-03-20 16:34 ` Holger Dengler
2025-03-20 16:40 ` [PATCH v2 00/20] AP bus/zcrypt/pkey/paes no-mem-alloc patches Holger Dengler
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=9117e4a4534a6c319df06a18993e0f86@linux.ibm.com \
--to=freude@linux.ibm.com \
--cc=agordeev@linux.ibm.com \
--cc=dengler@linux.ibm.com \
--cc=fcallies@linux.ibm.com \
--cc=gor@linux.ibm.com \
--cc=hca@linux.ibm.com \
--cc=herbert@gondor.apana.org.au \
--cc=ifranzki@linux.ibm.com \
--cc=linux-s390@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.