| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 06 Jul 2009 15:47:00 -0700 From: "H. Peter Anvin" <hpa@...or.com> To: "John A. Gregor" <john.gregor@...gic.com> CC: ralph.campbell@...gic.com, linux-kernel@...r.kernel.org, johng@...mond.mv.qlogic.com Subject: Re: [PATCH] x86_64/__iowrite32_copy: don't use string move for PIO writes John A. Gregor wrote: > "H. Peter Anvin" <hpa@...or.com> wrote: > >> John Gregor wrote: >>> From: John Gregor <johng@...mond.mv.qlogic.com> >>> >>> Some processors can write the same word more than once if the movs >>> instruction is used. This version uses normal memory move instructions >>> and gets the same performance since the speed is limited by PCIe and >>> write combining. >>> >> Which processors do that *when addressing I/O memory*? > > Nehalem. > Thanks. That should go into the patch header with a reference to the erratum, rather than saying "some processors". Additionally, there should be a comment in the code to that effect. Otherwise when 5-10 years from now we're trying to figure out what is going on, there is absolutely no hope, and we'll either re-trigger the bug or end up being stuck with cargo-cult programming. It's probably also worth nothing that with this change, there probably is little point in writing this in assembly at all. This is especially so since your implementation is buggy: by definition, __iowrite32_copy() does the I/O operations 32 bits at a time, but you are using 64-bit operations. This gets even more ironic when you look at the erratum, which states that this happens only when crossing from WB/WC memory into UC/WP/WT memory, and in the case of UC memory (the only one of those types which is used in Linux): * UC the data size of each write will now always be 8 bytes, as opposed to the original data size. A workaround is also described, which is to avoid page-crossing copies. No mention of doubled stores or anything like that. Note the irony in that your patch actually takes the problem described in the erratum and implementing it in software -- with your change, *all* stores would be 8 bytes, which of course violates the definition entirely. Note how critical detailed information of the erratum was to being able to make an actual analysis of the patch, too. Again, this is not just a case immediately, but possibly down the line. Hence: - your patch is wrong and actually introduces the problem it is supposed to solve; - your description of the problem was both incomplete and incorrect (it might be correct if there is another erratum, but if so please describe it, it is not Nehalem AAK6); - the current code is fine as long as it doesn't cross from cached to uncached memory, which it never should in any kind of sensible driver; - if you are worried about that, introduce code which breaks the string copy at page boundaries. Thanks, -hpa -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists