| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 21 Oct 2014 20:16:46 -0600 From: Bjorn Helgaas <bhelgaas@...gle.com> To: Joerg Roedel <joro@...tes.org> Cc: David Woodhouse <dwmw2@...radead.org>, "Hoemann, Jerry" <jerry.hoemann@...com>, Takao Indoh <indou.takao@...fujitsu.com>, Baoquan He <bhe@...hat.com>, "linux-pci@...r.kernel.org" <linux-pci@...r.kernel.org>, "kexec@...ts.infradead.org" <kexec@...ts.infradead.org>, "linux-kernel@...r.kernel.org" <linux-kernel@...r.kernel.org>, "open list:INTEL IOMMU (VT-d)" <iommu@...ts.linux-foundation.org>, doug.hatch@...com, "ishii.hironobu@...fujitsu.com" <ishii.hironobu@...fujitsu.com>, zhenhua@...com, Zhen-Hua <zhen-hual@...com>, "Eric W. Biederman" <ebiederm@...ssion.com>, "Vaden, Tom L (HP Server OS Architecture)" <tom.vaden@...com> Subject: Re: [PATCH 0/8] iommu/vt-d: Fix crash dump failure caused by legacy DMA/IO [-cc Bill, +cc Zhen-Hua, Eric, Tom, Jerry] Hi Joerg, I was looking at Zhen-Hua's recent patches, trying to figure out if I need to do anything with them. Resetting devices in the old kernel seems like a non-starter. Resetting devices in the new kernel, ..., well, maybe. It seems ugly, and it seems like the sort of problem that IOMMUs are designed to solve. Anyway, I found this old discussion that I didn't quite understand: On Wed, Jul 2, 2014 at 7:32 AM, Joerg Roedel <joro@...tes.org> wrote: > On Wed, Apr 30, 2014 at 11:49:33AM +0100, David Woodhouse wrote: >> After the last round of this patchset, we discussed a potential >> improvement where you point every virtual bus address at the *same* >> physical scratch page. > > That is a solution to prevent the in-flight DMA failures. But what > happens when there is some in-flight DMA to a disk to write some inodes > or a new superblock. Then this scratch address-space may cause > filesystem corruption at worst. This in-flight DMA is from a device programmed by the old kernel, and it would be reading data from the old kernel's buffers. I think you're suggesting that we might want that DMA read to complete so the device can update filesystem metadata? I don't really understand that argument. Don't we usually want to stop any data from escaping the machine after a crash, on the theory that the old kernel is crashing because something is catastrophically wrong and we may have already corrupted things in memory? If so, allowing this old DMA to complete is just as likely to make things worse as to make them better. Without kdump, we likely would reboot through the BIOS and the device would get reset and the DMA would never happen at all. So if we made the dump kernel program the IOMMU to prevent the DMA, that seems like a similar situation. > So with this in mind I would prefer initially taking over the > page-tables from the old kernel before the device drivers re-initialize > the devices. This makes the dump kernel more dependent on data from the old kernel, which we obviously want to avoid when possible. I didn't find the previous discussion where pointing every virtual bus address at the same physical scratch page was proposed. Why was that better than programming the IOMMU to reject every DMA? Bjorn -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists