| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 11 Nov 2020 16:16:39 -0600
From: Bjorn Helgaas <helgaas@...nel.org>
To: Martin Kaiser <martin@...ser.cx>
Cc: Ley Foon Tan <ley.foon.tan@...el.com>,
Lorenzo Pieralisi <lorenzo.pieralisi@....com>,
Bjorn Helgaas <bhelgaas@...gle.com>,
rfi@...ts.rocketboards.org, linux-pci@...r.kernel.org,
linux-kernel@...r.kernel.org,
Nicolas Saenz Julienne <nsaenzjulienne@...e.de>,
Jingoo Han <jingoohan1@...il.com>,
Gustavo Pimentel <gustavo.pimentel@...opsys.com>,
Toan Le <toan@...amperecomputing.com>,
Florian Fainelli <f.fainelli@...il.com>,
Thomas Gleixner <tglx@...utronix.de>
Subject: Re: [PATCH] PCI: altera-msi: Remove irq handler and data in one go
[+cc Thomas for handler/data order question at end]
On Wed, Nov 11, 2020 at 10:43:55PM +0100, Martin Kaiser wrote:
> Thus wrote Bjorn Helgaas (helgaas@...nel.org):
> > On Tue, Nov 10, 2020 at 03:21:36PM -0600, Bjorn Helgaas wrote:
> > > On Sun, Nov 08, 2020 at 08:11:40PM +0100, Martin Kaiser wrote:
> > > > Replace the two separate calls for removing the irq handler and data with a
> > > > single irq_set_chained_handler_and_data() call.
>
> > > This is similar to these:
>
> > > 36f024ed8fc9 ("PCI/MSI: pci-xgene-msi: Consolidate chained IRQ handler install/remove")
> > > 5168a73ce32d ("PCI/keystone: Consolidate chained IRQ handler install/remove")
> > > 2cf5a03cb29d ("PCI/keystone: Fix race in installing chained IRQ handler")
>
> > > and it seems potentially important that this removes the IRQ handler
> > > and data *atomically*, i.e., both are done while holding
> > > irq_get_desc_buslock().
>
> Ok, understood.
>
> > > So I would use this:
>
> > > PCI: altera-msi: Fix race in installing chained IRQ handler
>
> > > Fix a race where a pending interrupt could be received and the handler
> > > called before the handler's data has been setup by converting to
> > > irq_set_chained_handler_and_data().
>
> > > See also 2cf5a03cb29d ("PCI/keystone: Fix race in installing chained
> > > IRQ handler").
>
> > > to make it clear that this is actually a bug fix, not just a cleanup.
>
> Thomas' commit 2cf5a03cb29d fixed a case where the handler was installed.
> We're removing the handler here so his commit message doesn't really fit.
> Anyway, I'll rewrite the commit message to clarify that this fixes a
> race condition.
Oh, right, of course, I wasn't paying attention. The altera case is
removing and doing it in the correct order (removing handler, then
data), so there shouldn't be a race even with the current code.
> > > Looks like this should also be done in dw_pcie_free_msi() and
>
> I'll send a patch for this.
>
> > > xgene_msi_hwirq_alloc() at the same time?
>
> This function uses the error status from irq_set_handler_data().
> irq_set_chained_handler_and_data() returns no such error status. Is it
> ok to drop the error handling?
I'm not an IRQ expert, but I'd say it's OK to drop it. Of the 40 or
so callers, the only other caller that looks at the error status is
ingenic_intc_of_init().
Thomas, it looks like irq_domain_set_info() and msi_domain_ops_init()
set the handler itself before setting the handler data:
irq_domain_set_info
irq_set_chip_and_handler_name(virq, chip, handler, ...)
irq_set_handler_data(virq, handler_data)
msi_domain_ops_init
__irq_set_handler(virq, info->handler, ...)
if (info->handler_data)
irq_set_handler_data(virq, info->handler_data)
That looks at least superficially similar to the race you fixed with
2cf5a03cb29d ("PCI/keystone: Fix race in installing chained IRQ
handler").
Should irq_domain_set_info() and msi_domain_ops_init() swap the order,
too?
Powered by blists - more mailing lists