| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <acd70df3-fdce-a08c-02f0-4cd6d806e6ba@arm.com>
Date: Fri, 30 Jul 2021 09:44:31 +0530
From: Anshuman Khandual <anshuman.khandual@....com>
To: Suzuki K Poulose <suzuki.poulose@....com>,
coresight@...ts.linaro.org
Cc: linux-arm-kernel@...ts.infradead.org, linux-kernel@...r.kernel.org,
tamas.zsoldos@....com, al.grant@....com, leo.yan@...aro.org,
mike.leach@...aro.org, mathieu.poirier@...aro.org,
jinlmao@....qualcomm.com
Subject: Re: [PATCH v2 03/10] coresight: etm-pmu: Ensure the AUX handle is
valid
On 7/23/21 6:16 PM, Suzuki K Poulose wrote:
> The ETM perf infrastructure closes out a handle during event_stop
> or on an error in starting the event. In either case, it is possible
> for a "sink" to update/close the handle, under certain circumstances.
> (e.g no space in ring buffer.). So, ensure that we handle this
> gracefully in the PMU driver by verifying the handle is still valid.
>
> Cc: Mathieu Poirier <mathieu.poirier@...aro.org>
> Cc: Mike Leach <mike.leach@...aro.org>
> Cc: Anshuman Khandual <anshuman.khandual@....com>
> Cc: Leo Yan <leo.yan@...aro.org>
> Signed-off-by: Suzuki K Poulose <suzuki.poulose@....com>
> ---
> .../hwtracing/coresight/coresight-etm-perf.c | 27 ++++++++++++++++---
> 1 file changed, 24 insertions(+), 3 deletions(-)
>
> diff --git a/drivers/hwtracing/coresight/coresight-etm-perf.c b/drivers/hwtracing/coresight/coresight-etm-perf.c
> index 6f398377fec9..a6ab603afee4 100644
> --- a/drivers/hwtracing/coresight/coresight-etm-perf.c
> +++ b/drivers/hwtracing/coresight/coresight-etm-perf.c
> @@ -450,8 +450,15 @@ static void etm_event_start(struct perf_event *event, int flags)
> fail_disable_path:
> coresight_disable_path(path);
> fail_end_stop:
> - perf_aux_output_flag(handle, PERF_AUX_FLAG_TRUNCATED);
> - perf_aux_output_end(handle, 0);
> + /*
> + * Check if the handle is still associated with the event,
> + * to handle cases where if the sink failed to start the
> + * trace and TRUNCATED the handle already.
> + */
> + if (READ_ONCE(handle->event)) {
> + perf_aux_output_flag(handle, PERF_AUX_FLAG_TRUNCATED);
> + perf_aux_output_end(handle, 0);
> + }
Makes sense as perf_aux_output_[flag|end]() helpers do not
validate the 'handle' themselves.
> fail:
> event->hw.state = PERF_HES_STOPPED;
> goto out;
> @@ -519,7 +526,21 @@ static void etm_event_stop(struct perf_event *event, int mode)
>
> size = sink_ops(sink)->update_buffer(sink, handle,
> event_data->snk_config);
> - perf_aux_output_end(handle, size);
> + /*
> + * Make sure the handle is still valid as the
> + * sink could have closed it from an IRQ.
> + * The sink driver must handle the race with
> + * update_buffer() and IRQ. Thus either we
> + * should get a valid handle and valid size
> + * (which may be 0).
> + *
> + * But we should never get a non-zero size with
> + * an invalid handle.
> + */
> + if (READ_ONCE(handle->event))
> + perf_aux_output_end(handle, size);
> + else
> + WARN_ON(size);
Right.
> }
>
> /* Disabling the path make its elements available to other sessions */
>
Reviewed-by: Anshuman Khandual <anshuman.khandual@....com>
Powered by blists - more mailing lists