| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 13 Nov 2013 11:20:49 -0500 (EST) From: Alan Stern <stern@...land.harvard.edu> To: David Laight <David.Laight@...LAB.COM> cc: Sarah Sharp <sarah.a.sharp@...ux.intel.com>, <netdev@...r.kernel.org>, <linux-usb@...r.kernel.org> Subject: RE: [PATCH] usb: xhci: Link TRB must not occur with a USB payload burst. On Wed, 13 Nov 2013, David Laight wrote: > > > Since you don't really want to do all the work twice, the sensible > > > way is to add each input fragment to the ring one a time. > > > If you need to cross a link TRB and the last MBP boundary is within > > > the previous data TRB then you can split the previous data TRB at the > > > MBP boundary and continue. > > > If the previous TRB is short then you'd need to go back through the > > > earlier TRB until you found the one that contains a TRB boundary, > > > split it, and write a link TRB in the following slot. > > > > Right. You could avoid doing a lot of work twice by using two passes. > > In the first pass, keep track of the number of bytes allotted to each > > TRB and the MBP boundaries, without doing anything else. That way, > > you'll know where to put a Link TRB without any need for backtracking. > > Then in the second pass, fill in the actual contents of the TRBs. > > No - you really don't want to process everything twice. What I described does not process anything twice. It calculates the byte counts on the first pass and everything else on the second pass. > You could remember the TRB and offset of the last MBP boundary. Then you really _do_ end up processing the TRB's which follow the last MBP boundary twice. Once when setting up the TD as normal, and then again after you realize they need to be moved to a different ring segment. > > Unless the first TRB of the message is the first TRB of the ring > > segment. Then you're in trouble... Hopefully, real URBs will never be > > that badly fragmented. > > I suspect that ones from the network stack might be badly fragmented. > The code needs to at least detect and error them. I'm not so sure about this. The network stack works okay with other host controller drivers (like ehci-hcd), which have much stricter requirements about fragmentation. They require that the length of each SG element except the last one must be a multiple of the maxpacket size. For high-speed bulk transfers, that means a multiple of 512. > > > You can split a bulk TD on a 1k boundary and the target won't know the > > > difference. > > > > The target won't know the difference, but the host will. Here's an > > example: Suppose the driver submits two URBs, each for a data-in > > transfer of 32 KB. You split each URB up into two 16-KB TDs; let's > > call them A, B, C, and D (where A and B make up the first URB, and C > > and D make up the second URB). > > I was thinking about OUT transfers, IN ones are unlikely to be badly > fragmented. Maybe not for the network stack, but OUT and IN end up equally fragmented for the storage stack. > > Suppose you have only two ring segments, and a driver submits an URB > > which is so fragmented that it requires more TRBs than you have room > > for in those two segments. When do you want the interrupts to arrive? > > Answer: At each segment crossing. > > You bounce the original request and fix the driver to submit URB > with fewer fragments. In other words, you want to limit the number of SG elements the driver will accept. Alan Stern -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists