| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <26b17c32-c9ad-4b4c-8193-3a9757e587db@redhat.com>
Date: Mon, 20 Nov 2023 18:55:42 +0100
From: Ivan Vecera <ivecera@...hat.com>
To: Simon Horman <horms@...nel.org>
Cc: intel-wired-lan@...ts.osuosl.org,
Jesse Brandeburg <jesse.brandeburg@...el.com>,
Tony Nguyen <anthony.l.nguyen@...el.com>,
"David S. Miller" <davem@...emloft.net>, Eric Dumazet <edumazet@...gle.com>,
Jakub Kicinski <kuba@...nel.org>, Paolo Abeni <pabeni@...hat.com>,
linux-kernel@...r.kernel.org, Jacob Keller <jacob.e.keller@...el.com>,
Wojciech Drewek <wojciech.drewek@...el.com>, mschmidt@...hat.com,
netdev@...r.kernel.org
Subject: Re: [PATCH iwl-next v3 3/5] i40e: Add helpers to find VSI and VEB by
SEID and use them
On 20. 11. 23 12:42, Simon Horman wrote:
> On Thu, Nov 16, 2023 at 04:21:12PM +0100, Ivan Vecera wrote:
>> Add two helpers i40e_(veb|vsi)_get_by_seid() to find corresponding
>> VEB or VSI by their SEID value and use these helpers to replace
>> existing open-coded loops.
>>
>> Reviewed-by: Wojciech Drewek <wojciech.drewek@...el.com>
>> Signed-off-by: Ivan Vecera <ivecera@...hat.com>
>
> Hi Ivan,
>
> some minor feedback from my side.
>
> ...
>
>> diff --git a/drivers/net/ethernet/intel/i40e/i40e.h b/drivers/net/ethernet/intel/i40e/i40e.h
>> index 1e9266de270b..ca8997d29c02 100644
>> --- a/drivers/net/ethernet/intel/i40e/i40e.h
>> +++ b/drivers/net/ethernet/intel/i40e/i40e.h
>> @@ -1360,4 +1360,38 @@ static inline struct i40e_pf *i40e_hw_to_pf(struct i40e_hw *hw)
>>
>> struct device *i40e_hw_to_dev(struct i40e_hw *hw);
>>
>> +/**
>> + * i40e_pf_get_vsi_by_seid - find VSI by SEID
>> + * @pf: pointer to a PF
>
> nit: @seid is missing here
>
>> + **/
>> +static inline struct i40e_vsi *
>> +i40e_pf_get_vsi_by_seid(struct i40e_pf *pf, u16 seid)
>> +{
>> + struct i40e_vsi *vsi;
>> + int i;
>> +
>> + i40e_pf_for_each_vsi(pf, i, vsi)
>> + if (vsi->seid == seid)
>> + return vsi;
>> +
>> + return NULL;
>> +}
>> +
>> +/**
>> + * i40e_pf_get_veb_by_seid - find VEB by SEID
>> + * @pf: pointer to a PF
>
> Ditto
>
> ...
>
>> diff --git a/drivers/net/ethernet/intel/i40e/i40e_main.c b/drivers/net/ethernet/intel/i40e/i40e_main.c
>
> ...
>
>> @@ -14848,23 +14831,16 @@ struct i40e_veb *i40e_veb_setup(struct i40e_pf *pf, u16 flags,
>> }
>>
>> /* make sure there is such a vsi and uplink */
>> - i40e_pf_for_each_vsi(pf, vsi_idx, vsi)
>> - if (vsi->seid == vsi_seid)
>> - break;
>> -
>> - if (vsi_idx == pf->num_alloc_vsi && vsi_seid != 0) {
>> - dev_info(&pf->pdev->dev, "vsi seid %d not found\n",
>> - vsi_seid);
>> - return NULL;
>> + if (vsi_seid) {
>> + vsi = i40e_pf_get_vsi_by_seid(pf, vsi_seid);
>> + if (!vsi) {
>> + dev_err(&pf->pdev->dev, "vsi seid %d not found\n",
>> + vsi_seid);
>> + return NULL;
>> + }
>> }
>> -
>> if (uplink_seid && uplink_seid != pf->mac_seid) {
>> - i40e_pf_for_each_veb(pf, veb_idx, veb) {
>> - if (veb->seid == uplink_seid) {
>> - uplink_veb = veb;
>> - break;
>> - }
>> - }
>> + uplink_veb = i40e_pf_get_veb_by_seid(pf, uplink_seid);
>> if (!uplink_veb) {
>> dev_info(&pf->pdev->dev,
>> "uplink seid %d not found\n", uplink_seid);
>
> The next part of this function looks like this:
>
> if (!uplink_veb) {
> dev_info(&pf->pdev->dev,
> "uplink seid %d not found\n", uplink_seid);
> return NULL;
> }
> }
> /* get veb sw struct */
> veb_idx = i40e_veb_mem_alloc(pf);
> if (veb_idx < 0)
> goto err_alloc;
> veb = pf->veb[veb_idx];
> veb->flags = flags;
> veb->uplink_seid = uplink_seid;
> veb->veb_idx = (uplink_veb ? uplink_veb->idx : I40E_NO_VEB);
> veb->enabled_tc = (enabled_tc ? enabled_tc : 0x1);
>
> /* create the VEB in the switch */
> ret = i40e_add_veb(veb, vsi);
>
> Smatch complains that vsi may be used uninitialised here.
> Which does seem possible to me if vsi_seid is 0.
Yes, the support for floating VEBs is and WAS broken prior this patch
and it is fixed by the following patch.
Prior this patch... Let's vsi_seid == 0:
/* make sure there is such a vsi and uplink */
i40e_pf_for_each_vsi(pf, vsi_idx, vsi)
if (vsi->seid == vsi_seid)
break;
-> here vsi_idx == pf->num_alloc_vsi because there cannot be VSI with
SEID == 0... and VSI points after the pf->vsi[] array.
if (vsi_idx == pf->num_alloc_vsi && vsi_seid != 0) {
dev_info(&pf->pdev->dev, "vsi seid %d not found\n",
vsi_seid);
return NULL;
}
This condition is not met, although vsi_idx == pf->num_alloc_vsi but
vsi_seid == 0 so the rest of code ended by:
ret = i40e_add_veb(veb, vsi);
and vsi pointer points to invalid area (item after the last one from
pf->vsi).
As I mentioned the broken floating VEB functionality (where vsi_seid ==
0 and uplink_seid == 0) is fixed by the following patch.
Thanks,
Ivan
Powered by blists - more mailing lists