From: "Roger Pau Monné" <roger.pau@citrix.com>
To: Stewart Hildebrand <stewart.hildebrand@amd.com>
Cc: Jan Beulich <jbeulich@suse.com>,
Oleksandr Andrushchenko <oleksandr_andrushchenko@epam.com>,
Andrew Cooper <andrew.cooper3@citrix.com>, Wei Liu <wl@xen.org>,
George Dunlap <george.dunlap@citrix.com>,
Julien Grall <julien@xen.org>,
Stefano Stabellini <sstabellini@kernel.org>,
Jun Nakajima <jun.nakajima@intel.com>,
Kevin Tian <kevin.tian@intel.com>, Paul Durrant <paul@xen.org>,
Volodymyr Babchuk <volodymyr_babchuk@epam.com>,
xen-devel@lists.xenproject.org
Subject: Re: [PATCH v12.2 01/15] vpci: use per-domain PCI lock to protect vpci structure
Date: Wed, 24 Jan 2024 09:21:54 +0100 [thread overview]
Message-ID: <ZbDIoobsFmx-U5Xt@macbook> (raw)
In-Reply-To: <e05e63ab-a86f-45c4-bd80-2b7d6b99aa3d@amd.com>
On Wed, Jan 24, 2024 at 12:07:28AM -0500, Stewart Hildebrand wrote:
> On 1/23/24 09:29, Jan Beulich wrote:
> > On 15.01.2024 20:43, Stewart Hildebrand wrote:
> >> @@ -1043,11 +1043,11 @@ static int __pci_enable_msix(struct pci_dev *pdev, struct msi_info *msi,
> >> {
> >> struct msi_desc *old_desc;
> >>
> >> - ASSERT(pcidevs_locked());
> >> -
> >> if ( !pdev || !pdev->msix )
> >> return -ENODEV;
> >>
> >> + ASSERT(pcidevs_locked() || rw_is_locked(&pdev->domain->pci_lock));
> >> +
> >> if ( msi->entry_nr >= pdev->msix->nr_entries )
> >> return -EINVAL;
> >
> > Further looking at this - is dereferencing pdev actually safe without holding
> > the global lock?
It is safe because either the global pcidevs lock or the per-domain
pci_lock will be held, which should prevent the device from being
removed.
> Are you referring to the new placement of the ASSERT, which opens up the possibility that pdev could be dereferenced and the function return before the ASSERT? If that is what you mean, I see your point. The ASSERT was placed there simply because we wanted to check that pdev != NULL first. See prior discussion at [1]. Hmm.. How about splitting the pdev-checking condition? E.g.:
>
> if ( !pdev )
> return -ENODEV;
>
> ASSERT(pcidevs_locked() || rw_is_locked(&pdev->domain->pci_lock));
>
> if ( !pdev->msix )
> return -ENODEV;
I'm not specially worried about the position of the assert, those are
just debug messages at the end.
One worry I have after further looking at the code, when called from
ns16550_init_postirq(), does the device have pdev->domain set?
That case would satisfy the first condition of the assert, so won't
attempt to dereference pdev->domain, but still would be good to ensure
consistency here wrt the state of pdev->domain.
Regards, Roger.
next prev parent reply other threads:[~2024-01-24 8:22 UTC|newest]
Thread overview: 68+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-01-09 21:51 [PATCH v12 00/15] PCI devices passthrough on Arm, part 3 Stewart Hildebrand
2024-01-09 21:51 ` [PATCH v12 01/15] vpci: use per-domain PCI lock to protect vpci structure Stewart Hildebrand
2024-01-12 13:48 ` Roger Pau Monné
2024-01-12 17:54 ` Stewart Hildebrand
2024-01-12 18:14 ` [PATCH v12.1 " Stewart Hildebrand
2024-01-15 8:58 ` Jan Beulich
2024-01-15 15:42 ` Stewart Hildebrand
2024-01-15 8:53 ` [PATCH v12 " Roger Pau Monné
2024-01-15 15:08 ` Stewart Hildebrand
2024-01-15 19:43 ` [PATCH v12.2 " Stewart Hildebrand
2024-01-19 13:42 ` Roger Pau Monné
2024-01-23 14:26 ` Jan Beulich
2024-01-23 15:23 ` Roger Pau Monné
2024-01-24 8:56 ` Jan Beulich
2024-01-24 9:39 ` Roger Pau Monné
2024-01-23 14:29 ` Jan Beulich
2024-01-24 5:07 ` Stewart Hildebrand
2024-01-24 8:21 ` Roger Pau Monné [this message]
2024-01-24 20:21 ` Stewart Hildebrand
2024-01-24 8:50 ` Jan Beulich
2024-01-23 14:32 ` Jan Beulich
2024-01-23 15:07 ` Roger Pau Monné
2024-01-24 5:00 ` Stewart Hildebrand
2024-01-30 14:59 ` Stewart Hildebrand
2024-01-24 8:48 ` Jan Beulich
2024-01-24 9:24 ` Roger Pau Monné
2024-01-24 11:34 ` Jan Beulich
2024-01-24 17:51 ` Roger Pau Monné
2024-01-25 7:43 ` Jan Beulich
2024-01-25 9:05 ` Roger Pau Monné
2024-01-25 11:23 ` Jan Beulich
2024-01-25 12:33 ` Roger Pau Monné
2024-01-30 15:04 ` Stewart Hildebrand
2024-01-09 21:51 ` [PATCH v12 02/15] vpci: restrict unhandled read/write operations for guests Stewart Hildebrand
2024-01-09 21:51 ` [PATCH v12 03/15] vpci: add hooks for PCI device assign/de-assign Stewart Hildebrand
2024-01-23 14:36 ` Jan Beulich
2024-01-30 19:22 ` Stewart Hildebrand
2024-01-09 21:51 ` [PATCH v12 04/15] vpci/header: rework exit path in init_header() Stewart Hildebrand
2024-01-09 21:51 ` [PATCH v12 05/15] vpci/header: implement guest BAR register handlers Stewart Hildebrand
2024-01-09 21:51 ` [PATCH v12 06/15] rangeset: add RANGESETF_no_print flag Stewart Hildebrand
2024-01-09 21:51 ` [PATCH v12 07/15] rangeset: add rangeset_purge() function Stewart Hildebrand
2024-01-10 10:00 ` Jan Beulich
2024-01-09 21:51 ` [PATCH v12 08/15] vpci/header: handle p2m range sets per BAR Stewart Hildebrand
2024-01-09 21:51 ` [PATCH v12 09/15] vpci/header: program p2m with guest BAR view Stewart Hildebrand
2024-01-12 15:06 ` Roger Pau Monné
2024-01-12 20:31 ` Stewart Hildebrand
2024-01-12 20:49 ` [PATCH v12.1 " Stewart Hildebrand
2024-01-15 9:07 ` [PATCH v12 " Jan Beulich
2024-01-15 19:03 ` Stewart Hildebrand
2024-01-15 19:44 ` [PATCH v12.2 " Stewart Hildebrand
2024-01-17 3:01 ` Stewart Hildebrand
2024-01-19 13:43 ` Roger Pau Monné
2024-01-19 14:28 ` [PATCH v12.3 " Stewart Hildebrand
2024-01-09 21:51 ` [PATCH v12 10/15] vpci/header: emulate PCI_COMMAND register for guests Stewart Hildebrand
2024-01-25 15:43 ` Jan Beulich
2024-02-01 4:50 ` Stewart Hildebrand
2024-02-01 8:14 ` Jan Beulich
2024-01-09 21:51 ` [PATCH v12 11/15] vpci: add initial support for virtual PCI bus topology Stewart Hildebrand
2024-01-12 11:46 ` George Dunlap
2024-01-12 13:50 ` Stewart Hildebrand
2024-01-15 11:48 ` George Dunlap
2024-01-25 16:00 ` Jan Beulich
2024-02-02 3:30 ` Stewart Hildebrand
2024-01-09 21:51 ` [PATCH v12 12/15] xen/arm: translate virtual PCI bus topology for guests Stewart Hildebrand
2024-01-09 21:51 ` [PATCH v12 13/15] xen/arm: account IO handlers for emulated PCI MSI-X Stewart Hildebrand
2024-01-09 21:51 ` [PATCH v12 14/15] xen/arm: vpci: permit access to guest vpci space Stewart Hildebrand
2024-01-17 3:03 ` Stewart Hildebrand
2024-01-09 21:51 ` [PATCH v12 15/15] arm/vpci: honor access size when returning an error Stewart Hildebrand
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=ZbDIoobsFmx-U5Xt@macbook \
--to=roger.pau@citrix.com \
--cc=andrew.cooper3@citrix.com \
--cc=george.dunlap@citrix.com \
--cc=jbeulich@suse.com \
--cc=julien@xen.org \
--cc=jun.nakajima@intel.com \
--cc=kevin.tian@intel.com \
--cc=oleksandr_andrushchenko@epam.com \
--cc=paul@xen.org \
--cc=sstabellini@kernel.org \
--cc=stewart.hildebrand@amd.com \
--cc=volodymyr_babchuk@epam.com \
--cc=wl@xen.org \
--cc=xen-devel@lists.xenproject.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.