From: Andrew Cooper <andrew.cooper3@citrix.com>
To: Xen-devel <xen-devel@lists.xenproject.org>
Cc: "Andrew Cooper" <andrew.cooper3@citrix.com>,
"Wei Liu" <wl@xen.org>, "Jan Beulich" <JBeulich@suse.com>,
"Roger Pau Monné" <roger.pau@citrix.com>
Subject: [Xen-devel] [PATCH v2 3/7] x86/ucode/intel: Remove gratuitous memory allocations from cpu_request_microcode()
Date: Fri, 27 Mar 2020 12:28:57 +0000 [thread overview]
Message-ID: <20200327122901.11569-4-andrew.cooper3@citrix.com> (raw)
In-Reply-To: <20200327122901.11569-1-andrew.cooper3@citrix.com>
cpu_request_microcode() needs to scan its container and duplicate one blob,
but the get_next_ucode_from_buffer() helper duplicates every blob in turn.
Furthermore, the length checking is only safe from overflow in 64bit builds.
Delete get_next_ucode_from_buffer() and alter the purpose of the saved
variable to simply point somewhere in buf until we're ready to return.
This is only a modest reduction in absolute code size (-144), but avoids
making memory allocations for every blob in the container.
Signed-off-by: Andrew Cooper <andrew.cooper3@citrix.com>
---
CC: Jan Beulich <JBeulich@suse.com>
CC: Wei Liu <wl@xen.org>
CC: Roger Pau Monné <roger.pau@citrix.com>
v2:
* Rebase over struct microcode_patch re-work
* Reinstate printk() for bad data
---
xen/arch/x86/cpu/microcode/intel.c | 65 +++++++++++++++-----------------------
1 file changed, 25 insertions(+), 40 deletions(-)
diff --git a/xen/arch/x86/cpu/microcode/intel.c b/xen/arch/x86/cpu/microcode/intel.c
index 77539a00be..2b48959573 100644
--- a/xen/arch/x86/cpu/microcode/intel.c
+++ b/xen/arch/x86/cpu/microcode/intel.c
@@ -315,67 +315,52 @@ static int apply_microcode(const struct microcode_patch *patch)
return 0;
}
-static long get_next_ucode_from_buffer(struct microcode_intel **mc,
- const uint8_t *buf, unsigned long size,
- unsigned long offset)
-{
- struct microcode_header_intel *mc_header;
- unsigned long total_size;
-
- /* No more data */
- if ( offset >= size )
- return 0;
- mc_header = (struct microcode_header_intel *)(buf + offset);
- total_size = get_totalsize(mc_header);
-
- if ( (offset + total_size) > size )
- {
- printk(KERN_ERR "microcode: error! Bad data in microcode data file\n");
- return -EINVAL;
- }
-
- *mc = xmemdup_bytes(mc_header, total_size);
- if ( *mc == NULL )
- return -ENOMEM;
-
- return offset + total_size;
-}
-
static struct microcode_patch *cpu_request_microcode(const void *buf,
size_t size)
{
- long offset = 0;
int error = 0;
- struct microcode_intel *mc, *saved = NULL;
+ const struct microcode_patch *saved = NULL;
struct microcode_patch *patch = NULL;
- while ( (offset = get_next_ucode_from_buffer(&mc, buf, size, offset)) > 0 )
+ while ( size )
{
- error = microcode_sanity_check(mc);
- if ( error )
+ const struct microcode_patch *mc;
+ unsigned int blob_size;
+
+ if ( size < MC_HEADER_SIZE || /* Insufficient space for header? */
+ (mc = buf)->hdr.hdrver != 1 || /* Unrecognised header version? */
+ mc->hdr.ldrver != 1 || /* Unrecognised loader version? */
+ size < (blob_size = /* Insufficient space for patch? */
+ get_totalsize(&mc->hdr)) )
{
- xfree(mc);
+ error = -EINVAL;
+ printk(XENLOG_WARNING "microcode: Bad data in container\n");
break;
}
+ error = microcode_sanity_check(mc);
+ if ( error )
+ break;
+
/*
* If the new update covers current CPU, compare updates and store the
* one with higher revision.
*/
if ( (microcode_update_match(mc) != MIS_UCODE) &&
(!saved || (mc->hdr.rev > saved->hdr.rev)) )
- {
- xfree(saved);
saved = mc;
- }
- else
- xfree(mc);
+
+ buf += blob_size;
+ size -= blob_size;
}
- if ( offset < 0 )
- error = offset;
if ( saved )
- patch = saved;
+ {
+ patch = xmemdup_bytes(saved, get_totalsize(&saved->hdr));
+
+ if ( !patch )
+ error = -ENOMEM;
+ }
if ( error && !patch )
patch = ERR_PTR(error);
--
2.11.0
next prev parent reply other threads:[~2020-03-27 12:29 UTC|newest]
Thread overview: 13+ messages / expand[flat|nested] mbox.gz Atom feed top
2020-03-27 12:28 [Xen-devel] [PATCH v2 0/7] x86/ucode: Cleanup and fixes - Part 3/n (Intel) Andrew Cooper
2020-03-27 12:28 ` [Xen-devel] [PATCH v2 1/7] x86/ucode: Remove unnecessary indirection in struct microcode_patch Andrew Cooper
2020-03-27 12:28 ` [Xen-devel] [PATCH v2 2/7] x86/ucode/intel: Adjust microcode_sanity_check() to not take void * Andrew Cooper
2020-03-27 12:28 ` Andrew Cooper [this message]
2020-03-31 14:09 ` [PATCH v2 3/7] x86/ucode/intel: Remove gratuitous memory allocations from cpu_request_microcode() Jan Beulich
2020-03-31 14:17 ` Andrew Cooper
2020-03-27 12:28 ` [Xen-devel] [PATCH v2 4/7] x86/ucode/intel: Reimplement get_{data, total}size() helpers Andrew Cooper
2020-03-27 12:28 ` [Xen-devel] [PATCH v2 5/7] x86/ucode/intel: Clean up microcode_update_match() Andrew Cooper
2020-03-27 12:29 ` [Xen-devel] [PATCH v2 6/7] x86/ucode/intel: Clean up microcode_sanity_check() Andrew Cooper
2020-03-31 14:18 ` Jan Beulich
2020-03-31 14:26 ` Andrew Cooper
2020-03-27 12:29 ` [Xen-devel] [PATCH v2 7/7] x86/ucode/intel: Fold structures together Andrew Cooper
2020-03-31 14:21 ` Jan Beulich
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20200327122901.11569-4-andrew.cooper3@citrix.com \
--to=andrew.cooper3@citrix.com \
--cc=JBeulich@suse.com \
--cc=roger.pau@citrix.com \
--cc=wl@xen.org \
--cc=xen-devel@lists.xenproject.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.