[v4,08/35] iommu/mediatek: Use kmalloc for protect buffer

Message ID	20220125085634.17972-9-yong.wu@mediatek.com (mailing list archive)
State	New, archived
Headers	show Return-Path: <linux-mediatek-bounces+linux-mediatek=archiver.kernel.org@lists.infradead.org> From: Yong Wu <yong.wu@mediatek.com> To: Joerg Roedel <joro@8bytes.org>, Rob Herring <robh+dt@kernel.org>, Matthias Brugger <matthias.bgg@gmail.com>, Will Deacon <will@kernel.org> CC: Robin Murphy <robin.murphy@arm.com>, Krzysztof Kozlowski <krzysztof.kozlowski@canonical.com>, Tomasz Figa <tfiga@chromium.org>, <linux-mediatek@lists.infradead.org>, <srv_heupstream@mediatek.com>, <devicetree@vger.kernel.org>, <linux-kernel@vger.kernel.org>, <linux-arm-kernel@lists.infradead.org>, <iommu@lists.linux-foundation.org>, Hsin-Yi Wang <hsinyi@chromium.org>, <yong.wu@mediatek.com>, <youlin.pei@mediatek.com>, <anan.sun@mediatek.com>, <xueqi.zhang@mediatek.com>, <yen-chang.chen@mediatek.com>, "AngeloGioacchino Del Regno" <angelogioacchino.delregno@collabora.com>, <mingyuan.ma@mediatek.com>, <yf.wang@mediatek.com>, <libo.kang@mediatek.com>, <chengci.xu@mediatek.com> Subject: [PATCH v4 08/35] iommu/mediatek: Use kmalloc for protect buffer Date: Tue, 25 Jan 2022 16:56:07 +0800 Message-ID: <20220125085634.17972-9-yong.wu@mediatek.com> In-Reply-To: <20220125085634.17972-1-yong.wu@mediatek.com> References: <20220125085634.17972-1-yong.wu@mediatek.com> MIME-Version: 1.0 Precedence: list Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: "Linux-mediatek" <linux-mediatek-bounces@lists.infradead.org> Errors-To: linux-mediatek-bounces+linux-mediatek=archiver.kernel.org@lists.infradead.org
Series	MT8195 IOMMU SUPPORT \| expand [v4,00/35] MT8195 IOMMU SUPPORT [v4,01/35] dt-bindings: mediatek: mt8195: Add binding for MM IOMMU [v4,02/35] dt-bindings: mediatek: mt8195: Add binding for infra IOMMU [v4,03/35] iommu/mediatek: Fix 2 HW sharing pgtable issue [v4,04/35] iommu/mediatek: Add list_del in mtk_iommu_remove [v4,05/35] iommu/mediatek: Remove clk_disable in mtk_iommu_remove [v4,06/35] iommu/mediatek: Add mutex for m4u_group and m4u_dom in data [v4,07/35] iommu/mediatek: Add mutex for data in the mtk_iommu_domain [v4,08/35] iommu/mediatek: Use kmalloc for protect buffer [v4,09/35] iommu/mediatek: Adapt sharing and non-sharing pgtable case [v4,10/35] iommu/mediatek: Add 12G~16G support for multi domains [v4,11/35] iommu/mediatek: Add a flag DCM_DISABLE [v4,12/35] iommu/mediatek: Add a flag NON_STD_AXI [v4,13/35] iommu/mediatek: Remove the granule in the tlb flush [v4,14/35] iommu/mediatek: Always enable output PA over 32bits in isr [v4,15/35] iommu/mediatek: Add SUB_COMMON_3BITS flag [v4,16/35] iommu/mediatek: Add IOMMU_TYPE flag [v4,17/35] iommu/mediatek: Contain MM IOMMU flow with the MM TYPE [v4,18/35] iommu/mediatek: Adjust device link when it is sub-common [v4,19/35] iommu/mediatek: Allow IOMMU_DOMAIN_UNMANAGED for PCIe VFIO [v4,20/35] iommu/mediatek: Add a PM_CLK_AO flag for infra iommu [v4,21/35] iommu/mediatek: Add infra iommu support [v4,22/35] iommu/mediatek: Add PCIe support [v4,23/35] iommu/mediatek: Add mt8195 support [v4,24/35] iommu/mediatek: Only adjust code about register base [v4,25/35] iommu/mediatek: Just move code position in hw_init [v4,26/35] iommu/mediatek: Separate mtk_iommu_data for v1 and v2 [v4,27/35] iommu/mediatek: Remove mtk_iommu.h [v4,28/35] iommu/mediatek-v1: Just rename mtk_iommu to mtk_iommu_v1 [v4,29/35] iommu/mediatek: Add mtk_iommu_bank_data structure [v4,30/35] iommu/mediatek: Initialise bank HW for each a bank [v4,31/35] iommu/mediatek: Change the domid to iova_region_id [v4,32/35] iommu/mediatek: Get the proper bankid for multi banks [v4,33/35] iommu/mediatek: Initialise/Remove for multi bank dev [v4,34/35] iommu/mediatek: Backup/restore regsiters for multi banks [v4,35/35] iommu/mediatek: mt8195: Enable multi banks for infra iommu

Message ID

20220125085634.17972-9-yong.wu@mediatek.com (mailing list archive)

State

New, archived

Headers

From: Yong Wu <yong.wu@mediatek.com>
To: Joerg Roedel <joro@8bytes.org>, Rob Herring <robh+dt@kernel.org>, Matthias
 Brugger <matthias.bgg@gmail.com>, Will Deacon <will@kernel.org>
CC: Robin Murphy <robin.murphy@arm.com>, Krzysztof Kozlowski
 <krzysztof.kozlowski@canonical.com>, Tomasz Figa <tfiga@chromium.org>,
 <linux-mediatek@lists.infradead.org>, <srv_heupstream@mediatek.com>,
 <devicetree@vger.kernel.org>, <linux-kernel@vger.kernel.org>,
 <linux-arm-kernel@lists.infradead.org>, <iommu@lists.linux-foundation.org>,
 Hsin-Yi Wang <hsinyi@chromium.org>, <yong.wu@mediatek.com>,
 <youlin.pei@mediatek.com>, <anan.sun@mediatek.com>,
 <xueqi.zhang@mediatek.com>, <yen-chang.chen@mediatek.com>, "AngeloGioacchino
 Del Regno" <angelogioacchino.delregno@collabora.com>,
 <mingyuan.ma@mediatek.com>, <yf.wang@mediatek.com>, <libo.kang@mediatek.com>,
 <chengci.xu@mediatek.com>
Subject: [PATCH v4 08/35] iommu/mediatek: Use kmalloc for protect buffer
Date: Tue, 25 Jan 2022 16:56:07 +0800
Message-ID: <20220125085634.17972-9-yong.wu@mediatek.com>
In-Reply-To: <20220125085634.17972-1-yong.wu@mediatek.com>
References: <20220125085634.17972-1-yong.wu@mediatek.com>
MIME-Version: 1.0
Precedence: list
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: "Linux-mediatek" <linux-mediatek-bounces@lists.infradead.org>
Errors-To: 
 linux-mediatek-bounces+linux-mediatek=archiver.kernel.org@lists.infradead.org

Series

MT8195 IOMMU SUPPORT | expand

No need zero for the protect buffer that is only accessed by the IOMMU HW translation fault happened. Signed-off-by: Yong Wu <yong.wu@mediatek.com> --- drivers/iommu/mtk_iommu.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)

Comments

AngeloGioacchino Del Regno Jan. 27, 2022, 11:08 a.m. UTC | #1

Il 25/01/22 09:56, Yong Wu ha scritto:
> No need zero for the protect buffer that is only accessed by the IOMMU HW
> translation fault happened.
> 
> Signed-off-by: Yong Wu <yong.wu@mediatek.com>

I would rather keep this a devm_kzalloc instead... the cost is very minimal and
this will be handy when new hardware will be introduced, as it may require a bigger
buffer: in that case, "older" platforms will use only part of it and we may get
garbage data at the end.

Regards,
Angelo

Yong Wu (吴勇) Feb. 16, 2022, 5:54 a.m. UTC | #2

On Thu, 2022-01-27 at 12:08 +0100, AngeloGioacchino Del Regno wrote:
> Il 25/01/22 09:56, Yong Wu ha scritto:
> > No need zero for the protect buffer that is only accessed by the
> > IOMMU HW
> > translation fault happened.
> > 
> > Signed-off-by: Yong Wu <yong.wu@mediatek.com>
> 
> I would rather keep this a devm_kzalloc instead... the cost is very
> minimal and
> this will be handy when new hardware will be introduced, as it may
> require a bigger
> buffer: in that case, "older" platforms will use only part of it and
> we may get
> garbage data at the end.

Currently this is to avoid zero 512 bytes for all the platforms.

Sorry, I don't understand why it is unnecessary when the new hardware
requires a bigger buffer. If the buffer becomes bigger, then clearing
it to 0 need more cost. then this patch is more helpful?

The content in this buffer is garbage, we won't care about or analyse
it.

> 
> Regards,
> Angelo

Tomasz Figa Feb. 16, 2022, 5:59 a.m. UTC | #3

On Wed, Feb 16, 2022 at 2:55 PM Yong Wu <yong.wu@mediatek.com> wrote:
>
> On Thu, 2022-01-27 at 12:08 +0100, AngeloGioacchino Del Regno wrote:
> > Il 25/01/22 09:56, Yong Wu ha scritto:
> > > No need zero for the protect buffer that is only accessed by the
> > > IOMMU HW
> > > translation fault happened.
> > >
> > > Signed-off-by: Yong Wu <yong.wu@mediatek.com>
> >
> > I would rather keep this a devm_kzalloc instead... the cost is very
> > minimal and
> > this will be handy when new hardware will be introduced, as it may
> > require a bigger
> > buffer: in that case, "older" platforms will use only part of it and
> > we may get
> > garbage data at the end.
>
> Currently this is to avoid zero 512 bytes for all the platforms.
>
> Sorry, I don't understand why it is unnecessary when the new hardware
> requires a bigger buffer. If the buffer becomes bigger, then clearing
> it to 0 need more cost. then this patch is more helpful?
>
> The content in this buffer is garbage, we won't care about or analyse
> it.

I think we should zero it for security reasons regardless of any other
aspects. With this patch it's leaking kernel data to the hardware.

At the same time, we're talking here about something executed just 1
time when the driver probes. I don't think the cost would really
matter.

Best regards,
Tomasz

Yong Wu (吴勇) Feb. 16, 2022, 8:11 a.m. UTC | #4

On Wed, 2022-02-16 at 14:59 +0900, Tomasz Figa wrote:
> On Wed, Feb 16, 2022 at 2:55 PM Yong Wu <yong.wu@mediatek.com> wrote:
> > 
> > On Thu, 2022-01-27 at 12:08 +0100, AngeloGioacchino Del Regno
> > wrote:
> > > Il 25/01/22 09:56, Yong Wu ha scritto:
> > > > No need zero for the protect buffer that is only accessed by
> > > > the
> > > > IOMMU HW
> > > > translation fault happened.
> > > > 
> > > > Signed-off-by: Yong Wu <yong.wu@mediatek.com>
> > > 
> > > I would rather keep this a devm_kzalloc instead... the cost is
> > > very
> > > minimal and
> > > this will be handy when new hardware will be introduced, as it
> > > may
> > > require a bigger
> > > buffer: in that case, "older" platforms will use only part of it
> > > and
> > > we may get
> > > garbage data at the end.
> > 
> > Currently this is to avoid zero 512 bytes for all the platforms.
> > 
> > Sorry, I don't understand why it is unnecessary when the new
> > hardware
> > requires a bigger buffer. If the buffer becomes bigger, then
> > clearing
> > it to 0 need more cost. then this patch is more helpful?
> > 
> > The content in this buffer is garbage, we won't care about or
> > analyse
> > it.
> 
> I think we should zero it for security reasons regardless of any
> other
> aspects. With this patch it's leaking kernel data to the hardware.
> 
> At the same time, we're talking here about something executed just 1
> time when the driver probes. I don't think the cost would really
> matter.

OK. I will remove this patch in next version.

Thanks.

> 
> Best regards,
> Tomasz
> 
> _______________________________________________
> Linux-mediatek mailing list
> Linux-mediatek@lists.infradead.org
> http://lists.infradead.org/mailman/listinfo/linux-mediatek

diff --git a/drivers/iommu/mtk_iommu.c b/drivers/iommu/mtk_iommu.c
index e6e4ee471867..d982dfd815c6 100644
--- a/drivers/iommu/mtk_iommu.c
+++ b/drivers/iommu/mtk_iommu.c
@@ -794,7 +794,7 @@  static int mtk_iommu_probe(struct platform_device *pdev)
 	data->plat_data = of_device_get_match_data(dev);
 
 	/* Protect memory. HW will access here while translation fault.*/
-	protect = devm_kzalloc(dev, MTK_PROTECT_PA_ALIGN * 2, GFP_KERNEL);
+	protect = devm_kmalloc(dev, MTK_PROTECT_PA_ALIGN * 2, GFP_KERNEL);
 	if (!protect)
 		return -ENOMEM;
 	data->protect_base = ALIGN(virt_to_phys(protect), MTK_PROTECT_PA_ALIGN);

[v4,08/35] iommu/mediatek: Use kmalloc for protect buffer

Commit Message

Comments

Patch