[2/2] nvme: use uring_cmd sys_admin flag

Message ID	20231204175342.3418422-2-kbusch@meta.com (mailing list archive)
State	New
Headers	show Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=meta.com header.i=@meta.com header.b="n33naqaO" From: Keith Busch <kbusch@meta.com> To: <linux-nvme@lists.infradead.org>, <io-uring@vger.kernel.org> CC: <axboe@kernel.dk>, <hch@lst.de>, <sagi@grimberg.me>, <asml.silence@gmail.com>, Keith Busch <kbusch@kernel.org> Subject: [PATCH 2/2] nvme: use uring_cmd sys_admin flag Date: Mon, 4 Dec 2023 09:53:42 -0800 Message-ID: <20231204175342.3418422-2-kbusch@meta.com> In-Reply-To: <20231204175342.3418422-1-kbusch@meta.com> References: <20231204175342.3418422-1-kbusch@meta.com> Precedence: bulk MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain
Series	[1/2] iouring: one capable call per iouring instance \| expand [1/2] iouring: one capable call per iouring instance [2/2] nvme: use uring_cmd sys_admin flag

Message ID

20231204175342.3418422-2-kbusch@meta.com (mailing list archive)

State

New

Headers

From: Keith Busch <kbusch@meta.com>
To: <linux-nvme@lists.infradead.org>, <io-uring@vger.kernel.org>
CC: <axboe@kernel.dk>, <hch@lst.de>, <sagi@grimberg.me>,
        <asml.silence@gmail.com>, Keith Busch <kbusch@kernel.org>
Subject: [PATCH 2/2] nvme: use uring_cmd sys_admin flag
Date: Mon, 4 Dec 2023 09:53:42 -0800
Message-ID: <20231204175342.3418422-2-kbusch@meta.com>
In-Reply-To: <20231204175342.3418422-1-kbusch@meta.com>
References: <20231204175342.3418422-1-kbusch@meta.com>
Precedence: bulk
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain

Series

[1/2] iouring: one capable call per iouring instance | expand

Commit Message

Keith Busch Dec. 4, 2023, 5:53 p.m. UTC

From: Keith Busch <kbusch@kernel.org>

The nvme passthrough interface through io_uring is intended to be fast, so we
should avoid calling capable() every io. Checking other permission first helped
reduce this overhead, but it's still called for many commands.

Use the new uring_cmd sys admin issue_flag to see if we can skip
additional checks. The ioctl path won't be able to use this
optimization, but that wasn't considered a fast path anyway.

Signed-off-by: Keith Busch <kbusch@kernel.org>
---
 drivers/nvme/host/ioctl.c | 12 ++++++++++--
 1 file changed, 10 insertions(+), 2 deletions(-)

diff --git a/drivers/nvme/host/ioctl.c b/drivers/nvme/host/ioctl.c
index 6c5ae820bc0fc..83c0a1170505c 100644
--- a/drivers/nvme/host/ioctl.c
+++ b/drivers/nvme/host/ioctl.c
@@ -11,6 +11,7 @@ 
 enum {
 	NVME_IOCTL_VEC		= (1 << 0),
 	NVME_IOCTL_PARTITION	= (1 << 1),
+	NVME_IOCTL_SYS_ADMIN	= (1 << 2),
 };
 
 static bool nvme_cmd_allowed(struct nvme_ns *ns, struct nvme_command *c,
@@ -18,6 +19,9 @@  static bool nvme_cmd_allowed(struct nvme_ns *ns, struct nvme_command *c,
 {
 	u32 effects;
 
+	if (flags & NVME_IOCTL_SYS_ADMIN)
+		return true;
+
 	/*
 	 * Do not allow unprivileged passthrough on partitions, as that allows an
 	 * escape from the containment of the partition.
@@ -445,7 +449,7 @@  static int nvme_uring_cmd_io(struct nvme_ctrl *ctrl, struct nvme_ns *ns,
 	struct request *req;
 	blk_opf_t rq_flags = REQ_ALLOC_CACHE;
 	blk_mq_req_flags_t blk_flags = 0;
-	int ret;
+	int ret, flags = 0;
 
 	c.common.opcode = READ_ONCE(cmd->opcode);
 	c.common.flags = READ_ONCE(cmd->flags);
@@ -468,7 +472,11 @@  static int nvme_uring_cmd_io(struct nvme_ctrl *ctrl, struct nvme_ns *ns,
 	c.common.cdw14 = cpu_to_le32(READ_ONCE(cmd->cdw14));
 	c.common.cdw15 = cpu_to_le32(READ_ONCE(cmd->cdw15));
 
-	if (!nvme_cmd_allowed(ns, &c, 0, ioucmd->file->f_mode & FMODE_WRITE))
+	if (issue_flags & IO_URING_F_SYS_ADMIN)
+		flags |= NVME_IOCTL_SYS_ADMIN;
+
+	if (!nvme_cmd_allowed(ns, &c, flags,
+			      ioucmd->file->f_mode & FMODE_WRITE))
 		return -EACCES;
 
 	d.metadata = READ_ONCE(cmd->metadata);

[2/2] nvme: use uring_cmd sys_admin flag

Commit Message

Patch