[v1,2/2] net/mlx5: Enable unprivileged read of PCI VPD file

Message ID	f551f20b0649b4be3f4c9536e756986665366e46.1731005223.git.leonro@nvidia.com (mailing list archive)
State	New
Headers	show Received: from smtp.kernel.org (aws-us-west-2-korg-mail-1.web.codeaurora.org [10.30.226.201]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 9C59E2170D6; Thu, 7 Nov 2024 18:57:19 +0000 (UTC) From: Leon Romanovsky <leon@kernel.org> To: Bjorn Helgaas <helgaas@kernel.org> Cc: Leon Romanovsky <leonro@nvidia.com>, =?utf-8?q?Krzysztof_Wilczy=C5=84ski?= <kw@linux.com>, linux-pci@vger.kernel.org, "Ariel Almog" <ariela@nvidia.com>, "Aditya Prabhune" <aprabhune@nvidia.com>, "Hannes Reinecke" <hare@suse.de>, "Heiner Kallweit" <hkallweit1@gmail.com>, "Arun Easi" <aeasi@marvell.com>, "Jonathan Chocron" <jonnyc@amazon.com>, "Bert Kenward" <bkenward@solarflare.com>, "Matt Carlson" <mcarlson@broadcom.com>, "Kai-Heng Feng" <kai.heng.feng@canonical.com>, "Jean Delvare" <jdelvare@suse.de>, "Alex Williamson" <alex.williamson@redhat.com>, linux-kernel@vger.kernel.org, netdev@vger.kernel.org Subject: [PATCH v1 2/2] net/mlx5: Enable unprivileged read of PCI VPD file Date: Thu, 7 Nov 2024 20:56:57 +0200 Message-ID: <f551f20b0649b4be3f4c9536e756986665366e46.1731005223.git.leonro@nvidia.com> In-Reply-To: <cover.1731005223.git.leonro@nvidia.com> References: <cover.1731005223.git.leonro@nvidia.com> Precedence: bulk MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	Fix read permissions for VPD attributes \| expand [v1,0/2] Fix read permissions for VPD attributes [v1,1/2] PCI/sysfs: Change read permissions for VPD attributes [v1,2/2] net/mlx5: Enable unprivileged read of PCI VPD file

Message ID

f551f20b0649b4be3f4c9536e756986665366e46.1731005223.git.leonro@nvidia.com (mailing list archive)

State

New

Headers

From: Leon Romanovsky <leon@kernel.org>
To: Bjorn Helgaas <helgaas@kernel.org>
Cc: Leon Romanovsky <leonro@nvidia.com>,
 =?utf-8?q?Krzysztof_Wilczy=C5=84ski?= <kw@linux.com>,
 linux-pci@vger.kernel.org, "Ariel Almog" <ariela@nvidia.com>,
 "Aditya Prabhune" <aprabhune@nvidia.com>, "Hannes Reinecke" <hare@suse.de>,
 "Heiner Kallweit" <hkallweit1@gmail.com>, "Arun Easi" <aeasi@marvell.com>,
 "Jonathan Chocron" <jonnyc@amazon.com>,
 "Bert Kenward" <bkenward@solarflare.com>,
 "Matt Carlson" <mcarlson@broadcom.com>,
 "Kai-Heng Feng" <kai.heng.feng@canonical.com>,
 "Jean Delvare" <jdelvare@suse.de>,
 "Alex Williamson" <alex.williamson@redhat.com>, linux-kernel@vger.kernel.org,
 netdev@vger.kernel.org
Subject: [PATCH v1 2/2] net/mlx5: Enable unprivileged read of PCI VPD file
Date: Thu,  7 Nov 2024 20:56:57 +0200
Message-ID: 
 <f551f20b0649b4be3f4c9536e756986665366e46.1731005223.git.leonro@nvidia.com>
In-Reply-To: <cover.1731005223.git.leonro@nvidia.com>
References: <cover.1731005223.git.leonro@nvidia.com>
Precedence: bulk
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

Fix read permissions for VPD attributes | expand

Commit Message

Leon Romanovsky Nov. 7, 2024, 6:56 p.m. UTC

From: Leon Romanovsky <leonro@nvidia.com>

mlx5 devices are PCIe spec compliant, doesn't expose any sensitive
information Vital Product Data (VPD) section. In addition, these devices
are capable to provide an unprivileged read access file exposed by PCI core.

The parsed VPD section looks like this:
08:00.0 Ethernet controller: Mellanox Technologies MT2910 Family
[ConnectX-7]
...
  Capabilities: [48] Vital Product Data
    Product Name: NVIDIA ConnectX-7 HHHL adapter Card, 200GbE / NDR200 IB, Dual-port QSFP112, PCIe 5.0 x16 with x16 PCIe
extension option, Crypto, Secure Boot Capable
    Read-only fields:
        [PN] Part number: MCX713106AEHEA_QP1
        [EC] Engineering changes: A5
        [V2] Vendor specific: MCX713106AEHEA_QP1
        [SN] Serial number: MT2314XZ0JUZ
        [V3] Vendor specific: 0a5efb8958deed118000946dae7db798
        [VA] Vendor specific: MLX:MN=MLNX:CSKU=V2:UUID=V3:PCI=V0:MODL=CX713106A
        [V0] Vendor specific: PCIeGen5 x16
        [VU] Vendor specific: MT2314XZ0JUZMLNXS0D0F0
        [RV] Reserved: checksum good, 1 byte(s) reserved
    End

Signed-off-by: Leon Romanovsky <leonro@nvidia.com>
---
 drivers/net/ethernet/mellanox/mlx5/core/main.c | 1 +
 1 file changed, 1 insertion(+)

Comments

Jakub Kicinski Nov. 7, 2024, 7:09 p.m. UTC | #1

On Thu,  7 Nov 2024 20:56:57 +0200 Leon Romanovsky wrote:
> From: Leon Romanovsky <leonro@nvidia.com>
> 
> mlx5 devices are PCIe spec compliant, doesn't expose any sensitive
> information Vital Product Data (VPD) section. In addition, these devices
> are capable to provide an unprivileged read access file exposed by PCI core.

Acked-by: Jakub Kicinski <kuba@kernel.org>

diff --git a/drivers/net/ethernet/mellanox/mlx5/core/main.c b/drivers/net/ethernet/mellanox/mlx5/core/main.c
index 220a9ac75c8b..7e34badd174b 100644
--- a/drivers/net/ethernet/mellanox/mlx5/core/main.c
+++ b/drivers/net/ethernet/mellanox/mlx5/core/main.c
@@ -2280,6 +2280,7 @@  static struct pci_driver mlx5_core_driver = {
 	.sriov_configure   = mlx5_core_sriov_configure,
 	.sriov_get_vf_total_msix = mlx5_sriov_get_vf_total_msix,
 	.sriov_set_msix_vec_count = mlx5_core_sriov_set_msix_vec_count,
+	.downgrade_vpd_read = true,
 };
 
 /**

[v1,2/2] net/mlx5: Enable unprivileged read of PCI VPD file

Commit Message

Comments

Patch