[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH v6 7/8] vpci/msi: Free MSI resources when init_msi() fails

  • To: "Chen, Jiqian" <Jiqian.Chen@xxxxxxx>
  • From: Jan Beulich <jbeulich@xxxxxxxx>
  • Date: Wed, 25 Jun 2025 12:09:41 +0200
  • Autocrypt: addr=jbeulich@xxxxxxxx; keydata= xsDiBFk3nEQRBADAEaSw6zC/EJkiwGPXbWtPxl2xCdSoeepS07jW8UgcHNurfHvUzogEq5xk hu507c3BarVjyWCJOylMNR98Yd8VqD9UfmX0Hb8/BrA+Hl6/DB/eqGptrf4BSRwcZQM32aZK 7Pj2XbGWIUrZrd70x1eAP9QE3P79Y2oLrsCgbZJfEwCgvz9JjGmQqQkRiTVzlZVCJYcyGGsD /0tbFCzD2h20ahe8rC1gbb3K3qk+LpBtvjBu1RY9drYk0NymiGbJWZgab6t1jM7sk2vuf0Py O9Hf9XBmK0uE9IgMaiCpc32XV9oASz6UJebwkX+zF2jG5I1BfnO9g7KlotcA/v5ClMjgo6Gl MDY4HxoSRu3i1cqqSDtVlt+AOVBJBACrZcnHAUSuCXBPy0jOlBhxPqRWv6ND4c9PH1xjQ3NP nxJuMBS8rnNg22uyfAgmBKNLpLgAGVRMZGaGoJObGf72s6TeIqKJo/LtggAS9qAUiuKVnygo 3wjfkS9A3DRO+SpU7JqWdsveeIQyeyEJ/8PTowmSQLakF+3fote9ybzd880fSmFuIEJldWxp Y2ggPGpiZXVsaWNoQHN1c2UuY29tPsJgBBMRAgAgBQJZN5xEAhsDBgsJCAcDAgQVAggDBBYC AwECHgECF4AACgkQoDSui/t3IH4J+wCfQ5jHdEjCRHj23O/5ttg9r9OIruwAn3103WUITZee e7Sbg12UgcQ5lv7SzsFNBFk3nEQQCACCuTjCjFOUdi5Nm244F+78kLghRcin/awv+IrTcIWF hUpSs1Y91iQQ7KItirz5uwCPlwejSJDQJLIS+QtJHaXDXeV6NI0Uef1hP20+y8qydDiVkv6l IreXjTb7DvksRgJNvCkWtYnlS3mYvQ9NzS9PhyALWbXnH6sIJd2O9lKS1Mrfq+y0IXCP10eS FFGg+Av3IQeFatkJAyju0PPthyTqxSI4lZYuJVPknzgaeuJv/2NccrPvmeDg6Coe7ZIeQ8Yj t0ARxu2xytAkkLCel1Lz1WLmwLstV30g80nkgZf/wr+/BXJW/oIvRlonUkxv+IbBM3dX2OV8 AmRv1ySWPTP7AAMFB/9PQK/VtlNUJvg8GXj9ootzrteGfVZVVT4XBJkfwBcpC/XcPzldjv+3 HYudvpdNK3lLujXeA5fLOH+Z/G9WBc5pFVSMocI71I8bT8lIAzreg0WvkWg5V2WZsUMlnDL9 mpwIGFhlbM3gfDMs7MPMu8YQRFVdUvtSpaAs8OFfGQ0ia3LGZcjA6Ik2+xcqscEJzNH+qh8V m5jjp28yZgaqTaRbg3M/+MTbMpicpZuqF4rnB0AQD12/3BNWDR6bmh+EkYSMcEIpQmBM51qM EKYTQGybRCjpnKHGOxG0rfFY1085mBDZCH5Kx0cl0HVJuQKC+dV2ZY5AqjcKwAxpE75MLFkr wkkEGBECAAkFAlk3nEQCGwwACgkQoDSui/t3IH7nnwCfcJWUDUFKdCsBH/E5d+0ZnMQi+G0A nAuWpQkjM1ASeQwSHEeAWPgskBQL
  • Cc: Roger Pau Monné <roger.pau@xxxxxxxxxx>, "xen-devel@xxxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxxx>, "Huang, Ray" <Ray.Huang@xxxxxxx>
  • Delivery-date: Wed, 25 Jun 2025 10:09:58 +0000
  • List-id: Xen developer discussion <xen-devel.lists.xenproject.org>
On 25.06.2025 11:47, Chen, Jiqian wrote:
> On 2025/6/25 17:15, Jan Beulich wrote:
>> On 25.06.2025 09:16, Chen, Jiqian wrote:
>>> On 2025/6/24 18:17, Jan Beulich wrote:
>>>> On 24.06.2025 11:49, Chen, Jiqian wrote:
>>>>> On 2025/6/18 22:45, Jan Beulich wrote:
>>>>>> On 12.06.2025 11:29, Jiqian Chen wrote:
>>>>>>> --- a/xen/drivers/vpci/msi.c
>>>>>>> +++ b/xen/drivers/vpci/msi.c
>>>>>>> @@ -193,6 +193,33 @@ static void cf_check mask_write(
>>>>>>>      msi->mask = val;
>>>>>>>  }
>>>>>>>  
>>>>>>> +static int cf_check cleanup_msi(struct pci_dev *pdev)
>>>>>>> +{
>>>>>>> +    int rc;
>>>>>>> +    unsigned int end, size;
>>>>>>> +    struct vpci *vpci = pdev->vpci;
>>>>>>> +    const unsigned int msi_pos = pdev->msi_pos;
>>>>>>> +    const unsigned int ctrl = msi_control_reg(msi_pos);
>>>>>>> +
>>>>>>> +    if ( !msi_pos || !vpci->msi )
>>>>>>> +        return 0;
>>>>>>> +
>>>>>>> +    if ( vpci->msi->masking )
>>>>>>> +        end = msi_pending_bits_reg(msi_pos, vpci->msi->address64);
>>>>>>> +    else
>>>>>>> +        end = msi_mask_bits_reg(msi_pos, vpci->msi->address64) - 2;
>>>>>>> +
>>>>>>> +    size = end - ctrl;
>>>>>>> +
>>>>>>> +    rc = vpci_remove_registers(vpci, ctrl, size);
>>>>>>> +    if ( rc )
>>>>>>> +        return rc;
>>>>>>
>>>>>> This is a difficult one: It's not a good idea to simply return here, yet
>>>>>> at the same time the handling of the register we're unable to remove may
>>>>>> still require e.g. ...
>>>>>>
>>>>>>> +    XFREE(vpci->msi);
>>>>>>
>>>>>> ... this. There may therefore be more work required, such that in the
>>>>>> end we're able to ...
>>>>>>
>>>>>>> +    return vpci_add_register(pdev->vpci, vpci_hw_read16, NULL, ctrl, 
>>>>>>> 2, NULL);
>>>>>>
>>>>>> ... try this at least on a best effort basis.
>>>>>>
>>>>>> More generally: I don't think failure here (or in other .cleanup hook
>>>>>> functions) may go entirely silently.
>>>>> Does below meet your modification expectations?
>>>>
>>>> Not sure, sorry. By "more" I really meant "more" (which may just be code
>>>> auditing, results of which would need writing down, but which may also
>>>> involve further code changes; see below).
>>>>
>>>>>     rc = vpci_remove_registers(vpci, ctrl, size);
>>>>>     if ( rc )
>>>>>         printk(XENLOG_ERR "%pd %pp: remove msi handlers fail rc=%d\n",
>>>>>                pdev->domain, &pdev->sbdf, rc);
>>>>>
>>>>>     XFREE(vpci->msi);
>>>>
>>>> As I tried to indicate in my earlier reply, the freeing of this struct is
>>>> safe only if the failure above would not leave any register handlers in
>>>> place which still (without appropriate checking) use this struct.
>>> Hmm, but all handlers added in init_msi() use this struct.
>>> So it doesn't exist the case that when above unable to remove all handlers 
>>> and still require xfree this struct.
>>
>> Well, in the end you say in different words what I did say, if I understand
>> correctly. There are several options how to deal with that. One might be to
>> have those handlers recognize the lack of that pointer, and behave like ...
>>
>>>>>     /*
>>>>>      * The driver may not traverse the capability list and think device
>>>>>      * supports MSI by default. So here let the control register of MSI
>>>>>      * be Read-Only is to ensure MSI disabled.
>>>>>      */
>>>>>     rc = vpci_add_register(vpci, vpci_hw_read16, NULL, ctrl, 2, NULL);
>>
>> ... what is tried to be put in place here (and like "no handler installed"
>> for other registers).
> According to your suggest. What I can think of is when 
> vpci_remove_registers() fails,
> then lookup the MSI related handlers,

What exactly does this mean? Aiui if vpci_remove_registers() ends up failing,
it may be the lookup which is the problem. Which isn't why this wasn't what
I suggested. Instead I suggested to make the respective handlers deal with
the case of vpci->msi being NULL. Which of course in turn would require
passing pdev->vpci to the respective vpci_add_register(), not pdev->vpci->msi.

> and set the read/write hook to be vpci_ignored_read()/vpci_ignored_write(),

But vpci_hw_read16() != vpci_ignored_read().

> and set the private data to be NULL.
> Is it acceptable?

Altering already registered handler properties feels pretty fragile to me.

Jan

 

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.