Re: [PATCH v4 30/32] cxlflash: Fix to avoid corrupting adapter fops

[PATCH v4 00/32] cxlflash: Miscellaneous bug fixes and corrections · Matthew R. Ochs <hidden> · 2015-09-25
[PATCH v4 01/32] cxlflash: Fix to avoid invalid port_sel value · Matthew R. Ochs <hidden> · 2015-09-25
[PATCH v4 02/32] cxlflash: Replace magic numbers with literals · Matthew R. Ochs <hidden> · 2015-09-25
Re: [PATCH v4 02/32] cxlflash: Replace magic numbers with literals · Andrew Donnellan <hidden> · 2015-09-29
[PATCH v4 03/32] cxlflash: Fix read capacity timeout · Matthew R. Ochs <hidden> · 2015-09-25
[PATCH v4 05/32] cxlflash: Fix data corruption when vLUN used over multiple cards · Matthew R. Ochs <hidden> · 2015-09-25
[PATCH v4 06/32] cxlflash: Fix to avoid sizeof(bool) · Matthew R. Ochs <hidden> · 2015-09-25
Re: [PATCH v4 06/32] cxlflash: Fix to avoid sizeof(bool) · Daniel Axtens <hidden> · 2015-09-28
[PATCH v4 07/32] cxlflash: Fix context encode mask width · Matthew R. Ochs <hidden> · 2015-09-25
Re: [PATCH v4 07/32] cxlflash: Fix context encode mask width · Daniel Axtens <hidden> · 2015-09-28
[PATCH v4 08/32] cxlflash: Fix to avoid CXL services during EEH · Matthew R. Ochs <hidden> · 2015-09-25
Re: [PATCH v4 08/32] cxlflash: Fix to avoid CXL services during EEH · Brian King <hidden> · 2015-09-28
Re: [PATCH v4 08/32] cxlflash: Fix to avoid CXL services during EEH · Daniel Axtens <hidden> · 2015-09-28
Re: [PATCH v4 08/32] cxlflash: Fix to avoid CXL services during EEH · Matthew R. Ochs <hidden> · 2015-09-29
[PATCH v4 09/32] cxlflash: Correct naming of limbo state and waitq · Matthew R. Ochs <hidden> · 2015-09-25
Re: [PATCH v4 09/32] cxlflash: Correct naming of limbo state and waitq · Daniel Axtens <hidden> · 2015-09-28
[PATCH v4 04/32] cxlflash: Fix potential oops following LUN removal · Matthew R. Ochs <hidden> · 2015-09-25
[PATCH v4 10/32] cxlflash: Make functions static · Matthew R. Ochs <hidden> · 2015-09-25
[PATCH v4 11/32] cxlflash: Refine host/device attributes · Matthew R. Ochs <hidden> · 2015-09-25
Re: [PATCH v4 11/32] cxlflash: Refine host/device attributes · Andrew Donnellan <hidden> · 2015-09-29
[PATCH v4 12/32] cxlflash: Fix to avoid spamming the kernel log · Matthew R. Ochs <hidden> · 2015-09-25
Re: [PATCH v4 12/32] cxlflash: Fix to avoid spamming the kernel log · Andrew Donnellan <hidden> · 2015-09-29
Re: [PATCH v4 12/32] cxlflash: Fix to avoid spamming the kernel log · Matthew R. Ochs <hidden> · 2015-09-29
[PATCH v4 14/32] cxlflash: Fix location of setting resid · Matthew R. Ochs <hidden> · 2015-09-25
[PATCH v4 15/32] cxlflash: Fix host link up event handling · Matthew R. Ochs <hidden> · 2015-09-25
[PATCH v4 16/32] cxlflash: Fix async interrupt bypass logic · Matthew R. Ochs <hidden> · 2015-09-25
[PATCH v4 17/32] cxlflash: Remove dual port online dependency · Matthew R. Ochs <hidden> · 2015-09-25
Re: [PATCH v4 17/32] cxlflash: Remove dual port online dependency · Daniel Axtens <hidden> · 2015-09-28
Re: [PATCH v4 17/32] cxlflash: Remove dual port online dependency · Matthew R. Ochs <hidden> · 2015-09-29
Re: [PATCH v4 17/32] cxlflash: Remove dual port online dependency · Daniel Axtens <hidden> · 2015-09-30
Re: [PATCH v4 17/32] cxlflash: Remove dual port online dependency · Matthew R. Ochs <hidden> · 2015-10-01
[PATCH v4 13/32] cxlflash: Fix to avoid stall while waiting on TMF · Matthew R. Ochs <hidden> · 2015-09-25
[PATCH v4 18/32] cxlflash: Fix AFU version access/storage and add check · Matthew R. Ochs <hidden> · 2015-09-25
[PATCH v4 19/32] cxlflash: Correct usage of scsi_host_put() · Matthew R. Ochs <hidden> · 2015-09-25
[PATCH v4 20/32] cxlflash: Fix to prevent workq from accessing freed memory · Matthew R. Ochs <hidden> · 2015-09-25
[PATCH v4 21/32] cxlflash: Correct behavior in device reset handler following EEH · Matthew R. Ochs <hidden> · 2015-09-25
[PATCH v4 22/32] cxlflash: Remove unnecessary scsi_block_requests · Matthew R. Ochs <hidden> · 2015-09-25
[PATCH v4 24/32] cxlflash: Fix MMIO and endianness errors · Matthew R. Ochs <hidden> · 2015-09-25
Re: [PATCH v4 24/32] cxlflash: Fix MMIO and endianness errors · Andrew Donnellan <hidden> · 2015-09-29
[PATCH v4 25/32] cxlflash: Fix to prevent EEH recovery failure · Matthew R. Ochs <hidden> · 2015-09-25
Re: [PATCH v4 25/32] cxlflash: Fix to prevent EEH recovery failure · Daniel Axtens <hidden> · 2015-09-29
Re: [PATCH v4 25/32] cxlflash: Fix to prevent EEH recovery failure · Matthew R. Ochs <hidden> · 2015-09-29
Re: [PATCH v4 25/32] cxlflash: Fix to prevent EEH recovery failure · Daniel Axtens <hidden> · 2015-09-30
[PATCH v4 26/32] cxlflash: Correct spelling, grammar, and alignment mistakes · Matthew R. Ochs <hidden> · 2015-09-25
Re: [PATCH v4 26/32] cxlflash: Correct spelling, grammar, and alignment mistakes · Andrew Donnellan <hidden> · 2015-09-29
[PATCH v4 27/32] cxlflash: Fix to prevent stale AFU RRQ · Matthew R. Ochs <hidden> · 2015-09-25
Re: [PATCH v4 27/32] cxlflash: Fix to prevent stale AFU RRQ · Daniel Axtens <hidden> · 2015-09-29
Re: [PATCH v4 27/32] cxlflash: Fix to prevent stale AFU RRQ · Matthew R. Ochs <hidden> · 2015-09-29
Re: [PATCH v4 27/32] cxlflash: Fix to prevent stale AFU RRQ · Daniel Axtens <hidden> · 2015-09-30
[PATCH v4 28/32] MAINTAINERS: Add cxlflash driver · Matthew R. Ochs <hidden> · 2015-09-25
[PATCH v4 23/32] cxlflash: Fix function prolog parameters and return codes · Matthew R. Ochs <hidden> · 2015-09-25
Re: [PATCH v4 23/32] cxlflash: Fix function prolog parameters and return codes · Andrew Donnellan <hidden> · 2015-09-29
Re: [PATCH v4 23/32] cxlflash: Fix function prolog parameters and return codes · Matthew R. Ochs <hidden> · 2015-09-29
[PATCH v4 29/32] cxlflash: Fix to double the delay each time · Matthew R. Ochs <hidden> · 2015-09-25
Re: [PATCH v4 29/32] cxlflash: Fix to double the delay each time · Andrew Donnellan <hidden> · 2015-09-29
Re: [PATCH v4 29/32] cxlflash: Fix to double the delay each time · Daniel Axtens <hidden> · 2015-09-29
Re: [PATCH v4 29/32] cxlflash: Fix to double the delay each time · Matthew R. Ochs <hidden> · 2015-09-29
Re: [PATCH v4 29/32] cxlflash: Fix to double the delay each time · Daniel Axtens <hidden> · 2015-09-30
[PATCH v4 30/32] cxlflash: Fix to avoid corrupting adapter fops · Matthew R. Ochs <hidden> · 2015-09-25
Re: [PATCH v4 30/32] cxlflash: Fix to avoid corrupting adapter fops · Andrew Donnellan <hidden> · 2015-09-29
Re: [PATCH v4 30/32] cxlflash: Fix to avoid corrupting adapter fops · Daniel Axtens <hidden> · 2015-09-30
Re: [PATCH v4 30/32] cxlflash: Fix to avoid corrupting adapter fops · Brian King <hidden> · 2015-09-30
[PATCH v4 31/32] cxlflash: Correct trace string · Matthew R. Ochs <hidden> · 2015-09-25
Re: [PATCH v4 31/32] cxlflash: Correct trace string · Andrew Donnellan <hidden> · 2015-09-29
[PATCH v4 32/32] cxlflash: Fix to avoid potential deadlock on EEH · Matthew R. Ochs <hidden> · 2015-09-25
Re: [PATCH v4 32/32] cxlflash: Fix to avoid potential deadlock on EEH · Brian King <hidden> · 2015-09-28
Re: [PATCH v4 32/32] cxlflash: Fix to avoid potential deadlock on EEH · Matthew R. Ochs <hidden> · 2015-09-29
Re: [PATCH v4 32/32] cxlflash: Fix to avoid potential deadlock on EEH · Daniel Axtens <hidden> · 2015-09-30

From: Daniel Axtens <hidden>
Date: 2015-09-30 00:18:19
Also in: linux-scsi

"Matthew R. Ochs" [off-list ref] writes:

The corruption that this fix remedies is due to the fact that the fops
is initially defaulted to values found within a static structure. When
the fops is handed down to the CXL services later in the attach path,
certain services are patched. The fops structure remains correct until
the user count drops to 0 and the fops is reset, triggering the process
to repeat again. The user counts are tightly coupled with the creation
and deletion of the user context. If multiple users perform a disk
attach at the same time, when the user count is currently 0, some users
can be in the middle of obtaining a file descriptor and have not yet
reached the context creation code that [in addition to creating the
context] increments the user count. Subsequent users coming in to
perform the attach see that the user count is still 0, and reinitialize
the fops, temporarily removing the patched fops. The users that are in
the middle obtaining their file descriptor may then receive an invalid
descriptor.

The fix simply removes the user count altogether and moves the fops
initialization to probe time such that it is only performed one time
for the life of the adapter. In the future, if the CXL services adopt
a private member for their context, that could be used to store the
adapter structure reference and cxlflash could revert to a model that
does not require an embedded fops.

Yep, this looks good.

We have discussed adding a private data field to a cxl context, and will
no doubt revisit the question at some point in the future :)

Reviewed-by: Daniel Axtens <redacted>

quoted hunk ↗ jump to hunk

Signed-off-by: Matthew R. Ochs <redacted>
Signed-off-by: Manoj N. Kumar <redacted>
---
 drivers/scsi/cxlflash/common.h    |  3 +--
 drivers/scsi/cxlflash/main.c      |  1 +
 drivers/scsi/cxlflash/superpipe.c | 11 +----------
 3 files changed, 3 insertions(+), 12 deletions(-)

diff --git a/drivers/scsi/cxlflash/common.h b/drivers/scsi/cxlflash/common.h
index bbfe711..c11cd19 100644
--- a/drivers/scsi/cxlflash/common.h
+++ b/drivers/scsi/cxlflash/common.h

@@ -21,6 +21,7 @@
 #include <scsi/scsi.h>
 #include <scsi/scsi_device.h>
 
+extern const struct file_operations cxlflash_cxl_fops;
 
 #define MAX_CONTEXT  CXLFLASH_MAX_CONTEXT       /* num contexts per afu */

@@ -115,8 +116,6 @@ struct cxlflash_cfg {
 	struct list_head ctx_err_recovery; /* contexts w/ recovery pending */
 	struct file_operations cxl_fops;
 
-	atomic_t num_user_contexts;
-
 	/* Parameters that are LUN table related */
 	int last_lun_index[CXLFLASH_NUM_FC_PORTS];
 	int promote_lun_index;

diff --git a/drivers/scsi/cxlflash/main.c b/drivers/scsi/cxlflash/main.c
index be78906..38e7edc 100644
--- a/drivers/scsi/cxlflash/main.c
+++ b/drivers/scsi/cxlflash/main.c

@@ -2386,6 +2386,7 @@ static int cxlflash_probe(struct pci_dev *pdev,
 
 	cfg->init_state = INIT_STATE_NONE;
 	cfg->dev = pdev;
+	cfg->cxl_fops = cxlflash_cxl_fops;
 
 	/*
 	 * The promoted LUNs move to the top of the LUN table. The rest stay

diff --git a/drivers/scsi/cxlflash/superpipe.c b/drivers/scsi/cxlflash/superpipe.c
index 3cc8609..f625e07 100644
--- a/drivers/scsi/cxlflash/superpipe.c
+++ b/drivers/scsi/cxlflash/superpipe.c

@@ -712,7 +712,6 @@ static void destroy_context(struct cxlflash_cfg *cfg,
 	kfree(ctxi->rht_needs_ws);
 	kfree(ctxi->rht_lun);
 	kfree(ctxi);
-	atomic_dec_if_positive(&cfg->num_user_contexts);
 }
 
 /**

@@ -769,7 +768,6 @@ static struct ctx_info *create_context(struct cxlflash_cfg *cfg,
 	INIT_LIST_HEAD(&ctxi->luns);
 	INIT_LIST_HEAD(&ctxi->list); /* initialize for list_empty() */
 
-	atomic_inc(&cfg->num_user_contexts);
 	mutex_lock(&ctxi->mutex);
 out:
 	return ctxi;

@@ -1164,10 +1162,7 @@ out:
 	return rc;
 }
 
-/*
- * Local fops for adapter file descriptor
- */
-static const struct file_operations cxlflash_cxl_fops = {
+const struct file_operations cxlflash_cxl_fops = {
 	.owner = THIS_MODULE,
 	.mmap = cxlflash_cxl_mmap,
 	.release = cxlflash_cxl_release,

@@ -1286,10 +1281,6 @@ static int cxlflash_disk_attach(struct scsi_device *sdev,
 
 	int fd = -1;
 
-	/* On first attach set fileops */
-	if (atomic_read(&cfg->num_user_contexts) == 0)
-		cfg->cxl_fops = cxlflash_cxl_fops;
-
 	if (attach->num_interrupts > 4) {
 		dev_dbg(dev, "%s: Cannot support this many interrupts %llu\n",
 			__func__, attach->num_interrupts);

-- 
2.1.0

Attachments

signature.asc [application/pgp-signature] 859 bytes

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help