| Message ID | 20221117103237.86856-1-jiamei.xie@arm.com |
|---|---|
| State | New |
| Headers |
Return-Path: <linux-kernel-owner@vger.kernel.org>
Delivered-To: ouuuleilei@gmail.com
Received: by 2002:adf:f944:0:0:0:0:0 with SMTP id q4csp325600wrr;
Thu, 17 Nov 2022 02:41:24 -0800 (PST)
X-Google-Smtp-Source:
AA0mqf510+HB72NjjJolx6oQOFbnbEs01oxmALpUyI/HzESlPSNb5Nd48HJ8/k2S1TozNjxBeCBZ
X-Received: by 2002:a17:903:3304:b0:186:61fd:7446 with SMTP id
jk4-20020a170903330400b0018661fd7446mr2066345plb.150.1668681684565;
Thu, 17 Nov 2022 02:41:24 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1668681684; cv=none;
d=google.com; s=arc-20160816;
b=lNbc+DtywWpW2ykL9p14iQI/ebvwZxYhfp6hoMjjZhk1EzIbXpiYGxuHXke8GpCoQF
qkqKjEnQMCav1Z30/TmzBZ1ALoBdB780Fr+F7mNt7TtuyCyQNC2QJQ7Zjh3h5r19kIQW
YGpjFkHehR9/c/RDmC6/Xo78UR4IPBrNrM7cDJ7Ab1+l0pOJQFD7I4M3T2bD5o3SLO+R
CwSlOCvYZuj4ZyKNTCXOF24JYhZ04RC22W6oFOeVTcofpJ4M8ZRXst0wQLXN/+chLdPV
p1+dFbTkHn6j/h1uidBIxLmELGdCfjJSNz3stlX4nEXk4oRh7qeQETaZIIapsSsisjNS
UcqQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com;
s=arc-20160816;
h=list-id:precedence:content-transfer-encoding:mime-version
:message-id:date:subject:cc:to:from;
bh=iJnYzlYxY/Vfx1U/PqK8h3ctUyTc5hS+QQ8GwoVz+u0=;
b=wiK+EHUzDWzNNmng88nmT11N6nKnp8EUdCDPjsdrJV/yMJN1Ub9BGA14ldfrE6wBOD
UI19t5lJ426EOhq3+mR/C5m2bhQqiUX2V25k97mMbF7H/ZUuVEAUUIo2EYMg+QBGM/eu
Lk9qMvRF3Pw0cm7lnXnznmA0RQ0x0IJK5iA5XQwneIJi453g/quns/SoDIx5A9+1mEdP
xjJSLt068la2TNYKqGVyPOJt2RnevAfvo8UQHIl0+h1+CfYHYG4c234CDDndrwMPILRJ
N/dZ2xlwC1RYMhgk+9ixbYmz77nz3+qxsWUKqoLOMhJV+au9otLVxRJ9TC6ZCPESXkX5
h9Mw==
ARC-Authentication-Results: i=1; mx.google.com;
spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org
designates 2620:137:e000::1:20 as permitted sender)
smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=arm.com
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
by mx.google.com with ESMTP id
lp7-20020a17090b4a8700b0020d457c5083si4982627pjb.147.2022.11.17.02.41.11;
Thu, 17 Nov 2022 02:41:24 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org
designates 2620:137:e000::1:20 as permitted sender)
client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org
designates 2620:137:e000::1:20 as permitted sender)
smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=arm.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
id S239566AbiKQKdP (ORCPT <rfc822;just.gull.subs@gmail.com>
+ 99 others); Thu, 17 Nov 2022 05:33:15 -0500
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:60492 "EHLO
lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
with ESMTP id S239529AbiKQKdI (ORCPT
<rfc822;linux-kernel@vger.kernel.org>);
Thu, 17 Nov 2022 05:33:08 -0500
Received: from foss.arm.com (foss.arm.com [217.140.110.172])
by lindbergh.monkeyblade.net (Postfix) with ESMTP id D93C659841;
Thu, 17 Nov 2022 02:33:06 -0800 (PST)
Received: from usa-sjc-imap-foss1.foss.arm.com (unknown [10.121.207.14])
by usa-sjc-mx-foss1.foss.arm.com (Postfix) with ESMTP id 00800D6E;
Thu, 17 Nov 2022 02:33:13 -0800 (PST)
Received: from a015971.shanghai.arm.com (unknown [10.169.188.104])
by usa-sjc-imap-foss1.foss.arm.com (Postfix) with ESMTPA id
874A13F73B;
Thu, 17 Nov 2022 02:33:03 -0800 (PST)
From: Jiamei Xie <jiamei.xie@arm.com>
To: linux-serial@vger.kernel.org, linux-kernel@vger.kernel.org
Cc: linux@armlinux.org.uk, gregkh@linuxfoundation.org,
Andre.Przywara@arm.com, jirislaby@kernel.org, Rob.Herring@arm.com,
wei.chen@arm.com, Bertrand.Marquis@arm.com, jiamei.xie@arm.com
Subject: [PATCH] serial: amba-pl011: avoid SBSA UART accessing DMACR register
Date: Thu, 17 Nov 2022 18:32:37 +0800
Message-Id: <20221117103237.86856-1-jiamei.xie@arm.com>
X-Mailer: git-send-email 2.25.1
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-Spam-Status: No, score=-4.2 required=5.0 tests=BAYES_00,RCVD_IN_DNSWL_MED,
SPF_HELO_NONE,SPF_NONE autolearn=ham autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org
X-getmail-retrieved-from-mailbox: =?utf-8?q?INBOX?=
X-GMAIL-THRID: =?utf-8?q?1749739566479958874?=
X-GMAIL-MSGID: =?utf-8?q?1749739566479958874?=
|
| Series |
serial: amba-pl011: avoid SBSA UART accessing DMACR register
|
|
Commit Message
Jiamei Xie
Nov. 17, 2022, 10:32 a.m. UTC
Chapter "B Generic UART" in "ARM Server Base System Architecture" [1]
documentation describes a generic UART interface. Such generic UART
does not support DMA. In current code, sbsa_uart_pops and
amba_pl011_pops share the same stop_rx operation, which will invoke
pl011_dma_rx_stop, leading to an access of the DMACR register. This
commit adds a using_rx_dma check in pl011_dma_rx_stop to avoid the
access to DMACR register for SBSA UARTs which does not support DMA.
When the kernel enables DMA engine with "CONFIG_DMA_ENGINE=y", Linux
SBSA PL011 driver will access PL011 DMACR register in some functions.
For most real SBSA Pl011 hardware implementations, the DMACR write
behaviour will be ignored. So these DMACR operations will not cause
obvious problems. But for some virtual SBSA PL011 hardware, like Xen
virtual SBSA PL011 (vpl011) device, the behaviour might be different.
Xen vpl011 emulation will inject a data abort to guest, when guest is
accessing an unimplemented UART register. As Xen VPL011 is SBSA
compatible, it will not implement DMACR register. So when Linux SBSA
PL011 driver access DMACR register, it will get an unhandled data abort
fault and the application will get a segmentation fault:
Unhandled fault at 0xffffffc00944d048
Mem abort info:
ESR = 0x96000000
EC = 0x25: DABT (current EL), IL = 32 bits
SET = 0, FnV = 0
EA = 0, S1PTW = 0
FSC = 0x00: ttbr address size fault
Data abort info:
ISV = 0, ISS = 0x00000000
CM = 0, WnR = 0
swapper pgtable: 4k pages, 39-bit VAs, pgdp=0000000020e2e000
[ffffffc00944d048] pgd=100000003ffff803, p4d=100000003ffff803, pud=100000003ffff803, pmd=100000003fffa803, pte=006800009c090f13
Internal error: ttbr address size fault: 96000000 [#1] PREEMPT SMP
...
Call trace:
pl011_stop_rx+0x70/0x80
tty_port_shutdown+0x7c/0xb4
tty_port_close+0x60/0xcc
uart_close+0x34/0x8c
tty_release+0x144/0x4c0
__fput+0x78/0x220
____fput+0x1c/0x30
task_work_run+0x88/0xc0
do_notify_resume+0x8d0/0x123c
el0_svc+0xa8/0xc0
el0t_64_sync_handler+0xa4/0x130
el0t_64_sync+0x1a0/0x1a4
Code: b9000083 b901f001 794038a0 8b000042 (b9000041)
---[ end trace 83dd93df15c3216f ]---
note: bootlogd[132] exited with preempt_count 1
/etc/rcS.d/S07bootlogd: line 47: 132 Segmentation fault start-stop-daemon
This has been discussed in the Xen community, and we think it should fix
this in Linux. See [2] for more information.
[1] https://developer.arm.com/documentation/den0094/c/?lang=en
[2] https://lists.xenproject.org/archives/html/xen-devel/2022-11/msg00543.html
Fixes: 0dd1e247fd39 (drivers: PL011: add support for the ARM SBSA generic UART)
Signed-off-by: Jiamei Xie <jiamei.xie@arm.com>
---
drivers/tty/serial/amba-pl011.c | 3 +++
1 file changed, 3 insertions(+)
Comments
On Thu, 17 Nov 2022 18:32:37 +0800 Jiamei Xie <jiamei.xie@arm.com> wrote: > Chapter "B Generic UART" in "ARM Server Base System Architecture" [1] > documentation describes a generic UART interface. Such generic UART > does not support DMA. In current code, sbsa_uart_pops and > amba_pl011_pops share the same stop_rx operation, which will invoke > pl011_dma_rx_stop, leading to an access of the DMACR register. This > commit adds a using_rx_dma check in pl011_dma_rx_stop to avoid the > access to DMACR register for SBSA UARTs which does not support DMA. > > When the kernel enables DMA engine with "CONFIG_DMA_ENGINE=y", Linux > SBSA PL011 driver will access PL011 DMACR register in some functions. > For most real SBSA Pl011 hardware implementations, the DMACR write > behaviour will be ignored. So these DMACR operations will not cause > obvious problems. But for some virtual SBSA PL011 hardware, like Xen > virtual SBSA PL011 (vpl011) device, the behaviour might be different. > Xen vpl011 emulation will inject a data abort to guest, when guest is > accessing an unimplemented UART register. As Xen VPL011 is SBSA > compatible, it will not implement DMACR register. So when Linux SBSA > PL011 driver access DMACR register, it will get an unhandled data abort > fault and the application will get a segmentation fault: > Unhandled fault at 0xffffffc00944d048 > Mem abort info: > ESR = 0x96000000 > EC = 0x25: DABT (current EL), IL = 32 bits > SET = 0, FnV = 0 > EA = 0, S1PTW = 0 > FSC = 0x00: ttbr address size fault > Data abort info: > ISV = 0, ISS = 0x00000000 > CM = 0, WnR = 0 > swapper pgtable: 4k pages, 39-bit VAs, pgdp=0000000020e2e000 > [ffffffc00944d048] pgd=100000003ffff803, p4d=100000003ffff803, pud=100000003ffff803, pmd=100000003fffa803, pte=006800009c090f13 > Internal error: ttbr address size fault: 96000000 [#1] PREEMPT SMP > ... > Call trace: > pl011_stop_rx+0x70/0x80 > tty_port_shutdown+0x7c/0xb4 > tty_port_close+0x60/0xcc > uart_close+0x34/0x8c > tty_release+0x144/0x4c0 > __fput+0x78/0x220 > ____fput+0x1c/0x30 > task_work_run+0x88/0xc0 > do_notify_resume+0x8d0/0x123c > el0_svc+0xa8/0xc0 > el0t_64_sync_handler+0xa4/0x130 > el0t_64_sync+0x1a0/0x1a4 > Code: b9000083 b901f001 794038a0 8b000042 (b9000041) > ---[ end trace 83dd93df15c3216f ]--- > note: bootlogd[132] exited with preempt_count 1 > /etc/rcS.d/S07bootlogd: line 47: 132 Segmentation fault start-stop-daemon > > This has been discussed in the Xen community, and we think it should fix > this in Linux. See [2] for more information. It looks like Xen is looking into avoiding the data abort, but this fix is correct anyway, and mimics what we already do in other DMA handling functions. > > [1] https://developer.arm.com/documentation/den0094/c/?lang=en > [2] https://lists.xenproject.org/archives/html/xen-devel/2022-11/msg00543.html > > Fixes: 0dd1e247fd39 (drivers: PL011: add support for the ARM SBSA generic UART) > Signed-off-by: Jiamei Xie <jiamei.xie@arm.com> Reviewed-by: Andre Przywara <andre.przywara@arm.com> Cheers, Andre > --- > drivers/tty/serial/amba-pl011.c | 3 +++ > 1 file changed, 3 insertions(+) > > diff --git a/drivers/tty/serial/amba-pl011.c b/drivers/tty/serial/amba-pl011.c > index 5cdced39eafd..5b97645be667 100644 > --- a/drivers/tty/serial/amba-pl011.c > +++ b/drivers/tty/serial/amba-pl011.c > @@ -1045,6 +1045,9 @@ static void pl011_dma_rx_callback(void *data) > */ > static inline void pl011_dma_rx_stop(struct uart_amba_port *uap) > { > + if (!uap->using_rx_dma) > + return; > + > /* FIXME. Just disable the DMA enable */ > uap->dmacr &= ~UART011_RXDMAE; > pl011_write(uap->dmacr, uap, REG_DMACR);
diff --git a/drivers/tty/serial/amba-pl011.c b/drivers/tty/serial/amba-pl011.c index 5cdced39eafd..5b97645be667 100644 --- a/drivers/tty/serial/amba-pl011.c +++ b/drivers/tty/serial/amba-pl011.c @@ -1045,6 +1045,9 @@ static void pl011_dma_rx_callback(void *data) */ static inline void pl011_dma_rx_stop(struct uart_amba_port *uap) { + if (!uap->using_rx_dma) + return; + /* FIXME. Just disable the DMA enable */ uap->dmacr &= ~UART011_RXDMAE; pl011_write(uap->dmacr, uap, REG_DMACR);