Message ID | 20230413195742.11821-1-quic_wcheng@quicinc.com |
---|---|
Headers |
Return-Path: <linux-kernel-owner@vger.kernel.org> Delivered-To: ouuuleilei@gmail.com Received: by 2002:a59:b0ea:0:b0:3b6:4342:cba0 with SMTP id b10csp1308287vqo; Thu, 13 Apr 2023 13:41:24 -0700 (PDT) X-Google-Smtp-Source: AKy350aQS+NnZHK8YgXaZIs66nYVYnG/nX76x9gETGPcZOLF0YN/rCjx8JBXUMzSM42DqK/zb2Nx X-Received: by 2002:a05:6a00:1403:b0:637:1845:cbca with SMTP id l3-20020a056a00140300b006371845cbcamr5267843pfu.28.1681418484666; Thu, 13 Apr 2023 13:41:24 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1681418484; cv=none; d=google.com; s=arc-20160816; b=QmAqd5Vm7sgOQ/6vFCu2bYrK5h4ATbNtc9o2HbDX+ksVN6ci58gyyVJpeLX3/pHjRE 4L0Fb7JibIvMjc0o1pChRI7UQUkWDOLdUKvBSqkEncE/KZtdnKBSpGR5ZFdCP73zj/pp K0LUdU49QWcPtQOxibbNtLZVLm4H6UPfHAb6DBThDqkYbTmMjnqcxJbIVeHNpUayzopI 3RhUz6d7xyWCuj+IToWJOxmkRDP3IBe56MFtVlUjlU09oA4qrHe2RzwQLxJSVVLSNR4y QlkFec7f/6suEDqV1CB6HFMSfGa0SKZxPE6eHP5Ad3+VKI1zTWj/Uxm77BhFTkHHsmr9 1VVg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:mime-version:message-id:date:subject:cc:to:from :dkim-signature; bh=Zq7h/znVuoYJ8jBgKafdKz4leL4/sdic8LB0numAgpc=; b=nGYqJq2y3U9eKwnmTh054x55Y40oCTjNhRLv4DiwiAldmXNc8ZJCy/cUC7ifhJALK3 T59nvoySXHTXo/5WEqIBEtYPfgGswZML/4ZM6LA97ARLyJyjzbDYliM5mY4EPf+8rbJI k/zU/URXDRJHRt9NKJnWSnDW9nQ8LPk2O9qKuKDorT3khTFAipHwf67lFnb7NNiCxNSR iHZP/Nl6SmwTsH05S3HLMEkPuBezl9BRwbbyZBGVOzGjMJZ1brdBJ+M4wUGF7w6D9PU4 pZ04V8JjSRo5VOMurKlfE1wKiCjEDb8DAu75Ea+5T6FnY1wrdtUY8zdiFv471RCvIhBu k+MQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@quicinc.com header.s=qcppdkim1 header.b=WzEz37wN; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=quicinc.com Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id x7-20020aa79567000000b00627eace679asi2521772pfq.8.2023.04.13.13.41.10; Thu, 13 Apr 2023 13:41:24 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@quicinc.com header.s=qcppdkim1 header.b=WzEz37wN; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=quicinc.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S230122AbjDMT7w (ORCPT <rfc822;peter110.wang@gmail.com> + 99 others); Thu, 13 Apr 2023 15:59:52 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:50050 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S230115AbjDMT7l (ORCPT <rfc822;linux-kernel@vger.kernel.org>); Thu, 13 Apr 2023 15:59:41 -0400 Received: from mx0a-0031df01.pphosted.com (mx0a-0031df01.pphosted.com [205.220.168.131]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 6AE2B8A4F; Thu, 13 Apr 2023 12:59:35 -0700 (PDT) Received: from pps.filterd (m0279863.ppops.net [127.0.0.1]) by mx0a-0031df01.pphosted.com (8.17.1.19/8.17.1.19) with ESMTP id 33DJQiMq006092; Thu, 13 Apr 2023 19:59:33 GMT DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=quicinc.com; h=from : to : cc : subject : date : message-id : mime-version : content-type; s=qcppdkim1; bh=Zq7h/znVuoYJ8jBgKafdKz4leL4/sdic8LB0numAgpc=; b=WzEz37wNMJ2LzZlMLiOUIIX4dwA5AdZcykfVBjCkS9GeyEK3VxIfRpLVapZwBYHUh4Cz caFLOWkLjMHPLQVwdeMKr9HmiW/rPYczQ0IcWiC+Lr+bnJEKayRLFy4UePFNjj4WCS+N 9anEtidss7wMqKlHADUZMpTATUjJsCI3ngBQM6ATKwnD1dzAQIlwZVAMisFDimNSbvxR gNz1ocoW0q/Fwx+eYAJq0CdZVyam0dQ0F/Y01LgIcU0VKqS9y77fw3F+yG/uWx2Ky5MM pC6AtEEk37jd/JRb/64OMxO39Y/rhexHy18a/hl7Sz69iv7bltb/BtwS98doq0SVvZ8c Uw== Received: from nalasppmta05.qualcomm.com (Global_NAT1.qualcomm.com [129.46.96.20]) by mx0a-0031df01.pphosted.com (PPS) with ESMTPS id 3pxdrk9gd4-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Thu, 13 Apr 2023 19:59:33 +0000 Received: from nalasex01b.na.qualcomm.com (nalasex01b.na.qualcomm.com [10.47.209.197]) by NALASPPMTA05.qualcomm.com (8.17.1.5/8.17.1.5) with ESMTPS id 33DJxAoK001083 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Thu, 13 Apr 2023 19:59:10 GMT Received: from hu-wcheng-lv.qualcomm.com (10.49.16.6) by nalasex01b.na.qualcomm.com (10.47.209.197) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.42; Thu, 13 Apr 2023 12:59:09 -0700 From: Wesley Cheng <quic_wcheng@quicinc.com> To: <gregkh@linuxfoundation.org>, <Thinh.Nguyen@synopsys.com> CC: <linux-kernel@vger.kernel.org>, <linux-usb@vger.kernel.org>, Wesley Cheng <quic_wcheng@quicinc.com> Subject: [PATCH v5 0/3] Avoid having pending end transfers on soft disconnect Date: Thu, 13 Apr 2023 12:57:39 -0700 Message-ID: <20230413195742.11821-1-quic_wcheng@quicinc.com> X-Mailer: git-send-email 2.17.1 MIME-Version: 1.0 Content-Type: text/plain X-Originating-IP: [10.49.16.6] X-ClientProxiedBy: nalasex01a.na.qualcomm.com (10.47.209.196) To nalasex01b.na.qualcomm.com (10.47.209.197) X-QCInternal: smtphost X-Proofpoint-Virus-Version: vendor=nai engine=6200 definitions=5800 signatures=585085 X-Proofpoint-ORIG-GUID: BCed3BueVICfRSs9ieBse4i8P1RY-v7M X-Proofpoint-GUID: BCed3BueVICfRSs9ieBse4i8P1RY-v7M X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.254,Aquarius:18.0.942,Hydra:6.0.573,FMLib:17.11.170.22 definitions=2023-04-13_14,2023-04-13_01,2023-02-09_01 X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 priorityscore=1501 adultscore=0 suspectscore=0 spamscore=0 mlxscore=0 malwarescore=0 impostorscore=0 phishscore=0 mlxlogscore=656 clxscore=1015 bulkscore=0 lowpriorityscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2303200000 definitions=main-2304130178 X-Spam-Status: No, score=-2.8 required=5.0 tests=BAYES_00,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_LOW,SPF_HELO_NONE, SPF_PASS,URIBL_BLOCKED autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: <linux-kernel.vger.kernel.org> X-Mailing-List: linux-kernel@vger.kernel.org X-getmail-retrieved-from-mailbox: =?utf-8?q?INBOX?= X-GMAIL-THRID: =?utf-8?q?1763092588375481325?= X-GMAIL-MSGID: =?utf-8?q?1763095068989669319?= |
Series |
Avoid having pending end transfers on soft disconnect
|
|
Message
Wesley Cheng
April 13, 2023, 7:57 p.m. UTC
In case there is a host which takes time to complete a SETUP transaction, during the soft disconnect sequence multiple DWC3 EPs will have their DWC3_EP_DELAY_STOP flag set w/o issuing the end transfer command. Once the controller halt sequence occurs, the soft disconnect is successful, and the subsequent soft connect will attempt to flush the pending end transfers. Soft disconnect sequence: dwc3_gadget_ep_disable name=ep8in flags=0x3009 direction=1 dwc3_gadget_ep_disable name=ep4in flags=1 direction=1 dwc3_gadget_ep_disable name=ep3out flags=1 direction=0 usb_gadget_disconnect deactivated=0 connected=0 ret=0 Soft connect bug: BUG: spinlock already unlocked on CPU spin_bug+0x0 dwc3_remove_requests+0x278 dwc3_ep0_out_start+0xb0 __dwc3_gadget_start+0x25c The bug occurs due to the flush of the pending end transfers, as the gadget start routine is not held with a spinlock. However, if the DWC3_EP_DELAY_STOP is set, it will call the giveback API, which attempts to unlock the dwc->lock. Ideally, the DWC3 gadget should not have pending end transfers on a soft connect, so fix this by: 1. Re-locating the SETUP phase check after stop active transfers, since that is where the DWC3_EP_DELAY_STOP is potentially set. This also allows for handling of a host that may be unresponsive by using the completion timeout to trigger the stall and restart for EP0. 2. Do not call gadget stop until the poll for controller halt is completed. DEVTEN is cleared as part of gadget stop, so the intention to allow ep0 events to continue while waiting for controller halt is not happening. Changes in v5: - Fixed stable tag Changes in v4: - Added stable to patches that address the actual issue - Re-ordered patch series to include the refactor change at the end to remove any dependencies to the actual fix. Changes in v3: - Removed fixes tag in the refactor change Wesley Cheng (3): usb: dwc3: gadget: Stall and restart EP0 if host is unresponsive usb: dwc3: gadget: Execute gadget stop after halting the controller usb: dwc3: gadget: Refactor EP0 forced stall/restart into a separate API drivers/usb/dwc3/gadget.c | 101 ++++++++++++++++++++++---------------- 1 file changed, 58 insertions(+), 43 deletions(-)
Comments
On Thu, Apr 13, 2023 at 12:57:39PM -0700, Wesley Cheng wrote: > In case there is a host which takes time to complete a SETUP transaction, > during the soft disconnect sequence multiple DWC3 EPs will have their > DWC3_EP_DELAY_STOP flag set w/o issuing the end transfer command. Once the > controller halt sequence occurs, the soft disconnect is successful, and > the subsequent soft connect will attempt to flush the pending end transfers. > > Soft disconnect sequence: > dwc3_gadget_ep_disable name=ep8in flags=0x3009 direction=1 > dwc3_gadget_ep_disable name=ep4in flags=1 direction=1 > dwc3_gadget_ep_disable name=ep3out flags=1 direction=0 > usb_gadget_disconnect deactivated=0 connected=0 ret=0 > > Soft connect bug: > BUG: spinlock already unlocked on CPU > spin_bug+0x0 > dwc3_remove_requests+0x278 > dwc3_ep0_out_start+0xb0 > __dwc3_gadget_start+0x25c > > The bug occurs due to the flush of the pending end transfers, as the gadget > start routine is not held with a spinlock. However, if the DWC3_EP_DELAY_STOP > is set, it will call the giveback API, which attempts to unlock the dwc->lock. > Ideally, the DWC3 gadget should not have pending end transfers on a soft > connect, so fix this by: > > 1. Re-locating the SETUP phase check after stop active transfers, since > that is where the DWC3_EP_DELAY_STOP is potentially set. This also allows > for handling of a host that may be unresponsive by using the completion > timeout to trigger the stall and restart for EP0. > > 2. Do not call gadget stop until the poll for controller halt is > completed. DEVTEN is cleared as part of gadget stop, so the intention to > allow ep0 events to continue while waiting for controller halt is not > happening. Only patch 1 applied, can you rebase the rest and resend with the acks applied? thanks, greg k-h