Received: by 2002:a05:6a10:a0d1:0:0:0:0 with SMTP id j17csp1650754pxa; Thu, 6 Aug 2020 12:27:56 -0700 (PDT) X-Google-Smtp-Source: ABdhPJzHRhu9rKj3l4/8UzLoMYrQc7+9i47tnNPXGT4EPGchqAkwTBzpsdKUAbx3+z8po7h5jVaE X-Received: by 2002:a05:6402:3113:: with SMTP id dc19mr5245223edb.280.1596742075987; Thu, 06 Aug 2020 12:27:55 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1596742075; cv=none; d=google.com; s=arc-20160816; b=n0gECKjEJz3idcEED3h0OXdoDck7IyiVHTgwvyR6NHeQafBcDtJFTZ8QJ/tR2obvz3 JNhpOLNetYSwC7PCUSFkHJKFZ0y9ynMbWMSyTHLqk4R6aiLWLCM9va840rZNc8aI/sZ0 xLW4+VmCuAULZEmCFIhZb10y/8f4lWRIDGGW+3YVZJqdGm6vTZ3CL3e8A9to9xBg5pl7 NceS7HyGeryQffWaGS5RIWZ1gZe85aHGbCe106ttQqKZ7nR6d/12vAKpVnvf37lbvgJg f0tFZ+dDNtCjzvusbTANcQpiFHe5Szn4D0AS7MyhbVWMmH/3X32PpVM6tXqJiDfmujEk G1xA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:user-agent:in-reply-to :content-disposition:mime-version:references:message-id:subject:cc :to:from:date:ironport-sdr:ironport-sdr; bh=BsFDDrDlbQ1bReTZeQeGR5fq1m0Q9i20fQ5CiTk1yPo=; b=wYq4EQmAi8A8sYLFX5GBqeYBFnrdxO2wCnOKwBLu9Hk2M+10UWsgtXDBUDHwD1ePhD MbhTkLdf2+qseMSFy28M42yqlnFlGkgJddZzZhkp7mZpnu1RUCkJ9XkbDyGmZNlWsWb7 AuxkPb3xesFxKFWP163P0f+QOBxPZZpKrSMYW/iTX/cYJayXPBnXny1nQEgCKfPJ9Uf5 oEsGsbk4kdeQXTQ1Llg0a15G12x05vfrJ3WxSUsVP+z+pb+VNGY6TqS+R2nHikUIGx90 yQUkfrV5lXzXsr8J6sBk4d3egLL1LM1PesSWTAYWtQSxxWvaOh4/MLWM7govhfiVv2ji yMpw== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id e15si3828237edy.357.2020.08.06.12.27.33; Thu, 06 Aug 2020 12:27:55 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726392AbgHFT01 (ORCPT + 99 others); Thu, 6 Aug 2020 15:26:27 -0400 Received: from mga06.intel.com ([134.134.136.31]:57843 "EHLO mga06.intel.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1725272AbgHFT01 (ORCPT ); Thu, 6 Aug 2020 15:26:27 -0400 IronPort-SDR: Im8SsfrSZJy3wl5wCtrQnechHSfsDr025pTLoInIcaHh9GZHCMpQqImJ5rOHIFO8fc2bxlgjnK dTwZuJS0kQAg== X-IronPort-AV: E=McAfee;i="6000,8403,9705"; a="214429165" X-IronPort-AV: E=Sophos;i="5.75,443,1589266800"; d="scan'208";a="214429165" X-Amp-Result: SKIPPED(no attachment in message) X-Amp-File-Uploaded: False Received: from orsmga006.jf.intel.com ([10.7.209.51]) by orsmga104.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 06 Aug 2020 12:26:26 -0700 IronPort-SDR: 5O34ZelIxamjXUnl1FzmYNKNvTuh08rRshm/yKzkLDz7jljjSA2lVh3biO5Xi8SYHvqVFUhTFa lyNB9SEAJL/g== X-ExtLoop1: 1 X-IronPort-AV: E=Sophos;i="5.75,441,1589266800"; d="scan'208";a="293409554" Received: from iweiny-desk2.sc.intel.com ([10.3.52.147]) by orsmga006.jf.intel.com with ESMTP; 06 Aug 2020 12:26:26 -0700 Date: Thu, 6 Aug 2020 12:26:26 -0700 From: Ira Weiny To: Jane Chu Cc: dan.j.williams@intel.com, vishal.l.verma@intel.com, dave.jiang@intel.com, jmoyer@redhat.com, linux-nvdimm@lists.01.org, linux-kernel@vger.kernel.org Subject: Re: [PATCH v2 2/3] libnvdimm/security: the 'security' attr never show 'overwrite' state Message-ID: <20200806192625.GL1573827@iweiny-DESK2.sc.intel.com> References: <1596494499-9852-1-git-send-email-jane.chu@oracle.com> <1596494499-9852-2-git-send-email-jane.chu@oracle.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <1596494499-9852-2-git-send-email-jane.chu@oracle.com> User-Agent: Mutt/1.11.1 (2018-12-01) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Mon, Aug 03, 2020 at 04:41:38PM -0600, Jane Chu wrote: > 'security' attribute displays the security state of an nvdimm. > During normal operation, the nvdimm state maybe one of 'disabled', > 'unlocked' or 'locked'. When an admin issues > # ndctl sanitize-dimm nmem0 --overwrite > the attribute is expected to change to 'overwrite' until the overwrite > operation completes. > > But tests on our systems show that 'overwrite' is never shown during > the overwrite operation. i.e. > # cat /sys/devices/LNXSYSTM:00/LNXSYBUS:00/ACPI0012:00/ndbus0/nmem0/security > unlocked > the attribute remain 'unlocked' through out the operation, consequently > "ndctl wait-overwrite nmem0" command doesn't wait at all. > > The driver tracks the state in 'nvdimm->sec.flags': when the operation > starts, it adds an overwrite bit to the flags; and when the operation > completes, it removes the bit. Hence security_show() should check the > 'overwrite' bit first, in order to indicate the actual state when multiple > bits are set in the flags. > > Signed-off-by: Jane Chu > Reviewed-by: Dave Jiang Reviewed-by: Ira Weiny > --- > drivers/nvdimm/dimm_devs.c | 4 ++-- > 1 file changed, 2 insertions(+), 2 deletions(-) > > diff --git a/drivers/nvdimm/dimm_devs.c b/drivers/nvdimm/dimm_devs.c > index b7b77e8..5d72026 100644 > --- a/drivers/nvdimm/dimm_devs.c > +++ b/drivers/nvdimm/dimm_devs.c > @@ -363,14 +363,14 @@ __weak ssize_t security_show(struct device *dev, > { > struct nvdimm *nvdimm = to_nvdimm(dev); > > + if (test_bit(NVDIMM_SECURITY_OVERWRITE, &nvdimm->sec.flags)) > + return sprintf(buf, "overwrite\n"); > if (test_bit(NVDIMM_SECURITY_DISABLED, &nvdimm->sec.flags)) > return sprintf(buf, "disabled\n"); > if (test_bit(NVDIMM_SECURITY_UNLOCKED, &nvdimm->sec.flags)) > return sprintf(buf, "unlocked\n"); > if (test_bit(NVDIMM_SECURITY_LOCKED, &nvdimm->sec.flags)) > return sprintf(buf, "locked\n"); > - if (test_bit(NVDIMM_SECURITY_OVERWRITE, &nvdimm->sec.flags)) > - return sprintf(buf, "overwrite\n"); > return -ENOTTY; > } > > -- > 1.8.3.1 >