Received: by 2002:a05:6a10:17d3:0:0:0:0 with SMTP id hz19csp1047995pxb;
        Thu, 15 Apr 2021 12:36:40 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJwoFyPIOJ8Agd56apxjiQD+v/QZLAj5sNTlZupNpfNepnJM4wJmljA1CucdycNjenNxvsWY
X-Received: by 2002:a17:906:349b:: with SMTP id g27mr5043453ejb.306.1618515400606;
        Thu, 15 Apr 2021 12:36:40 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1618515400; cv=none;
        d=google.com; s=arc-20160816;
        b=JMzs7oyUbiYR5/SJyisxKXMAUi5bbGn8I5w9YMMe3gysplyDwpCtX55MnQck/GPH9V
         KqnLNXQDMRQyGMnnS5muV3eeM7ZystPhkD/Gv4JKjai14qnHNIEKYLrlg7JENpmw/ryo
         aK9UDLiyEghJ6i+a3SVUkezKyQByEP0wpR0OTBiQoH4pp5uw4FuIH92f9sBU31TGYhTD
         2FT0xRoQApd/2zFVVnWY0olwd/yBdGl9mAqnx/XBctOaQnGvrDsJ+NGhBw+Tq3gpEVIU
         cPM704oXOLLyQEOPXp0V/OzFcywI7FOBVCydclk3g/j3Qf6wCRt9jOcQIK3QgW70AjD2
         q/gw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:in-reply-to:content-disposition:mime-version
         :references:message-id:subject:cc:to:from:date:dkim-signature;
        bh=S88ib+GCVfZ0ODg0rkzFaA6Cp+djjzsWauqENYjnAzw=;
        b=rw5XVqgUW0c0LhE9/DqblMPIe0lqge2aMOTN2o5p0VSCKZGe/0PWMB4cdQmPoSf3vu
         JoX/GHak57S8zC0UhsJBz6Nvz9mS0WtsUjUJlI7dwotdD4HYQ+gndbyVGiataPPtdiEg
         dbTuLoj/qxHY+FoqD9rwlzQjwSBzp+T37Rl0EeUH4xz5DghI45QSnngloJk8xLtQK9kQ
         4v6Q4SVecOn+L+gqI26AvMr47jR2XOXTJXzMch6rS0+OJCq9V4pBvciDiy+ZLnPq46mw
         IyoHrSpE4kXdOcUeUhVSu8Cd59I16QzRwNf8kWEwyZAAMoZe2Fpn6N7IjP6eF0SaroVe
         fySg==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@kernel.org header.s=k20201202 header.b=GilKiLJc;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id o3si2861791ejg.420.2021.04.15.12.36.15;
        Thu, 15 Apr 2021 12:36:40 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@kernel.org header.s=k20201202 header.b=GilKiLJc;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S234887AbhDOT1n (ORCPT <rfc822;liruijie0318@gmail.com>
        + 99 others); Thu, 15 Apr 2021 15:27:43 -0400
Received: from mail.kernel.org ([198.145.29.99]:54550 "EHLO mail.kernel.org"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S234859AbhDOT1m (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Thu, 15 Apr 2021 15:27:42 -0400
Received: by mail.kernel.org (Postfix) with ESMTPSA id B40ED61152;
        Thu, 15 Apr 2021 19:27:18 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org;
        s=k20201202; t=1618514838;
        bh=HYRrEmi7fOFNPZBkFQIEbPMVA5Mg61imnM16h5jqYeQ=;
        h=Date:From:To:Cc:Subject:References:In-Reply-To:From;
        b=GilKiLJcAiBC2S3okw3J98LUHvn7cozbOHDn48twsQTmDyWlX3eNEveQv0RkCw/rT
         DuCAEI5W2QZ6bJxLfEBGUWHcBWn+LlaadNzFGKjblVH8MujKQzV/PPl5whoH16hzwz
         my7ie8bWB/34TCUsNzkKNhBMcRaOYxFXqB4eXy5ruDp+Y3bfyg0lw6NgGCsHUlA3ee
         G8nqwUbtocvE1Equpnt7sf1HJ9ugAgG8N/QrBmEXKzvVncGj4jHnLf0gWTUwuXHlPS
         QOiz6Mgy4t7q5DwXwALBJ5NxKboOp9Gwo54S+owbZaRLXCjQK61aIEc/uEDHYfUlNS
         OQQJuVeEMoAqA==
Date:   Thu, 15 Apr 2021 12:27:17 -0700
From:   Eric Biggers <ebiggers@kernel.org>
To:     Satya Tangirala <satyat@google.com>
Cc:     linux-block@vger.kernel.org, linux-kernel@vger.kernel.org,
        Jens Axboe <axboe@kernel.dk>
Subject: Re: [PATCH v2 2/8] dm,mmc,ufshcd: handle error from
 blk_ksm_register()
Message-ID: <YHiTlbhb88zmI0n0@gmail.com>
References: <20210325212609.492188-1-satyat@google.com>
 <20210325212609.492188-3-satyat@google.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20210325212609.492188-3-satyat@google.com>
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Thu, Mar 25, 2021 at 09:26:03PM +0000, Satya Tangirala wrote:
> Handle any error from blk_ksm_register() in the callers. Previously,
> the callers ignored the return value because blk_ksm_register() wouldn't
> fail as long as the request_queue didn't have integrity support too, but
> as this is no longer the case, it's safer for the callers to just handle
> the return value appropriately.
> 
> Signed-off-by: Satya Tangirala <satyat@google.com>
> ---
>  drivers/md/dm-table.c            | 3 ++-
>  drivers/mmc/core/crypto.c        | 6 ++++--
>  drivers/scsi/ufs/ufshcd-crypto.c | 6 ++++--
>  3 files changed, 10 insertions(+), 5 deletions(-)

This probably should be 3 patches, one for each subsystem.

> diff --git a/drivers/md/dm-table.c b/drivers/md/dm-table.c
> index db18a58adad7..1225b9050f29 100644
> --- a/drivers/md/dm-table.c
> +++ b/drivers/md/dm-table.c
> @@ -1372,7 +1372,8 @@ static void dm_update_keyslot_manager(struct request_queue *q,
>  
>  	/* Make the ksm less restrictive */
>  	if (!q->ksm) {
> -		blk_ksm_register(t->ksm, q);
> +		if (WARN_ON(!blk_ksm_register(t->ksm, q)))
> +			dm_destroy_keyslot_manager(t->ksm);
>  	} else {
>  		blk_ksm_update_capabilities(q->ksm, t->ksm);
>  		dm_destroy_keyslot_manager(t->ksm);
> diff --git a/drivers/mmc/core/crypto.c b/drivers/mmc/core/crypto.c
> index 419a368f8402..616103393557 100644
> --- a/drivers/mmc/core/crypto.c
> +++ b/drivers/mmc/core/crypto.c
> @@ -21,8 +21,10 @@ void mmc_crypto_set_initial_state(struct mmc_host *host)
>  
>  void mmc_crypto_setup_queue(struct request_queue *q, struct mmc_host *host)
>  {
> -	if (host->caps2 & MMC_CAP2_CRYPTO)
> -		blk_ksm_register(&host->ksm, q);
> +	if (host->caps2 & MMC_CAP2_CRYPTO) {
> +		if (WARN_ON(!blk_ksm_register(&host->ksm, q)))
> +			host->caps2 &= ~MMC_CAP2_CRYPTO;
> +	}
>  }
>  EXPORT_SYMBOL_GPL(mmc_crypto_setup_queue);
>  
> diff --git a/drivers/scsi/ufs/ufshcd-crypto.c b/drivers/scsi/ufs/ufshcd-crypto.c
> index d70cdcd35e43..f47a72fefe9e 100644
> --- a/drivers/scsi/ufs/ufshcd-crypto.c
> +++ b/drivers/scsi/ufs/ufshcd-crypto.c
> @@ -233,6 +233,8 @@ void ufshcd_init_crypto(struct ufs_hba *hba)
>  void ufshcd_crypto_setup_rq_keyslot_manager(struct ufs_hba *hba,
>  					    struct request_queue *q)
>  {
> -	if (hba->caps & UFSHCD_CAP_CRYPTO)
> -		blk_ksm_register(&hba->ksm, q);
> +	if (hba->caps & UFSHCD_CAP_CRYPTO) {
> +		if (WARN_ON(!blk_ksm_register(&hba->ksm, q)))
> +			hba->caps &= ~UFSHCD_CAP_CRYPTO;
> +	}

It would be helpful to add a comment in each case to explain why the WARN_ON
should never trigger.

Also, clearing UFSHCD_CAP_CRYPTO or MMC_CAP2_CRYPTO doesn't really make sense
here because those capabilities apply to the whole UFS or MMC host controller,
not just to the individual request_queue which failed.  (A host controller can
control multiple devices, each of which has its own request_queue.)  Isn't
blk_ksm_register() failing already enough to ensure that the inline crypto
support isn't used on that particular request_queue?  What is the benefit of
clearing UFSHCD_CAP_CRYPTO and MMC_CAP2_CRYPTO too?

- Eric