Received: by 2002:a05:7412:e794:b0:fa:551:50a7 with SMTP id o20csp2996470rdd; Sat, 13 Jan 2024 10:17:30 -0800 (PST) X-Google-Smtp-Source: AGHT+IHZO545AR/N2MhO7PcLvFGBQWZxXAERJZ5c+jdakZB/KlaeYQ4wTIHqHTCYZgaozSSFPBhG X-Received: by 2002:a05:600c:3146:b0:40e:6792:2fb0 with SMTP id h6-20020a05600c314600b0040e67922fb0mr857932wmo.39.1705169850105; Sat, 13 Jan 2024 10:17:30 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1705169850; cv=none; d=google.com; s=arc-20160816; b=SyXexbEsOZ5qo2ENLH92yxIKcDQ4xuq73HUlLRjTbAcJn/9B5WWSj1TeMt+22isimD YUPV+MFMdiseFARLl53nVHYNuVA5XOZuNjTCMGO68+o0JEgTq4sV1HBLAH//fzo8dam/ ohbogT6vVjV4WZ7/zrURhYmAKQMjB84DH8hwF4QOZOyBSWtSM6eVL40TqAczF1vHdAVK 6X1Khkys6LkylQqvYGOeWcjGIRfBIDONZO3H14W6oa9UFmfSrL/b9nY4+7RvhLlJzN7D JD+eal0IYFeJk4U8J4bUfEUiG+HQOBVDmogjBK//nCTzu6FKegmqdmYyI2AU2AqGgXn3 +utA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=content-transfer-encoding:mime-version:list-unsubscribe :list-subscribe:list-id:precedence:message-id:date:subject:cc:to :from:dkim-signature; bh=iYp2logoMYZ9jMW04gIUzqQcpGYG2bO16WsCcwCZkXw=; fh=eLDf8AW8InD2v2WRrapwuiy6CU9k9tG8SUA1rAm2Fcs=; b=0CbU+38063yeGeRI64IlVgsoMcYHpJy8cgsL/4TF9GQgN1VhrJynlUtvW+YRIbXV+8 sbtFxK8H6J2irCMrlQWQ32sNw2HrIZwrepuoxSZlorNr60xo1gfTgFHbS4XsgBXI2K6D P0F6mfnHkdSWxerZhfJLdfA2SJWY1EiUxWZRz3jtSDOv5nOVb5EIExiWRT5fvN0+YspC FT8fGKS8uJEiXgPc96oCTByPBVCiOSAfxOiTzqeExvO5xxvrzKD+vw63G/PJSAcExvvU KwOaMGHPrbUdgBZfabAwG9DIYd/dtx7t5CTlDNG7oSjrD/zQQ+wTYGp0YaPFLuPT7iOw QJhQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@purestorage.com header.s=google2022 header.b=WfAsRK5R; spf=pass (google.com: domain of linux-kernel+bounces-25347-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.80.249 as permitted sender) smtp.mailfrom="linux-kernel+bounces-25347-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=purestorage.com Return-Path: Received: from am.mirrors.kernel.org (am.mirrors.kernel.org. [147.75.80.249]) by mx.google.com with ESMTPS id p23-20020a056402501700b00558599656d2si2441224eda.94.2024.01.13.10.17.30 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Sat, 13 Jan 2024 10:17:30 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel+bounces-25347-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.80.249 as permitted sender) client-ip=147.75.80.249; Authentication-Results: mx.google.com; dkim=pass header.i=@purestorage.com header.s=google2022 header.b=WfAsRK5R; spf=pass (google.com: domain of linux-kernel+bounces-25347-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.80.249 as permitted sender) smtp.mailfrom="linux-kernel+bounces-25347-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=purestorage.com Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by am.mirrors.kernel.org (Postfix) with ESMTPS id D0A771F2234B for ; Sat, 13 Jan 2024 18:17:29 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 5CB085C96; Sat, 13 Jan 2024 18:17:22 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=purestorage.com header.i=@purestorage.com header.b="WfAsRK5R" Received: from mail-pj1-f43.google.com (mail-pj1-f43.google.com [209.85.216.43]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id ED6FD566B for ; Sat, 13 Jan 2024 18:17:19 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=reject dis=none) header.from=purestorage.com Authentication-Results: smtp.subspace.kernel.org; spf=fail smtp.mailfrom=purestorage.com Received: by mail-pj1-f43.google.com with SMTP id 98e67ed59e1d1-28d0052beb0so4873853a91.0 for ; Sat, 13 Jan 2024 10:17:19 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=purestorage.com; s=google2022; t=1705169839; x=1705774639; darn=vger.kernel.org; h=content-transfer-encoding:mime-version:message-id:date:subject:cc :to:from:from:to:cc:subject:date:message-id:reply-to; bh=iYp2logoMYZ9jMW04gIUzqQcpGYG2bO16WsCcwCZkXw=; b=WfAsRK5R9k0BoTppowB96N7enf9j71uKMcSqZ96OdeXhTm6+259OuV7B+pOe5LGbGh UtqwJkiR041u/SlvsYSTUVkg5DtuvdDlFp2aVyROn4IWGDfGObMN2VgwkGnEkwpOCcpn ZuWDzmWd9C9jrmU3I+pbc52xJ6zeDZYTXPo4nF3aoC/qUKZGyczrJeOhVwZnApEAethC iJYzehCYaJ5SP1T5zmNYuPTJySdVYknZqHe+2WgSi95VlhLGGtOCLXwFU8AYXRu4Hvzy BstfxfrWXloTFhGHDGoL5BhTFtizG4vmnOI35rN6rV9nNP8cP4Vi76Gm+RVaHNif9rL5 htzQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1705169839; x=1705774639; h=content-transfer-encoding:mime-version:message-id:date:subject:cc :to:from:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=iYp2logoMYZ9jMW04gIUzqQcpGYG2bO16WsCcwCZkXw=; b=Ig7xN74eFZj1mMNVcu+XXxlHYaZcHu+wkUKViOeTmgrXmOUFQaSsrYH15ykRG/H9Uk TmjF0jwsndURYcqDFCqOPEmI1tLm/7+gkNwZH2p+nFZaLrl2vk2GCT/XUOv6ZFKUoiG5 JCLu1loBCRL8XY4GO+iXooyXufFhHZPZNVOrHVkbB3FYKv9JR3nWn2e+dX7CPaGLJSyv LROTtKEcA0Uj5QavCC234MotutomVFBgAKI4xUmCQ5m8AKJbyt1dGOkUzYe6qdEq3mOZ NHOD+laKfrWDJgqdyXOc14nW7zDVnCN83z28wKkHdAOJyuYv+gTWsBqAdbcFXRRdv8so TB7w== X-Gm-Message-State: AOJu0YzljmIG9SsEZcz80/EPNjWaaWfklwy9aTGq68PbJTPwt0pgL1Rr M/ngu8Mix+gpzqMix50PQOu1qYnEQgyYgA== X-Received: by 2002:a17:902:f68c:b0:1d4:20b8:abfb with SMTP id l12-20020a170902f68c00b001d420b8abfbmr2051519plg.68.1705169839215; Sat, 13 Jan 2024 10:17:19 -0800 (PST) Received: from localhost ([192.30.189.3]) by smtp.gmail.com with UTF8SMTPSA id v20-20020a170902d09400b001d563e22dc0sm5059233plv.1.2024.01.13.10.17.18 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Sat, 13 Jan 2024 10:17:18 -0800 (PST) From: Eric Badger To: ebadger@purestorage.com Cc: David Woodhouse , Lu Baolu , Joerg Roedel , Will Deacon , Robin Murphy , iommu@lists.linux.dev (open list:INTEL IOMMU (VT-d)), linux-kernel@vger.kernel.org (open list) Subject: [PATCH] iommu/vt-d: Check for non-NULL domain on device release Date: Sat, 13 Jan 2024 10:17:13 -0800 Message-Id: <20240113181713.1817855-1-ebadger@purestorage.com> X-Mailer: git-send-email 2.34.1 Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 Content-Transfer-Encoding: 8bit In the kdump kernel, the IOMMU will operate in deferred_attach mode. In this mode, info->domain may not yet be assigned by the time the release_device function is called, which leads to the following crash in the crashkernel: BUG: kernel NULL pointer dereference, address: 000000000000003c ... RIP: 0010:do_raw_spin_lock+0xa/0xa0 ... _raw_spin_lock_irqsave+0x1b/0x30 intel_iommu_release_device+0x96/0x170 iommu_deinit_device+0x39/0xf0 __iommu_group_remove_device+0xa0/0xd0 iommu_bus_notifier+0x55/0xb0 notifier_call_chain+0x5a/0xd0 blocking_notifier_call_chain+0x41/0x60 bus_notify+0x34/0x50 device_del+0x269/0x3d0 pci_remove_bus_device+0x77/0x100 p2sb_bar+0xae/0x1d0 ... i801_probe+0x423/0x740 Signed-off-by: Eric Badger --- drivers/iommu/intel/iommu.c | 10 ++++++---- 1 file changed, 6 insertions(+), 4 deletions(-) diff --git a/drivers/iommu/intel/iommu.c b/drivers/iommu/intel/iommu.c index 6fb5f6fceea1..26e450259889 100644 --- a/drivers/iommu/intel/iommu.c +++ b/drivers/iommu/intel/iommu.c @@ -3750,7 +3750,6 @@ static void domain_context_clear(struct device_domain_info *info) static void dmar_remove_one_dev_info(struct device *dev) { struct device_domain_info *info = dev_iommu_priv_get(dev); - struct dmar_domain *domain = info->domain; struct intel_iommu *iommu = info->iommu; unsigned long flags; @@ -3763,11 +3762,14 @@ static void dmar_remove_one_dev_info(struct device *dev) domain_context_clear(info); } - spin_lock_irqsave(&domain->lock, flags); + if (!info->domain) + return; + + spin_lock_irqsave(&info->domain->lock, flags); list_del(&info->link); - spin_unlock_irqrestore(&domain->lock, flags); + spin_unlock_irqrestore(&info->domain->lock, flags); - domain_detach_iommu(domain, iommu); + domain_detach_iommu(info->domain, iommu); info->domain = NULL; } -- 2.34.1