Received: by 2002:a05:7208:9594:b0:7e:5202:c8b4 with SMTP id gs20csp2277315rbb;
        Tue, 27 Feb 2024 17:28:59 -0800 (PST)
X-Forwarded-Encrypted: i=3; AJvYcCWjoPp2UIhw0am+IJkxn/KN0YgQNMP0XVYa+msn7U6pEIX2otYKI1AFlrSAS448uisor+xhjcTv9gW42r1L6h+Ormo24BBe+Ft2WMuoCA==
X-Google-Smtp-Source: AGHT+IEKrxuGKFD0Sy2QXDeTA1iWx8sHPtmRmrTqY8Fxu4IpvM2qHKDNZpCDhwIYxhMvGhra/mCE
X-Received: by 2002:a17:906:7712:b0:a3e:53d9:c7d5 with SMTP id q18-20020a170906771200b00a3e53d9c7d5mr891146ejm.36.1709083739018;
        Tue, 27 Feb 2024 17:28:59 -0800 (PST)
ARC-Seal: i=2; a=rsa-sha256; t=1709083739; cv=pass;
        d=google.com; s=arc-20160816;
        b=MEtKIH8m0QXsKtRcvy6UhvnrSEM6byYyWXmnoHnKCrSDMlgb1YgEOCZNC0PGNAXA6M
         Qv8LGyUbX+bmv4ZCVl8a7OitBTGvV1P/LXZWSHrgpSgWSiBD4bo04ET+q4OxgcRepvuM
         dPdtc8ODXbeP/o7mMJnwbUA8jSXqcmxb4SS13ThDdU32ZjvoWKf2CXCiValNnqhx+Ich
         MbySvGKCP7QPM/1cluVg6nPpa0hdVYApLwPMlzLMeqWOue4kwNhJygM+dBF+l4Rccoxd
         lSc7mUynGyGGt3hZkQ3qse/KqkkhlZPwOSWy/7teGFe7CjlDJ0PVjLUAnnWaGK3ifb3/
         XSbw==
ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=content-transfer-encoding:in-reply-to:from:references:to
         :content-language:subject:cc:user-agent:mime-version
         :list-unsubscribe:list-subscribe:list-id:precedence:date:message-id
         :dkim-signature;
        bh=wNPWeNwwXhbNv7UGpXT/3TKGNmZjob/7WGmAIo7KMqw=;
        fh=0sytPK7UE4uOKw79i7j7Hu1zQGyv0/+63WV5KVQjwWo=;
        b=h0otRXk4TCAtA4lGi2QT0OiA+BNBEKaCk0vLYoSeIv6DP7J9SAaDYRIxLQuDJWYcgy
         CPJgLHKPeDBeki6AAKVzXg5Kyep7Zm1vTCamXFDDHJAaGWt+jC7H/hhXkIHN6TTPOo3L
         Nh9NuRGaHx8C+Jqa9QWQO/WzkKjw9svCja2+fm2rg+pUr4j8vclNbFgMbeh5MQRTxVBX
         Ph6514ih4bBY3LfjS701zC+p8qD/MEkGEkawLNPY1ZkR58wN8rfEFoyI1HFmNE0ZXDLe
         /DZzgVAyk4OntXL5n1n+iO/mhHWk9p48twWmfUZEqp+6mFfkwfmfGJCz5oR6xw3SsJbo
         0XrQ==;
        dara=google.com
ARC-Authentication-Results: i=2; mx.google.com;
       dkim=pass header.i=@intel.com header.s=Intel header.b=jV8Tl60O;
       arc=pass (i=1 dkim=pass dkdomain=intel.com dmarc=pass fromdomain=linux.intel.com);
       spf=pass (google.com: domain of linux-kernel+bounces-84335-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) smtp.mailfrom="linux-kernel+bounces-84335-linux.lists.archive=gmail.com@vger.kernel.org";
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=intel.com
Return-Path: <linux-kernel+bounces-84335-linux.lists.archive=gmail.com@vger.kernel.org>
Received: from am.mirrors.kernel.org (am.mirrors.kernel.org. [2604:1380:4601:e00::3])
        by mx.google.com with ESMTPS id w2-20020a170906b18200b00a43e5b550c5si370164ejy.473.2024.02.27.17.28.58
        for <linux.lists.archive@gmail.com>
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Tue, 27 Feb 2024 17:28:59 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel+bounces-84335-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) client-ip=2604:1380:4601:e00::3;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@intel.com header.s=Intel header.b=jV8Tl60O;
       arc=pass (i=1 dkim=pass dkdomain=intel.com dmarc=pass fromdomain=linux.intel.com);
       spf=pass (google.com: domain of linux-kernel+bounces-84335-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) smtp.mailfrom="linux-kernel+bounces-84335-linux.lists.archive=gmail.com@vger.kernel.org";
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=intel.com
Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by am.mirrors.kernel.org (Postfix) with ESMTPS id BC5201F2339D
	for <linux.lists.archive@gmail.com>; Wed, 28 Feb 2024 01:28:58 +0000 (UTC)
Received: from localhost.localdomain (localhost.localdomain [127.0.0.1])
	by smtp.subspace.kernel.org (Postfix) with ESMTP id 9FE594A35;
	Wed, 28 Feb 2024 01:28:43 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=intel.com header.i=@intel.com header.b="jV8Tl60O"
Received: from mgamail.intel.com (mgamail.intel.com [198.175.65.17])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 2F98D4400
	for <linux-kernel@vger.kernel.org>; Wed, 28 Feb 2024 01:28:41 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=198.175.65.17
ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1709083722; cv=none; b=eDY8eu1gghSIejtqrcEYlYMEgVtZGgoi5VTl0hO4eZEcJ3EuTa/mifSJvLYCsVhXf2SExts97zfMR4eSGlQASffL2ErjtuKSs2ajphYE0jy+KLfD9Q7FHoyBq/JmROrbrSr2mXMWc58+4bnZjVFcoOIPmIizciZXEo+w4/jEqLQ=
ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1709083722; c=relaxed/simple;
	bh=sJR9z4eckKcNzeUdP4oLegXejIZJep7SfGn1kxt7Ufk=;
	h=Message-ID:Date:MIME-Version:Cc:Subject:To:References:From:
	 In-Reply-To:Content-Type; b=EpmDbPVNE7VNFzJfUB+BHpMmA9ZF6YIKkY5z4Lirbp/rPb4aBaQ/mNh16S+TOF/vGjH2X/guVmTg8CsmLC4BxpeiQ5LbZ/LFLVrHODxIJoG4ipSORVCJxuCAtqT79/hrX5vItKgrdxJcA/VIekHFaJEg1hzhCPuaSW8EH70s0mo=
ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=linux.intel.com; spf=none smtp.mailfrom=linux.intel.com; dkim=pass (2048-bit key) header.d=intel.com header.i=@intel.com header.b=jV8Tl60O; arc=none smtp.client-ip=198.175.65.17
Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=linux.intel.com
Authentication-Results: smtp.subspace.kernel.org; spf=none smtp.mailfrom=linux.intel.com
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple;
  d=intel.com; i=@intel.com; q=dns/txt; s=Intel;
  t=1709083722; x=1740619722;
  h=message-id:date:mime-version:cc:subject:to:references:
   from:in-reply-to:content-transfer-encoding;
  bh=sJR9z4eckKcNzeUdP4oLegXejIZJep7SfGn1kxt7Ufk=;
  b=jV8Tl60Ou8TAmusD67Cgo6Cet+iHcEyCAcQjoGYBC8Bm2cWEK16fJ8Uh
   XE5sPonOSpiovjQdyoq3McmNrSsR/oj2JpcWsMLOoe6O3WcLhQfQJaaWy
   IDh68esVtA2ewrNms94tBbGg+TNk+hsKCahmLV+I88iyG4mSt3NG5l4UQ
   9V5/AjLsXgYbLGY6GvZpWrq6WvcH9G3kqsPD4CQlK76A/n17qa3ZgBCYy
   EcbdMA886V6qDQzGI1zp4WUZlgOXQiXedEjmkD3EI7hp1hZsuwTwrWMtl
   XWFw18LkDiDRvP83iJfAkTvemq9Cmezf6JylJUs5y7VEGQ4p8SGz1vFSY
   g==;
X-IronPort-AV: E=McAfee;i="6600,9927,10996"; a="3624787"
X-IronPort-AV: E=Sophos;i="6.06,189,1705392000"; 
   d="scan'208";a="3624787"
Received: from fmviesa004.fm.intel.com ([10.60.135.144])
  by orvoesa109.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 27 Feb 2024 17:28:41 -0800
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="6.06,189,1705392000"; 
   d="scan'208";a="11877504"
Received: from allen-box.sh.intel.com (HELO [10.239.159.127]) ([10.239.159.127])
  by fmviesa004.fm.intel.com with ESMTP; 27 Feb 2024 17:28:38 -0800
Message-ID: <64a1f1ff-793d-4bf7-91fc-00984336594c@linux.intel.com>
Date: Wed, 28 Feb 2024 09:22:42 +0800
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
Cc: baolu.lu@linux.intel.com, "iommu@lists.linux.dev"
 <iommu@lists.linux.dev>,
 "linux-kernel@vger.kernel.org" <linux-kernel@vger.kernel.org>
Subject: Re: [PATCH 2/2] iommu/vt-d: Fix NULL domain on device release
Content-Language: en-US
To: "Tian, Kevin" <kevin.tian@intel.com>, Joerg Roedel <joro@8bytes.org>,
 Will Deacon <will@kernel.org>, Robin Murphy <robin.murphy@arm.com>,
 Jason Gunthorpe <jgg@ziepe.ca>, "Badger, Eric" <ebadger@purestorage.com>
References: <20240223051302.177596-1-baolu.lu@linux.intel.com>
 <20240223051302.177596-3-baolu.lu@linux.intel.com>
 <BN9PR11MB52763D19A01C804FB514419F8C592@BN9PR11MB5276.namprd11.prod.outlook.com>
From: Baolu Lu <baolu.lu@linux.intel.com>
In-Reply-To: <BN9PR11MB52763D19A01C804FB514419F8C592@BN9PR11MB5276.namprd11.prod.outlook.com>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit

On 2/27/24 3:40 PM, Tian, Kevin wrote:
>> From: Lu Baolu<baolu.lu@linux.intel.com>
>> Sent: Friday, February 23, 2024 1:13 PM
>>
>> -static void dmar_remove_one_dev_info(struct device *dev)
>> -{
>> -	struct device_domain_info *info = dev_iommu_priv_get(dev);
>> -	struct dmar_domain *domain = info->domain;
>> -	struct intel_iommu *iommu = info->iommu;
>> -	unsigned long flags;
>> -
>> -	if (!dev_is_real_dma_subdevice(info->dev)) {
>> -		if (dev_is_pci(info->dev) && sm_supported(iommu))
>> -			intel_pasid_tear_down_entry(iommu, info->dev,
>> -					IOMMU_NO_PASID, false);
>> -
>> -		iommu_disable_pci_caps(info);
>> -		domain_context_clear(info);
>> -	}
>> -
>> -	spin_lock_irqsave(&domain->lock, flags);
>> -	list_del(&info->link);
>> -	spin_unlock_irqrestore(&domain->lock, flags);
>> -
>> -	domain_detach_iommu(domain, iommu);
>> -	info->domain = NULL;
>> -}
>> -
> what's required here is slightly different from device_block_translation()
> which leaves context entry uncleared in scalable mode (implying the
> pasid table must be valid). but in the release path the pasid table will
> be freed right after then leading to a use-after-free case.
> 
> let's add an explicit domain_context_clear() in intel_iommu_release_device().

Nice catch!

How about moving the scalable mode context entry management to probe and
release path? Currently, it's part of domain switch, that's really
irrelevant.

Best regards,
baolu