Received: by 2002:ab2:687:0:b0:1f4:6588:b3a7 with SMTP id s7csp199112lqe;
        Tue, 9 Apr 2024 21:35:42 -0700 (PDT)
X-Forwarded-Encrypted: i=3; AJvYcCXvQCbs8kLOfcNsd3ZGtH9bPy8to6V6UeGXimvD+t1pnC+ll8UP7U8kz9s7q7oWdKF8jk+XPkYmE70/bnyBe8U6xxFqz/cun7x3Knhb1g==
X-Google-Smtp-Source: AGHT+IHpfp3AxXmH6Jzcqtnvb/wwW7Pz3x4joSTUtFCaIrFFvYWaTFQLNguXUPlLaXi6gbm/Vh/5
X-Received: by 2002:a05:622a:53cf:b0:434:e8a1:1c62 with SMTP id ef15-20020a05622a53cf00b00434e8a11c62mr2284706qtb.44.1712723742030;
        Tue, 09 Apr 2024 21:35:42 -0700 (PDT)
ARC-Seal: i=2; a=rsa-sha256; t=1712723742; cv=pass;
        d=google.com; s=arc-20160816;
        b=c+xJmXWMtcpNQdVxzRZnphDIu2XYlejf1FmsRfi9Scvn4MBG2GbQYWtgLFtJmElBS9
         pT+wK0mtIhnJjEXBheYagTLY0iABlN+Kwh3iqTPidDQLRlAO6W2RVQWubNbsBHrtr/OY
         wb4eLIzKiQJLKewANg5ozDYG2ved4h139/UxRzuAqqCleS46hKO+tht8bKaUZtiWv/Af
         Q9MNj1tXY2F5CdCIy9rithjUwtBwKcqFOfalhuAPYosDdAJXpNUw65tgPSL9VRg3N4H9
         AVanBs+L7RjiKU6/klAHZbslxraSVSF01KQze6+zvaoQAb4Uwq7l19JHcVQaxkZjS3al
         /H+A==
ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=content-transfer-encoding:mime-version:list-unsubscribe
         :list-subscribe:list-id:precedence:message-id:date:subject:to:from
         :dkim-signature;
        bh=lUyt2lP+iaweP7GGIQcQN2/vMQc1UDRPtDmxt5CULrM=;
        fh=DukbSYCo3kO5lNp7o5LsAuPJOI+WOr+SGeRMqtGxfSQ=;
        b=veSlug3I1MYaTYqvfZQfylKyc8Cs01c0WLkEPRlYGzxKX8Z2ykcgu0oim3U2xGt30J
         sp73Rlsy2h+CHVJ7yW/L0dKLcQj8pH9ndnK1upvjYNLkggjenq6SddBbnEbDPXjDisMn
         6b0GJBIbqNXPVf+WZudC0L5jNSQuh58k/GO8AcgbD6nrvrkwa2r5BblfmgP+G0w5HkVp
         EA33a5l+g0RYJFyK93w/hC8m/uSNY2s3uUeRl+Ea/VC3ect6sBdM0bQSr6fSJomH44cF
         l/EalQvK6EHYRJc4pzjzD11NDWGpCsd3K4mt/Do5l+tU9ZfHNudzI5uCLvi5kWBHxU/0
         KoPQ==;
        dara=google.com
ARC-Authentication-Results: i=2; mx.google.com;
       dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b=gmgcX4go;
       arc=pass (i=1 spf=pass spfdomain=redhat.com dkim=pass dkdomain=redhat.com dmarc=pass fromdomain=redhat.com);
       spf=pass (google.com: domain of linux-kernel+bounces-137887-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) smtp.mailfrom="linux-kernel+bounces-137887-linux.lists.archive=gmail.com@vger.kernel.org";
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Return-Path: <linux-kernel+bounces-137887-linux.lists.archive=gmail.com@vger.kernel.org>
Received: from ny.mirrors.kernel.org (ny.mirrors.kernel.org. [147.75.199.223])
        by mx.google.com with ESMTPS id k4-20020ac85fc4000000b00434ebc6ee17si2288357qta.748.2024.04.09.21.35.41
        for <linux.lists.archive@gmail.com>
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Tue, 09 Apr 2024 21:35:42 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel+bounces-137887-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) client-ip=147.75.199.223;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b=gmgcX4go;
       arc=pass (i=1 spf=pass spfdomain=redhat.com dkim=pass dkdomain=redhat.com dmarc=pass fromdomain=redhat.com);
       spf=pass (google.com: domain of linux-kernel+bounces-137887-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) smtp.mailfrom="linux-kernel+bounces-137887-linux.lists.archive=gmail.com@vger.kernel.org";
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by ny.mirrors.kernel.org (Postfix) with ESMTPS id AF30E1C22D5A
	for <linux.lists.archive@gmail.com>; Wed, 10 Apr 2024 04:35:41 +0000 (UTC)
Received: from localhost.localdomain (localhost.localdomain [127.0.0.1])
	by smtp.subspace.kernel.org (Postfix) with ESMTP id 6E4B510A25;
	Wed, 10 Apr 2024 04:35:24 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (1024-bit key) header.d=redhat.com header.i=@redhat.com header.b="gmgcX4go"
Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.133.124])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 3721F9468
	for <linux-kernel@vger.kernel.org>; Wed, 10 Apr 2024 04:35:20 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=170.10.133.124
ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1712723723; cv=none; b=PHYDGsiDi5qnIj5RtxirRT1LKQq2X/atauECQEZICg0pVIsNfZbptXvxp8lslWbpIKWEM8VvDU+4HsdrI+DiZ+Pl0xgPuOvKh8ksJ1BoKhaXh0yy5SdPaNmR9qJULC1h0tWyo+m4kij8GylnXyj5nANZKj+1nV16u2RwOMNwM/w=
ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1712723723; c=relaxed/simple;
	bh=GTPYWUExqaKJ1ffWv/5oel5WsLqZgzXUVtWMpIIX7Mw=;
	h=From:To:Subject:Date:Message-ID:MIME-Version:Content-Type; b=A1ZQ0cTlpZIV8L/IY/gbVywwa3oT5y3qdnXwrzOqcRPHh/GQ8yDNjTHPDHN1+c324j7o7Ju/ZVrfEUHAtQkBZkHq374blpq0H4jB8h2ARJxyYKuMKwRB3Sxhjzq8pqvYqEh9P4503S0rfzOkBo2hduliL1HDWrvJlWTSyvvxUqU=
ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=redhat.com; spf=pass smtp.mailfrom=redhat.com; dkim=pass (1024-bit key) header.d=redhat.com header.i=@redhat.com header.b=gmgcX4go; arc=none smtp.client-ip=170.10.133.124
Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=redhat.com
Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=redhat.com
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com;
	s=mimecast20190719; t=1712723720;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:mime-version:mime-version:content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding;
	bh=lUyt2lP+iaweP7GGIQcQN2/vMQc1UDRPtDmxt5CULrM=;
	b=gmgcX4go+d49x3tB4QofJmWMMN0vbV4390Etxaz6hcE19r7gxGgJcvdaMlsHASPSEXGRmq
	Fhb3t2/75cGPEorX3x9YpmAEiO0q9LFL1EgFRMMUfbkKxAGIxrNz5u5HeYUM8KArlc97qV
	kG376r4T0mDLQPe0arBzd0A7wMVG90s=
Received: from mimecast-mx02.redhat.com (mx-ext.redhat.com [66.187.233.73])
 by relay.mimecast.com with ESMTP with STARTTLS (version=TLSv1.3,
 cipher=TLS_AES_256_GCM_SHA384) id us-mta-76-xXVMCXk2OW2YAcuTvXrPhQ-1; Wed,
 10 Apr 2024 00:35:16 -0400
X-MC-Unique: xXVMCXk2OW2YAcuTvXrPhQ-1
Received: from smtp.corp.redhat.com (int-mx01.intmail.prod.int.rdu2.redhat.com [10.11.54.1])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256)
	(No client certificate requested)
	by mimecast-mx02.redhat.com (Postfix) with ESMTPS id 5C1F21C0C644;
	Wed, 10 Apr 2024 04:35:16 +0000 (UTC)
Received: from server.redhat.com (unknown [10.72.112.217])
	by smtp.corp.redhat.com (Postfix) with ESMTP id CC93C47B;
	Wed, 10 Apr 2024 04:35:12 +0000 (UTC)
From: Cindy Lu <lulu@redhat.com>
To: lulu@redhat.com,
	mst@redhat.com,
	jasowang@redhat.com,
	kvm@vger.kernel.org,
	virtualization@lists.linux-foundation.org,
	netdev@vger.kernel.org,
	linux-kernel@vger.kernel.org
Subject: [PATCH v2 0/1] virtio-pci: Fix the crash that the vector was used after released
Date: Wed, 10 Apr 2024 12:33:14 +0800
Message-ID: <20240410043450.416752-1-lulu@redhat.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=y
Content-Transfer-Encoding: 8bit
X-Scanned-By: MIMEDefang 3.4.1 on 10.11.54.1

During the booting process of the Vyatta image, the behavior of the
called function in qemu is as follows:

1. vhost_net_stop() was triggered by guest image . This will call the function
virtio_pci_set_guest_notifiers() with assgin= false, and
virtio_pci_set_guest_notifiers(） will release the irqfd for vector 0

2. virtio_reset() was called -->set configure vector to VIRTIO_NO_VECTOR

3.vhost_net_start() was called (at this time, the configure vector is
still VIRTIO_NO_VECTOR) and call virtio_pci_set_guest_notifiers() with
assgin= true, so the irqfd for vector 0 is still not "init" during this process

4. The system continues to boot,set the vector back to 0, and msix_fire_vector_notifier() was triggered
 unmask the vector 0 and then met the crash
[msix_fire_vector_notifier] 112 called vector 0 is_masked 1
[msix_fire_vector_notifier] 112 called vector 0 is_masked 0

To fix this, we need to call the function "kvm_virtio_pci_vector_use_one()"
when the vector changes back from VIRTIO_NO_VECTOR.

The reason that we don't need to call kvm_virtio_pci_vector_release_one while the vector changes to
VIRTIO_NO_VECTOR is this function will called in vhost_net_stop(),
So this step will not lost during this process.

Change from V1
1.add the check for if using irqfd
2.remove the check for bool recovery, irqfd's user is enough to check status

Cindy Lu (1):
  virtio-pci: Fix the crash that the vector was used after released.

 hw/virtio/virtio-pci.c | 35 +++++++++++++++++++++++++++++++++++
 1 file changed, 35 insertions(+)

-- 
2.43.0