Re: [PATCH] dma-contiguous: Prioritize restricted DMA pool over shared DMA pool

From: Robin Murphy
Date: Wed Feb 16 2022 - 06:13:40 EST

Next message: kernel test robot: "[gustavoars:for-next/kspp-fam0] BUILD SUCCESS 08af3628a0e7581e1cec08885089b860f4338b60"
Previous message: Michal Suchánek: "Re: [PATCH 4/4] module, KEYS: Make use of platform keyring for signature verification"
Next in thread: Florian Fainelli: "Re: [PATCH] dma-contiguous: Prioritize restricted DMA pool over shared DMA pool"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 2022-02-15 22:43, Florian Fainelli wrote:

Some platforms might define the same memory region to be suitable for
used by a kernel supporting CONFIG_DMA_RESTRICTED_POOL while maintaining
compatibility with older kernels that do not support that. This is
achieved by declaring the node this way;

Those platforms are doing something inexplicably wrong, then.

"restricted-dma-pool" says that DMA for the device has to be bounced through a dedicated pool because it can't be trusted with visibility of regular OS memory. "reusable" tells the OS that it's safe to use the pool as regular OS memory while it's idle. Do you see how those concepts are fundamentally incompatible?

Linux is right to reject contradictory information rather than attempt to guess at what might be safe or not.

Furthermore, down at the practical level, a SWIOTLB pool is used for bouncing streaming DMA API mappings, while a coherent/CMA pool is used for coherent DMA API allocations; they are not functionally interchangeable either. If a device depends on coherent allocations rather than streaming DMA, it should still have a coherent pool even under a physical memory protection scheme, and if it needs both streaming DMA and coherent buffers then it can have both types of pool - the bindings explicitly call that out. It's true that SWIOTLB pools can act as an emergency fallback for small allocations for I/O-coherent devices, but that's not really intended to be relied upon heavily.

So no, I do not see anything wrong with the current handling of nonsensical DTs here, sorry.

Robin.

cma@40000000 {
compatible = "restricted-dma-pool", "shared-dma-pool";
reusable;
...
};

A newer kernel would leverage the 'restricted-dma-pool' compatible
string for that reserved region, while an older kernel would use the
'shared-dma-pool' compatibility string.

Due to the link ordering between files under kernel/dma/ however,
contiguous.c would try to claim the region and we would never get a
chance for swiotlb.c to claim that reserved memory region.

To that extent, update kernel/dma/contiguous.c in order to check
specifically for the 'restricted-dma-pool' compatibility string when
CONFIG_DMA_RESTRICTED_POOL is enabled and give up that region such that
kernel/dma/swiotlb.c has a chance to claim it.

Similarly, kernel/dma/swiotlb.c is updated to remove the check for the
'reusable' property because that check is not useful. When a region is
defined with a compatible string set to 'restricted-dma-pool', no code
under kernel/dma/{contiguous,coherent}.c will match that region since
there is no 'shared-dma-pool' compatible string. If a
region is defined with a compatible string set as above with both
'restricted-dma-pool" *and* 'shared-dma-pool' however, checking for
'reusable' will prevent kernel/dma/swiotlb.c from claiming the region
while it is still perfectly suitable since contiguous.c gave it up.

Signed-off-by: Florian Fainelli <f.fainelli@xxxxxxxxx>
---
kernel/dma/contiguous.c | 7 +++++++
kernel/dma/swiotlb.c | 3 +--
2 files changed, 8 insertions(+), 2 deletions(-)

diff --git a/kernel/dma/contiguous.c b/kernel/dma/contiguous.c
index 3d63d91cba5c..3c418af6d306 100644
--- a/kernel/dma/contiguous.c
+++ b/kernel/dma/contiguous.c
@@ -416,6 +416,13 @@ static int __init rmem_cma_setup(struct reserved_mem *rmem)
of_get_flat_dt_prop(node, "no-map", NULL))
return -EINVAL;
+#ifdef CONFIG_DMA_RESTRICTED_POOL
+ if (of_flat_dt_is_compatible(node, "restricted-dma-pool")) {
+ pr_warn("Giving up %pa for restricted DMA pool\n", &rmem->base);
+ return -ENOENT;
+ }
+#endif
+
if ((rmem->base & mask) || (rmem->size & mask)) {
pr_err("Reserved memory: incorrect alignment of CMA region\n");
return -EINVAL;
diff --git a/kernel/dma/swiotlb.c b/kernel/dma/swiotlb.c
index f1e7ea160b43..9d6e4ae74d04 100644
--- a/kernel/dma/swiotlb.c
+++ b/kernel/dma/swiotlb.c
@@ -883,8 +883,7 @@ static int __init rmem_swiotlb_setup(struct reserved_mem *rmem)
{
unsigned long node = rmem->fdt_node;
- if (of_get_flat_dt_prop(node, "reusable", NULL) ||
- of_get_flat_dt_prop(node, "linux,cma-default", NULL) ||
+ if (of_get_flat_dt_prop(node, "linux,cma-default", NULL) ||
of_get_flat_dt_prop(node, "linux,dma-default", NULL) ||
of_get_flat_dt_prop(node, "no-map", NULL))
return -EINVAL;

Next message: kernel test robot: "[gustavoars:for-next/kspp-fam0] BUILD SUCCESS 08af3628a0e7581e1cec08885089b860f4338b60"
Previous message: Michal Suchánek: "Re: [PATCH 4/4] module, KEYS: Make use of platform keyring for signature verification"
Next in thread: Florian Fainelli: "Re: [PATCH] dma-contiguous: Prioritize restricted DMA pool over shared DMA pool"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]