libnvdimm/security: Require nvdimm_security_setup_events() to succeed

The following warning: ACPI0012:00: security event setup failed: -19 ...is meant to capture exceptional failures of sysfs_get_dirent(), however it will also fail in the common case when security support is disabled. A few issues: 1/ A dev_warn() report for a common case is too chatty 2/ The setup of this notifier is generic, no need for it to be driven from the nfit driver, it can exist completely in the core. 3/ If it fails for any reason besides security support being disabled, that's fatal and should abort DIMM activation. Userspace may hang if it never gets overwrite notifications. 4/ The dirent needs to be released. Move the call to the core 'dimm' driver, make it conditional on security support being active, make it fatal for the exceptional case, add the missing sysfs_put() at device disable time. Fixes: 7d988097c546 ("...Add security DSM overwrite support") Reviewed-by: Dave Jiang <dave.jiang@intel.com> Signed-off-by: Dan Williams <dan.j.williams@intel.com>
author: Dan Williams <dan.j.williams@intel.com> 2019-01-19 11:45:56 -0500
committer: Dan Williams <dan.j.williams@intel.com> 2019-01-21 12:57:43 -0500
commit: 1cd7386549f9b6f2f230da54aa9e7fe2d6c216d2 (patch)
tree: 527eed888a48757834f6a672cbb034a1bb67e547
parent: 266c7bf52a7fe5cb5a97e78fedcaac629378008f (diff)
5 files changed, 24 insertions, 11 deletions
diff --git a/drivers/acpi/nfit/core.c b/drivers/acpi/nfit/core.c
index 5143e11e3b0f..c1fb06654749 100644
--- a/drivers/acpi/nfit/core.c
+++ b/drivers/acpi/nfit/core.c
@@ -2042,11 +2042,6 @@ static int acpi_nfit_register_dimms(struct acpi_nfit_desc *acpi_desc)
                if (!nvdimm)
                        continue;
-                rc = nvdimm_security_setup_events(nvdimm);
-                if (rc < 0)
-                        dev_warn(acpi_desc->dev,
-                                "security event setup failed: %d\n", rc);
                nfit_kernfs = sysfs_get_dirent(nvdimm_kobj(nvdimm)->sd, "nfit");
                if (nfit_kernfs)
                        nfit_mem->flags_attr = sysfs_get_dirent(nfit_kernfs,
diff --git a/drivers/nvdimm/dimm.c b/drivers/nvdimm/dimm.c
index 0cf58cabc9ed..3cf50274fadb 100644
--- a/drivers/nvdimm/dimm.c
+++ b/drivers/nvdimm/dimm.c
@@ -26,6 +26,12 @@ static int nvdimm_probe(struct device *dev)
        struct nvdimm_drvdata *ndd;
        int rc;
+        rc = nvdimm_security_setup_events(dev);
+        if (rc < 0) {
+                dev_err(dev, "security event setup failed: %d\n", rc);
+                return rc;
+        }
        rc = nvdimm_check_config_data(dev);
        if (rc) {
                /* not required for non-aliased nvdimm, ex. NVDIMM-N */
diff --git a/drivers/nvdimm/dimm_devs.c b/drivers/nvdimm/dimm_devs.c
index 4890310df874..efe412a6b5b9 100644
--- a/drivers/nvdimm/dimm_devs.c
+++ b/drivers/nvdimm/dimm_devs.c
@@ -578,13 +578,25 @@ struct nvdimm *__nvdimm_create(struct nvdimm_bus *nvdimm_bus,
 }
 EXPORT_SYMBOL_GPL(__nvdimm_create);
-int nvdimm_security_setup_events(struct nvdimm *nvdimm)
+static void shutdown_security_notify(void *data)
 {
-        nvdimm->sec.overwrite_state = sysfs_get_dirent(nvdimm->dev.kobj.sd,
+        struct nvdimm *nvdimm = data;
-                        "security");
+        sysfs_put(nvdimm->sec.overwrite_state);
+}
+int nvdimm_security_setup_events(struct device *dev)
+{
+        struct nvdimm *nvdimm = to_nvdimm(dev);
+        if (nvdimm->sec.state < 0 || !nvdimm->sec.ops
+                        || !nvdimm->sec.ops->overwrite)
+                return 0;
+        nvdimm->sec.overwrite_state = sysfs_get_dirent(dev->kobj.sd, "security");
        if (!nvdimm->sec.overwrite_state)
-                return -ENODEV;
+                return -ENOMEM;
-        return 0;
+        return devm_add_action_or_reset(dev, shutdown_security_notify, nvdimm);
 }
 EXPORT_SYMBOL_GPL(nvdimm_security_setup_events);
diff --git a/drivers/nvdimm/nd.h b/drivers/nvdimm/nd.h
index cfde992684e7..379bf4305e61 100644
--- a/drivers/nvdimm/nd.h
+++ b/drivers/nvdimm/nd.h
@@ -250,6 +250,7 @@ long nvdimm_clear_poison(struct device *dev, phys_addr_t phys,
 void nvdimm_set_aliasing(struct device *dev);
 void nvdimm_set_locked(struct device *dev);
 void nvdimm_clear_locked(struct device *dev);
+int nvdimm_security_setup_events(struct device *dev);
 #if IS_ENABLED(CONFIG_NVDIMM_KEYS)
 int nvdimm_security_unlock(struct device *dev);
 #else
diff --git a/include/linux/libnvdimm.h b/include/linux/libnvdimm.h
index 7315977b64da..ad609617aeb8 100644
--- a/include/linux/libnvdimm.h
+++ b/include/linux/libnvdimm.h
@@ -235,7 +235,6 @@ static inline struct nvdimm *nvdimm_create(struct nvdimm_bus *nvdimm_bus,
                        cmd_mask, num_flush, flush_wpq, NULL, NULL);
 }
-int nvdimm_security_setup_events(struct nvdimm *nvdimm);
 const struct nd_cmd_desc *nd_cmd_dimm_desc(int cmd);
 const struct nd_cmd_desc *nd_cmd_bus_desc(int cmd);
 u32 nd_cmd_in_size(struct nvdimm *nvdimm, int cmd,
author	Dan Williams <dan.j.williams@intel.com>	2019-01-19 11:45:56 -0500
committer	Dan Williams <dan.j.williams@intel.com>	2019-01-21 12:57:43 -0500
commit	1cd7386549f9b6f2f230da54aa9e7fe2d6c216d2 (patch)
tree	527eed888a48757834f6a672cbb034a1bb67e547
parent	266c7bf52a7fe5cb5a97e78fedcaac629378008f (diff)

diff --git a/drivers/acpi/nfit/core.c b/drivers/acpi/nfit/core.c index 5143e11e3b0f..c1fb06654749 100644 --- a/drivers/acpi/nfit/core.c +++ b/drivers/acpi/nfit/core.c
@@ -2042,11 +2042,6 @@ static int acpi_nfit_register_dimms(struct acpi_nfit_desc *acpi_desc)
2042	if (!nvdimm)	2042	if (!nvdimm)
2043	continue;	2043	continue;
2044		2044
2045	rc = nvdimm_security_setup_events(nvdimm);
2046	if (rc < 0)
2047	dev_warn(acpi_desc->dev,
2048	"security event setup failed: %d\n", rc);
2049
2050	nfit_kernfs = sysfs_get_dirent(nvdimm_kobj(nvdimm)->sd, "nfit");	2045	nfit_kernfs = sysfs_get_dirent(nvdimm_kobj(nvdimm)->sd, "nfit");
2051	if (nfit_kernfs)	2046	if (nfit_kernfs)
2052	nfit_mem->flags_attr = sysfs_get_dirent(nfit_kernfs,	2047	nfit_mem->flags_attr = sysfs_get_dirent(nfit_kernfs,


diff --git a/drivers/nvdimm/dimm.c b/drivers/nvdimm/dimm.c index 0cf58cabc9ed..3cf50274fadb 100644 --- a/drivers/nvdimm/dimm.c +++ b/drivers/nvdimm/dimm.c
@@ -26,6 +26,12 @@ static int nvdimm_probe(struct device *dev)
26	struct nvdimm_drvdata *ndd;	26	struct nvdimm_drvdata *ndd;
27	int rc;	27	int rc;
28		28
		29	rc = nvdimm_security_setup_events(dev);
		30	if (rc < 0) {
		31	dev_err(dev, "security event setup failed: %d\n", rc);
		32	return rc;
		33	}
		34
29	rc = nvdimm_check_config_data(dev);	35	rc = nvdimm_check_config_data(dev);
30	if (rc) {	36	if (rc) {
31	/* not required for non-aliased nvdimm, ex. NVDIMM-N */	37	/* not required for non-aliased nvdimm, ex. NVDIMM-N */


diff --git a/drivers/nvdimm/dimm_devs.c b/drivers/nvdimm/dimm_devs.c index 4890310df874..efe412a6b5b9 100644 --- a/drivers/nvdimm/dimm_devs.c +++ b/drivers/nvdimm/dimm_devs.c
@@ -578,13 +578,25 @@ struct nvdimm __nvdimm_create(struct nvdimm_bus nvdimm_bus,
578	}	578	}
579	EXPORT_SYMBOL_GPL(__nvdimm_create);	579	EXPORT_SYMBOL_GPL(__nvdimm_create);
580		580
581	int nvdimm_security_setup_events(struct nvdimm *nvdimm)	581	static void shutdown_security_notify(void *data)
582	{	582	{
583	nvdimm->sec.overwrite_state = sysfs_get_dirent(nvdimm->dev.kobj.sd,	583	struct nvdimm *nvdimm = data;
584	"security");	584
		585	sysfs_put(nvdimm->sec.overwrite_state);
		586	}
		587
		588	int nvdimm_security_setup_events(struct device *dev)
		589	{
		590	struct nvdimm *nvdimm = to_nvdimm(dev);
		591
		592	if (nvdimm->sec.state < 0 \|\| !nvdimm->sec.ops
		593	\|\| !nvdimm->sec.ops->overwrite)
		594	return 0;
		595	nvdimm->sec.overwrite_state = sysfs_get_dirent(dev->kobj.sd, "security");
585	if (!nvdimm->sec.overwrite_state)	596	if (!nvdimm->sec.overwrite_state)
586	return -ENODEV;	597	return -ENOMEM;
587	return 0;	598
		599	return devm_add_action_or_reset(dev, shutdown_security_notify, nvdimm);
588	}	600	}
589	EXPORT_SYMBOL_GPL(nvdimm_security_setup_events);	601	EXPORT_SYMBOL_GPL(nvdimm_security_setup_events);
590		602


diff --git a/drivers/nvdimm/nd.h b/drivers/nvdimm/nd.h index cfde992684e7..379bf4305e61 100644 --- a/drivers/nvdimm/nd.h +++ b/drivers/nvdimm/nd.h
@@ -250,6 +250,7 @@ long nvdimm_clear_poison(struct device *dev, phys_addr_t phys,
250	void nvdimm_set_aliasing(struct device *dev);	250	void nvdimm_set_aliasing(struct device *dev);
251	void nvdimm_set_locked(struct device *dev);	251	void nvdimm_set_locked(struct device *dev);
252	void nvdimm_clear_locked(struct device *dev);	252	void nvdimm_clear_locked(struct device *dev);
		253	int nvdimm_security_setup_events(struct device *dev);
253	#if IS_ENABLED(CONFIG_NVDIMM_KEYS)	254	#if IS_ENABLED(CONFIG_NVDIMM_KEYS)
254	int nvdimm_security_unlock(struct device *dev);	255	int nvdimm_security_unlock(struct device *dev);
255	#else	256	#else


diff --git a/include/linux/libnvdimm.h b/include/linux/libnvdimm.h index 7315977b64da..ad609617aeb8 100644 --- a/include/linux/libnvdimm.h +++ b/include/linux/libnvdimm.h
@@ -235,7 +235,6 @@ static inline struct nvdimm nvdimm_create(struct nvdimm_bus nvdimm_bus,
235	cmd_mask, num_flush, flush_wpq, NULL, NULL);	235	cmd_mask, num_flush, flush_wpq, NULL, NULL);
236	}	236	}
237		237
238	int nvdimm_security_setup_events(struct nvdimm *nvdimm);
239	const struct nd_cmd_desc *nd_cmd_dimm_desc(int cmd);	238	const struct nd_cmd_desc *nd_cmd_dimm_desc(int cmd);
240	const struct nd_cmd_desc *nd_cmd_bus_desc(int cmd);	239	const struct nd_cmd_desc *nd_cmd_bus_desc(int cmd);
241	u32 nd_cmd_in_size(struct nvdimm *nvdimm, int cmd,	240	u32 nd_cmd_in_size(struct nvdimm *nvdimm, int cmd,