race condition with multi-dword config accesses

XMLWordPrintable

    • Type: Bug
    • Resolution: Fixed
    • Priority: Major
    • virtio 1.0 csprd01
    • Affects Version/s: virtio 0.9.X legacy
    • None
    • Hide
      • for RW fields, document that devices should not make fields > 32 byte writeable
      • add a way to detect configuration changes during access, driver
        can re-read configuration

      https://lists.oasis-open.org/archives/virtio/201310/msg00034.html

      Show
      for RW fields, document that devices should not make fields > 32 byte writeable add a way to detect configuration changes during access, driver can re-read configuration https://lists.oasis-open.org/archives/virtio/201310/msg00034.html

      on many architectures, accesses larger than 32 bit can not be atomic.
      Thus access to a device config field of >4 bytes is inherently racy
      in case field can change.

      For example, virtio-blk has
      u64 capacity;
      The following race can trigger:
      driver reads low 32 bit
      both low and high 32 bit change
      driver reads high 32 bit

      as a result, capacity observed is composed of
      old low bits and new high bits which does not
      make sense.

      For legacy devices, spec allowed byte by byte access,
      making the race even more common.

            Assignee:
            Unassigned
            Reporter:
            Michael Tsirkin
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

              Created:
              Updated:
              Resolved: