public inbox for devel@edk2.groups.io
 help / color / mirror / Atom feed
From: Damian Nikodem <damian.nikodem@intel.com>
To: devel@edk2.groups.io
Cc: Damian Nikodem <damian.nikodem@intel.com>,
	Eric Dong <eric.dong@intel.com>, Ray Ni <ray.ni@intel.com>,
	Benjamin You <benjamin.you@intel.com>,
	Laszlo Ersek <lersek@redhat.com>,
	Krzysztof Rusocki <krzysztof.rusocki@intel.com>
Subject: [PATCH] UefiCpuPkg/PiSmmCpuDxeSmm: Race condition between APHandler's release of Busy spinlock and user-triggered SmmStartupThisAP's
Date: Tue,  3 Sep 2019 16:57:32 +0200	[thread overview]
Message-ID: <20190903145732.18604-1-damian.nikodem@intel.com> (raw)

Race condition between APHandler's release of Busy spinlock and
user-triggered SmmStartupThisAP's acquisition attempt of the Busy spinlock (non-blocking mode).

UserProc is the user's procedure to execute on an AP.
UserProcCompletion is the user procedure's completion spinlock.
All other variables are from EDK2.

BSP                                          AP
=====================================================================================
											 APHandler ()
											   WaitForSemaphore (Run)

								   << initial state >>

AcquireSpinLock (UserProcCompletion)
SmmStartupThisAp (Procedure)
  AcquireSpinLockOrFail (Busy)
  ReleaseSemaphore (Run)
											   UserProc ()
DoStuff()                                        DoSomeOtherStuff ()

AcquireSpinLockOrFail (UserProcCompletion) AcquireSpinLockOrFail (UserProcCompletion)

^^ waiting in a loop for user procedure's
   completion == these fail
ReleaseSpinLock (UserProcCompletion)       AcquireSpinLockOrFail (UserProcCompletion)

^^ this succeeds

ReleaseSpinLock (UserProcCompletion)

<< return control to the caller and
   reenter the flow >>>

AcquireSpinLock (UserProcCompletion)
SmmStartupThisAp (Procedure)
  AcquireSpinLockOrFail (Busy)
  ^^ this wins the race with AP's
	 ReleaseSpinLock and fails;
											   ReleaseSpinLock (Busy)
	return EFI_INVALID_PARAMETER;

To remedy, if AcquireSpinLockOrFail (of the Busy spinlock) fails, perform regular AcquireSpinLock -- this eliminates the race condition.

Signed-off-by: Damian Nikodem <damian.nikodem@intel.com>
Cc: Eric Dong <eric.dong@intel.com>
Cc: Ray Ni <ray.ni@intel.com>
Cc: Benjamin You <benjamin.you@intel.com>
Cc: Laszlo Ersek <lersek@redhat.com>
Cc: Krzysztof Rusocki <krzysztof.rusocki@intel.com>

diff --git a/UefiCpuPkg/PiSmmCpuDxeSmm/MpService.c b/UefiCpuPkg/PiSmmCpuDxeSmm/MpService.c
index d8d2b6f444..206e196a76 100644
--- a/UefiCpuPkg/PiSmmCpuDxeSmm/MpService.c
+++ b/UefiCpuPkg/PiSmmCpuDxeSmm/MpService.c
@@ -1239,8 +1239,16 @@ InternalSmmStartupThisAp (
     AcquireSpinLock (mSmmMpSyncData->CpuData[CpuIndex].Busy);
   } else {
     if (!AcquireSpinLockOrFail (mSmmMpSyncData->CpuData[CpuIndex].Busy)) {
-      DEBUG((DEBUG_ERROR, "Can't acquire mSmmMpSyncData->CpuData[%d].Busy\n", CpuIndex));
-      return EFI_NOT_READY;
+      DEBUG ((DEBUG_INFO, "BSP[%d] finds AP[%d] busy at proc 0x%llX (param 0x%llX), ",
+        mSmmMpSyncData->BspIndex,
+        CpuIndex,
+        *mSmmMpSyncData->CpuData[CpuIndex].Procedure,
+        (VOID*)mSmmMpSyncData->CpuData[CpuIndex].Parameter));
+      DEBUG ((DEBUG_INFO, "new proc 0x%llX (param 0x%llX). Waiting for the previous AP procedure to complete...\n",
+        Procedure,
+        ProcArguments));
+
+      AcquireSpinLock (mSmmMpSyncData->CpuData[CpuIndex].Busy);
     }
 
     *Token = (MM_COMPLETION) CreateToken ();
--------------------------------------------------------------------

Intel Technology Poland sp. z o.o.
ul. Slowackiego 173 | 80-298 Gdansk | Sad Rejonowy Gdansk Polnoc | VII Wydzial Gospodarczy Krajowego Rejestru Sadowego - KRS 101882 | NIP 957-07-52-316 | Kapital zakladowy 200.000 PLN.

Ta wiadomosc wraz z zalacznikami jest przeznaczona dla okreslonego adresata i moze zawierac informacje poufne. W razie przypadkowego otrzymania tej wiadomosci, prosimy o powiadomienie nadawcy oraz trwale jej usuniecie; jakiekolwiek
przegladanie lub rozpowszechnianie jest zabronione.
This e-mail and any attachments may contain confidential material for the sole use of the intended recipient(s). If you are not the intended recipient, please contact the sender and delete all copies; any review or distribution by
others is strictly prohibited.


             reply	other threads:[~2019-09-03 14:59 UTC|newest]

Thread overview: 5+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2019-09-03 14:57 Damian Nikodem [this message]
2019-09-03 16:56 ` [PATCH] UefiCpuPkg/PiSmmCpuDxeSmm: Race condition between APHandler's release of Busy spinlock and user-triggered SmmStartupThisAP's Ni, Ray
2019-09-04  5:37   ` Dong, Eric
2019-09-04 12:14   ` Rusocki, Krzysztof
2019-09-03 17:31 ` Laszlo Ersek

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-list from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20190903145732.18604-1-damian.nikodem@intel.com \
    --to=devel@edk2.groups.io \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body. 
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox