mirror of
https://github.com/edk2-porting/linux-next.git
synced 2024-12-25 13:43:55 +08:00
7c043e908a
Return a device UAR index for a given user index via the DEVX interface. Security note: The hardware protection mechanism works like this: Each device object that is subject to UAR doorbells (QP/SQ/CQ) gets a UAR ID (called uar_page in the device specification manual) upon its creation. Then upon doorbell, hardware fetches the object context for which the doorbell was rang, and validates that the UAR through which the DB was rang matches the UAR ID of the object. If no match the doorbell is silently ignored by the hardware. Of course, the user cannot ring a doorbell on a UAR that was not mapped to it. Now in devx, as the devx kernel does not manipulate the QP/SQ/CQ command mailboxes (except tagging them with UID), we expose to the user its UAR ID, so it can embed it in these objects in the expected specification format. So the only thing the user can do is hurt itself by creating a QP/SQ/CQ with a UAR ID other than his, and then in this case other users may ring a doorbell on its objects. The consequence of that will be that another user can schedule a QP/SQ of the buggy user for execution (just insert it to the hardware schedule queue or arm its CQ for event generation), no further harm is expected. Signed-off-by: Yishai Hadas <yishaih@mellanox.com> Signed-off-by: Leon Romanovsky <leonro@mellanox.com> Signed-off-by: Jason Gunthorpe <jgg@mellanox.com> |
||
---|---|---|
.. | ||
hfi | ||
bnxt_re-abi.h | ||
cxgb3-abi.h | ||
cxgb4-abi.h | ||
hns-abi.h | ||
i40iw-abi.h | ||
ib_user_cm.h | ||
ib_user_ioctl_cmds.h | ||
ib_user_ioctl_verbs.h | ||
ib_user_mad.h | ||
ib_user_sa.h | ||
ib_user_verbs.h | ||
mlx4-abi.h | ||
mlx5_user_ioctl_cmds.h | ||
mlx5_user_ioctl_verbs.h | ||
mlx5-abi.h | ||
mthca-abi.h | ||
nes-abi.h | ||
ocrdma-abi.h | ||
qedr-abi.h | ||
rdma_netlink.h | ||
rdma_user_cm.h | ||
rdma_user_ioctl_cmds.h | ||
rdma_user_ioctl.h | ||
rdma_user_rxe.h | ||
vmw_pvrdma-abi.h |