git: ffb294bd3157 - stable/13 - nvme: coherently read status of completion records
Warner Losh
imp at FreeBSD.org
Mon Jul 12 19:41:03 UTC 2021
The branch stable/13 has been updated by imp:
URL: https://cgit.FreeBSD.org/src/commit/?id=ffb294bd3157bebacbb6bf0189a06247285fb98e
commit ffb294bd3157bebacbb6bf0189a06247285fb98e
Author: Warner Losh <imp at FreeBSD.org>
AuthorDate: 2021-07-02 22:00:42 +0000
Commit: Warner Losh <imp at FreeBSD.org>
CommitDate: 2021-07-12 19:39:58 +0000
nvme: coherently read status of completion records
Coherently read the phase bit of the status completion record. We loop
over the completion record array, looking for all the transactions in
the same phase that have been completed. In doing that, we have to be
careful to read the status field first, and if it indicates a complete
record, we need to read and process that record. Otherwise, the host
might be overtaken by device when reading this completion record,
leading to a mistaken belief that the record is in phase. This leads to
the code using old values and looking at an already completed entry, which
has no current tracker.
To work around this problem, we read the status and make sure it is in
phase, we then re-read the entire completion record guaranteeing it's
complete, valid, and consistent . In addition we resync the dmatag to
reflect changes since the prior loop for the bouncing dma case.
Reviewed by: jrtc27@, chuck@
Found by: jrtc27 (this fix is based in part on her D30995 fix)
Sponsored by: Netflix
Differential Revision: https://reviews.freebsd.org/D31002
(cherry picked from commit aa0ab681ae755e01cd69435fab50f6852f248c42)
---
sys/dev/nvme/nvme_qpair.c | 25 +++++++++++++++++++++----
1 file changed, 21 insertions(+), 4 deletions(-)
diff --git a/sys/dev/nvme/nvme_qpair.c b/sys/dev/nvme/nvme_qpair.c
index 0726ca248442..12770f38d42e 100644
--- a/sys/dev/nvme/nvme_qpair.c
+++ b/sys/dev/nvme/nvme_qpair.c
@@ -583,13 +583,30 @@ nvme_qpair_process_completions(struct nvme_qpair *qpair)
}
while (1) {
- cpl = qpair->cpl[qpair->cq_head];
+ uint16_t status;
- /* Convert to host endian */
+ /*
+ * We need to do this dance to avoid a race between the host and
+ * the device where the device overtakes the host while the host
+ * is reading this record, leaving the status field 'new' and
+ * the sqhd and cid fields potentially stale. If the phase
+ * doesn't match, that means status hasn't yet been updated and
+ * we'll get any pending changes next time. It also means that
+ * the phase must be the same the second time. We have to sync
+ * before reading to ensure any bouncing completes.
+ */
+ status = le16toh(qpair->cpl[qpair->cq_head].status);
+ if (NVME_STATUS_GET_P(status) != qpair->phase)
+ break;
+
+ bus_dmamap_sync(qpair->dma_tag, qpair->queuemem_map,
+ BUS_DMASYNC_POSTREAD | BUS_DMASYNC_POSTWRITE);
+ cpl = qpair->cpl[qpair->cq_head];
nvme_completion_swapbytes(&cpl);
- if (NVME_STATUS_GET_P(cpl.status) != qpair->phase)
- break;
+ KASSERT(
+ NVME_STATUS_GET_P(status) == NVME_STATUS_GET_P(cpl.status),
+ ("Phase unexpectedly inconsistent"));
tr = qpair->act_tr[cpl.cid];
More information about the dev-commits-src-all
mailing list