[PATCH V2 24/41] x86/entry: Implement the C version ist_paranoid_entry()

From: Lai Jiangshan
Date: Sun Sep 26 2021 - 11:11:47 EST

Next message: Lai Jiangshan: "[PATCH V2 23/41] x86/entry: Add the C version ist_switch_to_kernel_gsbase()"
Previous message: Lai Jiangshan: "[PATCH V2 26/41] x86/entry: Add a C macro to define the function body for IST in .entry.text"
In reply to: Lai Jiangshan: "[PATCH V2 26/41] x86/entry: Add a C macro to define the function body for IST in .entry.text"
Next in thread: Lai Jiangshan: "[PATCH V2 23/41] x86/entry: Add the C version ist_switch_to_kernel_gsbase()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Lai Jiangshan <laijs@xxxxxxxxxxxxxxxxx>

It implements the whole ASM version paranoid_entry().

No functional difference intended.

Signed-off-by: Lai Jiangshan <laijs@xxxxxxxxxxxxxxxxx>
---
arch/x86/entry/entry64.c | 39 +++++++++++++++++++++++++++++++++
arch/x86/include/asm/idtentry.h | 3 +++
2 files changed, 42 insertions(+)

diff --git a/arch/x86/entry/entry64.c b/arch/x86/entry/entry64.c
index 1a0d5d703ad6..67f13aebd948 100644
--- a/arch/x86/entry/entry64.c
+++ b/arch/x86/entry/entry64.c
@@ -273,3 +273,42 @@ static __always_inline unsigned long ist_switch_to_kernel_gsbase(void)
/* SWAPGS required on exit */
return 0;
}
+
+/*
+ * Switch and save CR3 in *@cr3 if PTI enabled. Return GSBASE related
+ * information in *@gsbase depending on the availability of the FSGSBASE
+ * instructions:
+ *
+ * FSGSBASE *@gsbase
+ * N 0 -> SWAPGS on exit
+ * 1 -> no SWAPGS on exit
+ *
+ * Y GSBASE value at entry, must be restored in ist_paranoid_exit
+ */
+__visible __entry_text
+void ist_paranoid_entry(unsigned long *cr3, unsigned long *gsbase)
+{
+ asm volatile ("cld");
+
+ /*
+ * Always stash CR3 in *@cr3. This value will be restored,
+ * verbatim, at exit. Needed if ist_paranoid_entry interrupted
+ * another entry that already switched to the user CR3 value
+ * but has not yet returned to userspace.
+ *
+ * This is also why CS (stashed in the "iret frame" by the
+ * hardware at entry) can not be used: this may be a return
+ * to kernel code, but with a user CR3 value.
+ *
+ * Switching CR3 does not depend on kernel GSBASE so it can
+ * be done before switching to the kernel GSBASE. This is
+ * required for FSGSBASE because the kernel GSBASE has to
+ * be retrieved from a kernel internal table.
+ */
+ *cr3 = ist_switch_to_kernel_cr3();
+
+ barrier();
+
+ /* Handle GSBASE, store the return value in *@gsbase for exit. */
+ *gsbase = ist_switch_to_kernel_gsbase();
+}
diff --git a/arch/x86/include/asm/idtentry.h b/arch/x86/include/asm/idtentry.h
index 6779def97591..fa8d73cfd8d6 100644
--- a/arch/x86/include/asm/idtentry.h
+++ b/arch/x86/include/asm/idtentry.h
@@ -293,6 +293,9 @@ static __always_inline void __##func(struct pt_regs *regs)
DECLARE_IDTENTRY(vector, func)

#ifdef CONFIG_X86_64
+__visible __entry_text
+void ist_paranoid_entry(unsigned long *cr3, unsigned long *gsbase);
+
/**
* DECLARE_IDTENTRY_IST - Declare functions for IST handling IDT entry points
* @vector: Vector number (ignored for C)
--
2.19.1.6.gb485710b

Next message: Lai Jiangshan: "[PATCH V2 23/41] x86/entry: Add the C version ist_switch_to_kernel_gsbase()"
Previous message: Lai Jiangshan: "[PATCH V2 26/41] x86/entry: Add a C macro to define the function body for IST in .entry.text"
In reply to: Lai Jiangshan: "[PATCH V2 26/41] x86/entry: Add a C macro to define the function body for IST in .entry.text"
Next in thread: Lai Jiangshan: "[PATCH V2 23/41] x86/entry: Add the C version ist_switch_to_kernel_gsbase()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]