| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 15 Jul 2010 14:31:53 -0400 From: Mathieu Desnoyers <mathieu.desnoyers@...icios.com> To: Linus Torvalds <torvalds@...ux-foundation.org> Cc: LKML <linux-kernel@...r.kernel.org>, Andrew Morton <akpm@...ux-foundation.org>, Ingo Molnar <mingo@...e.hu>, Peter Zijlstra <peterz@...radead.org>, Steven Rostedt <rostedt@...dmis.org>, Steven Rostedt <rostedt@...tedt.homelinux.com>, Frederic Weisbecker <fweisbec@...il.com>, Thomas Gleixner <tglx@...utronix.de>, Christoph Hellwig <hch@....de>, Li Zefan <lizf@...fujitsu.com>, Lai Jiangshan <laijs@...fujitsu.com>, Johannes Berg <johannes.berg@...el.com>, Masami Hiramatsu <masami.hiramatsu.pt@...achi.com>, Arnaldo Carvalho de Melo <acme@...radead.org>, Tom Zanussi <tzanussi@...il.com>, KOSAKI Motohiro <kosaki.motohiro@...fujitsu.com>, Andi Kleen <andi@...stfloor.org>, "H. Peter Anvin" <hpa@...or.com>, Jeremy Fitzhardinge <jeremy@...p.org>, "Frank Ch. Eigler" <fche@...hat.com>, Tejun Heo <htejun@...il.com> Subject: Re: [patch 1/2] x86_64 page fault NMI-safe * Linus Torvalds (torvalds@...ux-foundation.org) wrote: > On Wed, Jul 14, 2010 at 6:23 PM, Linus Torvalds > <torvalds@...ux-foundation.org> wrote: > > > > So this is what I think it might look like, with the %rip in place. > > [ ...] > > Hmm? > > I didn't fill in the iret fault details, because I thought that would > be trivial. We get an exception, it's a slow case, how hard can it be > to just call the NMI code? I'm wondering if we really have to handle this with a fault. Couldn't we just send iret to the following nmi handler instead ? (chaining nmis) I think we can even find a way to handle the fact that the fake nmi does not run with nmis disabled. We could keep the nmi nested bit set if we find out that iret will branch to the fake nmi. We would then have to make sure the fake nmi entry point is a little further than the standard nmi entry point: somewhere after the initial nmi nesting check. > > But thinking some more about it, it doesn't feel as trivial any more. > We want to set up that same nesting code for the faked NMI call, but > now I made it be two separate variables, and they need to be set in an > NMI-safe way without us actually having access to the whole NMI > blocking that the CPU does for a real NMI. > > So there's a few subtleties there too. Probably need to make the two > percpu values adjacent, and use cmpxchg16b in the "emulate NMI on > exception" code to set them both atomically. Or something. So I think > it's doable, but it's admittedly more complicated than I thought it > would be. Hrm, we could probably get away with only keeping the nmi_stack_nested per-cpu variable. The nmi_stack_ptr could be known statically if we set it at a fixed offset from the bottom of stack rather than using an offset relative to the top (which can change depending if we are nested over the kernel or userspace). We just have to reserve enough space for the bottom of stack. > > .. and obviously there's nothing that guarantees that the code I > already posted is correct either. The whole concept might be total > crap. Call me optimistic if you want, but I think we're really getting somewhere. :) Thanks, Mathieu -- Mathieu Desnoyers Operating System Efficiency R&D Consultant EfficiOS Inc. http://www.efficios.com -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists