| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 31 Jan 2017 16:38:49 -0700
From: Khalid Aziz <khalid.aziz@...cle.com>
To: David Miller <davem@...emloft.net>
Cc: corbet@....net, viro@...iv.linux.org.uk, nitin.m.gupta@...cle.com,
mike.kravetz@...cle.com, akpm@...ux-foundation.org,
mingo@...nel.org, kirill.shutemov@...ux.intel.com,
adam.buchbinder@...il.com, hughd@...gle.com, minchan@...nel.org,
keescook@...omium.org, chris.hyser@...cle.com,
atish.patra@...cle.com, cmetcalf@...lanox.com, atomlin@...hat.com,
jslaby@...e.cz, joe@...ches.com, paul.gortmaker@...driver.com,
mhocko@...e.com, lstoakes@...il.com, jack@...e.cz,
dave.hansen@...ux.intel.com, vbabka@...e.cz,
dan.j.williams@...el.com, iamjoonsoo.kim@....com,
linux-doc@...r.kernel.org, linux-kernel@...r.kernel.org,
sparclinux@...r.kernel.org, linux-mm@...ck.org,
khalid@...ehiking.org
Subject: Re: [PATCH v5 4/4] sparc64: Add support for ADI (Application Data
Integrity)
On 01/30/2017 03:15 PM, David Miller wrote:
> From: Khalid Aziz <khalid.aziz@...cle.com>
> Date: Wed, 25 Jan 2017 12:57:16 -0700
>
>> +static inline void enable_adi(void)
>> +{
> ...
>> + __asm__ __volatile__(
>> + "rdpr %%pstate, %%g1\n\t"
>> + "or %%g1, %0, %%g1\n\t"
>> + "wrpr %%g1, %%g0, %%pstate\n\t"
>> + ".word 0x83438000\n\t" /* rd %mcdper, %g1 */
>> + ".word 0xaf900001\n\t" /* wrpr %g0, %g1, %pmcdper */
>> + :
>> + : "i" (PSTATE_MCDE)
>> + : "g1");
>> +}
>
> This is _crazy_ expensive.
>
> This is 4 privileged register operations, every single one incurs a full
> pipline flush and virtual cpu thread yield.
>
> And we do this around _every_ single userspace access from the kernel
> when the thread has ADI enabled.
Hi Dave,
Thanks for the feedback. This is very helpful. I checked and it indeed
can cost 50+ cycles even on M7 processor for PSTATE accesses.
>
> I think if the kernel manages the ADI metadata properly, you can get rid
> of all of this.
>
> On etrap, you change ESTATE_PSTATE{1,2} to have the MCDE bit enabled.
> Then the kernel always runs with ADI enabled.
Running the kernel with PSTATE.mcde=1 can possibly be problematic as we
had discussed earlier in this thread where keeping PSTATE.mcde enabled
might mean kernel having to keep track of which pages still have tags
set on them or flush tags on every page on free. I will go through the
code again to see if it PSTATE.mcde can be turned on in kernel all the
time, which might be the case if we can ensure kernel accesses pages
with TTE.mcd cleared.
>
> Furthermore, since the %mcdper register should be set to whatever the
> current task has asked for, you should be able to avoid touching it
> as well assuming that traps do not change %mcdper's value.
When running in privileged mode, it is the value of %pmcdper that
matter, not %mcdper, hence I added code to sync %pmcdper with %mcdper
when entering privileged mode. Nevertheless, one of the HW designers has
suggested I might be able to get away without having to futz with
%pmcdper by using membar before exiting privileged mode which might
still get me the same effect I am looking for without the cost.
--
Khalid
>
> Then you don't need to do anything special during userspace accesses
> which seems to be the way this was designed to be used.
> --
> To unsubscribe from this list: send the line "unsubscribe sparclinux" in
> the body of a message to majordomo@...r.kernel.org
> More majordomo info at http://vger.kernel.org/majordomo-info.html
>
Powered by blists - more mailing lists