lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date:   Fri, 3 Nov 2017 16:12:03 +0100
From:   Tomeu Vizoso <tomeu@...euvizoso.net>
To:     Tom Lendacky <thomas.lendacky@....com>
Cc:     x86@...nel.org,
        "linux-kernel@...r.kernel.org" <linux-kernel@...r.kernel.org>,
        linux-arch@...r.kernel.org, linux-efi@...r.kernel.org,
        "linux-doc@...r.kernel.org" <linux-doc@...r.kernel.org>,
        linux-mm@...ck.org, kvm@...r.kernel.org,
        kasan-dev@...glegroups.com,
        Radim Krčmář <rkrcmar@...hat.com>,
        Arnd Bergmann <arnd@...db.de>,
        Jonathan Corbet <corbet@....net>,
        Matt Fleming <matt@...eblueprint.co.uk>,
        Konrad Rzeszutek Wilk <konrad.wilk@...cle.com>,
        Andrey Ryabinin <aryabinin@...tuozzo.com>,
        Ingo Molnar <mingo@...hat.com>, Borislav Petkov <bp@...en8.de>,
        Andy Lutomirski <luto@...nel.org>,
        "H. Peter Anvin" <hpa@...or.com>,
        Paolo Bonzini <pbonzini@...hat.com>,
        Alexander Potapenko <glider@...gle.com>,
        Thomas Gleixner <tglx@...utronix.de>,
        Dmitry Vyukov <dvyukov@...gle.com>,
        Rik van Riel <riel@...hat.com>,
        Larry Woodman <lwoodman@...hat.com>,
        Dave Young <dyoung@...hat.com>,
        Toshimitsu Kani <toshi.kani@....com>,
        "Michael S. Tsirkin" <mst@...hat.com>,
        Brijesh Singh <brijesh.singh@....com>,
        Guenter Roeck <groeck@...gle.com>,
        Zach Reizner <zachr@...gle.com>,
        Dylan Reid <dgreid@...omium.org>
Subject: Re: [PATCH v10 20/38] x86, mpparse: Use memremap to map the mpf and
 mpc data

On 17 July 2017 at 23:10, Tom Lendacky <thomas.lendacky@....com> wrote:
> The SMP MP-table is built by UEFI and placed in memory in a decrypted
> state. These tables are accessed using a mix of early_memremap(),
> early_memunmap(), phys_to_virt() and virt_to_phys(). Change all accesses
> to use early_memremap()/early_memunmap(). This allows for proper setting
> of the encryption mask so that the data can be successfully accessed when
> SME is active.
>
> Reviewed-by: Borislav Petkov <bp@...e.de>
> Signed-off-by: Tom Lendacky <thomas.lendacky@....com>
> ---
>  arch/x86/kernel/mpparse.c | 98 +++++++++++++++++++++++++++++++++--------------
>  1 file changed, 70 insertions(+), 28 deletions(-)

Hi there,

today I played a bit with crosvm [0] and noticed that 4.14-rc7 doesn't
boot. git-bisect pointed to this patch, and reverting it indeed gets
things working again.

Anybody has an idea of why this could be?

Thanks,

Tomeu

[0] https://chromium.googlesource.com/chromiumos/platform/crosvm

>
> diff --git a/arch/x86/kernel/mpparse.c b/arch/x86/kernel/mpparse.c
> index fd37f39..5cbb317 100644
> --- a/arch/x86/kernel/mpparse.c
> +++ b/arch/x86/kernel/mpparse.c
> @@ -429,7 +429,7 @@ static inline void __init construct_default_ISA_mptable(int mpc_default_type)
>         }
>  }
>
> -static struct mpf_intel *mpf_found;
> +static unsigned long mpf_base;
>
>  static unsigned long __init get_mpc_size(unsigned long physptr)
>  {
> @@ -451,6 +451,7 @@ static int __init check_physptr(struct mpf_intel *mpf, unsigned int early)
>
>         size = get_mpc_size(mpf->physptr);
>         mpc = early_memremap(mpf->physptr, size);
> +
>         /*
>          * Read the physical hardware table.  Anything here will
>          * override the defaults.
> @@ -497,12 +498,12 @@ static int __init check_physptr(struct mpf_intel *mpf, unsigned int early)
>   */
>  void __init default_get_smp_config(unsigned int early)
>  {
> -       struct mpf_intel *mpf = mpf_found;
> +       struct mpf_intel *mpf;
>
>         if (!smp_found_config)
>                 return;
>
> -       if (!mpf)
> +       if (!mpf_base)
>                 return;
>
>         if (acpi_lapic && early)
> @@ -515,6 +516,12 @@ void __init default_get_smp_config(unsigned int early)
>         if (acpi_lapic && acpi_ioapic)
>                 return;
>
> +       mpf = early_memremap(mpf_base, sizeof(*mpf));
> +       if (!mpf) {
> +               pr_err("MPTABLE: error mapping MP table\n");
> +               return;
> +       }
> +
>         pr_info("Intel MultiProcessor Specification v1.%d\n",
>                 mpf->specification);
>  #if defined(CONFIG_X86_LOCAL_APIC) && defined(CONFIG_X86_32)
> @@ -529,7 +536,7 @@ void __init default_get_smp_config(unsigned int early)
>         /*
>          * Now see if we need to read further.
>          */
> -       if (mpf->feature1 != 0) {
> +       if (mpf->feature1) {
>                 if (early) {
>                         /*
>                          * local APIC has default address
> @@ -542,8 +549,10 @@ void __init default_get_smp_config(unsigned int early)
>                 construct_default_ISA_mptable(mpf->feature1);
>
>         } else if (mpf->physptr) {
> -               if (check_physptr(mpf, early))
> +               if (check_physptr(mpf, early)) {
> +                       early_memunmap(mpf, sizeof(*mpf));
>                         return;
> +               }
>         } else
>                 BUG();
>
> @@ -552,6 +561,8 @@ void __init default_get_smp_config(unsigned int early)
>         /*
>          * Only use the first configuration found.
>          */
> +
> +       early_memunmap(mpf, sizeof(*mpf));
>  }
>
>  static void __init smp_reserve_memory(struct mpf_intel *mpf)
> @@ -561,15 +572,16 @@ static void __init smp_reserve_memory(struct mpf_intel *mpf)
>
>  static int __init smp_scan_config(unsigned long base, unsigned long length)
>  {
> -       unsigned int *bp = phys_to_virt(base);
> +       unsigned int *bp;
>         struct mpf_intel *mpf;
> -       unsigned long mem;
> +       int ret = 0;
>
>         apic_printk(APIC_VERBOSE, "Scan for SMP in [mem %#010lx-%#010lx]\n",
>                     base, base + length - 1);
>         BUILD_BUG_ON(sizeof(*mpf) != 16);
>
>         while (length > 0) {
> +               bp = early_memremap(base, length);
>                 mpf = (struct mpf_intel *)bp;
>                 if ((*bp == SMP_MAGIC_IDENT) &&
>                     (mpf->length == 1) &&
> @@ -579,24 +591,26 @@ static int __init smp_scan_config(unsigned long base, unsigned long length)
>  #ifdef CONFIG_X86_LOCAL_APIC
>                         smp_found_config = 1;
>  #endif
> -                       mpf_found = mpf;
> +                       mpf_base = base;
>
> -                       pr_info("found SMP MP-table at [mem %#010llx-%#010llx] mapped at [%p]\n",
> -                               (unsigned long long) virt_to_phys(mpf),
> -                               (unsigned long long) virt_to_phys(mpf) +
> -                               sizeof(*mpf) - 1, mpf);
> +                       pr_info("found SMP MP-table at [mem %#010lx-%#010lx] mapped at [%p]\n",
> +                               base, base + sizeof(*mpf) - 1, mpf);
>
> -                       mem = virt_to_phys(mpf);
> -                       memblock_reserve(mem, sizeof(*mpf));
> +                       memblock_reserve(base, sizeof(*mpf));
>                         if (mpf->physptr)
>                                 smp_reserve_memory(mpf);
>
> -                       return 1;
> +                       ret = 1;
>                 }
> -               bp += 4;
> +               early_memunmap(bp, length);
> +
> +               if (ret)
> +                       break;
> +
> +               base += 16;
>                 length -= 16;
>         }
> -       return 0;
> +       return ret;
>  }
>
>  void __init default_find_smp_config(void)
> @@ -838,29 +852,40 @@ static int __init update_mp_table(void)
>         char oem[10];
>         struct mpf_intel *mpf;
>         struct mpc_table *mpc, *mpc_new;
> +       unsigned long size;
>
>         if (!enable_update_mptable)
>                 return 0;
>
> -       mpf = mpf_found;
> -       if (!mpf)
> +       if (!mpf_base)
> +               return 0;
> +
> +       mpf = early_memremap(mpf_base, sizeof(*mpf));
> +       if (!mpf) {
> +               pr_err("MPTABLE: mpf early_memremap() failed\n");
>                 return 0;
> +       }
>
>         /*
>          * Now see if we need to go further.
>          */
> -       if (mpf->feature1 != 0)
> -               return 0;
> +       if (mpf->feature1)
> +               goto do_unmap_mpf;
>
>         if (!mpf->physptr)
> -               return 0;
> +               goto do_unmap_mpf;
>
> -       mpc = phys_to_virt(mpf->physptr);
> +       size = get_mpc_size(mpf->physptr);
> +       mpc = early_memremap(mpf->physptr, size);
> +       if (!mpc) {
> +               pr_err("MPTABLE: mpc early_memremap() failed\n");
> +               goto do_unmap_mpf;
> +       }
>
>         if (!smp_check_mpc(mpc, oem, str))
> -               return 0;
> +               goto do_unmap_mpc;
>
> -       pr_info("mpf: %llx\n", (u64)virt_to_phys(mpf));
> +       pr_info("mpf: %llx\n", (u64)mpf_base);
>         pr_info("physptr: %x\n", mpf->physptr);
>
>         if (mpc_new_phys && mpc->length > mpc_new_length) {
> @@ -878,21 +903,32 @@ static int __init update_mp_table(void)
>                 new = mpf_checksum((unsigned char *)mpc, mpc->length);
>                 if (old == new) {
>                         pr_info("mpc is readonly, please try alloc_mptable instead\n");
> -                       return 0;
> +                       goto do_unmap_mpc;
>                 }
>                 pr_info("use in-position replacing\n");
>         } else {
> +               mpc_new = early_memremap(mpc_new_phys, mpc_new_length);
> +               if (!mpc_new) {
> +                       pr_err("MPTABLE: new mpc early_memremap() failed\n");
> +                       goto do_unmap_mpc;
> +               }
>                 mpf->physptr = mpc_new_phys;
> -               mpc_new = phys_to_virt(mpc_new_phys);
>                 memcpy(mpc_new, mpc, mpc->length);
> +               early_memunmap(mpc, size);
>                 mpc = mpc_new;
> +               size = mpc_new_length;
>                 /* check if we can modify that */
>                 if (mpc_new_phys - mpf->physptr) {
>                         struct mpf_intel *mpf_new;
>                         /* steal 16 bytes from [0, 1k) */
> +                       mpf_new = early_memremap(0x400 - 16, sizeof(*mpf_new));
> +                       if (!mpf_new) {
> +                               pr_err("MPTABLE: new mpf early_memremap() failed\n");
> +                               goto do_unmap_mpc;
> +                       }
>                         pr_info("mpf new: %x\n", 0x400 - 16);
> -                       mpf_new = phys_to_virt(0x400 - 16);
>                         memcpy(mpf_new, mpf, 16);
> +                       early_memunmap(mpf, sizeof(*mpf));
>                         mpf = mpf_new;
>                         mpf->physptr = mpc_new_phys;
>                 }
> @@ -909,6 +945,12 @@ static int __init update_mp_table(void)
>          */
>         replace_intsrc_all(mpc, mpc_new_phys, mpc_new_length);
>
> +do_unmap_mpc:
> +       early_memunmap(mpc, size);
> +
> +do_unmap_mpf:
> +       early_memunmap(mpf, sizeof(*mpf));
> +
>         return 0;
>  }
>
> --
> 1.9.1
>

Powered by blists - more mailing lists