| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <e6d2ad1c5392c2c3503ed8bb7560e04f@www.loen.fr>
Date: Tue, 19 Nov 2019 10:03:34 +0000
From: Marc Zyngier <maz@...nel.org>
To: Hanjun Guo <guohanjun@...wei.com>
Cc: Zhenyu Ye <yezhenyu2@...wei.com>, Will Deacon <will@...nel.org>,
<catalin.marinas@....com>, <suzuki.poulose@....com>,
<mark.rutland@....com>, <tangnianyao@...wei.com>,
<xiexiangyou@...wei.com>, <linux-kernel@...r.kernel.org>,
<arm@...nel.org>, <linux-arm-kernel@...ts.infradead.org>,
Linuxarm <linuxarm@...wei.com>,
Shaokun Zhang <zhangshaokun@...ilicon.com>,
wanghuiqiang <wanghuiqiang@...wei.com>
Subject: Re: [RFC PATCH v2] arm64: cpufeatures: add support for tlbi range instructions
Hi Hanjun,
On 2019-11-19 01:13, Hanjun Guo wrote:
> +Cc linux-arm-kernel mailing list and Shaokun.
>
> Hi Marc,
>
> On 2019/11/11 22:04, Marc Zyngier wrote:
>> On 2019-11-11 14:56, Zhenyu Ye wrote:
>>> On 2019/11/11 21:27, Will Deacon wrote:
>>>> On Mon, Nov 11, 2019 at 09:23:55PM +0800, Zhenyu Ye wrote:
> [...]
>>>>
>>>> How does this address my concerns here:
>>>>
>>>>
>>>>
>>>> https://lore.kernel.org/linux-arm-kernel/20191031131649.GB27196@willie-the-truck/
>>>>
>>>> ?
>>>>
>>>> Will
>>>
>>> I think your concern is more about the hardware level, and we can
>>> do
>>> nothing about
>>> this at all. The interconnect/DVM implementation is not exposed to
>>> software layer
>>> (and no need), and may should be constrained at hardware level.
>>
>> You're missing the point here: the instruction may be implemented
>> and perfectly working at the CPU level, and yet not carried over
>> the interconnect. In this situation, other CPUs may not observe
>> the DVM messages instructing them of such invalidation, and you'll
>> end
>> up with memory corruption.
>>
>> So, in the absence of an architectural guarantee that range
>> invalidation
>> is supported and observed by all the DVM agents in the system, there
>> must
>> be a firmware description for it on which the kernel can rely.
>
> I'm thinking of how to add a firmware description for it, how about
> this:
>
> Adding a system level flag to indicate the supporting of TIBi by
> range,
> which means adding a binding name for example "tlbi-by-range" at
> system
> level in the dts file, or a tlbi by range flag in ACPI FADT table,
> then
> we use the ID register per-cpu and the system level flag as
>
> if (cpus_have_const_cap(ARM64_HAS_TLBI_BY_RANGE) &&
> system_level_tlbi_by_range)
> flush_tlb_by_range()
> else
> flush_tlb_range()
>
> And this seems work for heterogeneous system (olny parts of the CPU
> support
> TLBi by range) as well, correct me if anything wrong.
It could work, but it needs to come with the strongest guarantees that
all the DVM agents in the system understand this type of invalidation,
specially as we move into the SVM territory. It may also need to cope
with non-compliant agents being hot-plugged, or at least discovered
late.
I also wonder if the ARMv8.4-TTL extension (which I have patches for in
the nested virt series) requires the same kind of treatment (after all,
it has an implicit range based on the base granule size and level).
In any way, this requires careful specification, and I don't think
we can improvise this on the ML... ;-)
Thanks,
M.
--
Jazz is not dead. It just smells funny...
Powered by blists - more mailing lists