| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 27 Jan 2023 11:40:52 +0000
From: Joey Gouly <joey.gouly@....com>
To: Andrew Jones <andrew.jones@...ux.dev>, <kvmarm@...ts.linux.dev>,
<kvm@...r.kernel.org>
CC: <joey.gouly@....com>, Alexandru Elisei <alexandru.elisei@....com>,
Christoffer Dall <christoffer.dall@....com>,
Fuad Tabba <tabba@...gle.com>,
Jean-Philippe Brucker <jean-philippe@...aro.org>,
Joey Gouly <Joey.Gouly@....com>, Marc Zyngier <maz@...nel.org>,
Mark Rutland <mark.rutland@....com>,
Oliver Upton <oliver.upton@...ux.dev>,
Paolo Bonzini <pbonzini@...hat.com>,
Quentin Perret <qperret@...gle.com>,
Steven Price <steven.price@....com>,
Suzuki K Poulose <suzuki.poulose@....com>,
"Thomas Huth" <thuth@...hat.com>, Will Deacon <will@...nel.org>,
Zenghui Yu <yuzenghui@...wei.com>,
<linux-coco@...ts.linux.dev>, <kvmarm@...ts.cs.columbia.edu>,
<linux-arm-kernel@...ts.infradead.org>,
<linux-kernel@...r.kernel.org>
Subject: [RFC kvm-unit-tests 11/27] arm: realm: Early memory setup
From: Suzuki K Poulose <suzuki.poulose@....com>
A Realm must mark areas of memory as RIPAS_RAM before an access is made.
The binary image is loaded by the VMM and thus the area is converted.
However, the file image may not cover tail portion of the "memory" image (e.g,
BSS, stack etc.). Convert the area touched by the early boot code to RAM
before the access is made in early assembly code.
Once, we land in the C code, we take care of converting the entire RAM region
to RIPAS_RAM.
Please note that this operation doesn't require the host to commit memory to
the Realm.
Signed-off-by: Suzuki K Poulose <suzuki.poulose@....com>
Co-developed-by: Jean-Philippe Brucker <jean-philippe@...aro.org>
Signed-off-by: Jean-Philippe Brucker <jean-philippe@...aro.org>
Co-developed-by: Joey Gouly <joey.gouly@....com>
Signed-off-by: Joey Gouly <joey.gouly@....com>
---
arm/cstart64.S | 72 ++++++++++++++++++++++++++++++++++++++++++++++++++
1 file changed, 72 insertions(+)
diff --git a/arm/cstart64.S b/arm/cstart64.S
index b689b132..b0861594 100644
--- a/arm/cstart64.S
+++ b/arm/cstart64.S
@@ -14,6 +14,7 @@
#include <asm/pgtable-hwdef.h>
#include <asm/thread_info.h>
#include <asm/sysreg.h>
+#include <asm/smc-rsi.h>
.macro zero_range, tmp1, tmp2
9998: cmp \tmp1, \tmp2
@@ -61,6 +62,7 @@ start:
b 1b
1:
+ bl __early_mem_setup
/* zero BSS */
adrp x4, bss
add x4, x4, :lo12:bss
@@ -170,6 +172,76 @@ arm_smccc_hvc:
arm_smccc_smc:
do_smccc_call smc
+__early_mem_setup:
+ /* Preserve x0 - x3 */
+ mov x5, x0
+ mov x6, x1
+ mov x7, x2
+ mov x8, x3
+
+ /*
+ * Check for EL3, otherwise an SMC instruction
+ * will cause an UNDEFINED exception.
+ */
+ mrs x9, ID_AA64PFR0_EL1
+ lsr x9, x9, #12
+ and x9, x9, 0b11
+ cbnz x9, 1f
+ ret
+
+1:
+ /*
+ * Are we a realm? Request the RSI ABI version.
+ * If KVM is catching SMCs, it returns an error in x0 (~0UL)
+ */
+ ldr x0, =SMC_RSI_ABI_VERSION
+ smc #0
+
+ ldr x1, =RSI_ABI_VERSION
+ cmp x0, x1
+ bne 3f
+
+ /*
+ * For realms, we must mark area from bss
+ * to the end of stack as memory before it is
+ * accessed, as they are not populated as part
+ * of the initial image. As such we can run
+ * this unconditionally irrespective of whether
+ * we are a normal VM or Realm.
+ *
+ * x1 = bss_start.
+ */
+ adrp x1, bss
+
+ /* x9 = (end of stack - bss_start) */
+ adrp x9, (stacktop + PAGE_SIZE)
+2:
+ /* calculate the size as (end - start) */
+ sub x2, x9, x1
+
+ /* x3 = RIPAS_RAM */
+ mov x3, #1
+
+ /* x0 = SMC_RSI_IPA_STATE_SET */
+ movz x0, :abs_g2_s:SMC_RSI_IPA_STATE_SET
+ movk x0, :abs_g1_nc:SMC_RSI_IPA_STATE_SET
+ movk x0, :abs_g0_nc:SMC_RSI_IPA_STATE_SET
+
+ /* Run the RSI request */
+ smc #0
+
+ /* halt if there is an error */
+ cbnz x0, halt
+
+ cmp x1, x9
+ bne 2b
+3:
+ mov x3, x8
+ mov x2, x7
+ mov x1, x6
+ mov x0, x5
+ ret
+
get_mmu_off:
adrp x0, auxinfo
ldr x0, [x0, :lo12:auxinfo + 8]
--
2.17.1
Powered by blists - more mailing lists