lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <4afd33ba-6b7c-415f-b9ef-964a2fc840d8@intel.com>
Date:   Wed, 29 Nov 2023 10:20:31 -0800
From:   Dave Hansen <dave.hansen@...el.com>
To:     Borislav Petkov <bp@...en8.de>, X86 ML <x86@...nel.org>
Cc:     LKML <linux-kernel@...r.kernel.org>
Subject: Re: [PATCH] Documentation/x86: Document what /proc/cpuinfo is for

On 11/29/23 02:17, Borislav Petkov wrote:
> From: "Borislav Petkov (AMD)" <bp@...en8.de>
> 
> This has been long overdue. Write down what x86's version of
> /proc/cpuinfo is and should be used for.
> 
> Signed-off-by: Borislav Petkov (AMD) <bp@...en8.de>
> ---
>  Documentation/arch/x86/cpuinfo.rst | 79 ++++++++++++++++++++++--------
>  1 file changed, 58 insertions(+), 21 deletions(-)
> 
> diff --git a/Documentation/arch/x86/cpuinfo.rst b/Documentation/arch/x86/cpuinfo.rst
> index 08246e8ac835..cede6aad27c0 100644
> --- a/Documentation/arch/x86/cpuinfo.rst
> +++ b/Documentation/arch/x86/cpuinfo.rst
> @@ -7,27 +7,64 @@ x86 Feature Flags
>  Introduction
>  ============
>  
> -On x86, flags appearing in /proc/cpuinfo have an X86_FEATURE definition
> -in arch/x86/include/asm/cpufeatures.h. If the kernel cares about a feature
> -or KVM want to expose the feature to a KVM guest, it can and should have
> -an X86_FEATURE_* defined. These flags represent hardware features as
> -well as software features.
> -
> -If users want to know if a feature is available on a given system, they
> -try to find the flag in /proc/cpuinfo. If a given flag is present, it
> -means that the kernel supports it and is currently making it available.
> -If such flag represents a hardware feature, it also means that the
> -hardware supports it.
> -
> -If the expected flag does not appear in /proc/cpuinfo, things are murkier.
> -Users need to find out the reason why the flag is missing and find the way
> -how to enable it, which is not always easy. There are several factors that
> -can explain missing flags: the expected feature failed to enable, the feature
> -is missing in hardware, platform firmware did not enable it, the feature is
> -disabled at build or run time, an old kernel is in use, or the kernel does
> -not support the feature and thus has not enabled it. In general, /proc/cpuinfo
> -shows features which the kernel supports. For a full list of CPUID flags
> -which the CPU supports, use tools/arch/x86/kcpuid.
> +The list of feature flags in /proc/cpuinfo is not complete and
> +represents an ill-fated attempt from long time ago to put feature flags
> +in an easy to find place for userspace.
> +
> +However, the amount of feature flags is growing by the CPU generation,
> +leading to unparseable and unwieldy /proc/cpuinfo.
> +
> +What is more, those feature flags do not even need to be in that file
> +because userspace doesn't care about them - glibc et al already use
> +CPUID to find out what the target machine supports and what not.
> +
> +And even if it doesn't show a particular feature flag - although the CPU
> +still does have support for the respective hardware functionality and
> +said CPU supports CPUID faulting - userspace can simply probe for the
> +feature and figure out if it is supported or not, regardless of whether
> +it is being advertized somewhere.

		^ advertised

> +Furthermore, those flag strings become an ABI the moment they appear
> +there and maintaining them forever when nothing even uses them is a lot
> +of wasted effort.
> +
> +So, the current use of /proc/cpuinfo is to show features which the
> +kernel has *enabled* and supports. As in: the CPUID feature flag is
> +there, there's an additional setup which the kernel has done while
> +booting and the functionality is there and ready to use. A perfect
> +example for that is "user_shstk" where additional code enablement is
> +present in the kernel to support shadow stack for user programs.
> +
> +So, if users want to know if a feature is available on a given system,
> +they try to find the flag in /proc/cpuinfo. If a given flag is present,
> +it means

Just rephrasing the meanings, I think I'd say that it means:

all of the following:

 * The kernel knows about the feature enough to have an X86_FEATURE_ bit
 * The kernel supports it and is currently making it available either to
   userspace or some other part of the kernel
 * If the flag represents a hardware feature the hardware supports it

> +If the expected flag does not appear in /proc/cpuinfo, things are
> +murkier.  Users need to find out the reason why the flag is missing and
> +find the way how to enable it, which is not always easy.
> +
> +There are several factors that can explain missing flags: the expected
> +feature failed to enable, the feature is missing in hardware, platform
> +firmware did not enable it, the feature is disabled at build or run
> +time, an old kernel is in use, or the kernel does not support the
> +feature and thus has not enabled it. In general, /proc/cpuinfo shows
> +features which the kernel supports. For a full list of CPUID flags which
> +the CPU supports, use tools/arch/x86/kcpuid.

Could we trim this down a bit?  Maybe concentrate on one example and
then just jump to the takeaway:

The absence of a flag in /proc/cpuinfo by itself means almost nothing to
an end user.  A feature like "vaes" might be fully available to user
applications on an kernel that has not defined X86_FEATURE_VAES and thus
there is no "vaes" in /proc/cpuinfo.

On the other hand, a new kernel running on non-VAES hardware would also
have no "vaes" in /proc/cpuinfo.  There's no way for an application or
user to tell the difference.

The end result is that the flags field in /proc/cpuinfo is marginally
useful for kernel debugging, but not really for anything else.
Applications should instead use things like the glibc facilities for
querying CPU support.  Users should rely on tools like
tools/arch/x86/kcpuid and cpuid(1).

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ