Received: by 2002:ac0:a5b6:0:0:0:0:0 with SMTP id m51-v6csp5308195imm;
        Tue, 19 Jun 2018 08:21:18 -0700 (PDT)
X-Google-Smtp-Source: ADUXVKLR/LCzcdiibA+w/lBsRmIDoPPGfg3IBlhvswus2lZigS7sUGOKiT4w76qXP05urNuBmoGj
X-Received: by 2002:a65:6690:: with SMTP id b16-v6mr15223719pgw.326.1529421678409;
        Tue, 19 Jun 2018 08:21:18 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1529421678; cv=none;
        d=google.com; s=arc-20160816;
        b=knASWQ72VYS8OJ3ofDYWjP/1qYKhJlXwSbWMJbqc+nePSlaRAhvMClDDEh/jRGWIP+
         K7rAzhVhm45Zyn2trBOvkzUC+ukgFy8f+OXYf+o330wHZkGHryJg2dfD36HPtz1/9my5
         gcd0XV2LPAfs7JCKAdCBhVES/YLv6tYsh8Fp5by/6ctF6evUXbHO8jrhc6EastpC10lP
         60fwA/8n9RAYwpRFYx24DtOq0hFaTF/yFEobtvkNES0vG2aAR++Vsju44S63uzRBmzFX
         d90Bawfzi4M7KwD35asn7wJncwC3k19P10kCDXEsJsVuL7XNc0gWLXS4ld6sTkoobwGa
         v+Qg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:user-agent:in-reply-to
         :content-disposition:mime-version:references:message-id:subject:cc
         :to:from:date:arc-authentication-results;
        bh=HLGUpbZGORJ5Md2Rm8Me8FMZGoWJ6zhiUQh3ym4Zmok=;
        b=Iii1M6ATEkbdQpGLH+iCyN/B17s1lLoDFQtAVrzxnJknffHnkV9W11s7Agt1PNQWzs
         dnVwcfj25A1z8k7ADgOTo7P096aUH9i+5QtiN+9dul2b3P4pON6ril4jP+ycP4g05Kup
         akaQhZisOaYM59brv5mxCUcSjO6RyFZODkF1A9GORzubh9TbuhoXjyMRqkVsHDL9HZtt
         Ei+HnBtaC5J7pzo3g/6tvM6Mu0Lrf3XBNESzGi0WGXc9j1D6vPRj3/1r8nX2shpFMlK9
         OEd3LFXXfyXSr2V7VKsB8kPocDl9gajJJyfCDDQV5jaYcESmwCEnx6/mAJyjqGRrBTiR
         9kfw==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id w134-v6si17602101pfd.313.2018.06.19.08.21.04;
        Tue, 19 Jun 2018 08:21:18 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S937909AbeFSPTi (ORCPT <rfc822;linux.htchiang@gmail.com>
        + 99 others); Tue, 19 Jun 2018 11:19:38 -0400
Received: from mx3-rdu2.redhat.com ([66.187.233.73]:54068 "EHLO mx1.redhat.com"
        rhost-flags-OK-OK-OK-FAIL) by vger.kernel.org with ESMTP
        id S937471AbeFSPTg (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Tue, 19 Jun 2018 11:19:36 -0400
Received: from smtp.corp.redhat.com (int-mx04.intmail.prod.int.rdu2.redhat.com [10.11.54.4])
        (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
        (No client certificate requested)
        by mx1.redhat.com (Postfix) with ESMTPS id B75A88780F;
        Tue, 19 Jun 2018 15:19:35 +0000 (UTC)
Received: from neilslaptop.think-freely.org (wlan-196-105.bos.redhat.com [10.16.196.105])
        by smtp.corp.redhat.com (Postfix) with ESMTPS id 3BDC42026D68;
        Tue, 19 Jun 2018 15:19:34 +0000 (UTC)
Date:   Tue, 19 Jun 2018 11:19:33 -0400
From:   Neil Horman <nhorman@redhat.com>
To:     Jarkko Sakkinen <jarkko.sakkinen@linux.intel.com>
Cc:     Dave Hansen <dave.hansen@intel.com>, x86@kernel.org,
        platform-driver-x86@vger.kernel.org,
        sean.j.christopherson@intel.com, npmccallum@redhat.com,
        Thomas Gleixner <tglx@linutronix.de>,
        Ingo Molnar <mingo@redhat.com>,
        "H. Peter Anvin" <hpa@zytor.com>,
        "open list:X86 ARCHITECTURE (32-BIT AND 64-BIT)" 
        <linux-kernel@vger.kernel.org>,
        "open list:INTEL SGX" <intel-sgx-kernel-dev@lists.01.org>
Subject: Re: [PATCH v11 09/13] x86, sgx: basic routines for enclave page cache
Message-ID: <20180619151933.GD3666@neilslaptop.think-freely.org>
References: <20180608171216.26521-1-jarkko.sakkinen@linux.intel.com>
 <20180608171216.26521-10-jarkko.sakkinen@linux.intel.com>
 <3c1b04d6-6e93-efaa-1890-101b7fd9784c@intel.com>
 <20180619145753.GB8034@linux.intel.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20180619145753.GB8034@linux.intel.com>
User-Agent: Mutt/1.9.5 (2018-04-13)
X-Scanned-By: MIMEDefang 2.78 on 10.11.54.4
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.5.16 (mx1.redhat.com [10.11.55.1]); Tue, 19 Jun 2018 15:19:35 +0000 (UTC)
X-Greylist: inspected by milter-greylist-4.5.16 (mx1.redhat.com [10.11.55.1]); Tue, 19 Jun 2018 15:19:35 +0000 (UTC) for IP:'10.11.54.4' DOMAIN:'int-mx04.intmail.prod.int.rdu2.redhat.com' HELO:'smtp.corp.redhat.com' FROM:'nhorman@redhat.com' RCPT:''
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Tue, Jun 19, 2018 at 05:57:53PM +0300, Jarkko Sakkinen wrote:
> On Fri, Jun 08, 2018 at 11:24:12AM -0700, Dave Hansen wrote:
> > On 06/08/2018 10:09 AM, Jarkko Sakkinen wrote:
> > > SGX has a set of data structures to maintain information about the enclaves
> > > and their security properties. BIOS reserves a fixed size region of
> > > physical memory for these structures by setting Processor Reserved Memory
> > > Range Registers (PRMRR). This memory area is called Enclave Page Cache
> > > (EPC).
> > > 
> > > This commit implements the basic routines to allocate and free pages from
> > > different EPC banks. There is also a swapper thread ksgxswapd for EPC pages
> > > that gets woken up by sgx_alloc_page() when we run below the low watermark.
> > > The swapper thread continues swapping pages up until it reaches the high
> > > watermark.
> > 
> > Yay!  A new memory manager in arch-specific code.
> > 
> > > Each subsystem that uses SGX must provide a set of callbacks for EPC
> > > pages that are used to reclaim, block and write an EPC page. Kernel
> > > takes the responsibility of maintaining LRU cache for them.
> > 
> > What does a "subsystem that uses SGX" mean?  Do we have one of those
> > already?
> 
> Driver and KVM.
> 
> > > +struct sgx_secs {
> > > +	uint64_t size;
> > > +	uint64_t base;
> > > +	uint32_t ssaframesize;
> > > +	uint32_t miscselect;
> > > +	uint8_t reserved1[SGX_SECS_RESERVED1_SIZE];
> > > +	uint64_t attributes;
> > > +	uint64_t xfrm;
> > > +	uint32_t mrenclave[8];
> > > +	uint8_t reserved2[SGX_SECS_RESERVED2_SIZE];
> > > +	uint32_t mrsigner[8];
> > > +	uint8_t	reserved3[SGX_SECS_RESERVED3_SIZE];
> > > +	uint16_t isvvprodid;
> > > +	uint16_t isvsvn;
> > > +	uint8_t reserved4[SGX_SECS_RESERVED4_SIZE];
> > > +};
> > 
> > This is a hardware structure, right?  Doesn't it need to be packed?
> 
> Everything is aligned properly in this struct.
> 
I don't think you can guarantee that.  I understand that the reserved size is
likely computed to turn those u8's into 32/64 byte regions, but the uint16t
isvvprodid and isvsvn might get padded to 32 or 64 bytes in software dependent
on the processor you build for.

And even so, its suceptible to being
misaligned if a new version of the hardware adds or removes elements.  Adding a
packed attribute seems like a safe approach (or at least a no-op in the current
state)

Neil