Received: by 2002:ad5:474a:0:0:0:0:0 with SMTP id i10csp2813009imu;
        Thu, 29 Nov 2018 10:36:54 -0800 (PST)
X-Google-Smtp-Source: AFSGD/W0XPsKppvp3hvusDB6A+p/j7N74Z3u8+oZ0YVP8t8eNQ9EIhOvktQPpiAPny+0mTLz4bmh
X-Received: by 2002:a63:4456:: with SMTP id t22mr2237927pgk.0.1543516614896;
        Thu, 29 Nov 2018 10:36:54 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1543516614; cv=none;
        d=google.com; s=arc-20160816;
        b=SFdVcH1vFEyVO1GpI0MIjiZ2kVCkIidPXf/p7CRyBIfewAZ2Jo768/A6rxJGe6XiVY
         3LgAFYpNyX3x/YYouK3B3VkfNkCPtr4CsnO0ErPVYX1x9orzLzeZyJIQm90Cn/9PuMlu
         03+29cW5aLGc5WtMtYT3AN1lT/U6t74cKNFgBW5O3OLA+Ob7zha3t77WZycGGeycl8Vc
         6Rb9Fqaho5ShjkEIwJaBviDqpEnUfdJdMNueKwEATMeMTH1+IfpO59CgpdtUXK3QlRxd
         KZsruiDrGXnUTPdnEi3WN24voScwBltK4Hd2mkFCoPRO11DWjTaBhSbfCCXDF7FMZfVs
         5ZDw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:to:references:message-id
         :content-transfer-encoding:cc:date:in-reply-to:from:subject
         :mime-version:dkim-signature;
        bh=lLiTtMu7ykg5/Be89p4ADj2aA76GZ2847GIo+ryVALU=;
        b=rztjyafHEDsSDaoqIu0ji5NZKC4xBGuZuvewTHMBD1nDYg+vFSNc2tUtRWvH0bcWBt
         IVjvhD2HKGfsjz0C1oDlSkK8G4Ss2bAUgyqX3BJ3y+FFvFpsFkStTGOsgo7yNz6S9mX2
         9U5zAEseUYlKLvn2S3kpoqj/sw9I8mQ8yjAbmx+ezo9qQaH5FWsDIqzhZJcHNjzf5Iwv
         LQnUcJPfGTkHtOho0g6MncI9huB/xKrP1pBZQvjsIei9vsyFfCLf+t1EhDvXB/jw/faP
         xugOoDaO9kOrmPjes0TF5kFUsv9w27uP81NSNNEv401DSx39ZXoD7angGQrGOMYldmBw
         VlaQ==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@amacapital-net.20150623.gappssmtp.com header.s=20150623 header.b=v3iYlZfG;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id d2-v6si2823329pla.140.2018.11.29.10.36.40;
        Thu, 29 Nov 2018 10:36:54 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@amacapital-net.20150623.gappssmtp.com header.s=20150623 header.b=v3iYlZfG;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1730133AbeK3EFg (ORCPT <rfc822;xuyizhaos@gmail.com> + 99 others);
        Thu, 29 Nov 2018 23:05:36 -0500
Received: from mail-pg1-f194.google.com ([209.85.215.194]:33061 "EHLO
        mail-pg1-f194.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1729519AbeK3EFf (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Thu, 29 Nov 2018 23:05:35 -0500
Received: by mail-pg1-f194.google.com with SMTP id z11so1206290pgu.0
        for <linux-kernel@vger.kernel.org>; Thu, 29 Nov 2018 08:59:33 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=amacapital-net.20150623.gappssmtp.com; s=20150623;
        h=mime-version:subject:from:in-reply-to:date:cc
         :content-transfer-encoding:message-id:references:to;
        bh=lLiTtMu7ykg5/Be89p4ADj2aA76GZ2847GIo+ryVALU=;
        b=v3iYlZfG6H4StPQtKZsMJQ9refOVTxWOAcN3NiXpxEKbLsrSBXVADrWE9OPnJ54y9j
         ziQBJOhebvbK4D5GR1+XePpNZt1v8gtD3eNZGIrQm+t7BbFGqVIlwj3ftI3bboy9kipC
         PD35/FfFNLzWgkq6t8eUdj1RUsyhiiLyiqzgWtQ6wZMR2vKB3hPDRMfQvGKEpVV/w9Fh
         8KMY9rqaM3BrQmqvxkLAUuXMnUTJ4byuO/VO5oappgVOvwfic3Bv+gjyBGp37TksuA7Q
         dqmJkd4K/phy2reJLubBBWetRmtRVWhStRPGRzwcCrfrYTHaJN5mRFmiqti2AYKkhwxQ
         gW+Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc
         :content-transfer-encoding:message-id:references:to;
        bh=lLiTtMu7ykg5/Be89p4ADj2aA76GZ2847GIo+ryVALU=;
        b=s3LSVLY4qQ0uEdcpI5H7kvlR4esE7ACnvu4WnoqmNjjswx6VyFi4v53ryVeo1p/L0U
         BpHJSF0uDof3qtc2AQSofuluTtCgJPRtYlEPKtGC0qVjj2aQuCEfzYKDw+EAyzFHw2gZ
         AAkgz1IA2fivVLZq+3tlHEJr2/BH4jYRpB3h6nrH+48rO5twPAKNePgNh3mimLxvug4L
         eFJnHTBPMXOcuz/LxbHPzK3MR9qNri3dM9dvxaKyanpp68O3/MUfA3lVJMnpnXa1ZKQl
         rjtEaCMZ0bDF5sBf/p+lmcmuiiVAtZrObZjNC5Ki2SamzUULyEY5v1oZCgFQaSb4zyQi
         ALzg==
X-Gm-Message-State: AA+aEWbiAyXjOcB6v6mFBf/Se6Qdw49P4Pza+EkV4NRPWxvuHnbGqE1Q
        qzrNvwmcXuw50zWT1iEuSWL1bQ==
X-Received: by 2002:a65:4142:: with SMTP id x2mr1828623pgp.356.1543510773565;
        Thu, 29 Nov 2018 08:59:33 -0800 (PST)
Received: from ?IPv6:2600:1010:b054:ff26:3849:a65d:14d0:f668? ([2600:1010:b054:ff26:3849:a65d:14d0:f668])
        by smtp.gmail.com with ESMTPSA id g5sm7860561pgu.57.2018.11.29.08.59.32
        (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
        Thu, 29 Nov 2018 08:59:32 -0800 (PST)
Content-Type: text/plain;
        charset=utf-8
Mime-Version: 1.0 (1.0)
Subject: Re: [PATCH v2 4/4] x86/static_call: Add inline static call implementation for x86-64
From:   Andy Lutomirski <luto@amacapital.net>
X-Mailer: iPhone Mail (16B92)
In-Reply-To: <20181129164914.GA9027@hirez.programming.kicks-ass.net>
Date:   Thu, 29 Nov 2018 08:59:31 -0800
Cc:     Josh Poimboeuf <jpoimboe@redhat.com>,
        Andy Lutomirski <luto@kernel.org>, X86 ML <x86@kernel.org>,
        LKML <linux-kernel@vger.kernel.org>,
        Ard Biesheuvel <ard.biesheuvel@linaro.org>,
        Steven Rostedt <rostedt@goodmis.org>,
        Ingo Molnar <mingo@kernel.org>,
        Thomas Gleixner <tglx@linutronix.de>,
        Linus Torvalds <torvalds@linux-foundation.org>,
        Masami Hiramatsu <mhiramat@kernel.org>,
        Jason Baron <jbaron@akamai.com>, Jiri Kosina <jkosina@suse.cz>,
        David Laight <David.Laight@aculab.com>,
        Borislav Petkov <bp@alien8.de>, julia@ni.com, jeyu@kernel.org,
        "H. Peter Anvin" <hpa@zytor.com>
Content-Transfer-Encoding: quoted-printable
Message-Id: <0FDA053D-7ADC-4F42-AEA5-99DA155FCED0@amacapital.net>
References: <20181126171036.chcbmb35ygpxziub@treble> <20181126175624.bruqfbkngbucpvxr@treble> <20181126200801.GW2113@hirez.programming.kicks-ass.net> <20181126212628.4apztfazichxnt7r@treble> <20181127084330.GX2113@hirez.programming.kicks-ass.net> <CALCETrXam8JBtXE3S97Vyb_=+pmjgr23SoZ-Dm5pmYtwZYA+7Q@mail.gmail.com> <20181129094210.GC2131@hirez.programming.kicks-ass.net> <ECF632D9-581B-40B7-9F0A-6B5607A4D0E3@amacapital.net> <20181129143853.GO2131@hirez.programming.kicks-ass.net> <20181129163342.tp5wlfcyiazwwyoh@treble> <20181129164914.GA9027@hirez.programming.kicks-ass.net>
To:     Peter Zijlstra <peterz@infradead.org>
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org



> On Nov 29, 2018, at 8:49 AM, Peter Zijlstra <peterz@infradead.org> wrote:
>=20
> On Thu, Nov 29, 2018 at 10:33:42AM -0600, Josh Poimboeuf wrote:
>>> can't we 'fix' that again? The alternative is moving that IRET-frame and=

>>> fixing everything up, which is going to be fragile, ugly and such
>>> things more.
>=20
>> This seems to work...
>=20
> That's almost too easy... nice!

It is indeed too easy: you=E2=80=99re putting pt_regs in the wrong place for=
 int3 from user mode, which is probably a root hole if you arrange for a ptr=
aced process to do int3 and try to write to whatever register aliases CS.

If you make it conditional on CPL, do it for 32-bit as well, add comments, a=
nd convince yourself that there isn=E2=80=99t a better solution (like pointi=
ng IP at a stub that retpolines to the target by reading the function pointe=
r, a la the unoptimizable version), then okay, I guess, with only a small am=
ount of grumbling.

>=20
>> diff --git a/arch/x86/entry/entry_64.S b/arch/x86/entry/entry_64.S
>> index ce25d84023c0..184523447d35 100644
>> --- a/arch/x86/entry/entry_64.S
>> +++ b/arch/x86/entry/entry_64.S
>> @@ -876,7 +876,7 @@ apicinterrupt IRQ_WORK_VECTOR            irq_work_int=
errupt        smp_irq_work_interrupt
>>  * @paranoid =3D=3D 2 is special: the stub will never switch stacks.  Thi=
s is for
>>  * #DF: if the thread stack is somehow unusable, we'll still get a useful=
 OOPS.
>>  */
>> -.macro idtentry sym do_sym has_error_code:req paranoid=3D0 shift_ist=3D-=
1
>> +.macro idtentry sym do_sym has_error_code:req paranoid=3D0 shift_ist=3D-=
1 create_gap=3D0
>> ENTRY(\sym)
>>    UNWIND_HINT_IRET_REGS offset=3D\has_error_code*8
>>=20
>> @@ -891,6 +891,12 @@ ENTRY(\sym)
>>    pushq    $-1                /* ORIG_RAX: no syscall to restart */
>>    .endif
>>=20
>> +    .if \create_gap =3D=3D 1
>> +    .rept 6
>> +    pushq 5*8(%rsp)
>> +    .endr
>> +    .endif
>> +
>>    .if \paranoid =3D=3D 1
>>    testb    $3, CS-ORIG_RAX(%rsp)        /* If coming from userspace, swi=
tch stacks */
>>    jnz    .Lfrom_usermode_switch_stack_\@
>> @@ -1126,7 +1132,7 @@ apicinterrupt3 HYPERV_STIMER0_VECTOR \
>> #endif /* CONFIG_HYPERV */
>>=20
>> idtentry debug            do_debug        has_error_code=3D0    paranoid=3D=
1 shift_ist=3DDEBUG_STACK
>> -idtentry int3            do_int3            has_error_code=3D0
>> +idtentry int3            do_int3            has_error_code=3D0    create=
_gap=3D1
>> idtentry stack_segment        do_stack_segment    has_error_code=3D1
>>=20
>> #ifdef CONFIG_XEN_PV