Received: by 2002:a25:c593:0:0:0:0:0 with SMTP id v141csp1349739ybe; Thu, 5 Sep 2019 14:14:29 -0700 (PDT) X-Google-Smtp-Source: APXvYqy8rlUPTxAAPHUypMOKTxO9gSdNvWLHCJfAi2iQKNM91xo75Rq/ViWyP7e3nmeBHWYc/s8/ X-Received: by 2002:a17:902:563:: with SMTP id 90mr5509262plf.13.1567718068940; Thu, 05 Sep 2019 14:14:28 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1567718068; cv=none; d=google.com; s=arc-20160816; b=yDCAzW3sGVnmAG/C0VtxHuZN5a4tfhG8domugy0MshsKbRVoMi2QOrLqTXjB9xQptd q5u11YSaeZC0846hNRLtgefirvtd/XECruIcsYnjxv7c4LVGSpmLnT/9k8qxGNkWTG8C ZAKxrTOgo/OjVbmW/2igwPeWR63wLLWmJzG7et+RNJkouWNdKveCsgpKHzYWdyoPBldV evFvM0ulD28dDWngOd8oGcAd2fqV/ADRsE6ydTcSKiUpCrBNb3i44R+nkWgXSa/w3zRf HCOnDaIyHMUwFJy2SJzzPT+kWF4LvAqThnnYqiuJoImzXNa2tKU0GXiJuzYt08s+gh1O KX+g== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-language :content-transfer-encoding:in-reply-to:mime-version:user-agent:date :message-id:organization:from:references:cc:to:subject :dkim-signature; bh=ftYyD1JslBVd4xNQ3Jvw4aC9cnJ3abfBQJpPq4OEk2E=; b=nDMJGBubcquY+VjGCIS9BStSPJmsizGZDiditZYC/tsvTCJfg4YUnLXTeA5z7hm7TO 3ypP8PB0gx5I90iNZ4DomjQTbd6CFPmLZOpSKg7VX+9oDE5ULN/mWAw0RhEz0p/e8qvj oNt6nVBWtkivZfdn+OmQq2TKI8/rk5HlGt8U53i6sCroQXzXN9p59Ss2J26Sc9SXKqJA IFM7O25CEBLsyqrTID/EVCgbDQF6h6wror6x0nDlXiSuFMZGQW1B7xPm90GivuDqzpXF SCox3No5EvrdNXBnrz7MnNtgsK0052TrTUqGAPFGGSVbqCM+TMBoxJ7vx1mXC1xaBgUo 1oBg== ARC-Authentication-Results: i=1; mx.google.com; dkim=fail (test mode) header.i=@shipmail.org header.s=mail header.b=GLdXXnhL; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id m186si3784040pfb.248.2019.09.05.14.14.08; Thu, 05 Sep 2019 14:14:28 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=fail (test mode) header.i=@shipmail.org header.s=mail header.b=GLdXXnhL; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1733216AbfIEQ3g (ORCPT + 99 others); Thu, 5 Sep 2019 12:29:36 -0400 Received: from pio-pvt-msa3.bahnhof.se ([79.136.2.42]:43220 "EHLO pio-pvt-msa3.bahnhof.se" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1730777AbfIEQ3g (ORCPT ); Thu, 5 Sep 2019 12:29:36 -0400 Received: from localhost (localhost [127.0.0.1]) by pio-pvt-msa3.bahnhof.se (Postfix) with ESMTP id 352D23FBBA; Thu, 5 Sep 2019 18:29:29 +0200 (CEST) Authentication-Results: pio-pvt-msa3.bahnhof.se; dkim=pass (1024-bit key; unprotected) header.d=shipmail.org header.i=@shipmail.org header.b=GLdXXnhL; dkim-atps=neutral X-Virus-Scanned: Debian amavisd-new at bahnhof.se X-Spam-Flag: NO X-Spam-Score: -2.099 X-Spam-Level: X-Spam-Status: No, score=-2.099 tagged_above=-999 required=6.31 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from pio-pvt-msa3.bahnhof.se ([127.0.0.1]) by localhost (pio-pvt-msa3.bahnhof.se [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GkcQmJL962Gx; Thu, 5 Sep 2019 18:29:28 +0200 (CEST) Received: from mail1.shipmail.org (h-205-35.A357.priv.bahnhof.se [155.4.205.35]) (Authenticated sender: mb878879) by pio-pvt-msa3.bahnhof.se (Postfix) with ESMTPA id 99AC53FA34; Thu, 5 Sep 2019 18:29:26 +0200 (CEST) Received: from localhost.localdomain (h-205-35.A357.priv.bahnhof.se [155.4.205.35]) by mail1.shipmail.org (Postfix) with ESMTPSA id 25A64360160; Thu, 5 Sep 2019 18:29:26 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=shipmail.org; s=mail; t=1567700966; bh=pG0TnA/QjvfGPWD0SGrgVkNWASVfS3us4YRoLbkZweY=; h=Subject:To:Cc:References:From:Date:In-Reply-To:From; b=GLdXXnhLdXo93d/AM7fRLLrTjXj3fu7aaTaeuCI4iZREMNJ+ZsgPjdeS+6AT+ixkt q/8CIqkJRBuS6OlPPSCqjgoZkgt4cCoaKZDdmjMMVfXUudhhI2HDTmuR+MtVxeJuXc lD1eDeynjNfo15bMPuyzhaC240h/m3KKT/sg0wcc= Subject: Re: [RFC PATCH 1/2] x86: Don't let pgprot_modify() change the page encryption bit To: Dave Hansen , linux-kernel@vger.kernel.org, x86@kernel.org, pv-drivers@vmware.com Cc: Thomas Hellstrom , Dave Hansen , Andy Lutomirski , Peter Zijlstra , Thomas Gleixner , Ingo Molnar , Borislav Petkov , "H. Peter Anvin" , Christoph Hellwig , =?UTF-8?Q?Christian_K=c3=b6nig?= , Marek Szyprowski , Tom Lendacky , "Shutemov, Kirill" References: <20190905103541.4161-1-thomas_os@shipmail.org> <20190905103541.4161-2-thomas_os@shipmail.org> <608bbec6-448e-f9d5-b29a-1984225eb078@intel.com> <1badd275-91aa-45a6-0a89-ded65c7c3829@intel.com> From: =?UTF-8?Q?Thomas_Hellstr=c3=b6m_=28VMware=29?= Organization: VMware Inc. Message-ID: <1ceb9abc-7a11-eaa1-b286-11647211e2fc@shipmail.org> Date: Thu, 5 Sep 2019 18:29:25 +0200 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.6.1 MIME-Version: 1.0 In-Reply-To: <1badd275-91aa-45a6-0a89-ded65c7c3829@intel.com> Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 8bit Content-Language: en-US Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 9/5/19 5:59 PM, Dave Hansen wrote: > On 9/5/19 8:21 AM, Thomas Hellström (VMware) wrote: >>>>   #define pgprot_modify pgprot_modify >>>>   static inline pgprot_t pgprot_modify(pgprot_t oldprot, pgprot_t >>>> newprot) >>>>   { >>>> -    pgprotval_t preservebits = pgprot_val(oldprot) & _PAGE_CHG_MASK; >>>> -    pgprotval_t addbits = pgprot_val(newprot); >>>> +    pgprotval_t preservebits = pgprot_val(oldprot) & >>>> +        (_PAGE_CHG_MASK | sme_me_mask); >>>> +    pgprotval_t addbits = pgprot_val(newprot) & ~sme_me_mask; >>>>       return __pgprot(preservebits | addbits); >>>>   } >>> _PAGE_CHG_MASK is claiming similar functionality about preserving bits >>> when changing PTEs: > ... >>>> #define _PAGE_CHG_MASK  (PTE_PFN_MASK | _PAGE_PCD | _PAGE_PWT >>>> |         \ >>>>                           _PAGE_SPECIAL | _PAGE_ACCESSED | >>>> _PAGE_DIRTY | \ >>>>                           _PAGE_SOFT_DIRTY | _PAGE_DEVMAP) >>> This makes me wonder if we should be including sme_me_mask in >>> _PAGE_CHG_MASK (logically). >> I was thinking the same. But what confuses me is that addbits isn't >> masked with ~_PAGE_CHG_MASK, which is needed for sme_me_mask, since the >> problem otherwise is typically that the encryption bit is incorrectly >> set in addbits. I wonder whether it's an optimization or intentional. > I think there's a built-in assumption that 'newprot' won't have any of > the _PAGE_CHG_MASK bits set. That makes sense because there are no > protection bits in the mask. But, the code certainly doesn't enforce that. > > Are you seeing 'sme_me_mask' bits set in 'newprot'? Yes. AFAIK it's only one bit, and typically always set. /Thomas