Received: by 2002:a25:e7d8:0:0:0:0:0 with SMTP id e207csp2024096ybh;
        Fri, 13 Mar 2020 11:33:48 -0700 (PDT)
X-Google-Smtp-Source: ADFU+vtfkFm9r4KXFfb+gVT3s671QUaZL1XZ6uY/Z5pH20mdixpNgoQ5L71rk9hx+Vaiag1RpEFC
X-Received: by 2002:a9d:1427:: with SMTP id h36mr11767842oth.219.1584124428604;
        Fri, 13 Mar 2020 11:33:48 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1584124428; cv=none;
        d=google.com; s=arc-20160816;
        b=hBeINRRiHn/sU/QZhh/sfHSwIL2eBxkbl8pe8CZK92atHrK//YtcP5g/2NBvY0v1Dm
         vrqkpJsZd94YtfcI1ULIe2Po2ZXwtl/g5hs6APtGt89wXL6+fjjj5wv3BlA66tCsslXa
         CjhdC2aU46tG9msJEtYgK+vSfQ2zNH0Cu/EpGGD0TT/ijRHkMoNQxjTCardE+C9aTZmm
         5xNEGNE5YIXnaPq008eNs6CrprH0C2oW3kaINjRb5I4uQwCCMuVhD9bvmzH5eH3lL89t
         WgESCrfD1cH+XYOnsx+EEKs7lWmB5jKfkGFTsIPEO3bcBo055VctHI4uurLCwVG2aZbq
         00RA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:cc:to:subject:message-id:date:from
         :in-reply-to:references:mime-version:dkim-signature;
        bh=3m4Rn0qHyWmTm14emhIRtvuFR2s0moOwY/yLhDcqE5E=;
        b=bgLuGG5bSpKBDIZwazPj1urBzr5nzot5LcInoEE+nO/HCb0HxG00mMMOps5GpiFNVL
         S5ZJWcj8sO12l+EclT9OEImojo7K80IB1BIqdkVln13tmD0gEb0oYSG4kcWxv+NJsTsD
         5t1qr0naJgPpJaWse6oeLjPk3jkW9w37O9OCzScHKt00WktpgQYm6DjjG2uismecMQT4
         W34UJN9+ZYcfdCpvnPyr5pbv6EIJS5Uq6bK8NWy5qfe4Wc5CbIPQSOmzWyztLOo/HA7+
         LtkE+mL8PlxZflN0uFyl1QwiuBCjTT4SmWS/O9dBIIHU7O9v9aYFIR2ptEaFPBILD5UM
         LUEw==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b=Gj23aJ5x;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id m126si5018116oig.177.2020.03.13.11.33.34;
        Fri, 13 Mar 2020 11:33:48 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b=Gj23aJ5x;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1726666AbgCMSco (ORCPT <rfc822;krseo358@gmail.com> + 99 others);
        Fri, 13 Mar 2020 14:32:44 -0400
Received: from us-smtp-delivery-1.mimecast.com ([205.139.110.120]:20669 "EHLO
        us-smtp-1.mimecast.com" rhost-flags-OK-OK-OK-FAIL) by vger.kernel.org
        with ESMTP id S1726339AbgCMSco (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Fri, 13 Mar 2020 14:32:44 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com;
        s=mimecast20190719; t=1584124362;
        h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
         to:to:cc:cc:mime-version:mime-version:content-type:content-type:
         in-reply-to:in-reply-to:references:references;
        bh=3m4Rn0qHyWmTm14emhIRtvuFR2s0moOwY/yLhDcqE5E=;
        b=Gj23aJ5xQhE/W86xMZ5FgzJsBqhNi03Xv5pUwf2L/mZRBqPvs657wSDgmaog82uhE3p0sL
        b17i3eFUAJ4DDgu6y06xOVv/ytmb8bcof1U3zblVPQE47lVVHXRP4rrnERRJtk5ybZ+lt1
        d8TSfzYiYTmZH/saCRW1Rh5JdXwA/G8=
Received: from mail-io1-f69.google.com (mail-io1-f69.google.com
 [209.85.166.69]) (Using TLS) by relay.mimecast.com with ESMTP id
 us-mta-336-TiLfddWbMR-3wSVwrS5L8A-1; Fri, 13 Mar 2020 14:32:41 -0400
X-MC-Unique: TiLfddWbMR-3wSVwrS5L8A-1
Received: by mail-io1-f69.google.com with SMTP id d13so6992774ioo.23
        for <linux-kernel@vger.kernel.org>; Fri, 13 Mar 2020 11:32:41 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:references:in-reply-to:from:date
         :message-id:subject:to:cc;
        bh=3m4Rn0qHyWmTm14emhIRtvuFR2s0moOwY/yLhDcqE5E=;
        b=LkGMLdLVme4oqJ24A0iYwG+wW7hp+EvO2ltvbnAzL4faJAMXW2vWh9XzszLHGCZlZq
         uRM82KePQ1/4tgyA1GetWtP0DjWjKmlHu/w5Y6skEbDJcxvKLkSCP9hZE9zxYZoh6sPQ
         rfaPezoTLlZJx/ps80DenAE5Em/TezTljFRRltiqZwnJt8PmXA2HaUfgPTSRNQAgKMwL
         mlBaPe389UD95jTV6TMD8vFIF5KWxaTgxQUG2zUMuLZPknH3qjGPvyugLGisg+FVSLWS
         z6BpxOYJzxyCWFdmokmLfmInoSQr8w3hjJRqCrr5OohD5BgSBGLO+CHYvXV0MUcBUzit
         4irg==
X-Gm-Message-State: ANhLgQ0ZJDbo3iOVH7bK7PX17PbZeyDjnPXC/jtLI7PaDY3OS97Mctii
        ELOl47QcbbK+gOaLAfexBmolo8mlgEJTDBN6PZ5ausZ19GT3kewNToAAfCd/mTG0H2GQHqqNUAo
        +B4icANnnO7yU2YFwwDN1mjKp2S7CZRaXCvIeo6ws
X-Received: by 2002:a92:9f4e:: with SMTP id u75mr14766193ili.116.1584124360279;
        Fri, 13 Mar 2020 11:32:40 -0700 (PDT)
X-Received: by 2002:a92:9f4e:: with SMTP id u75mr14766155ili.116.1584124359900;
 Fri, 13 Mar 2020 11:32:39 -0700 (PDT)
MIME-Version: 1.0
References: <20200303233609.713348-1-jarkko.sakkinen@linux.intel.com>
 <20200303233609.713348-22-jarkko.sakkinen@linux.intel.com>
 <CAOASepPi4byhQ21hngsSx8tosCC-xa=y6r4j=pWo2MZGeyhi4Q@mail.gmail.com>
 <254f1e35-4302-e55f-c00d-0f91d9503498@fortanix.com> <CAOASepOm8-2UCdEnVMopEprMGWjkYUbUTX++dHaqCafi2ju8mA@mail.gmail.com>
 <20200313164622.GC5181@linux.intel.com>
In-Reply-To: <20200313164622.GC5181@linux.intel.com>
From:   Nathaniel McCallum <npmccallum@redhat.com>
Date:   Fri, 13 Mar 2020 14:32:29 -0400
Message-ID: <CAOASepN1hxSgxVJAJiAbSmuCTCHd=95Mnvh6BKNSPJs=EpAmbQ@mail.gmail.com>
Subject: Re: [PATCH v28 21/22] x86/vdso: Implement a vDSO for Intel SGX
 enclave call
To:     Sean Christopherson <sean.j.christopherson@intel.com>
Cc:     Jethro Beekman <jethro@fortanix.com>,
        Jarkko Sakkinen <jarkko.sakkinen@linux.intel.com>,
        linux-kernel@vger.kernel.org, x86@kernel.org,
        linux-sgx@vger.kernel.org, akpm@linux-foundation.org,
        dave.hansen@intel.com, Neil Horman <nhorman@redhat.com>,
        "Huang, Haitao" <haitao.huang@intel.com>,
        andriy.shevchenko@linux.intel.com, tglx@linutronix.de,
        "Svahn, Kai" <kai.svahn@intel.com>, bp@alien8.de,
        Josh Triplett <josh@joshtriplett.org>, luto@kernel.org,
        kai.huang@intel.com, David Rientjes <rientjes@google.com>,
        cedric.xing@intel.com, Patrick Uiterwijk <puiterwijk@redhat.com>,
        Andy Lutomirski <luto@amacapital.net>,
        Connor Kuehl <ckuehl@redhat.com>,
        Harald Hoyer <harald@redhat.com>,
        Lily Sturmann <lsturman@redhat.com>
Content-Type: text/plain; charset="UTF-8"
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Fri, Mar 13, 2020 at 12:46 PM Sean Christopherson
<sean.j.christopherson@intel.com> wrote:
>
> On Fri, Mar 13, 2020 at 11:48:54AM -0400, Nathaniel McCallum wrote:
> > Thinking about this more carefully, I still think that at least part
> > of my critique still stands.
> >
> > __vdso_sgx_enter_enclave() doesn't use the x86-64 ABI. This means that
> > there will always be an assembly wrapper for
> > __vdso_sgx_enter_enclave(). But because __vdso_sgx_enter_enclave()
> > doesn't save %rbx, the wrapper is forced to in order to be called from
> > C.
> >
> > A common pattern for the wrapper will be to do something like this:
> >
> > # void enter_enclave(rdi, rsi, rdx, unused, r8, r9, @tcs, @e,
> > @handler, @leaf, @vdso)
> > enter_enclave:
> >     push %rbx
> >     push $0 /* align */
> >     push 0x48(%rsp)
> >     push 0x48(%rsp)
> >     push 0x48(%rsp)
> >
> >     mov 0x70(%rsp), %eax
> >     call *0x68(%rsp)
> >
> >     add $0x20, %rsp
> >     pop %rbx
> >     ret
> >
> > Because __vdso_sgx_enter_enclave() doesn't preserve %rbx, the wrapper
> > is forced to reposition stack parameters in a performance-critical
> > path. On the other hand, if __vdso_sgx_enter_enclave() preserved %rbx,
> > you could implement the above as:
> >
> > # void enter_enclave(rdi, rsi, rdx, unused, r8, r9, @tcs, @e,
> > @handler, @leaf, @vdso)
> > enter_enclave:
> >     mov 0x20(%rsp), %eax
> >     jmp *0x28(%rsp)
> >
> > This also implies that if __vdso_sgx_enter_enclave() took @leaf as a
> > stack parameter and preserved %rbx, it would be x86-64 ABI compliant
> > enough to call from C if the enclave preserves all callee-saved
> > registers besides %rbx (Enarx does).
> >
> > What are the downsides of this approach? It also doesn't harm the more
> > extended case when you need to use an assembly wrapper to setup
> > additional registers. This can still be done. It does imply an extra
> > push and mov instruction. But because there are currently an odd
> > number of stack function parameters, the push also removes an
> > alignment instruction where the stack is aligned before the call to
> > __vdso_sgx_enter_enclave() (likely). Further, the push and mov are
> > going to be performed by *someone* in order to call
> > __vdso_sgx_enter_enclave() from C.
> >
> > Therefore, I'd like to propose that __vdso_sgx_enter_enclave():
> >   * Preserve %rbx.
>
> At first glance, that looks sane.  Being able to call __vdso... from C
> would certainly be nice.

Agreed. I think ergonomically we want __vdso...() to be called from C
and the handler to be implemented in asm (optionally); without
breaking the ability to call __vdso..() from asm in special cases.

I think all ergonomic issues get solved by the following:
   * Pass a void * into the handler from C through __vdso...().
   * Allow the handler to pop parameters off of the output stack without hacks.

This allows the handler to pop extra arguments off the stack and write
them into the memory at the void *. Then the handler can be very small
and pass logic back to the caller of __vdso...().

Here's what this all means for the enclave. For maximum usability, the
enclave should preserve all callee-saved registers (except %rbx, which
is preserved by __vdso..()). For each ABI rule that the enclave
breaks, you need logic in a handler to fix it. So if you push return
params on the stack, the handler needs to undo that.

This doesn't compromise the ability to treat __vsdo...() like ENCLU if
you need the full power. But it does make it significantly easier to
consume when you don't have special needs. So as I see it, __vdso...()
should:

1. preserve %rbx
2. take leaf in %rcx
3. gain a void* stack param which is passed to the handler
4. sub/add to %rsp rather than save/restore

That would make this a very usable and fast interface without
sacrificing any of its current power.

> >   * Take the leaf as an additional stack parameter instead of passing
> > it in %rax.
>
> Does the leaf even need to be a stack param?  Wouldn't it be possible to
> use %rcx as @leaf instead of @unusued?  E.g.

Even better!

> int __vdso_sgx_enter_enclave(unsigned long rdi, unsigned long rsi,
>                              unsigned long rdx, unsigned int leaf,
>                              unsigned long r8,  unsigned long r9,
>                              void *tcs, struct sgx_enclave_exception *e,
>                              sgx_enclave_exit_handler_t handler)
> {
>         push    %rbp
>         mov     %rsp, %rbp
>         push    %rbx
>
>         mov     %ecx, %eax
> .Lenter_enclave
>         cmp     $0x2, %eax
>         jb      .Linvalid_leaf
>         cmp     $0x3, %eax
>         ja      .Linvalid_leaf
>
>         mov     0x0x10(%rbp), %rbx
>         lea     .Lasync_exit_pointer(%rip), %rcx
>
> .Lasync_exit_pointer:
> .Lenclu_eenter_eresume:
>         enclu
>
>         xor     %eax, %eax
>
> .Lhandle_exit:
>         cmp     $0, 0x20(%rbp)
>         jne     .Linvoke_userspace_handler
>
> .Lout
>         pop     %rbx
>         leave
>         ret
> }
>
>
> > Then C can call it without additional overhead. And people who need to
> > "extend" the C ABI can still do so.
> >
>