Received: by 2002:a25:e7d8:0:0:0:0:0 with SMTP id e207csp3805165ybh; Tue, 17 Mar 2020 06:58:02 -0700 (PDT) X-Google-Smtp-Source: ADFU+vujBoI6lc7hXLDTMp7hFR/4au+gJ3CWVwCrcQm1yAf+ht67u9JDMWqbUcJ+qhcHHRU/WYF/ X-Received: by 2002:a54:478c:: with SMTP id o12mr3420147oic.106.1584453482394; Tue, 17 Mar 2020 06:58:02 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1584453482; cv=none; d=google.com; s=arc-20160816; b=I1Z8xzmr3HPD6qWeLOB6kNsLn79RmkzdFEA6mprUQORiA33ars0Vo34TCjg+Iuc47U VDhGwhLVC0fkSd6n+0p1PQJ8JNV/b4sDxi8ukFSfOMSPNmpnjV+KFqiKYdjc/xmmdVTs I3Ebb2fnkrhEFHz7ORMfhmymahrPbTjgfAuaixVBB0N9dqFtLdc+tV0Q0whsdy0qxinY iH8DvXZP4QKEyG2chbhDLKg2JbDvvJEE6HQJIoI6STI7nI1808nwGVZXBrxcDF9bmR33 PXmYk4ee9kOLjK+fPoEk3ZWY48A/NsMhLRxJBNWl86KwYJmXP0q82kQn9O+/EBLXCGf6 YSuw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:user-agent:in-reply-to :content-disposition:mime-version:references:message-id:subject:cc :to:from:date; bh=dYOXB4wqSran6JDa1fgZA3trnSoupB25QiDTek3ofRc=; b=B3z6uDTc9gHqk5SnbOoubnGxbweSjKUPbu6BqUHg/79jScFkaFVdJG+UzAIxs0U45c RwuvJNUS+jY3Jw4nyPVy6TGnLtg58h8r+Jj/vtY/YZm3FWt2iG9myeWsJHy2xREI5yZn HlhmSaSFG74osjvitGDQe5dY2X0ObE8SXZ36LLSUbI4K1dG9n4oZqlA4lGR89sUbJ6gk 6lHyGzCQMdmGIIFsoCCaAZUue+2puDwp3bJLXaByolA6vD/+OuGpesTZOt/6CusZrSLo fHnfxs5yXxAhTCTjWra91N65lkFPhTz7V3aq+5AxZ/HvGQzIMM/J8X4vgmXqojqvv9MP l3AA== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id 34si1810274otv.21.2020.03.17.06.57.49; Tue, 17 Mar 2020 06:58:02 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726616AbgCQN5W (ORCPT + 99 others); Tue, 17 Mar 2020 09:57:22 -0400 Received: from foss.arm.com ([217.140.110.172]:38500 "EHLO foss.arm.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726250AbgCQN5W (ORCPT ); Tue, 17 Mar 2020 09:57:22 -0400 Received: from usa-sjc-imap-foss1.foss.arm.com (unknown [10.121.207.14]) by usa-sjc-mx-foss1.foss.arm.com (Postfix) with ESMTP id 7BBBDFEC; Tue, 17 Mar 2020 06:57:21 -0700 (PDT) Received: from localhost (unknown [10.37.6.21]) by usa-sjc-imap-foss1.foss.arm.com (Postfix) with ESMTPSA id F172C3F534; Tue, 17 Mar 2020 06:57:20 -0700 (PDT) Date: Tue, 17 Mar 2020 13:57:19 +0000 From: Mark Brown To: Will Deacon Cc: Mark Rutland , Hongbo Yao , linux-kernel@vger.kernel.org, catalin.marinas@arm.com, linux-arm-kernel@lists.infradead.org Subject: Re: [RFC PATCH] arm64: fix the missing ktpi= cmdline check in arm64_kernel_unmapped_at_el0() Message-ID: <20200317135719.GH3971@sirena.org.uk> References: <20200317114708.109283-1-yaohongbo@huawei.com> <20200317121050.GH8831@lakrids.cambridge.arm.com> <20200317124323.GA16200@willie-the-truck> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="CEUtFxTsmBsHRLs3" Content-Disposition: inline In-Reply-To: <20200317124323.GA16200@willie-the-truck> X-Cookie: There's only one everything. User-Agent: Mutt/1.10.1 (2018-07-13) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org --CEUtFxTsmBsHRLs3 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline On Tue, Mar 17, 2020 at 12:43:24PM +0000, Will Deacon wrote: > On Tue, Mar 17, 2020 at 12:10:51PM +0000, Mark Rutland wrote: > > On Tue, Mar 17, 2020 at 07:47:08PM +0800, Hongbo Yao wrote: > > > Kpti cannot be disabled from the kernel cmdline after the commit > > > 09e3c22a("arm64: Use a variable to store non-global mappings decision"). > > > Bring back the missing check of kpti= command-line option to fix the > > > case where the SPE driver complains the missing "kpti-off" even it has > > > already been set. > > > - return arm64_use_ng_mappings; > > > + return arm64_use_ng_mappings && > > > + cpus_have_const_cap(ARM64_UNMAP_KERNEL_AT_EL0); > > > } > This probably isn't the right fix, since this will mean that early mappings > will be global and we'll have to go through the painful page-table rewrite > logic when the cap gets enabled for KASLR-enabled kernels. Aren't we looking for a rewrite from non-global to global here (disable KPTI where we would otherwise have it), which we don't currently have code for? > Maybe a better bodge is something like: > diff --git a/arch/arm64/kernel/cpufeature.c b/arch/arm64/kernel/cpufeature.c > index 0b6715625cf6..ad10f55b7bb9 100644 > --- a/arch/arm64/kernel/cpufeature.c > +++ b/arch/arm64/kernel/cpufeature.c > @@ -1085,6 +1085,8 @@ static bool unmap_kernel_at_el0(const struct arm64_cpu_capabilities *entry, > if (!__kpti_forced) { > str = "KASLR"; > __kpti_forced = 1; > + } else if (__kpti_forced < 0) { > + arm64_use_ng_mappings = false; > } > } That is probably a good idea but I think that runs too late to affect the early mappings, they're done based on kaslr_requires_kpti() well before we start secondaries. My first pass not having paged everything back in yet is that there needs to be command line parsing in kaslr_requires_kpti() but as things stand the command line isn't actually ready then... --CEUtFxTsmBsHRLs3 Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQEzBAABCgAdFiEEreZoqmdXGLWf4p/qJNaLcl1Uh9AFAl5w1z4ACgkQJNaLcl1U h9DHPQf/Yk+8QriE8OOokiXkCDmOzV62HaR9JUB4YrP/wXt51ciPUarL47VDjxX0 BVZornO01cOyFwLJ9ZPhFc+XXYoaO7hhRXI+9eervR0LYo9pEvTzGyAXPpKyyldo lNUHzr5zABlfNy9XMAPHWUu2audTlT5ECyLd5jzKYvQH6fIQ3GMr7niaEauktkue mJYqjjnCXMZdCfIPB1djyXTWIwHWA1d4SC1IuxSfEG1Z+3pmWB6O2xcuLXPzDpiC C9pZ8fPwDbG1fqOKCMT4RkoAgceWg2jhE2ATlpEawsOyF8Xy9pnlXcV4el33+rMP iNg5UVCxpnbw8Z2WQXOD4er3dk5BHw== =o53u -----END PGP SIGNATURE----- --CEUtFxTsmBsHRLs3--