Received: by 2002:a25:868d:0:0:0:0:0 with SMTP id z13csp800479ybk;
        Wed, 13 May 2020 13:29:48 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJwVweqeosFfqNcVyCfbVnKyWMdD+LasgSfkCkhfHUxduMZyRV93XmolBQlr9+FSK3rym5+Z
X-Received: by 2002:a50:9603:: with SMTP id y3mr1373996eda.80.1589401788181;
        Wed, 13 May 2020 13:29:48 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1589401788; cv=none;
        d=google.com; s=arc-20160816;
        b=cLCGDGJEG1ES/VfC33NRgv01Q4ZxxQJd8zI8kvYz3JXtqoGmyPoxPG6mtRKt1kxi7I
         HNcp5MJajJ9zNMAYW9tYR0jKke+adE07sRAdgolwJyY4FuGl0DtKkW/RCfQVNEXmRj7H
         qxbfhfz1hNjQK+4FT0e+du/Mr5HVEkj67ceCHBkSAQjR7UI1MaLQOxse1MnE4WEYFOeT
         /hMocQlK62Io2sGabWxZNp/SPEXDZy2eqWQpOdueE/DBqIEgriEi12cUm/j7ASzbQBRF
         5yL9RHBmbBR71uyPiB5kAIMZZ7ICkIfNHCZdeG4H5Gd7pFFUTAOv7iCkbnAC/SxK07/G
         DUBg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:content-transfer-encoding:mime-version
         :user-agent:references:in-reply-to:message-id:date:subject:cc:to
         :from:dkim-signature;
        bh=hfURxQ7iw0tZ1w3txYwMU6vSKuQdJC/fCQLcdyQxK1E=;
        b=zxACkjaUNuRpvGLWVVQbskW/HaiPYwrHHlxLK/mmmRui3zX1dUm4BQaVsagLpSdMXg
         w780J2jUW2BMqpyUKWMId9gqe+Jc/m4HeCvShsaddJltejPH+A0Z32JQaT2e0Fi4TYN/
         6BLiVrjpDgZkbwOVrPhavxAYMOx9WGFDFt0cqvNnw3e3n3bL9XqEuiTD+2UTY9OxlELi
         sL/vy51ROvbTBqdrQIF8ovIcxVaBmWuWVTLlWQ4gaBUwbEHFlCFzG53XRQ0xm86Dkyzi
         hBGfznD8Ib+S9YdKZ+fN/R+VAE4sPTeFEn+1+Iqo6Feww4CBefyob3RJZMZ9qaPjI1q8
         WAnA==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@kernel.org header.s=default header.b=iTDmOzh3;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id bo16si415897edb.537.2020.05.13.13.29.25;
        Wed, 13 May 2020 13:29:48 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@kernel.org header.s=default header.b=iTDmOzh3;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1732819AbgEMJrP (ORCPT <rfc822;crosarcplusplustest@gmail.com>
        + 99 others); Wed, 13 May 2020 05:47:15 -0400
Received: from mail.kernel.org ([198.145.29.99]:44838 "EHLO mail.kernel.org"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S1732803AbgEMJrL (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Wed, 13 May 2020 05:47:11 -0400
Received: from localhost (83-86-89-107.cable.dynamic.v4.ziggo.nl [83.86.89.107])
        (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
        (No client certificate requested)
        by mail.kernel.org (Postfix) with ESMTPSA id 2B49A206F5;
        Wed, 13 May 2020 09:47:10 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org;
        s=default; t=1589363230;
        bh=5FbjvvE4YYzC2D6LEejeXrQVJx3de3jv9KNq2V6otDI=;
        h=From:To:Cc:Subject:Date:In-Reply-To:References:From;
        b=iTDmOzh3DwF7M1tuJD25WPRvp0c6wmjlBZBmgwcg+uRoy7DmgOSS2OxQCQmqTc0Rb
         YvGzXf2fUjdVFjwxwvSwBk6+jldzMdk6WMJ4/WRd1mTUYbmlLDdu7g9e4hgIKFhs6h
         Fa+h0zJJJsM7TvFQJExNXYs0rD3q8cyxyMP7BuaA=
From:   Greg Kroah-Hartman <gregkh@linuxfoundation.org>
To:     linux-kernel@vger.kernel.org
Cc:     Greg Kroah-Hartman <gregkh@linuxfoundation.org>,
        stable@vger.kernel.org, Vince Weaver <vincent.weaver@maine.edu>,
        Dave Jones <dsj@fb.com>,
        "Dr. David Alan Gilbert" <dgilbert@redhat.com>,
        Joe Mario <jmario@redhat.com>, Jann Horn <jannh@google.com>,
        Linus Torvalds <torvalds@linux-foundation.org>,
        Miroslav Benes <mbenes@suse.cz>,
        Josh Poimboeuf <jpoimboe@redhat.com>,
        Ingo Molnar <mingo@kernel.org>,
        Andy Lutomirski <luto@kernel.org>,
        Peter Zijlstra <peterz@infradead.org>,
        Thomas Gleixner <tglx@linutronix.de>
Subject: [PATCH 4.19 38/48] x86/entry/64: Fix unwind hints in kernel exit path
Date:   Wed, 13 May 2020 11:45:04 +0200
Message-Id: <20200513094401.426409226@linuxfoundation.org>
X-Mailer: git-send-email 2.26.2
In-Reply-To: <20200513094351.100352960@linuxfoundation.org>
References: <20200513094351.100352960@linuxfoundation.org>
User-Agent: quilt/0.66
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

From: Josh Poimboeuf <jpoimboe@redhat.com>

commit 1fb143634a38095b641a3a21220774799772dc4c upstream.

In swapgs_restore_regs_and_return_to_usermode, after the stack is
switched to the trampoline stack, the existing UNWIND_HINT_REGS hint is
no longer valid, which can result in the following ORC unwinder warning:

  WARNING: can't dereference registers at 000000003aeb0cdd for ip swapgs_restore_regs_and_return_to_usermode+0x93/0xa0

For full correctness, we could try to add complicated unwind hints so
the unwinder could continue to find the registers, but when when it's
this close to kernel exit, unwind hints aren't really needed anymore and
it's fine to just use an empty hint which tells the unwinder to stop.

For consistency, also move the UNWIND_HINT_EMPTY in
entry_SYSCALL_64_after_hwframe to a similar location.

Fixes: 3e3b9293d392 ("x86/entry/64: Return to userspace from the trampoline stack")
Reported-by: Vince Weaver <vincent.weaver@maine.edu>
Reported-by: Dave Jones <dsj@fb.com>
Reported-by: Dr. David Alan Gilbert <dgilbert@redhat.com>
Reported-by: Joe Mario <jmario@redhat.com>
Reported-by: Jann Horn <jannh@google.com>
Reported-by: Linus Torvalds <torvalds@linux-foundation.org>
Reviewed-by: Miroslav Benes <mbenes@suse.cz>
Signed-off-by: Josh Poimboeuf <jpoimboe@redhat.com>
Signed-off-by: Ingo Molnar <mingo@kernel.org>
Cc: Andy Lutomirski <luto@kernel.org>
Cc: Peter Zijlstra <peterz@infradead.org>
Cc: Thomas Gleixner <tglx@linutronix.de>
Link: https://lore.kernel.org/r/60ea8f562987ed2d9ace2977502fe481c0d7c9a0.1587808742.git.jpoimboe@redhat.com
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

---
 arch/x86/entry/entry_64.S |    3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

--- a/arch/x86/entry/entry_64.S
+++ b/arch/x86/entry/entry_64.S
@@ -312,7 +312,6 @@ GLOBAL(entry_SYSCALL_64_after_hwframe)
 	 */
 syscall_return_via_sysret:
 	/* rcx and r11 are already restored (see code above) */
-	UNWIND_HINT_EMPTY
 	POP_REGS pop_rdi=0 skip_r11rcx=1
 
 	/*
@@ -321,6 +320,7 @@ syscall_return_via_sysret:
 	 */
 	movq	%rsp, %rdi
 	movq	PER_CPU_VAR(cpu_tss_rw + TSS_sp0), %rsp
+	UNWIND_HINT_EMPTY
 
 	pushq	RSP-RDI(%rdi)	/* RSP */
 	pushq	(%rdi)		/* RDI */
@@ -700,6 +700,7 @@ GLOBAL(swapgs_restore_regs_and_return_to
 	 */
 	movq	%rsp, %rdi
 	movq	PER_CPU_VAR(cpu_tss_rw + TSS_sp0), %rsp
+	UNWIND_HINT_EMPTY
 
 	/* Copy the IRET frame to the trampoline stack. */
 	pushq	6*8(%rdi)	/* SS */