Received: by 2002:a05:6a10:8c0a:0:0:0:0 with SMTP id go10csp687469pxb;
        Wed, 20 Jan 2021 18:36:02 -0800 (PST)
X-Google-Smtp-Source: ABdhPJy5Nu5iTypgIma39H7Fmcbvdu0SjkxvtzdmmBobjiaHRLUCNjkS5tCUcXeHOkOzUjN6ydXG
X-Received: by 2002:a17:906:1ed6:: with SMTP id m22mr8145063ejj.231.1611196562632;
        Wed, 20 Jan 2021 18:36:02 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1611196562; cv=none;
        d=google.com; s=arc-20160816;
        b=myZw0XZNUU7doEXwljDRP3EwvKQJCE7k24Z6WuBhDKgDY7DS4VwXunMSi3OnorB95W
         Ae+AUfFtScq9qq3GaQBRdAUM+MCG8Sk80uTxk8CK9TybYcZYUSqw1Q7z4WpKJACmGfbc
         5sNxmst9A5kmw2UapmRC3q03XETRToJb90RHtNXqCUqrkJjoQQckUi0G0y2X5rImd5Nb
         FzH+D2dRSlN6DQs1vinq2LHS8eBQk8oGLOlviFsqRziCg0aaQsTqYiZ6aUbwiglAnKoZ
         ZZstv45qlWlmdhYk2D8yMh0MaYvIwxsMvnB3cDFrS8fjS3QjZa0/WCpT25Mje0ejQB3s
         Lkgg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:in-reply-to:content-disposition:mime-version
         :references:message-id:subject:cc:to:from:date:dkim-signature;
        bh=aa5H3l8Iep9Qg929xu7ck3f5GXKVihNnvzIMA4NSA3U=;
        b=fmuDuZHtXoB1iwXrO++K98hkN+CGNngW03ym2RzxJqjg/fLynXD3s+SHB4p0VtjMAq
         QOs6PWCtxTTJAWvmvZxeel6OKLv12MXcYvRSOI55z4O3PSUYokyq3d/n6v/fmHiqXuEY
         hebKn9XcRYZ00ivUQtKn+YvXQRznzstYnNTyW8eWmPEtb4VU+/0eBt9+cpJvTpnXDS1G
         5p/f1/05yqSBmkN6V1yfh7WTQuyZsFVUc4h+4bWxPySzcVW0OasSTmNjgAMFelfoSk63
         tldBJRm1NnpxLko3PDdtrcm1kEAK8VkuQdTz45AQ973wLfYGXU2PqWgPgsluD5MzGYHc
         aPfg==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@kernel.org header.s=k20201202 header.b=KwC0Jeac;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id k14si1290000ejp.175.2021.01.20.18.35.39;
        Wed, 20 Jan 2021 18:36:02 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@kernel.org header.s=k20201202 header.b=KwC0Jeac;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1726607AbhAUAIK (ORCPT <rfc822;liuchenandwork@gmail.com>
        + 99 others); Wed, 20 Jan 2021 19:08:10 -0500
Received: from mail.kernel.org ([198.145.29.99]:42936 "EHLO mail.kernel.org"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S1732384AbhATWdA (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Wed, 20 Jan 2021 17:33:00 -0500
Received: by mail.kernel.org (Postfix) with ESMTPSA id 6D05122473;
        Wed, 20 Jan 2021 22:31:55 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org;
        s=k20201202; t=1611181917;
        bh=IZpZup+7UVJmyznAHqT5zPuIOVNplTanitrN87XcENQ=;
        h=Date:From:To:Cc:Subject:References:In-Reply-To:From;
        b=KwC0JeacdrJ9LXB4DLrYNvG1UWPLOKtQNEEHroZ40vf2MbOcwg7s6hpJbLR8Gy3WX
         XZFEYY4qiVIU4t+VPH9r0cDDDV6As1d8Wvt0aj4rBoixMdHeVUTvKsHLuIRGPNSQAk
         ArIZKhC3fvn4kEjz7zGv7kjliP8Ha8wjmrqwlw2cujiDjPvqEDuwjxIZdHB4JIkxpR
         hNxcwCwPhM/xfLC5L+JhXPj3zqYOU0qhTr/T34gD7tshp9okYz9F7uWqgd2FtO9x8m
         Y8llKWlB3aoo0LNjX8RQJsGHhGEAx74KdgSbBMDJKKH3caZZB+lY2ER3UYFXIWFjy2
         kMk9itOxx3uug==
Date:   Thu, 21 Jan 2021 00:31:52 +0200
From:   Jarkko Sakkinen <jarkko@kernel.org>
To:     Tianjia Zhang <tianjia.zhang@linux.alibaba.com>
Cc:     Thomas Gleixner <tglx@linutronix.de>,
        Ingo Molnar <mingo@redhat.com>, Borislav Petkov <bp@alien8.de>,
        "H. Peter Anvin" <hpa@zytor.com>,
        Sean Christopherson <seanjc@google.com>, x86@kernel.org,
        linux-sgx@vger.kernel.org, linux-kernel@vger.kernel.org,
        Jia Zhang <zhang.jia@linux.alibaba.com>
Subject: Re: [PATCH v2] x86/sgx: Fix free_cnt counting logic in epc section
Message-ID: <YAivWK/b/Mcz39JO@kernel.org>
References: <20210120035320.19709-1-tianjia.zhang@linux.alibaba.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20210120035320.19709-1-tianjia.zhang@linux.alibaba.com>
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Wed, Jan 20, 2021 at 11:53:20AM +0800, Tianjia Zhang wrote:
> Increase `section->free_cnt` in sgx_sanitize_section() is more
> reasonable, which is called in ksgxd kernel thread, instead of

This is lacking reasoning of why.

/Jarkko

> assigning it to epc section pages number at initialization.
> Although this is unlikely to fail, these pages cannot be
> allocated after initialization, and which need to be reset
> by ksgxd.
> 
> At the same time, taking section->lock could be moved inside
> the !ret flow so that EREMOVE is done without holding the lock.
> it's theoretically possible that ksgxd hasn't finished
> sanitizing the EPC when userspace starts creating enclaves.
> 
> Reported-by: Jia Zhang <zhang.jia@linux.alibaba.com>
> Suggested-by: Sean Christopherson <seanjc@google.com>
> Reviewed-by: Sean Christopherson <seanjc@google.com>
> Signed-off-by: Tianjia Zhang <tianjia.zhang@linux.alibaba.com>
> ---
>  arch/x86/kernel/cpu/sgx/main.c | 13 +++++++------
>  1 file changed, 7 insertions(+), 6 deletions(-)
> 
> diff --git a/arch/x86/kernel/cpu/sgx/main.c b/arch/x86/kernel/cpu/sgx/main.c
> index c519fc5f6948..34a72a147983 100644
> --- a/arch/x86/kernel/cpu/sgx/main.c
> +++ b/arch/x86/kernel/cpu/sgx/main.c
> @@ -41,16 +41,18 @@ static void sgx_sanitize_section(struct sgx_epc_section *section)
>  		if (kthread_should_stop())
>  			return;
>  
> -		/* needed for access to ->page_list: */
> -		spin_lock(&section->lock);
> -
>  		page = list_first_entry(&section->init_laundry_list,
>  					struct sgx_epc_page, list);
>  
>  		ret = __eremove(sgx_get_epc_virt_addr(page));
> -		if (!ret)
> +
> +		/* needed for access to ->page_list: */
> +		spin_lock(&section->lock);
> +
> +		if (!ret) {
>  			list_move(&page->list, &section->page_list);
> -		else
> +			section->free_cnt += 1;
> +		} else
>  			list_move_tail(&page->list, &dirty);
>  
>  		spin_unlock(&section->lock);
> @@ -646,7 +648,6 @@ static bool __init sgx_setup_epc_section(u64 phys_addr, u64 size,
>  		list_add_tail(&section->pages[i].list, &section->init_laundry_list);
>  	}
>  
> -	section->free_cnt = nr_pages;
>  	return true;
>  }
>  
> -- 
> 2.19.1.3.ge56e4f7
> 
>