Received: by 2002:a05:6a10:206:0:0:0:0 with SMTP id 6csp4760304pxj;
        Wed, 12 May 2021 12:37:36 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJxMrdb5PHB3kLKLCqeyqqKGdcpkvmPSOV7Y6SkMYslUQH8II+FgsRCRxbLKb6v9pbvylZZC
X-Received: by 2002:a9d:3bcb:: with SMTP id k69mr33137514otc.206.1620848256295;
        Wed, 12 May 2021 12:37:36 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1620848256; cv=none;
        d=google.com; s=arc-20160816;
        b=SuHa1sTXZPYqbGSN+3Ik4diFwcuy4FDNLsxGSRFrljb2zWO61qimhuYVAlYng8UM6x
         IGNEYV0eJQYsPcWLCwBKiMGP84OWdSfrN2SRYLfo98MZXGE+XEIMridivZpccfIblFNg
         VBlH9P9mZ4Pyhpc/lgwnRX5fKBUes9YeaQI+hq/IRrExPNYQ+2BqyGHQOapJ4OK3XRRW
         2aWYx9gY4BSYtb+/5Z/OQOGhKz5hjVbFqNEWENMeybdvQhCwNg2Bdo5cWq8T/jjUv2IO
         HjMdHX/zFzUV9z0s27J5PQAz+nRxHKNXJG8WQjzRwh5zUwaljTLz7gC2ZzFz4hQa4ltC
         im/Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:in-reply-to:content-disposition:mime-version
         :references:message-id:subject:cc:to:from:date:dkim-signature;
        bh=ygukMSZ6mguXZGZCEiXIOEJ1Ou3kN4uMuhJTb1ptDIQ=;
        b=0yuNt1z+j9HlXZH3/3wy6iYZpPSi953ih+DA9VrTmzdMmW56znmYxzckzmWQBk66Hr
         PqqMK1h+qwv+JGbxc6iT4KeVaATE3zoPhC4akNc2oXKfca8AQSi6xawZxrK2Y3isbDMM
         a7oCEJ5QQtFjMPGnf21ZupicBW3ypn6ZrwiKzc68UfPLGIeeok/bbiOO01QxaY+DTK2Z
         wwLaQVCD6Cij9KMkNRe6enBkxt4eZr+rafoUf9F5VhtUUoewJ/yBje1n6dRhyrYul3Z+
         3mpEBDCfSZz9sqqU91cPTH2CyZat6753Gz5x9BgNmaf/eJ6Z6EJTzjWySWHGl9OJsOm6
         Y+Vw==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@google.com header.s=20161025 header.b=aXvwhA4S;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id l16si570072oie.48.2021.05.12.12.37.22;
        Wed, 12 May 2021 12:37:36 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@google.com header.s=20161025 header.b=aXvwhA4S;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1381284AbhELTdv (ORCPT <rfc822;lkmlinbox@gmail.com> + 99 others);
        Wed, 12 May 2021 15:33:51 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:47872 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1348913AbhELRjm (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Wed, 12 May 2021 13:39:42 -0400
Received: from mail-pg1-x52a.google.com (mail-pg1-x52a.google.com [IPv6:2607:f8b0:4864:20::52a])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 58D78C06175F
        for <linux-kernel@vger.kernel.org>; Wed, 12 May 2021 10:38:34 -0700 (PDT)
Received: by mail-pg1-x52a.google.com with SMTP id q15so14459536pgg.12
        for <linux-kernel@vger.kernel.org>; Wed, 12 May 2021 10:38:34 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20161025;
        h=date:from:to:cc:subject:message-id:references:mime-version
         :content-disposition:in-reply-to;
        bh=ygukMSZ6mguXZGZCEiXIOEJ1Ou3kN4uMuhJTb1ptDIQ=;
        b=aXvwhA4SMeZkjzvQvbiETGvNAb2DW9SKROVUAae6HB3DVvXq17O96jqoZbLxV9WKy4
         6pxWvKKC9OC18rcxw5IF8aal6YBlmThgbKX5w18PudVXAWgCcMhfEn5QQgzdeqe2JNVO
         lDDbYBrELxRRY+pM82COQUTEbS52U4d2TK/IIWHJP3+Q+EcRTBiF5L7TGFcRapr4PunV
         cw91rrN/yQBF9KZmHUWj7OeWzVio3XpBzFn6gR4JIWEWZYDFaVUzCJDUXqX5R5TKlQPR
         b+bCPrxxd1/ixHoqp72R2BOqR54trN2dX3sUaMjyNtbpMiNWGODg24Cy8qXWN3hmWaT1
         JcnA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:date:from:to:cc:subject:message-id:references
         :mime-version:content-disposition:in-reply-to;
        bh=ygukMSZ6mguXZGZCEiXIOEJ1Ou3kN4uMuhJTb1ptDIQ=;
        b=sJZEpNYk+ZGr/nLTAfSEKxZGWj8KrHIaO4O0Nky3Aw6OyfVYJk6EC0l2VHp9X9zYQT
         jjOUQ2KjIGzq/Mksb6tnuGc3JBDEzGkTFqE08XqGx0L1oFYQ6gPy7TaQyi7epXmH29cj
         7RcZRbVDNtedKGGFO9rFzo8q8s7iwpclGnYEK8BBRdboQsf2paW67zso1pbzs/imVuw8
         oNVe7/vPRoRP0FcE5p5Ak+f1su0qg8zu80w/qwZPulLKxBWYs4xCCC5S2CQiAfG7e2za
         YVN4uhBsaLwL2YEyHHjSPYg1/hTxTs6eKURmU1xwIH71JnH09u0qBQhyA55o/EjcNzfs
         qPWA==
X-Gm-Message-State: AOAM533xrJhB1u5ZtJPaCsr2zM3/DXMzHm0qZR/xBogtONGXqR32M8Qb
        AycDgDcRFy6HcURPJkFz0JgEcA==
X-Received: by 2002:aa7:85d0:0:b029:28e:80ff:cbf4 with SMTP id z16-20020aa785d00000b029028e80ffcbf4mr36669418pfn.59.1620841113580;
        Wed, 12 May 2021 10:38:33 -0700 (PDT)
Received: from google.com (240.111.247.35.bc.googleusercontent.com. [35.247.111.240])
        by smtp.gmail.com with ESMTPSA id b6sm318783pjk.13.2021.05.12.10.38.32
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Wed, 12 May 2021 10:38:32 -0700 (PDT)
Date:   Wed, 12 May 2021 17:38:29 +0000
From:   Sean Christopherson <seanjc@google.com>
To:     Joerg Roedel <joro@8bytes.org>
Cc:     x86@kernel.org, Hyunwook Baek <baekhw@google.com>,
        Joerg Roedel <jroedel@suse.de>, stable@vger.kernel.org,
        hpa@zytor.com, Andy Lutomirski <luto@kernel.org>,
        Dave Hansen <dave.hansen@linux.intel.com>,
        Peter Zijlstra <peterz@infradead.org>,
        Jiri Slaby <jslaby@suse.cz>,
        Dan Williams <dan.j.williams@intel.com>,
        Tom Lendacky <thomas.lendacky@amd.com>,
        Juergen Gross <jgross@suse.com>,
        Kees Cook <keescook@chromium.org>,
        David Rientjes <rientjes@google.com>,
        Cfir Cohen <cfir@google.com>,
        Erdem Aktas <erdemaktas@google.com>,
        Masami Hiramatsu <mhiramat@kernel.org>,
        Mike Stunes <mstunes@vmware.com>,
        Martin Radev <martin.b.radev@gmail.com>,
        Arvind Sankar <nivedita@alum.mit.edu>,
        linux-coco@lists.linux.dev, linux-kernel@vger.kernel.org,
        kvm@vger.kernel.org, virtualization@lists.linux-foundation.org
Subject: Re: [PATCH 4/6] Revert "x86/sev-es: Handle string port IO to kernel
 memory properly"
Message-ID: <YJwSlVnHb0SZTSrG@google.com>
References: <20210512075445.18935-1-joro@8bytes.org>
 <20210512075445.18935-5-joro@8bytes.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20210512075445.18935-5-joro@8bytes.org>
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Wed, May 12, 2021, Joerg Roedel wrote:
> From: Joerg Roedel <jroedel@suse.de>
> 
> This reverts commit 7024f60d655272bd2ca1d3a4c9e0a63319b1eea1.
> 
> The commit reverted here introduces a short-cut into the #VC handlers
> memory access code which only works reliably in task context. But the
> kernels #VC handler can be invoked from any context, making the
> access_ok() call trigger a warning with CONFIG_DEBUG_ATOMIC_SLEEP
> enabled.
> 
> Also the memcpy() used in the reverted patch is wrong, as it has no
> page-fault handling. Access to kernel memory can also fault due to
> kernel bugs, and those should not be reported as faults from the #VC
> handler but as bugs of their real call-site, which is correctly later
> done from vc_forward_exception().

The changelog should call out that a previous patch fixed the original bug by
switching to unchecked versions of get/put.  Without that, this reads like we're
reverting to even worse behavior.

Alternatively, and probably even better, fold this revert into the switch to
the unchecked version (sounds like those will use kernel-specific flavors?).

> Fixes: 7024f60d6552 ("x86/sev-es: Handle string port IO to kernel memory properly")
> Cc: stable@vger.kernel.org # v5.11
> Signed-off-by: Joerg Roedel <jroedel@suse.de>
> ---
>  arch/x86/kernel/sev.c | 12 ------------
>  1 file changed, 12 deletions(-)
> 
> diff --git a/arch/x86/kernel/sev.c b/arch/x86/kernel/sev.c
> index 110b39345b40..f4f319004713 100644
> --- a/arch/x86/kernel/sev.c
> +++ b/arch/x86/kernel/sev.c
> @@ -333,12 +333,6 @@ static enum es_result vc_write_mem(struct es_em_ctxt *ctxt,
>  	u16 d2;
>  	u8  d1;
>  
> -	/* If instruction ran in kernel mode and the I/O buffer is in kernel space */
> -	if (!user_mode(ctxt->regs) && !access_ok(target, size)) {
> -		memcpy(dst, buf, size);
> -		return ES_OK;
> -	}
> -
>  	switch (size) {
>  	case 1:
>  		memcpy(&d1, buf, 1);
> @@ -388,12 +382,6 @@ static enum es_result vc_read_mem(struct es_em_ctxt *ctxt,
>  	u16 d2;
>  	u8  d1;
>  
> -	/* If instruction ran in kernel mode and the I/O buffer is in kernel space */
> -	if (!user_mode(ctxt->regs) && !access_ok(s, size)) {
> -		memcpy(buf, src, size);
> -		return ES_OK;
> -	}
> -
>  	switch (size) {
>  	case 1:
>  		if (__get_user(d1, s))
> -- 
> 2.31.1
>