Received: by 2002:a05:6a10:413:0:0:0:0 with SMTP id 19csp2301726pxp;
        Fri, 18 Mar 2022 07:45:57 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJw8Ax2uNDtMgS+1rWx5i8aYTNAWFCKm0tRu+fAZ0MJZO64jGa5hIs4VTmvqeNn4P+4KewcK
X-Received: by 2002:a17:902:6944:b0:153:9866:7fea with SMTP id k4-20020a170902694400b0015398667feamr10035965plt.6.1647614756823;
        Fri, 18 Mar 2022 07:45:56 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1647614756; cv=none;
        d=google.com; s=arc-20160816;
        b=lqECUmN8lPCy0ihsxW28d6M9uKQpcshgbBnXNe04Qko3BlnooZcl50ppuxtTyxWCSo
         +U7YQIZZpR9A/S+XB4DlW1tG4S5Graz78dLrUn2NfqV8mqLv5+kldbx7qctMY/rVGtRF
         NSy2i4RHI6RhkFYoxE4hPlOXiENqjBBUg7sSJ9knlRfvKqFQRqLpW/IZHVyfO72DapS0
         tXjNzy0Nwe55fGHvzWCe9bsziIVN3AHpUKeU6Bq11TgM1z6tj7AwMvVr2/Ui+N9Hl1eG
         QG34v4W9uZXg9j+Hw5b3etboxulXNrFnAxWBmPwT105BTIgsD59U7ognhJBHBBYEpIyL
         IAWw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:in-reply-to:from
         :references:cc:to:subject:user-agent:mime-version:date:message-id;
        bh=+HijBFBAVD8YyuCPMskLX/jJI8r48WEi6oXT3hhMGPo=;
        b=H59TCX4+qHFSln/e3fqe+V2AAO5vcXW9FY3niLhgEtixecTreGaFEf+BdRghNG4tli
         4cvZup7j2bW+LiMZaM0UMBmYtBmUZhAlGRRX/tT/jzoI2zrklaKpzHhr2T1Ce1SIhlOs
         JI6lSDNSM9Do4z2OMsMFGlkaqhX6uDZX8eRnsycVAQdQL0Fav27PtKdieXn/V8eMYT4A
         D2jD15OjhMAyW1HNIdRew991jWud5wd8cHFpDz/HA0oKsTZ/R3lG6lJe5DS7EF8bH7zy
         9Xib9s15a90sVV/uYdjEO79e6C2CkGsPZNTiB7EuFtSn6SD3p2dosxq3q05aQSumhwOl
         Iv4Q==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=huawei.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id l3-20020a170902eb0300b00153b2d16440si2101333plb.72.2022.03.18.07.45.43;
        Fri, 18 Mar 2022 07:45:56 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=huawei.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S232324AbiCRD7u (ORCPT <rfc822;gvb.lkml@gmail.com> + 99 others);
        Thu, 17 Mar 2022 23:59:50 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:57034 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S230156AbiCRD7t (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Thu, 17 Mar 2022 23:59:49 -0400
Received: from szxga02-in.huawei.com (szxga02-in.huawei.com [45.249.212.188])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id C12F411C0E
        for <linux-kernel@vger.kernel.org>; Thu, 17 Mar 2022 20:58:27 -0700 (PDT)
Received: from kwepemi100008.china.huawei.com (unknown [172.30.72.57])
        by szxga02-in.huawei.com (SkyGuard) with ESMTP id 4KKVYf2rxszCqk9;
        Fri, 18 Mar 2022 11:56:22 +0800 (CST)
Received: from kwepemm600017.china.huawei.com (7.193.23.234) by
 kwepemi100008.china.huawei.com (7.221.188.57) with Microsoft SMTP Server
 (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id
 15.1.2308.21; Fri, 18 Mar 2022 11:58:24 +0800
Received: from [10.174.179.234] (10.174.179.234) by
 kwepemm600017.china.huawei.com (7.193.23.234) with Microsoft SMTP Server
 (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id
 15.1.2308.21; Fri, 18 Mar 2022 11:58:23 +0800
Message-ID: <cb91532b-c0cd-034c-2f93-4f76fabf5fc1@huawei.com>
Date:   Fri, 18 Mar 2022 11:58:22 +0800
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:91.0) Gecko/20100101
 Thunderbird/91.6.1
Subject: Re: [PATCH -next 3/4] arm64: mm: add support for page table check
To:     Catalin Marinas <catalin.marinas@arm.com>
CC:     Thomas Gleixner <tglx@linutronix.de>,
        Ingo Molnar <mingo@redhat.com>, Borislav Petkov <bp@alien8.de>,
        Dave Hansen <dave.hansen@linux.intel.com>, <x86@kernel.org>,
        "H. Peter Anvin" <hpa@zytor.com>,
        Pasha Tatashin <pasha.tatashin@soleen.com>,
        Andrew Morton <akpm@linux-foundation.org>,
        "Will Deacon" <will@kernel.org>,
        Paul Walmsley <paul.walmsley@sifive.com>,
        "Palmer Dabbelt" <palmer@dabbelt.com>,
        Palmer Dabbelt <palmerdabbelt@google.com>,
        Albert Ou <aou@eecs.berkeley.edu>,
        <linux-kernel@vger.kernel.org>, <linux-mm@kvack.org>,
        <linux-arm-kernel@lists.infradead.org>,
        <linux-riscv@lists.infradead.org>
References: <20220317141203.3646253-1-tongtiangen@huawei.com>
 <20220317141203.3646253-4-tongtiangen@huawei.com> <YjOFNEvj7EfBasCI@arm.com>
From:   Tong Tiangen <tongtiangen@huawei.com>
In-Reply-To: <YjOFNEvj7EfBasCI@arm.com>
Content-Type: text/plain; charset="UTF-8"; format=flowed
Content-Transfer-Encoding: 8bit
X-Originating-IP: [10.174.179.234]
X-ClientProxiedBy: dggems702-chm.china.huawei.com (10.3.19.179) To
 kwepemm600017.china.huawei.com (7.193.23.234)
X-CFilter-Loop: Reflected
X-Spam-Status: No, score=-4.2 required=5.0 tests=BAYES_00,NICE_REPLY_A,
        RCVD_IN_DNSWL_MED,RCVD_IN_MSPIKE_H5,RCVD_IN_MSPIKE_WL,SPF_HELO_NONE,
        SPF_PASS,T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no
        version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org



在 2022/3/18 3:00, Catalin Marinas 写道:
> On Thu, Mar 17, 2022 at 02:12:02PM +0000, Tong Tiangen wrote:
>> @@ -628,6 +647,25 @@ static inline unsigned long pmd_page_vaddr(pmd_t pmd)
>>   #define pud_leaf(pud)		pud_sect(pud)
>>   #define pud_valid(pud)		pte_valid(pud_pte(pud))
>>   
>> +#ifdef CONFIG_PAGE_TABLE_CHECK
>> +static inline bool pte_user_accessible_page(pte_t pte)
>> +{
>> +	return (pte_val(pte) & PTE_VALID) && (pte_val(pte) & PTE_USER);
>> +}
> 
> There is another class of user mappings, execute-only, that have both
> PTE_USER and PTE_UXN cleared. So this logic should be:
> 
> 	pte_valid(pte) && (pte_user(pte) || pte_user_exec(pte))
> 
> with pte_user() as:
> 
> #define pte_user(pte)	(!!(pte_val(pte) & PTE_USER))

Good suggestion, the PTC(page table check) can cover UXN page and 
pte_user(pte) helper is required.

> 
> Do we care about PROT_NONE mappings here? They have the valid bit
> cleared but pte_present() is true.
>

PTC will not check this special type(PROT_NONE) of page.

>> +static inline bool pmd_user_accessible_page(pmd_t pmd)
>> +{
>> +	return pmd_leaf(pmd) && (pmd_val(pmd) & PTE_VALID) &&
>> +		(pmd_val(pmd) & PTE_USER);
>> +}
> 
> pmd_leaf() implies valid, so you can skip it if that's the aim.

PTC only checks whether the memory block corresponding to the pmd_leaf 
type can access, for !pmd_leaf, PTC checks at the pte level. So i think 
this is necessary.

> 
> Similar comment to the pte variant on execute-only and PROT_NONE
> mappings

Same considerations as above.

Thanks.
Tong
>