Received: by 2002:a05:6358:11c7:b0:104:8066:f915 with SMTP id i7csp3839754rwl; Mon, 10 Apr 2023 01:44:39 -0700 (PDT) X-Google-Smtp-Source: AKy350ZlPti8iGeA0o0C+grE+7gW5loLRiBSCMtpZoWl1X79OuOkmU3mM3uGyWTe1go+C1ldGFOD X-Received: by 2002:a17:903:42cd:b0:1a5:898:37aa with SMTP id jy13-20020a17090342cd00b001a5089837aamr9602613plb.15.1681116279384; Mon, 10 Apr 2023 01:44:39 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1681116279; cv=none; d=google.com; s=arc-20160816; b=OnSn4bpIagBtUipKWDt9Uk6RMbrl83kTo8pKyP83xhpHdrKCNOLEJLPDyV8SGpzLiD 7zHY+VWiqdcpqqjz1nC+biHoCYTW2WF9gozYjhwiJRfmkPrfgnBoiNwqunDZO1dF9VE+ pp4fZt5m6jL/Lc9pcAuIE6/UC7Pp41dEGCI47P5Wu8rh5gx/10d78Jd4Kfz4MwsAGraI mGDWCvJ1j23DLFtsrVaUcBiJo9YMZQo8832dvzmaz+9/ZX7/0/5CprS03gUXbu4vd3gr AeYRJL9sCNOGY+CQFNgNT6fXVCp76fjkZosC9saZwXGCufO950fXTPTOfnnp9XiqCqy7 R5Ng== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :references:in-reply-to:message-id:date:subject:cc:to:from :dkim-signature; bh=W7XedNztJ0mTK2b/JAIVrms4PBeui63Rn/5g9sSZqqs=; b=gsMiYfo7afxBCx8he/AaF9Yi1KErqsVxRqs/KWZnYepWjHSHwAPfLbsfzIlWBiOehO HC3KJr3YHjZbV+LcNcBK8anyXB8OnikYaSk2hsd3zHVVxxkeQGYYOHOSOxX8ewYlNmvc pECfhQ8QxlYyOtuuIebfOqF8Y2SrZ4Dzdp5sOAFXlUnyU+l8WFRo9oRgtHhfd1CuMHet Y4WnsNxz39YO6ZAW1/fNENYKWZkOw7mBTFeeOP/SPpIzbvafJAIzsB054fmK0HgpTfiX FVe+Bz53Oh34aeWzhPx5DwbbsRtDQ7shCzR8g9HnhNAc4ZBz65vlkWurRg2GzN/IIt/P kFLg== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@intel.com header.s=Intel header.b=F65AZPl4; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=intel.com Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id q17-20020a170902789100b001a5145cf5d5si7733996pll.167.2023.04.10.01.44.28; Mon, 10 Apr 2023 01:44:39 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@intel.com header.s=Intel header.b=F65AZPl4; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=intel.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S230074AbjDJInR (ORCPT + 99 others); Mon, 10 Apr 2023 04:43:17 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:50624 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S230000AbjDJIm3 (ORCPT ); Mon, 10 Apr 2023 04:42:29 -0400 Received: from mga04.intel.com (mga04.intel.com [192.55.52.120]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id C1BEE5FCD; Mon, 10 Apr 2023 01:41:17 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=intel.com; i=@intel.com; q=dns/txt; s=Intel; t=1681116077; x=1712652077; h=from:to:cc:subject:date:message-id:in-reply-to: references:mime-version:content-transfer-encoding; bh=YkOYUeaNmXvaQHTm0febRcu8lP7lpU11uM/4zVeP9Zg=; b=F65AZPl4n5TPU/WE2Y7862BqXmYW+iWW1XpaexFWFjJTS3EX8yks7xrd vtXRNgdDGqDJAr4/sg+vOpjBizujb3amHljVjsp+CSvNz24anmZrhYUKO ASMlmIgq3+on+VPoUfHCuHmp6Blck/70b+q+dIWO7aYhW3I2418n/nbY7 y254PTa8u9wJcGp3Pbvzro8ESSBAVKkIRoV/mwxO+/aKeJ+7/BVQBTuGX woi0f+InuUhsaH2fdddn67CJyFkkJIpo/2oEXXFUHb6yBgQ5mQ6P+3zkn Xi0Y9Bo7G+3xAu32N256l+fEyCO1GFJ2/gYxaV497LermEd6ihtsZxzik A==; X-IronPort-AV: E=McAfee;i="6600,9927,10675"; a="342078205" X-IronPort-AV: E=Sophos;i="5.98,333,1673942400"; d="scan'208";a="342078205" Received: from fmsmga002.fm.intel.com ([10.253.24.26]) by fmsmga104.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 10 Apr 2023 01:41:08 -0700 X-ExtLoop1: 1 X-IronPort-AV: E=McAfee;i="6600,9927,10675"; a="799436365" X-IronPort-AV: E=Sophos;i="5.98,333,1673942400"; d="scan'208";a="799436365" Received: from unknown (HELO fred..) ([172.25.112.68]) by fmsmga002.fm.intel.com with ESMTP; 10 Apr 2023 01:41:08 -0700 From: Xin Li To: linux-kernel@vger.kernel.org, x86@kernel.org, kvm@vger.kernel.org Cc: tglx@linutronix.de, mingo@redhat.com, bp@alien8.de, dave.hansen@linux.intel.com, hpa@zytor.com, peterz@infradead.org, andrew.cooper3@citrix.com, seanjc@google.com, pbonzini@redhat.com, ravi.v.shankar@intel.com, jiangshanlai@gmail.com, shan.kang@intel.com Subject: [PATCH v8 31/33] x86/fred: BUG() when ERETU with %rsp not equal to that when the ring 3 event was just delivered Date: Mon, 10 Apr 2023 01:14:36 -0700 Message-Id: <20230410081438.1750-32-xin3.li@intel.com> X-Mailer: git-send-email 2.34.1 In-Reply-To: <20230410081438.1750-1-xin3.li@intel.com> References: <20230410081438.1750-1-xin3.li@intel.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-Spam-Status: No, score=-2.5 required=5.0 tests=DKIMWL_WL_HIGH,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_MED,SPF_HELO_NONE, SPF_NONE autolearn=unavailable autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org A FRED stack frame generated by a ring 3 event should never be messed up, and the first thing we must make sure is that at the time an ERETU instruction is executed, %rsp must have the same address as that when the user level event was just delivered. However we don't want to bother the normal code path of ERETU because it's on the hotest code path, a good choice is to do this check when ERETU faults. Suggested-by: H. Peter Anvin (Intel) Tested-by: Shan Kang Signed-off-by: Xin Li --- arch/x86/mm/extable.c | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/arch/x86/mm/extable.c b/arch/x86/mm/extable.c index 9d82193adf3c..be297d4b137b 100644 --- a/arch/x86/mm/extable.c +++ b/arch/x86/mm/extable.c @@ -204,6 +204,14 @@ static bool ex_handler_eretu(const struct exception_table_entry *fixup, unsigned short ss = uregs->ss; unsigned short cs = uregs->cs; + /* + * A FRED stack frame generated by a ring 3 event should never be + * messed up, and the first thing we must make sure is that at the + * time an ERETU instruction is executed, %rsp must have the same + * address as that when the user level event was just delivered. + */ + BUG_ON(uregs != current->thread_info.user_pt_regs); + /* * Move the NMI bit from the invalid stack frame, which caused ERETU * to fault, to the fault handler's stack frame, thus to unblock NMI -- 2.34.1