Received: by 2002:a05:7412:bbc7:b0:fc:a2b0:25d7 with SMTP id kh7csp1360890rdb; Sat, 3 Feb 2024 03:26:12 -0800 (PST) X-Google-Smtp-Source: AGHT+IE9om5Y//c7L5bGHVpqH+Sxnislvi2olTQFAQukHNPx/V3Vz027ypLNVB8XbDX6EFcA9B+E X-Received: by 2002:a05:622a:2c0d:b0:42b:f207:fccc with SMTP id kk13-20020a05622a2c0d00b0042bf207fcccmr994342qtb.19.1706959572303; Sat, 03 Feb 2024 03:26:12 -0800 (PST) ARC-Seal: i=2; a=rsa-sha256; t=1706959572; cv=pass; d=google.com; s=arc-20160816; b=p1vKFGgm5Qq4TjB/ljCq+2Nej+PlJYMQgb3l8dAYvBWcW6RtRL+tFqcFVjrubh4hRm M147WfXDg2v8UDL60hij3C0H9MaV9qkHne0Z4NM4ARAY/fIYMveBdP8lghpKS2fZ1z4i +IshfDiveBc61XPtE7DO+IVUJMazAI6vRYB+nFSySVsFBRxy2yhXjr2AN4JZLs8QR8TW q7KY9uPt/KmiOJUQVl0QMaLC7EfqB29hL6vkroFaldc1wQABVzLbzmxkG3vjtoPsUva5 keqtEgIOKmEIA6Gbt+6pc/Ebi+IT0sMNcyk9wB3CLRmh7JZawqNSf6kxetUgIOxGtEGu MfMg== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=in-reply-to:content-disposition:mime-version:list-unsubscribe :list-subscribe:list-id:precedence:references:message-id:subject:cc :to:from:date:dkim-signature; bh=GuG1PrL37XWGzIIK0mw2Gt1HAsW61W8Mi9u163lCSVc=; fh=Loku4qYsh1y25RS921Dvh9qbhWbZigJmri6eq/4Jzfk=; b=ZkJT6W3F+4j0Is63x2Xn5bWd76E7cHCbLgSZJxVZqkS7g9uXjwkiYzSzI6fP58jrnO CLMrafjshYiksJ1A72Hr9feGLX4dtA1tBMLF+KXaHF5Jui7WTVHaxY/h+AC6Ew4woil2 gC4RVm7QAImlW70YElMPxSrNyC4WrzgLyRKSmqENmrb5sahteloQnTevHe9bRTp7kwnq DTSVX0TKIIUdaoXi7lGOnadBmBUsW6MWu0Wshj+JMgNIuL5w1ibUSHtZpoNsSyCWRjD1 h2+mJ2xjD6YOwiOlBPLJeu+WMgel2qhibUN/sqzHoI4n9fP6IJMauuNOiXfEdlo/zyos CCgw==; dara=google.com ARC-Authentication-Results: i=2; mx.google.com; dkim=pass header.i=@alien8.de header.s=alien8 header.b=k7SLT0z1; arc=pass (i=1 spf=pass spfdomain=alien8.de dkim=pass dkdomain=alien8.de dmarc=pass fromdomain=alien8.de); spf=pass (google.com: domain of linux-kernel+bounces-51036-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) smtp.mailfrom="linux-kernel+bounces-51036-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=alien8.de X-Forwarded-Encrypted: i=1; AJvYcCUbat9mi7/wJp94fbxOxwbM1yhWK+ueTKbMMDGg1aq+eoqqdDZajdO/PkhEZ68W6fWLXXfsX4LrsAqTz+rwUXtp1qDETwuToyBa7u3IsQ== Return-Path: Received: from ny.mirrors.kernel.org (ny.mirrors.kernel.org. [147.75.199.223]) by mx.google.com with ESMTPS id g4-20020ac87f44000000b0042bf8cf8decsi4101690qtk.777.2024.02.03.03.26.12 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Sat, 03 Feb 2024 03:26:12 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel+bounces-51036-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) client-ip=147.75.199.223; Authentication-Results: mx.google.com; dkim=pass header.i=@alien8.de header.s=alien8 header.b=k7SLT0z1; arc=pass (i=1 spf=pass spfdomain=alien8.de dkim=pass dkdomain=alien8.de dmarc=pass fromdomain=alien8.de); spf=pass (google.com: domain of linux-kernel+bounces-51036-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) smtp.mailfrom="linux-kernel+bounces-51036-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=alien8.de Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ny.mirrors.kernel.org (Postfix) with ESMTPS id E4F291C22617 for ; Sat, 3 Feb 2024 11:26:11 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 94C535D47E; Sat, 3 Feb 2024 11:26:04 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (4096-bit key) header.d=alien8.de header.i=@alien8.de header.b="k7SLT0z1" Received: from mail.alien8.de (mail.alien8.de [65.109.113.108]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 03AA92A8D7 for ; Sat, 3 Feb 2024 11:26:00 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=65.109.113.108 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1706959563; cv=none; b=A1MEZslBCwisEzNMHbl3GGO/ZKar/+JSTAVsaFQwAMYr+3DeajWF7IgMZgzT6T1TiEXZCL+0ZoldFJgnUFyyYnxRuoV2Of7Vru7zwdBua7P1ECFkzmexKnxNBVqqlj7KJpSIAoy9dxme2CZEl+UptfWCs4Y8eeegLe3kdPpf/Kc= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1706959563; c=relaxed/simple; bh=3AnlwDJY1PiOq3jo238nrekVn4FA6LanT3SjuGnUNFY=; h=Date:From:To:Cc:Subject:Message-ID:References:MIME-Version: Content-Type:Content-Disposition:In-Reply-To; b=FB+AZ2Oan3+hxAWvWmu5ao369ogJOBiTwBJQMGRcBKMcZ93ZzTVb7FO8lBX4XS8qJ6CvOJeHl/VsYqxHNe519d7O0NDUUluaFuwX6U8VdkTjnOQ03/4XlKfAiEMOrEo4pb+TKqzQTGED42F52bAYkPiVfkVJPBHuRLM4QGrCFPY= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=alien8.de; spf=pass smtp.mailfrom=alien8.de; dkim=pass (4096-bit key) header.d=alien8.de header.i=@alien8.de header.b=k7SLT0z1; arc=none smtp.client-ip=65.109.113.108 Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=alien8.de Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=alien8.de Received: from localhost (localhost.localdomain [127.0.0.1]) by mail.alien8.de (SuperMail on ZX Spectrum 128k) with ESMTP id A7C0E40E016C; Sat, 3 Feb 2024 11:25:58 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at mail.alien8.de Authentication-Results: mail.alien8.de (amavisd-new); dkim=pass (4096-bit key) header.d=alien8.de Received: from mail.alien8.de ([127.0.0.1]) by localhost (mail.alien8.de [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id ZZdsozVbr2fC; Sat, 3 Feb 2024 11:25:56 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=alien8.de; s=alien8; t=1706959556; bh=GuG1PrL37XWGzIIK0mw2Gt1HAsW61W8Mi9u163lCSVc=; h=Date:From:To:Cc:Subject:References:In-Reply-To:From; b=k7SLT0z1a6VwwSd1j6S+NY5WVLAG6pKXTHAfSLkGHYdDXtvi4ZN68CwMjjJT7v41Y QBl0nQasVgluTRQ9OC12wu8bpJl+fpBzQOS7upk59vFyqDBtBhy0JxGDjJZGqCed7t Q1W21BKWILSodbmMtbFfgojNIr3nqGaUP7dq+Chr0Dh4lNfRgNonqj5bE8xl2WKkMN xC9W0h1g4t7DpKlrtY1d6NCLwh4OPIfriSkZko03vHUtAKTOwB2FqxzcCMVoDSvHeL FRd0NhWcqUxz5ikbinA0rEb3vgTrH1mXNa7SkDQA1VoeQQuzRmOo60F4TVm7U9jr5M 4OTbjFc4+XquvVGXrTwQZITf8rp0O/ykfu2o3KxoA19HLkeKuFD28MevrFK7ssd9H9 vH1tRO628mjwcnFV3owV1PLOJJw7xO238IY1EhdexfTAf0myJeDIECqlL+Iq/wF/Em /LHXj0FDLZMhNqlf9cHUhoGqYYztpsIQ5vfCbd1pRq1vPO9gm+Fntebevp/LBVKgcg xeH+8AN1IiJsTDccYdQH874BmcwgCG7Mvbmnt2P4iTYeYTlRV57x4ThyNMc/nBRr+6 ZvmNPwZERyrObnv3IxSQtSbayNUwTjfOnPzm0NGIwFEVPNge1Ihi5PKLByux7DGVlV /tkluTSi9W/JstENo+WUjV3s= Received: from zn.tnic (pd953021b.dip0.t-ipconnect.de [217.83.2.27]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail.alien8.de (SuperMail on ZX Spectrum 128k) with ESMTPSA id E6D4B40E00C5; Sat, 3 Feb 2024 11:25:31 +0000 (UTC) Date: Sat, 3 Feb 2024 12:25:26 +0100 From: Borislav Petkov To: Ard Biesheuvel Cc: Kevin Loughlin , Jacob Xu , Thomas Gleixner , Ingo Molnar , Dave Hansen , x86@kernel.org, Nick Desaulniers , Justin Stitt , Tom Lendacky , Pankaj Gupta , Hou Wenlong , Dionna Glaze , Brijesh Singh , Michael Roth , "Kirill A. Shutemov" , linux-kernel@vger.kernel.org, llvm@lists.linux.dev, linux-coco@lists.linux.dev, Ashish Kalra , Andi Kleen , Adam Dunlap , Peter Gonda , Sidharth Telang Subject: Re: [PATCH v3 0/2] x86: enforce and cleanup RIP-relative accesses in early boot code Message-ID: <20240203112526.GGZb4iphr6YR5f5QNf@fat_crate.local> References: <20240121182040.GBZa1geI5NxWSslvt0@fat_crate.local> <20240130220845.1978329-1-kevinloughlin@google.com> <20240131140037.GDZbpShX2b0elXlqDA@fat_crate.local> <20240131182944.GJZbqRmBN_KDgK_nmB@fat_crate.local> <20240203101927.GEZb4TL2H3XTqCSo5d@fat_crate.local> Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline In-Reply-To: On Sat, Feb 03, 2024 at 11:27:19AM +0100, Ard Biesheuvel wrote: > The minimal fix doesn't look that bad IMHO. Note that this version is > based on your patch that removes > CONFIG_AMD_MEM_ENCRYPT_ACTIVE_BY_DEFAULT, and we'd need to see whether > or not to backport that as well. Ok, please send it formally so that I can take a look. Thx. -- Regards/Gruss, Boris. https://people.kernel.org/tglx/notes-about-netiquette