From: Matt Fleming <matt-mF/unelCI9GS6iBeEJttW/XRex20P6io@public.gmane.org>
To: Borislav Petkov <bp-Gina5bIWoIWzQB+pC5nmwQ@public.gmane.org>
Cc: Ingo Molnar <mingo-DgEjT+Ai2ygdnm+yROfE0A@public.gmane.org>,
Thomas Gleixner <tglx-hfZtesqFncYOwBW4kG4KsQ@public.gmane.org>,
"H . Peter Anvin" <hpa-YMNOUZJC4hwAvxtiuMwx3w@public.gmane.org>,
Toshi Kani <toshi.kani-VXdhtT5mjnY@public.gmane.org>,
linux-kernel-u79uwXL29TY76Z2rM5mHXA@public.gmane.org,
linux-efi-u79uwXL29TY76Z2rM5mHXA@public.gmane.org,
Sai Praneeth Prakhya
<sai.praneeth.prakhya-ral2JQCrhuEAvxtiuMwx3w@public.gmane.org>,
Linus Torvalds
<torvalds-de/tnXTf+JLsfHDXvbKv3WD2FQJk+8+b@public.gmane.org>,
Dave Jones
<davej-rdkfGonbjUTCLXcRTR1eJlpr/1R2p/CL@public.gmane.org>,
Andrew Morton
<akpm-de/tnXTf+JLsfHDXvbKv3WD2FQJk+8+b@public.gmane.org>,
Andy Lutomirski <luto-DgEjT+Ai2ygdnm+yROfE0A@public.gmane.org>,
Denys Vlasenko <dvlasenk-H+wXaHxf7aLQT0dZR+AlfA@public.gmane.org>,
Stephen Smalley <sds-+05T5uksL2qpZYMLLGbcSA@public.gmane.org>
Subject: Re: [PATCH 5/6] x86/efi: Build our own page table structures
Date: Thu, 12 Nov 2015 21:38:57 +0000 [thread overview]
Message-ID: <20151112213857.GH2681@codeblueprint.co.uk> (raw)
In-Reply-To: <20151112183813.GF3838-fF5Pk5pvG8Y@public.gmane.org>
On Thu, 12 Nov, at 07:38:13PM, Borislav Petkov wrote:
> > @@ -831,6 +831,12 @@ static void __init __efi_enter_virtual_mode(void)
> > efi.systab = NULL;
> >
> > efi_merge_regions();
> > + if (efi_alloc_page_tables()) {
> > + pr_err("Failed to allocate EFI page tables\n");
> > + clear_bit(EFI_RUNTIME_SERVICES, &efi.flags);
> > + return;
> > + }
>
> This should happen before efi_merge_regions() - no need to merge if we
> can't alloc PGT.
Fair point.
> > +
> > new_memmap = efi_map_regions(&count, &pg_shift);
> > if (!new_memmap) {
> > pr_err("Error reallocating memory, EFI runtime non-functional!\n");
> > @@ -888,29 +894,12 @@ static void __init __efi_enter_virtual_mode(void)
> >
> > efi_runtime_mkexec();
> >
> > - /*
> > - * We mapped the descriptor array into the EFI pagetable above but we're
> > - * not unmapping it here. Here's why:
> > - *
> > - * We're copying select PGDs from the kernel page table to the EFI page
> > - * table and when we do so and make changes to those PGDs like unmapping
> > - * stuff from them, those changes appear in the kernel page table and we
> > - * go boom.
> > - *
> > - * From setup_real_mode():
> > - *
> > - * ...
> > - * trampoline_pgd[0] = init_level4_pgt[pgd_index(__PAGE_OFFSET)].pgd;
> > - *
> > - * In this particular case, our allocation is in PGD 0 of the EFI page
> > - * table but we've copied that PGD from PGD[272] of the EFI page table:
> > - *
> > - * pgd_index(__PAGE_OFFSET = 0xffff880000000000) = 272
> > - *
> > - * where the direct memory mapping in kernel space is.
> > - *
> > - * new_memmap's VA comes from that direct mapping and thus clearing it,
> > - * it would get cleared in the kernel page table too.
> > + /*
>
> ERROR: code indent should use tabs where possible
> #149: FILE: arch/x86/platform/efi/efi.c:897:
> + /*$
>
> ...
Dammit vim. I'll fix this.
> > void efi_sync_low_kernel_mappings(void)
> > {
> > - unsigned num_pgds;
> > - pgd_t *pgd = (pgd_t *)__va(real_mode_header->trampoline_pgd);
> > + unsigned num_entries;
> > + pgd_t *pgd_k, *pgd_efi;
> > + pud_t *pud_k, *pud_efi;
> >
> > if (efi_enabled(EFI_OLD_MEMMAP))
> > return;
> >
> > - num_pgds = pgd_index(MODULES_END - 1) - pgd_index(PAGE_OFFSET);
> > + /*
> > + * We can share all PGD entries apart from the one entry that
> > + * covers the EFI runtime mapping space.
> > + *
> > + * Make sure the EFI runtime region mappings are guaranteed to
> > + * only span a single PGD entry and that the entry also maps
> > + * other important kernel regions.
> > + */
> > + BUILD_BUG_ON(pgd_index(EFI_VA_END) != pgd_index(MODULES_END));
> > + BUILD_BUG_ON((EFI_VA_START & PGDIR_MASK) !=
> > + (EFI_VA_END & PGDIR_MASK));
>
> You can align them in a more readable way:
>
> BUILD_BUG_ON((EFI_VA_START & PGDIR_MASK) !=
> (EFI_VA_END & PGDIR_MASK));
Sure.
WARNING: multiple messages have this Message-ID (diff)
From: Matt Fleming <matt@codeblueprint.co.uk>
To: Borislav Petkov <bp@alien8.de>
Cc: Ingo Molnar <mingo@kernel.org>,
Thomas Gleixner <tglx@linutronix.de>,
"H . Peter Anvin" <hpa@zytor.com>, Toshi Kani <toshi.kani@hp.com>,
linux-kernel@vger.kernel.org, linux-efi@vger.kernel.org,
Sai Praneeth Prakhya <sai.praneeth.prakhya@intel.com>,
Linus Torvalds <torvalds@linux-foundation.org>,
Dave Jones <davej@codemonkey.org.uk>,
Andrew Morton <akpm@linux-foundation.org>,
Andy Lutomirski <luto@kernel.org>,
Denys Vlasenko <dvlasenk@redhat.com>,
Stephen Smalley <sds@tycho.nsa.gov>
Subject: Re: [PATCH 5/6] x86/efi: Build our own page table structures
Date: Thu, 12 Nov 2015 21:38:57 +0000 [thread overview]
Message-ID: <20151112213857.GH2681@codeblueprint.co.uk> (raw)
In-Reply-To: <20151112183813.GF3838@pd.tnic>
On Thu, 12 Nov, at 07:38:13PM, Borislav Petkov wrote:
> > @@ -831,6 +831,12 @@ static void __init __efi_enter_virtual_mode(void)
> > efi.systab = NULL;
> >
> > efi_merge_regions();
> > + if (efi_alloc_page_tables()) {
> > + pr_err("Failed to allocate EFI page tables\n");
> > + clear_bit(EFI_RUNTIME_SERVICES, &efi.flags);
> > + return;
> > + }
>
> This should happen before efi_merge_regions() - no need to merge if we
> can't alloc PGT.
Fair point.
> > +
> > new_memmap = efi_map_regions(&count, &pg_shift);
> > if (!new_memmap) {
> > pr_err("Error reallocating memory, EFI runtime non-functional!\n");
> > @@ -888,29 +894,12 @@ static void __init __efi_enter_virtual_mode(void)
> >
> > efi_runtime_mkexec();
> >
> > - /*
> > - * We mapped the descriptor array into the EFI pagetable above but we're
> > - * not unmapping it here. Here's why:
> > - *
> > - * We're copying select PGDs from the kernel page table to the EFI page
> > - * table and when we do so and make changes to those PGDs like unmapping
> > - * stuff from them, those changes appear in the kernel page table and we
> > - * go boom.
> > - *
> > - * From setup_real_mode():
> > - *
> > - * ...
> > - * trampoline_pgd[0] = init_level4_pgt[pgd_index(__PAGE_OFFSET)].pgd;
> > - *
> > - * In this particular case, our allocation is in PGD 0 of the EFI page
> > - * table but we've copied that PGD from PGD[272] of the EFI page table:
> > - *
> > - * pgd_index(__PAGE_OFFSET = 0xffff880000000000) = 272
> > - *
> > - * where the direct memory mapping in kernel space is.
> > - *
> > - * new_memmap's VA comes from that direct mapping and thus clearing it,
> > - * it would get cleared in the kernel page table too.
> > + /*
>
> ERROR: code indent should use tabs where possible
> #149: FILE: arch/x86/platform/efi/efi.c:897:
> + /*$
>
> ...
Dammit vim. I'll fix this.
> > void efi_sync_low_kernel_mappings(void)
> > {
> > - unsigned num_pgds;
> > - pgd_t *pgd = (pgd_t *)__va(real_mode_header->trampoline_pgd);
> > + unsigned num_entries;
> > + pgd_t *pgd_k, *pgd_efi;
> > + pud_t *pud_k, *pud_efi;
> >
> > if (efi_enabled(EFI_OLD_MEMMAP))
> > return;
> >
> > - num_pgds = pgd_index(MODULES_END - 1) - pgd_index(PAGE_OFFSET);
> > + /*
> > + * We can share all PGD entries apart from the one entry that
> > + * covers the EFI runtime mapping space.
> > + *
> > + * Make sure the EFI runtime region mappings are guaranteed to
> > + * only span a single PGD entry and that the entry also maps
> > + * other important kernel regions.
> > + */
> > + BUILD_BUG_ON(pgd_index(EFI_VA_END) != pgd_index(MODULES_END));
> > + BUILD_BUG_ON((EFI_VA_START & PGDIR_MASK) !=
> > + (EFI_VA_END & PGDIR_MASK));
>
> You can align them in a more readable way:
>
> BUILD_BUG_ON((EFI_VA_START & PGDIR_MASK) !=
> (EFI_VA_END & PGDIR_MASK));
Sure.
next prev parent reply other threads:[~2015-11-12 21:38 UTC|newest]
Thread overview: 39+ messages / expand[flat|nested] mbox.gz Atom feed top
2015-11-12 15:40 [GIT PULL 0/6] EFI page table isolation Matt Fleming
2015-11-12 15:40 ` [PATCH 1/6] x86/mm/pageattr: Ensure cpa->pfn only contains page frame numbers Matt Fleming
2015-11-12 18:47 ` Borislav Petkov
2015-11-12 15:40 ` [PATCH 2/6] x86/mm/pageattr: Do not strip pte flags from cpa->pfn Matt Fleming
[not found] ` <1447342823-3612-3-git-send-email-matt-mF/unelCI9GS6iBeEJttW/XRex20P6io@public.gmane.org>
2015-11-12 18:47 ` Borislav Petkov
2015-11-12 18:47 ` Borislav Petkov
2015-11-12 19:28 ` Matt Fleming
2015-11-12 15:40 ` [PATCH 3/6] x86/efi: Map RAM into the identity page table for mixed mode Matt Fleming
2015-11-12 18:01 ` Borislav Petkov
2015-11-12 19:45 ` Matt Fleming
2015-11-12 15:40 ` [PATCH 4/6] x86/efi: Hoist page table switching code into efi_call_virt() Matt Fleming
[not found] ` <1447342823-3612-5-git-send-email-matt-mF/unelCI9GS6iBeEJttW/XRex20P6io@public.gmane.org>
2015-11-12 18:44 ` Borislav Petkov
2015-11-12 18:44 ` Borislav Petkov
2015-11-12 20:01 ` Matt Fleming
[not found] ` <20151112200108.GF2681-mF/unelCI9GS6iBeEJttW/XRex20P6io@public.gmane.org>
2015-11-13 7:59 ` Borislav Petkov
2015-11-13 7:59 ` Borislav Petkov
[not found] ` <20151113075943.GB23605-fF5Pk5pvG8Y@public.gmane.org>
2015-11-13 16:19 ` Matt Fleming
2015-11-13 16:19 ` Matt Fleming
2015-11-12 18:47 ` Borislav Petkov
2015-11-12 18:47 ` Borislav Petkov
2015-11-12 20:15 ` Matt Fleming
[not found] ` <1447342823-3612-1-git-send-email-matt-mF/unelCI9GS6iBeEJttW/XRex20P6io@public.gmane.org>
2015-11-12 15:40 ` [PATCH 5/6] x86/efi: Build our own page table structures Matt Fleming
2015-11-12 15:40 ` Matt Fleming
[not found] ` <1447342823-3612-6-git-send-email-matt-mF/unelCI9GS6iBeEJttW/XRex20P6io@public.gmane.org>
2015-11-12 18:38 ` Borislav Petkov
2015-11-12 18:38 ` Borislav Petkov
[not found] ` <20151112183813.GF3838-fF5Pk5pvG8Y@public.gmane.org>
2015-11-12 21:38 ` Matt Fleming [this message]
2015-11-12 21:38 ` Matt Fleming
2015-11-12 15:40 ` [PATCH 6/6] Documentation/x86: Update EFI memory region description Matt Fleming
2015-11-12 18:37 ` Borislav Petkov
[not found] ` <1447342823-3612-7-git-send-email-matt-mF/unelCI9GS6iBeEJttW/XRex20P6io@public.gmane.org>
2015-11-13 9:22 ` Ingo Molnar
2015-11-13 9:22 ` Ingo Molnar
2015-11-13 9:29 ` Matt Fleming
[not found] ` <20151113092906.GD2716-mF/unelCI9GS6iBeEJttW/XRex20P6io@public.gmane.org>
2015-11-13 16:42 ` Linus Torvalds
2015-11-13 16:42 ` Linus Torvalds
[not found] ` <CA+55aFxeyspaa_VCv9fRqTpuamFD95siSx9oXp57aO3Fi=EwXw-JsoAwUIsXosN+BqQ9rBEUg@public.gmane.org>
2015-11-13 22:22 ` Matt Fleming
2015-11-13 22:22 ` Matt Fleming
2015-11-18 8:18 ` Ingo Molnar
2015-11-18 8:18 ` Ingo Molnar
2015-11-19 11:22 ` Matt Fleming
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20151112213857.GH2681@codeblueprint.co.uk \
--to=matt-mf/unelci9gs6ibeejttw/xrex20p6io@public.gmane.org \
--cc=akpm-de/tnXTf+JLsfHDXvbKv3WD2FQJk+8+b@public.gmane.org \
--cc=bp-Gina5bIWoIWzQB+pC5nmwQ@public.gmane.org \
--cc=davej-rdkfGonbjUTCLXcRTR1eJlpr/1R2p/CL@public.gmane.org \
--cc=dvlasenk-H+wXaHxf7aLQT0dZR+AlfA@public.gmane.org \
--cc=hpa-YMNOUZJC4hwAvxtiuMwx3w@public.gmane.org \
--cc=linux-efi-u79uwXL29TY76Z2rM5mHXA@public.gmane.org \
--cc=linux-kernel-u79uwXL29TY76Z2rM5mHXA@public.gmane.org \
--cc=luto-DgEjT+Ai2ygdnm+yROfE0A@public.gmane.org \
--cc=mingo-DgEjT+Ai2ygdnm+yROfE0A@public.gmane.org \
--cc=sai.praneeth.prakhya-ral2JQCrhuEAvxtiuMwx3w@public.gmane.org \
--cc=sds-+05T5uksL2qpZYMLLGbcSA@public.gmane.org \
--cc=tglx-hfZtesqFncYOwBW4kG4KsQ@public.gmane.org \
--cc=torvalds-de/tnXTf+JLsfHDXvbKv3WD2FQJk+8+b@public.gmane.org \
--cc=toshi.kani-VXdhtT5mjnY@public.gmane.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.