From: Andrew Cooper <andrew.cooper3@citrix.com>
To: Andy Lutomirski <luto@amacapital.net>,
Paolo Bonzini <pbonzini@redhat.com>
Cc: kvm list <kvm@vger.kernel.org>, X86 ML <x86@kernel.org>,
"linux-kernel@vger.kernel.org" <linux-kernel@vger.kernel.org>,
xen-devel <Xen-devel@lists.xen.org>,
Borislav Petkov <bp@alien8.de>, Andy Lutomirski <luto@kernel.org>
Subject: Re: [Xen-devel] Does __KERNEL_DS serve a purpose?
Date: Fri, 8 Apr 2016 23:32:13 +0100 [thread overview]
Message-ID: <5708316D.4040802@citrix.com> (raw)
In-Reply-To: <CALCETrXUS04--8n7MZ7GvJZi2rU-j=-tPkrjfEMH9+s4SQcg6Q@mail.gmail.com>
On 08/04/16 23:06, Andy Lutomirski wrote:
> On Fri, Apr 8, 2016 at 10:12 AM, Paolo Bonzini <pbonzini@redhat.com> wrote:
>>
>> On 08/04/2016 18:00, Andy Lutomirski wrote:
>>> But %ss can be loaded with 0 on 64-bit kernels. (I assume that
>>> loading 0 into %ss sets SS.DPL to 0 if done at CPL0, but I'm vague on
>>> this, since it only really matters to hypervisor code AFAIK.)
>> It's even simpler, unless CPL=0 SS cannot be loaded with 0 while in a
>> 64-bit code segment (SS can never be loaded with 0 if you're not in a
>> 64-bit code segment).
>>
>> Thus indeed SS=0 implies SS.DPL=0 on 64-bit kernels.
> I think we are stuck with __KERNEL_DS: SYSCALL uses it.
SYSCALL expects the OS to keep the programmed selector in sync with its
descriptor entry. It specifically loads fixed attributes, and doesn't
re-read the GDT.
> Unless we start fiddling with conforming code segments (ugh)
I don't see how this would help.
> , I don't think
> there's a valid GDT layout that doesn't have two flat data segments.
My gut feeling is that nothing good can possibly come of having the GDT
entry out of sync with the fixed attributes SYSCALL loads. It would
break code which manually reloaded %ss, such as constructed an IRET
frame using PUSH %ss.
> Oh well, chalk it up to historical accident.
Feel very glad that SYSCALL and SYSENTER (appear to) behave identically
in their expectations of GDT layout and fixed attributes...
I for one wouldn't bet on it, knowing the x86 architecture.
~Andrew
next prev parent reply other threads:[~2016-04-08 22:32 UTC|newest]
Thread overview: 11+ messages / expand[flat|nested] mbox.gz Atom feed top
2016-04-08 0:24 Does __KERNEL_DS serve a purpose? Andy Lutomirski
2016-04-08 8:01 ` Andrew Cooper
2016-04-08 8:01 ` [Xen-devel] " Andrew Cooper
2016-04-08 16:00 ` Andy Lutomirski
2016-04-08 17:12 ` Paolo Bonzini
2016-04-08 22:06 ` Andy Lutomirski
2016-04-08 22:06 ` [Xen-devel] " Andy Lutomirski
2016-04-08 22:32 ` Andrew Cooper [this message]
2016-04-08 22:32 ` Andrew Cooper
2016-04-08 17:12 ` Paolo Bonzini
2016-04-08 16:00 ` Andy Lutomirski
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=5708316D.4040802@citrix.com \
--to=andrew.cooper3@citrix.com \
--cc=Xen-devel@lists.xen.org \
--cc=bp@alien8.de \
--cc=kvm@vger.kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=luto@amacapital.net \
--cc=luto@kernel.org \
--cc=pbonzini@redhat.com \
--cc=x86@kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.