From: "Roger Pau Monné" <roger.pau@citrix.com>
To: Jan Beulich <jbeulich@suse.com>
Cc: Andrew Cooper <andrew.cooper3@citrix.com>,
Xen-devel <xen-devel@lists.xenproject.org>
Subject: Re: [PATCH] x86/boot: Further simplify CR4 handling in dom0_construct_pv()
Date: Tue, 24 Sep 2024 16:30:41 +0200 [thread overview]
Message-ID: <ZvLNEUzn7NVMou73@macbook.local> (raw)
In-Reply-To: <86f05490-92d7-4146-a665-a4ef8732cbe8@suse.com>
On Tue, Sep 24, 2024 at 03:44:07PM +0200, Jan Beulich wrote:
> On 24.09.2024 13:23, Andrew Cooper wrote:
> > --- a/xen/arch/x86/pv/dom0_build.c
> > +++ b/xen/arch/x86/pv/dom0_build.c
> > @@ -1057,29 +1057,31 @@ int __init dom0_construct_pv(struct domain *d,
> > module_t *initrd,
> > const char *cmdline)
> > {
> > + unsigned long cr4 = read_cr4();
> > + unsigned long mask = X86_CR4_SMAP | X86_CR4_LASS;
> > int rc;
> >
> > /*
> > - * Clear SMAP in CR4 to allow user-accesses in construct_dom0(). This
> > - * prevents us needing to write construct_dom0() in terms of
> > + * Clear SMAP/LASS in CR4 to allow user-accesses in construct_dom0().
> > + * This prevents us needing to write construct_dom0() in terms of
> > * copy_{to,from}_user().
> > */
> > - if ( boot_cpu_has(X86_FEATURE_XEN_SMAP) )
> > + if ( cr4 & mask )
> > {
> > if ( IS_ENABLED(CONFIG_PV32) )
> > - cr4_pv32_mask &= ~X86_CR4_SMAP;
> > + cr4_pv32_mask &= ~mask;
> >
> > - write_cr4(read_cr4() & ~X86_CR4_SMAP);
> > + write_cr4(cr4 & ~mask);
> > }
> >
> > rc = dom0_construct(d, image, image_headroom, initrd, cmdline);
> >
> > - if ( boot_cpu_has(X86_FEATURE_XEN_SMAP) )
> > + if ( cr4 & mask )
> > {
> > - write_cr4(read_cr4() | X86_CR4_SMAP);
> > + write_cr4(cr4);
> >
> > if ( IS_ENABLED(CONFIG_PV32) )
> > - cr4_pv32_mask |= X86_CR4_SMAP;
> > + cr4_pv32_mask |= mask;
>
> You may end up setting a bit here which wasn't previously set, and which
> might then fault when cr4_pv32_restore tries to OR this into %cr4. Aiui
> you must have tested this on LASS-capable hardware, for it to have worked.
Possibly also needs X86_CR4_LASS adding to the XEN_CR4_PV32_BITS
define, as otherwise it won't end up in cr4_pv32_mask in the first
place AFAICT.
Thanks, Roger.
next prev parent reply other threads:[~2024-09-24 14:30 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-09-24 11:23 [PATCH] x86/boot: Further simplify CR4 handling in dom0_construct_pv() Andrew Cooper
2024-09-24 12:30 ` Roger Pau Monné
2024-09-24 14:39 ` Andrew Cooper
2024-09-24 13:44 ` Jan Beulich
2024-09-24 14:30 ` Roger Pau Monné [this message]
-- strict thread matches above, loose matches on Subject: below --
2024-10-02 23:20 Andrew Cooper
2024-10-04 6:52 ` Jan Beulich
2024-10-04 7:40 ` Roger Pau Monné
2024-10-04 18:49 ` Andrew Cooper
2024-10-07 7:21 ` Jan Beulich
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=ZvLNEUzn7NVMou73@macbook.local \
--to=roger.pau@citrix.com \
--cc=andrew.cooper3@citrix.com \
--cc=jbeulich@suse.com \
--cc=xen-devel@lists.xenproject.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.