Re: [RFCv2 09/10] x86/mm: Add userspace API to enable Linear Address Masking

From: Peter Zijlstra
Date: Wed May 11 2022 - 03:27:16 EST

Next message: Lai Jiangshan: "[PATCH 2/7] x86/entry: Move PTI_USER_* to arch/x86/include/asm/processor-flags.h"
Previous message: Lai Jiangshan: "[PATCH 1/7] x86/entry: Introduce __entry_text for entry code written in C"
In reply to: Kirill A. Shutemov: "[RFCv2 09/10] x86/mm: Add userspace API to enable Linear Address Masking"
Next in thread: Thomas Gleixner: "Re: [RFCv2 09/10] x86/mm: Add userspace API to enable Linear Address Masking"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, May 11, 2022 at 05:27:50AM +0300, Kirill A. Shutemov wrote:
> @@ -1013,8 +1017,23 @@ static long thread_feature_prctl(struct task_struct *task, int option,
>
> /* Handle ARCH_THREAD_FEATURE_ENABLE */
>
> + if (features & (X86_THREAD_LAM_U48 | X86_THREAD_LAM_U57)) {
> + long ret;
> +
> + /* LAM is only available in long mode */
> + if (in_32bit_syscall())
> + return -EINVAL;

So what happens if userspace sets up a 32bit code entry in the LDT and
does the LAM thing as a 64bit syscamm but then goes run 32bit code?

> +
> + ret = enable_lam(task, features);
> + if (ret)
> + return ret;
> + }
> +
> task->thread.features |= features;
> out:
> + /* Update CR3 to get LAM active */
> + switch_mm(task->mm, task->mm, task);
> +
> return task->thread.features;
> }
>

Next message: Lai Jiangshan: "[PATCH 2/7] x86/entry: Move PTI_USER_* to arch/x86/include/asm/processor-flags.h"
Previous message: Lai Jiangshan: "[PATCH 1/7] x86/entry: Introduce __entry_text for entry code written in C"
In reply to: Kirill A. Shutemov: "[RFCv2 09/10] x86/mm: Add userspace API to enable Linear Address Masking"
Next in thread: Thomas Gleixner: "Re: [RFCv2 09/10] x86/mm: Add userspace API to enable Linear Address Masking"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]