Re: [PATCHv3 0/3] x86/tdx: Fix one more load_unaligned_zeropad() issue

From: Kirill A. Shutemov
Date: Fri Jul 07 2023 - 10:15:58 EST

Next message: Liam R. Howlett: "Re: [PATCH v7 6/6] connector/cn_proc: Selftest for proc connector"
Previous message: Steven Rostedt: "Re: [PATCH v2 3/4] Revert "tracing: Add "(fault)" name injection to kernel probes""
In reply to: Dave Hansen: "Re: [PATCHv3 0/3] x86/tdx: Fix one more load_unaligned_zeropad() issue"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Jul 06, 2023 at 04:48:32PM +0000, Michael Kelley (LINUX) wrote:
> From: Kirill A. Shutemov <kirill.shutemov@xxxxxxxxxxxxxxx> Sent: Tuesday, June 6, 2023 2:56 AM
> >
> > During review of TDX guests on Hyper-V patchset Dave pointed to the
> > potential race between changing page private/shared status and
> > load_unaligned_zeropad().
> >
> > Fix the issue.
> >
> > v3:
> > - Fix grammar;
> > - Add Sathya's Reviewed-bys;
> > v2:
> > - Add more info in commit message of the first patch.
> > - Move enc_status_change_finish_noop() into a separate patch.
> > - Fix typo in commit message and comment.
> >
> > Kirill A. Shutemov (3):
> > x86/mm: Allow guest.enc_status_change_prepare() to fail
> > x86/tdx: Fix race between set_memory_encrypted() and
> > load_unaligned_zeropad()
> > x86/mm: Fix enc_status_change_finish_noop()
> >
> > arch/x86/coco/tdx/tdx.c | 64 +++++++++++++++++++++++++++++++--
> > arch/x86/include/asm/x86_init.h | 2 +-
> > arch/x86/kernel/x86_init.c | 4 +--
> > arch/x86/mm/mem_encrypt_amd.c | 4 ++-
> > arch/x86/mm/pat/set_memory.c | 3 +-
> > 5 files changed, 69 insertions(+), 8 deletions(-)
> >
> > --
> > 2.39.3
>
> These fixes notwithstanding, load_unaligned_zeropad() is not handled
> properly in a TDX VM. The problem was introduced with commit
> c4e34dd99f2e, which moved the fixup code to function
> ex_handler_zeropad().

Ughh.. I needed to pay more attention to the rework around
load_unaligned_zeropad() :/

> This new function does a verification against
> fault_addr, and the verification always fails because fault_addr is zero.
> The call sequence is:
>
> exc_virtualization_exception()
> ve_raise_fault()
> gp_try_fixup_and_notify() <-- always passes 0 as fault_addr
> fixup_exception()
> ex_handler_zeropad()
>
> The validation of fault_addr could probably be removed since
> such validation wasn't there prior to c4e34dd99f2e. But before
> going down that path, I want to propose a different top-level
> solution to the interaction between load_unaligned_zeropad()
> and CoCo VM page transitions between private and shared.
>
> When a page is transitioning, the caller can and should ensure
> that it is not being accessed during the transition. But we have
> the load_unaligned_zeropad() wildcard. So do the following for
> the transition sequence in __set_memory_enc_pgtable():
>
> 1. Remove aliasing mappings
> 2. Remove the PRESENT bit from the PTEs of all transitioning pages
> 3. Flush the TLB globally
> 4. Flush the data cache if needed
> 5. Set/clear the encryption attribute as appropriate
> 6. Notify the hypervisor of the page status change
> 7. Add back the PRESENT bit
>
> With this approach, load_unaligned_zeropad() just takes the
> normal page-fault-based fixup path if it touches a page that is
> transitioning. As a result, load_unaligned_zeropad() and CoCo
> VM page transitioning are completely decoupled. We don't
> need to handle architecture-specific CoCo VM exceptions and
> fix things up.

It only addresses the problem that happens on transition, but
load_unaligned_zeropad() is still a problem for the shared mappings in
general, after transition is complete. Like if load_unaligned_zeropad()
steps from private to shared mapping and shared mapping triggers #VE,
kernel should be able to handle it.

The testcase that triggers the problem (It is ugly, but useful.):

#include <linux/mm.h>
#include <asm/word-at-a-time.h>

static int f(pte_t *pte, unsigned long addr, void *data)
{
pte_t ***p = data;

if (p) {
*(*p) = pte;
(*p)++;
}
return 0;
}

static struct vm_struct *alloc_vm_area(size_t size, pte_t **ptes)
{
struct vm_struct *area;

area = get_vm_area_caller(size, VM_IOREMAP,
__builtin_return_address(0));
if (area == NULL)
return NULL;

if (apply_to_page_range(&init_mm, (unsigned long)area->addr,
size, f, ptes ? &ptes : NULL)) {
free_vm_area(area);
return NULL;
}

return area;
}

#define SHARED_PFN_TRIGGERS_VE 0x80000

static int test_zeropad(void)
{
struct vm_struct *area;
pte_t *pte[2];
unsigned long a;
struct page *page;

page = alloc_page(GFP_KERNEL);
area = alloc_vm_area(2 * PAGE_SIZE, pte);

set_pte_at(&init_mm, (unsigned long)area->addr, pte[0],
pfn_pte(page_to_pfn(page), PAGE_KERNEL));
set_pte_at(&init_mm, (unsigned long)(area->addr + PAGE_SIZE), pte[1],
pfn_pte(SHARED_PFN_TRIGGERS_VE, pgprot_decrypted(PAGE_KERNEL)));

a = load_unaligned_zeropad(area->addr + PAGE_SIZE - 1);
printk("a: %#lx\n", a);
for(;;);
return 0;
}
late_initcall(test_zeropad);

Below is a patch that provides fixup code with the address it wants.

Any comments?

diff --git a/arch/x86/kernel/traps.c b/arch/x86/kernel/traps.c
index 58b1f208eff5..4a817d20ce3b 100644
--- a/arch/x86/kernel/traps.c
+++ b/arch/x86/kernel/traps.c
@@ -697,9 +697,10 @@ static bool try_fixup_enqcmd_gp(void)
}

static bool gp_try_fixup_and_notify(struct pt_regs *regs, int trapnr,
- unsigned long error_code, const char *str)
+ unsigned long error_code, const char *str,
+ unsigned long address)
{
- if (fixup_exception(regs, trapnr, error_code, 0))
+ if (fixup_exception(regs, trapnr, error_code, address))
return true;

current->thread.error_code = error_code;
@@ -759,7 +760,7 @@ DEFINE_IDTENTRY_ERRORCODE(exc_general_protection)
goto exit;
}

- if (gp_try_fixup_and_notify(regs, X86_TRAP_GP, error_code, desc))
+ if (gp_try_fixup_and_notify(regs, X86_TRAP_GP, error_code, desc, 0))
goto exit;

if (error_code)
@@ -1357,17 +1358,20 @@ DEFINE_IDTENTRY(exc_device_not_available)

#define VE_FAULT_STR "VE fault"

-static void ve_raise_fault(struct pt_regs *regs, long error_code)
+static void ve_raise_fault(struct pt_regs *regs, long error_code,
+ unsigned long address)
{
if (user_mode(regs)) {
gp_user_force_sig_segv(regs, X86_TRAP_VE, error_code, VE_FAULT_STR);
return;
}

- if (gp_try_fixup_and_notify(regs, X86_TRAP_VE, error_code, VE_FAULT_STR))
+ if (gp_try_fixup_and_notify(regs, X86_TRAP_VE, error_code,
+ VE_FAULT_STR, address)) {
return;
+ }

- die_addr(VE_FAULT_STR, regs, error_code, 0);
+ die_addr(VE_FAULT_STR, regs, error_code, address);
}

/*
@@ -1431,7 +1435,7 @@ DEFINE_IDTENTRY(exc_virtualization_exception)
* it successfully, treat it as #GP(0) and handle it.
*/
if (!tdx_handle_virt_exception(regs, &ve))
- ve_raise_fault(regs, 0);
+ ve_raise_fault(regs, 0, ve.gla);

cond_local_irq_disable(regs);
}
--
Kiryl Shutsemau / Kirill A. Shutemov

Next message: Liam R. Howlett: "Re: [PATCH v7 6/6] connector/cn_proc: Selftest for proc connector"
Previous message: Steven Rostedt: "Re: [PATCH v2 3/4] Revert "tracing: Add "(fault)" name injection to kernel probes""
In reply to: Dave Hansen: "Re: [PATCHv3 0/3] x86/tdx: Fix one more load_unaligned_zeropad() issue"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]