Re: [RFC PATCH] x86/sev: x86/sev: enforce PC-relative addressing in clang

From: Kevin Loughlin
Date: Wed Jan 10 2024 - 12:14:38 EST

Next message: Arınç ÜNAL: "Re: [PATCH net-next 08/30] net: dsa: mt7530: change p{5,6}_interface to p{5,6}_configured"
Previous message: Ira Weiny: "RE: [PATCH RFC] cxl/pci: Skip irq features if irq's are not supported"
In reply to: Andi Kleen: "Re: [RFC PATCH] x86/sev: x86/sev: enforce PC-relative addressing in clang"
Next in thread: Andi Kleen: "Re: [RFC PATCH] x86/sev: x86/sev: enforce PC-relative addressing in clang"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Jan 10, 2024 at 3:45 AM Andi Kleen <ak@xxxxxxxxxxxxxxx> wrote:
>
> On Wed, Jan 10, 2024 at 01:26:39AM +0000, Kevin Loughlin wrote:
> >
> > While an attempt was made to force PC-relative addressing for certain
> > global SEV/SME variables via inline assembly (see snp_cpuid_get_table()
> > for example), PC-relative addressing must be pervasively-enforced for
> > SEV/SME global variables that can be accessed prior to page table
> > fixups.
> >
> > To avoid the error-prone approach of manually referencing each SEV/SME
> > global variable via a general form of snp_cpuid_get_table(), it is
> > preferable to use compiler flags for position-independent code (ex:
>
> But if gcc doesn't support it then it doesn't work.
>
> It seems your approach with incompatible execution models between
> the compilers is just a recipe for future patches only working
> on one of the compilers because most code submitters probably
> won't test both.
>
> It would be better to at least use a unified execution model, if you want
> to extend the hack and not fix the underlying issue.

Fair point; while gcc (unlike clang) appears to currently generate
PC-relative accesses to these vars, the patch in its current state
would not account for gcc's behavior potentially changing in the
future.

On that note, I do have another version of this patch that abstracts
snp_cpuid_get_table() into a macro along the lines of...

#define GET_RIP_RELATIVE_PTR(var) \
({ \
void *ptr; \
asm ("lea "#var"(%%rip), %0" \
: "=r" (ptr) \
: "p" (&var)); \
ptr; \
})

..and uses this new macro to access all SEV/SME global variables (not
just the cpuid_table). It's similar in nature to `fixup_pointer()`
(currently defined in arch/x86/kernel/head64.c) but doesn't require us
to pass around `physaddr` from `__startup64()`. This wouldn't
introduce any new execution model changes between clang vs gcc and
would be consistent with the kernel's current approach of relying on
developers to manually apply fixups for global variable accesses prior
to kernel relocation. I can send an RFC v2 for the
GET_RIP_RELATIVE_PTR() version of this patch.

Next message: Arınç ÜNAL: "Re: [PATCH net-next 08/30] net: dsa: mt7530: change p{5,6}_interface to p{5,6}_configured"
Previous message: Ira Weiny: "RE: [PATCH RFC] cxl/pci: Skip irq features if irq's are not supported"
In reply to: Andi Kleen: "Re: [RFC PATCH] x86/sev: x86/sev: enforce PC-relative addressing in clang"
Next in thread: Andi Kleen: "Re: [RFC PATCH] x86/sev: x86/sev: enforce PC-relative addressing in clang"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]