x86/process: Allow runtime control of Speculative Store Bypass (885f82bf) · Commits · 戴 / test

arch/x86/include/asm/msr-index.h

+2 −1

Original line number	Diff line number	Diff line
		@@ -42,7 +42,8 @@
		#define MSR_IA32_SPEC_CTRL 0x00000048 /* Speculation Control */
		#define SPEC_CTRL_IBRS (1 << 0) /* Indirect Branch Restricted Speculation */
		#define SPEC_CTRL_STIBP (1 << 1) /* Single Thread Indirect Branch Predictors */
		#define SPEC_CTRL_RDS (1 << 2) /* Reduced Data Speculation */
		#define SPEC_CTRL_RDS_SHIFT 2 /* Reduced Data Speculation bit */
		#define SPEC_CTRL_RDS (1 << SPEC_CTRL_RDS_SHIFT) /* Reduced Data Speculation */

		#define MSR_IA32_PRED_CMD 0x00000049 /* Prediction Command */
		#define PRED_CMD_IBPB (1 << 0) /* Indirect Branch Prediction Barrier */

arch/x86/include/asm/spec-ctrl.h

+17 −0

Original line number	Diff line number	Diff line
		@@ -2,6 +2,7 @@
		#ifndef _ASM_X86_SPECCTRL_H_
		#define _ASM_X86_SPECCTRL_H_

		#include <linux/thread_info.h>
		#include <asm/nospec-branch.h>

		/*
		@@ -18,4 +19,20 @@ extern void x86_spec_ctrl_restore_host(u64);
		extern u64 x86_amd_ls_cfg_base;
		extern u64 x86_amd_ls_cfg_rds_mask;

		/* The Intel SPEC CTRL MSR base value cache */
		extern u64 x86_spec_ctrl_base;

		static inline u64 rds_tif_to_spec_ctrl(u64 tifn)
		{
		BUILD_BUG_ON(TIF_RDS < SPEC_CTRL_RDS_SHIFT);
		return (tifn & _TIF_RDS) >> (TIF_RDS - SPEC_CTRL_RDS_SHIFT);
		}

		static inline u64 rds_tif_to_amd_ls_cfg(u64 tifn)
		{
		return (tifn & _TIF_RDS) ? x86_amd_ls_cfg_rds_mask : 0ULL;
		}

		extern void speculative_store_bypass_update(void);

		#endif

arch/x86/include/asm/thread_info.h

+3 −1

Original line number	Diff line number	Diff line
		@@ -79,6 +79,7 @@ struct thread_info {
		#define TIF_SIGPENDING 2 /* signal pending */
		#define TIF_NEED_RESCHED 3 /* rescheduling necessary */
		#define TIF_SINGLESTEP 4 /* reenable singlestep on user return*/
		#define TIF_RDS 5 /* Reduced data speculation */
		#define TIF_SYSCALL_EMU 6 /* syscall emulation active */
		#define TIF_SYSCALL_AUDIT 7 /* syscall auditing active */
		#define TIF_SECCOMP 8 /* secure computing */
		@@ -105,6 +106,7 @@ struct thread_info {
		#define _TIF_SIGPENDING (1 << TIF_SIGPENDING)
		#define _TIF_NEED_RESCHED (1 << TIF_NEED_RESCHED)
		#define _TIF_SINGLESTEP (1 << TIF_SINGLESTEP)
		#define _TIF_RDS (1 << TIF_RDS)
		#define _TIF_SYSCALL_EMU (1 << TIF_SYSCALL_EMU)
		#define _TIF_SYSCALL_AUDIT (1 << TIF_SYSCALL_AUDIT)
		#define _TIF_SECCOMP (1 << TIF_SECCOMP)
		@@ -144,7 +146,7 @@ struct thread_info {

		/* flags to check in __switch_to() */
		#define _TIF_WORK_CTXSW \
		(_TIF_IO_BITMAP\|_TIF_NOCPUID\|_TIF_NOTSC\|_TIF_BLOCKSTEP)
		(_TIF_IO_BITMAP\|_TIF_NOCPUID\|_TIF_NOTSC\|_TIF_BLOCKSTEP\|_TIF_RDS)

		#define _TIF_WORK_CTXSW_PREV (_TIF_WORK_CTXSW\|_TIF_USER_RETURN_NOTIFY)
		#define _TIF_WORK_CTXSW_NEXT (_TIF_WORK_CTXSW)

arch/x86/kernel/cpu/bugs.c

+21 −5

Original line number	Diff line number	Diff line
		@@ -33,7 +33,7 @@ static void __init ssb_select_mitigation(void);
		* Our boot-time value of the SPEC_CTRL MSR. We read it once so that any
		* writes to SPEC_CTRL contain whatever reserved bits have been set.
		*/
		static u64 __ro_after_init x86_spec_ctrl_base;
		u64 __ro_after_init x86_spec_ctrl_base;

		/*
		* The vendor and possibly platform specific bits which can be modified in
		@@ -140,25 +140,41 @@ EXPORT_SYMBOL_GPL(x86_spec_ctrl_set);

		u64 x86_spec_ctrl_get_default(void)
		{
		return x86_spec_ctrl_base;
		u64 msrval = x86_spec_ctrl_base;

		if (boot_cpu_data.x86_vendor == X86_VENDOR_INTEL)
		msrval \|= rds_tif_to_spec_ctrl(current_thread_info()->flags);
		return msrval;
		}
		EXPORT_SYMBOL_GPL(x86_spec_ctrl_get_default);

		void x86_spec_ctrl_set_guest(u64 guest_spec_ctrl)
		{
		u64 host = x86_spec_ctrl_base;

		if (!boot_cpu_has(X86_FEATURE_IBRS))
		return;
		if (x86_spec_ctrl_base != guest_spec_ctrl)

		if (boot_cpu_data.x86_vendor == X86_VENDOR_INTEL)
		host \|= rds_tif_to_spec_ctrl(current_thread_info()->flags);

		if (host != guest_spec_ctrl)
		wrmsrl(MSR_IA32_SPEC_CTRL, guest_spec_ctrl);
		}
		EXPORT_SYMBOL_GPL(x86_spec_ctrl_set_guest);

		void x86_spec_ctrl_restore_host(u64 guest_spec_ctrl)
		{
		u64 host = x86_spec_ctrl_base;

		if (!boot_cpu_has(X86_FEATURE_IBRS))
		return;
		if (x86_spec_ctrl_base != guest_spec_ctrl)
		wrmsrl(MSR_IA32_SPEC_CTRL, x86_spec_ctrl_base);

		if (boot_cpu_data.x86_vendor == X86_VENDOR_INTEL)
		host \|= rds_tif_to_spec_ctrl(current_thread_info()->flags);

		if (host != guest_spec_ctrl)
		wrmsrl(MSR_IA32_SPEC_CTRL, host);
		}
		EXPORT_SYMBOL_GPL(x86_spec_ctrl_restore_host);

arch/x86/kernel/process.c

+22 −0

Original line number	Diff line number	Diff line
		@@ -38,6 +38,7 @@
		#include <asm/switch_to.h>
		#include <asm/desc.h>
		#include <asm/prctl.h>
		#include <asm/spec-ctrl.h>

		/*
		* per-CPU TSS segments. Threads are completely 'soft' on Linux,
		@@ -278,6 +279,24 @@ static inline void switch_to_bitmap(struct tss_struct *tss,
		}
		}

		static __always_inline void __speculative_store_bypass_update(unsigned long tifn)
		{
		u64 msr;

		if (static_cpu_has(X86_FEATURE_AMD_RDS)) {
		msr = x86_amd_ls_cfg_base \| rds_tif_to_amd_ls_cfg(tifn);
		wrmsrl(MSR_AMD64_LS_CFG, msr);
		} else {
		msr = x86_spec_ctrl_base \| rds_tif_to_spec_ctrl(tifn);
		wrmsrl(MSR_IA32_SPEC_CTRL, msr);
		}
		}

		void speculative_store_bypass_update(void)
		{
		__speculative_store_bypass_update(current_thread_info()->flags);
		}

		void __switch_to_xtra(struct task_struct prev_p, struct task_struct next_p,
		struct tss_struct *tss)
		{
		@@ -309,6 +328,9 @@ void __switch_to_xtra(struct task_struct prev_p, struct task_struct next_p,

		if ((tifp ^ tifn) & _TIF_NOCPUID)
		set_cpuid_faulting(!!(tifn & _TIF_NOCPUID));

		if ((tifp ^ tifn) & _TIF_RDS)
		__speculative_store_bypass_update(tifn);
		}

		/*

Admin message