include/asm/mmu_context.h

b2441318SGreg Kroah-Hartman/* SPDX-License-Identifier: GPL-2.0 */
1965aae3SH. Peter Anvin#ifndef _ASM_X86_MMU_CONTEXT_H
1965aae3SH. Peter Anvin#define _ASM_X86_MMU_CONTEXT_H
bb898558SAl Viro
bb898558SAl Viro#include <asm/desc.h>
60063497SArun Sharma#include <linux/atomic.h>
d17d8f9dSDave Hansen#include <linux/mm_types.h>
7d06d9c9SDave Hansen#include <linux/pkeys.h>
d17d8f9dSDave Hansen
d17d8f9dSDave Hansen#include <trace/events/tlb.h>
d17d8f9dSDave Hansen
bb898558SAl Viro#include <asm/tlbflush.h>
bb898558SAl Viro#include <asm/paravirt.h>
d97080ebSNadav Amit#include <asm/debugreg.h>
ae53fa18SH. Peter Anvin (Intel)#include <asm/gsseg.h>
f39681edSAndy Lutomirski
f39681edSAndy Lutomirskiextern atomic64_t last_mm_ctx_id;
f39681edSAndy Lutomirski
7911d3f7SAndy Lutomirski#ifdef CONFIG_PERF_EVENTS
405b4537SAnthony SteinhauserDECLARE_STATIC_KEY_FALSE(rdpmc_never_available_key);
631fe154SDavidlohr BuesoDECLARE_STATIC_KEY_FALSE(rdpmc_always_available_key);
cb2a0235SThomas Gleixnervoid cr4_update_pce(void *ignored);
7911d3f7SAndy Lutomirski#endif
7911d3f7SAndy Lutomirski
a5b9e5a2SAndy Lutomirski#ifdef CONFIG_MODIFY_LDT_SYSCALL
bb898558SAl Viro/*
37868fe1SAndy Lutomirski * ldt_structs can be allocated, used, and freed, but they are never
37868fe1SAndy Lutomirski * modified while live.
37868fe1SAndy Lutomirski */
37868fe1SAndy Lutomirskistruct ldt_struct {
37868fe1SAndy Lutomirski	/*
37868fe1SAndy Lutomirski	 * Xen requires page-aligned LDTs with special permissions.  This is
37868fe1SAndy Lutomirski	 * needed to prevent us from installing evil descriptors such as
37868fe1SAndy Lutomirski	 * call gates.  On native, we could merge the ldt_struct and LDT
37868fe1SAndy Lutomirski	 * allocations, but it's not worth trying to optimize.
37868fe1SAndy Lutomirski	 */
37868fe1SAndy Lutomirski	struct desc_struct	*entries;
bbf79d21SBorislav Petkov	unsigned int		nr_entries;
f55f0501SAndy Lutomirski
f55f0501SAndy Lutomirski	/*
f55f0501SAndy Lutomirski	 * If PTI is in use, then the entries array is not mapped while we're
f55f0501SAndy Lutomirski	 * in user mode.  The whole array will be aliased at the addressed
f55f0501SAndy Lutomirski	 * given by ldt_slot_va(slot).  We use two slots so that we can allocate
f55f0501SAndy Lutomirski	 * and map, and enable a new LDT without invalidating the mapping
f55f0501SAndy Lutomirski	 * of an older, still-in-use LDT.
f55f0501SAndy Lutomirski	 *
f55f0501SAndy Lutomirski	 * slot will be -1 if this LDT doesn't have an alias mapping.
f55f0501SAndy Lutomirski	 */
f55f0501SAndy Lutomirski	int			slot;
37868fe1SAndy Lutomirski};
37868fe1SAndy Lutomirski
a5b9e5a2SAndy Lutomirski/*
a5b9e5a2SAndy Lutomirski * Used for LDT copy/destruction.
a5b9e5a2SAndy Lutomirski */
a4828f81SThomas Gleixnerstatic inline void init_new_context_ldt(struct mm_struct *mm)
a4828f81SThomas Gleixner{
a4828f81SThomas Gleixner	mm->context.ldt = NULL;
a4828f81SThomas Gleixner	init_rwsem(&mm->context.ldt_usr_sem);
a4828f81SThomas Gleixner}
a4828f81SThomas Gleixnerint ldt_dup_context(struct mm_struct *oldmm, struct mm_struct *mm);
39a0526fSDave Hansenvoid destroy_context_ldt(struct mm_struct *mm);
f55f0501SAndy Lutomirskivoid ldt_arch_exit_mmap(struct mm_struct *mm);
a5b9e5a2SAndy Lutomirski#else	/* CONFIG_MODIFY_LDT_SYSCALL */
a4828f81SThomas Gleixnerstatic inline void init_new_context_ldt(struct mm_struct *mm) { }
a4828f81SThomas Gleixnerstatic inline int ldt_dup_context(struct mm_struct *oldmm,
a5b9e5a2SAndy Lutomirski				  struct mm_struct *mm)
a5b9e5a2SAndy Lutomirski{
a5b9e5a2SAndy Lutomirski	return 0;
a5b9e5a2SAndy Lutomirski}
39a0526fSDave Hansenstatic inline void destroy_context_ldt(struct mm_struct *mm) { }
f55f0501SAndy Lutomirskistatic inline void ldt_arch_exit_mmap(struct mm_struct *mm) { }
a5b9e5a2SAndy Lutomirski#endif
a5b9e5a2SAndy Lutomirski
186525bdSIngo Molnar#ifdef CONFIG_MODIFY_LDT_SYSCALL
186525bdSIngo Molnarextern void load_mm_ldt(struct mm_struct *mm);
186525bdSIngo Molnarextern void switch_ldt(struct mm_struct *prev, struct mm_struct *next);
186525bdSIngo Molnar#else
37868fe1SAndy Lutomirskistatic inline void load_mm_ldt(struct mm_struct *mm)
37868fe1SAndy Lutomirski{
f55f0501SAndy Lutomirski	clear_LDT();
f55f0501SAndy Lutomirski}
73534258SAndy Lutomirskistatic inline void switch_ldt(struct mm_struct *prev, struct mm_struct *next)
73534258SAndy Lutomirski{
37868fe1SAndy Lutomirski	DEBUG_LOCKS_WARN_ON(preemptible());
37868fe1SAndy Lutomirski}
186525bdSIngo Molnar#endif
37868fe1SAndy Lutomirski
82721d8bSKirill A. Shutemov#ifdef CONFIG_ADDRESS_MASKING
82721d8bSKirill A. Shutemovstatic inline unsigned long mm_lam_cr3_mask(struct mm_struct *mm)
82721d8bSKirill A. Shutemov{
82721d8bSKirill A. Shutemov	return mm->context.lam_cr3_mask;
82721d8bSKirill A. Shutemov}
82721d8bSKirill A. Shutemov
82721d8bSKirill A. Shutemovstatic inline void dup_lam(struct mm_struct *oldmm, struct mm_struct *mm)
82721d8bSKirill A. Shutemov{
82721d8bSKirill A. Shutemov	mm->context.lam_cr3_mask = oldmm->context.lam_cr3_mask;
74c228d2SKirill A. Shutemov	mm->context.untag_mask = oldmm->context.untag_mask;
74c228d2SKirill A. Shutemov}
74c228d2SKirill A. Shutemov
f7d30434SKirill A. Shutemov#define mm_untag_mask mm_untag_mask
f7d30434SKirill A. Shutemovstatic inline unsigned long mm_untag_mask(struct mm_struct *mm)
f7d30434SKirill A. Shutemov{
f7d30434SKirill A. Shutemov	return mm->context.untag_mask;
f7d30434SKirill A. Shutemov}
f7d30434SKirill A. Shutemov
74c228d2SKirill A. Shutemovstatic inline void mm_reset_untag_mask(struct mm_struct *mm)
74c228d2SKirill A. Shutemov{
74c228d2SKirill A. Shutemov	mm->context.untag_mask = -1UL;
82721d8bSKirill A. Shutemov}
82721d8bSKirill A. Shutemov
23e5d9ecSKirill A. Shutemov#define arch_pgtable_dma_compat arch_pgtable_dma_compat
23e5d9ecSKirill A. Shutemovstatic inline bool arch_pgtable_dma_compat(struct mm_struct *mm)
23e5d9ecSKirill A. Shutemov{
23e5d9ecSKirill A. Shutemov	return !mm_lam_cr3_mask(mm) ||
23e5d9ecSKirill A. Shutemov		test_bit(MM_CONTEXT_FORCE_TAGGED_SVA, &mm->context.flags);
23e5d9ecSKirill A. Shutemov}
82721d8bSKirill A. Shutemov#else
82721d8bSKirill A. Shutemov
82721d8bSKirill A. Shutemovstatic inline unsigned long mm_lam_cr3_mask(struct mm_struct *mm)
82721d8bSKirill A. Shutemov{
82721d8bSKirill A. Shutemov	return 0;
82721d8bSKirill A. Shutemov}
82721d8bSKirill A. Shutemov
82721d8bSKirill A. Shutemovstatic inline void dup_lam(struct mm_struct *oldmm, struct mm_struct *mm)
82721d8bSKirill A. Shutemov{
82721d8bSKirill A. Shutemov}
74c228d2SKirill A. Shutemov
74c228d2SKirill A. Shutemovstatic inline void mm_reset_untag_mask(struct mm_struct *mm)
74c228d2SKirill A. Shutemov{
74c228d2SKirill A. Shutemov}
82721d8bSKirill A. Shutemov#endif
82721d8bSKirill A. Shutemov
586c4f24SNicholas Piggin#define enter_lazy_tlb enter_lazy_tlb
186525bdSIngo Molnarextern void enter_lazy_tlb(struct mm_struct *mm, struct task_struct *tsk);
6826c8ffSBrian Gerst
a31e184eSDave Hansen/*
a31e184eSDave Hansen * Init a new mm.  Used on mm copies, like at fork()
a31e184eSDave Hansen * and on mm's that are brand-new, like at execve().
a31e184eSDave Hansen */
586c4f24SNicholas Piggin#define init_new_context init_new_context
39a0526fSDave Hansenstatic inline int init_new_context(struct task_struct *tsk,
39a0526fSDave Hansen				   struct mm_struct *mm)
39a0526fSDave Hansen{
c2b3496bSPeter Zijlstra	mutex_init(&mm->context.lock);
c2b3496bSPeter Zijlstra
f39681edSAndy Lutomirski	mm->context.ctx_id = atomic64_inc_return(&last_mm_ctx_id);
f39681edSAndy Lutomirski	atomic64_set(&mm->context.tlb_gen, 0);
f39681edSAndy Lutomirski
e8c24d3aSDave Hansen#ifdef CONFIG_X86_INTEL_MEMORY_PROTECTION_KEYS
e8c24d3aSDave Hansen	if (cpu_feature_enabled(X86_FEATURE_OSPKE)) {
2fa9d1cfSDave Hansen		/* pkey 0 is the default and allocated implicitly */
e8c24d3aSDave Hansen		mm->context.pkey_allocation_map = 0x1;
e8c24d3aSDave Hansen		/* -1 means unallocated or invalid */
e8c24d3aSDave Hansen		mm->context.execute_only_pkey = -1;
e8c24d3aSDave Hansen	}
e8c24d3aSDave Hansen#endif
74c228d2SKirill A. Shutemov	mm_reset_untag_mask(mm);
a4828f81SThomas Gleixner	init_new_context_ldt(mm);
a4828f81SThomas Gleixner	return 0;
39a0526fSDave Hansen}
586c4f24SNicholas Piggin
586c4f24SNicholas Piggin#define destroy_context destroy_context
39a0526fSDave Hansenstatic inline void destroy_context(struct mm_struct *mm)
39a0526fSDave Hansen{
39a0526fSDave Hansen	destroy_context_ldt(mm);
39a0526fSDave Hansen}
39a0526fSDave Hansen
69c0319aSAndy Lutomirskiextern void switch_mm(struct mm_struct *prev, struct mm_struct *next,
69c0319aSAndy Lutomirski		      struct task_struct *tsk);
6826c8ffSBrian Gerst
078194f8SAndy Lutomirskiextern void switch_mm_irqs_off(struct mm_struct *prev, struct mm_struct *next,
078194f8SAndy Lutomirski			       struct task_struct *tsk);
078194f8SAndy Lutomirski#define switch_mm_irqs_off switch_mm_irqs_off
bb898558SAl Viro
bb898558SAl Viro#define activate_mm(prev, next)			\
bb898558SAl Virodo {						\
c9ae1b10SJuergen Gross	paravirt_enter_mmap(next);		\
bb898558SAl Viro	switch_mm((prev), (next), NULL);	\
bb898558SAl Viro} while (0);
bb898558SAl Viro
6826c8ffSBrian Gerst#ifdef CONFIG_X86_32
6826c8ffSBrian Gerst#define deactivate_mm(tsk, mm)			\
6826c8ffSBrian Gerstdo {						\
3a24a608SBrian Gerst	loadsegment(gs, 0);			\
6826c8ffSBrian Gerst} while (0)
6826c8ffSBrian Gerst#else
6826c8ffSBrian Gerst#define deactivate_mm(tsk, mm)			\
6826c8ffSBrian Gerstdo {						\
*b2926a36SRick Edgecombe	shstk_free(tsk);			\
6826c8ffSBrian Gerst	load_gs_index(0);			\
6826c8ffSBrian Gerst	loadsegment(fs, 0);			\
6826c8ffSBrian Gerst} while (0)
6826c8ffSBrian Gerst#endif
bb898558SAl Viro
a31e184eSDave Hansenstatic inline void arch_dup_pkeys(struct mm_struct *oldmm,
a31e184eSDave Hansen				  struct mm_struct *mm)
a31e184eSDave Hansen{
a31e184eSDave Hansen#ifdef CONFIG_X86_INTEL_MEMORY_PROTECTION_KEYS
a31e184eSDave Hansen	if (!cpu_feature_enabled(X86_FEATURE_OSPKE))
a31e184eSDave Hansen		return;
a31e184eSDave Hansen
a31e184eSDave Hansen	/* Duplicate the oldmm pkey state in mm: */
a31e184eSDave Hansen	mm->context.pkey_allocation_map = oldmm->context.pkey_allocation_map;
a31e184eSDave Hansen	mm->context.execute_only_pkey   = oldmm->context.execute_only_pkey;
a31e184eSDave Hansen#endif
a31e184eSDave Hansen}
a31e184eSDave Hansen
c10e83f5SThomas Gleixnerstatic inline int arch_dup_mmap(struct mm_struct *oldmm, struct mm_struct *mm)
a1ea1c03SDave Hansen{
a31e184eSDave Hansen	arch_dup_pkeys(oldmm, mm);
c9ae1b10SJuergen Gross	paravirt_enter_mmap(mm);
82721d8bSKirill A. Shutemov	dup_lam(oldmm, mm);
a4828f81SThomas Gleixner	return ldt_dup_context(oldmm, mm);
a1ea1c03SDave Hansen}
a1ea1c03SDave Hansen
a1ea1c03SDave Hansenstatic inline void arch_exit_mmap(struct mm_struct *mm)
a1ea1c03SDave Hansen{
a1ea1c03SDave Hansen	paravirt_arch_exit_mmap(mm);
f55f0501SAndy Lutomirski	ldt_arch_exit_mmap(mm);
a1ea1c03SDave Hansen}
a1ea1c03SDave Hansen
b0e9b09bSDave Hansen#ifdef CONFIG_X86_64
b0e9b09bSDave Hansenstatic inline bool is_64bit_mm(struct mm_struct *mm)
b0e9b09bSDave Hansen{
97f2645fSMasahiro Yamada	return	!IS_ENABLED(CONFIG_IA32_EMULATION) ||
5ef495e5SKirill A. Shutemov		!test_bit(MM_CONTEXT_UPROBE_IA32, &mm->context.flags);
b0e9b09bSDave Hansen}
b0e9b09bSDave Hansen#else
b0e9b09bSDave Hansenstatic inline bool is_64bit_mm(struct mm_struct *mm)
b0e9b09bSDave Hansen{
b0e9b09bSDave Hansen	return false;
b0e9b09bSDave Hansen}
b0e9b09bSDave Hansen#endif
b0e9b09bSDave Hansen
5a28fc94SDave Hansenstatic inline void arch_unmap(struct mm_struct *mm, unsigned long start,
5a28fc94SDave Hansen			      unsigned long end)
1de4fa14SDave Hansen{
1de4fa14SDave Hansen}
1de4fa14SDave Hansen
33a709b2SDave Hansen/*
33a709b2SDave Hansen * We only want to enforce protection keys on the current process
33a709b2SDave Hansen * because we effectively have no access to PKRU for other
33a709b2SDave Hansen * processes or any way to tell *which * PKRU in a threaded
33a709b2SDave Hansen * process we could use.
33a709b2SDave Hansen *
33a709b2SDave Hansen * So do not enforce things if the VMA is not from the current
33a709b2SDave Hansen * mm, or if we are in a kernel thread.
33a709b2SDave Hansen */
1b2ee126SDave Hansenstatic inline bool arch_vma_access_permitted(struct vm_area_struct *vma,
d61172b4SDave Hansen		bool write, bool execute, bool foreign)
33a709b2SDave Hansen{
d61172b4SDave Hansen	/* pkeys never affect instruction fetches */
d61172b4SDave Hansen	if (execute)
d61172b4SDave Hansen		return true;
33a709b2SDave Hansen	/* allow access if the VMA is not one from this process */
1b2ee126SDave Hansen	if (foreign || vma_is_foreign(vma))
33a709b2SDave Hansen		return true;
33a709b2SDave Hansen	return __pkru_allows_pkey(vma_pkey(vma), write);
33a709b2SDave Hansen}
33a709b2SDave Hansen
8c5cc19eSThomas Gleixnerunsigned long __get_current_cr3_fast(void);
d6e41f11SAndy Lutomirski
586c4f24SNicholas Piggin#include <asm-generic/mmu_context.h>
586c4f24SNicholas Piggin
1965aae3SH. Peter Anvin#endif /* _ASM_X86_MMU_CONTEXT_H */