niansa-misc/linux
1
0
Fork 0
mirror of synced 2025-03-06 20:59:54 +01:00
Code Issues Projects Releases Packages Wiki Activity

x86/fpu: Make copy_xstate_to_kernel() usable for [x]fpregs_get()

Browse source 
When xsave with init state optimization is used then a component's state
in the task's xsave buffer can be stale when the corresponding feature bit
is not set.

fpregs_get() and xfpregs_get() invoke fpstate_sanitize_xstate() to update
the task's xsave buffer before retrieving the FX or FP state. That's just
duplicated code as copy_xstate_to_kernel() already handles this correctly.

Add a copy mode argument to the function which allows to restrict the state
copy to the FP and SSE features.

Also rename the function to copy_xstate_to_uabi_buf() so the name reflects
what it is doing.

Signed-off-by: Thomas Gleixner <tglx@linutronix.de>
Signed-off-by: Borislav Petkov <bp@suse.de>
Reviewed-by: Borislav Petkov <bp@suse.de>
Link: https://lkml.kernel.org/r/20210623121452.805327286@linutronix.de
This commit is contained in:
Thomas Gleixner 2021-06-23 14:01:42 +02:00 committed by Borislav Petkov
parent da53f60bb8
commit eb6f51723f
3 changed files with 42 additions and 14 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
arch/x86/include/asm/fpu/xstate.h
View file

@ -103,12 +103,20 @@ extern void __init update_regset_xstate_info(unsigned int size,
void *get_xsave_addr(struct xregs_state *xsave, int xfeature_nr); void *get_xsave_addr(struct xregs_state *xsave, int xfeature_nr);
int using_compacted_format(void); int using_compacted_format(void);
int xfeature_size(int xfeature_nr); int xfeature_size(int xfeature_nr);
struct membuf;
void copy_xstate_to_kernel(struct membuf to, struct xregs_state *xsave);
int copy_kernel_to_xstate(struct xregs_state *xsave, const void *kbuf); int copy_kernel_to_xstate(struct xregs_state *xsave, const void *kbuf);
int copy_user_to_xstate(struct xregs_state *xsave, const void __user *ubuf); int copy_user_to_xstate(struct xregs_state *xsave, const void __user *ubuf);
void copy_supervisor_to_kernel(struct xregs_state *xsave); void copy_supervisor_to_kernel(struct xregs_state *xsave);
void copy_dynamic_supervisor_to_kernel(struct xregs_state *xstate, u64 mask); void copy_dynamic_supervisor_to_kernel(struct xregs_state *xstate, u64 mask);
void copy_kernel_to_dynamic_supervisor(struct xregs_state *xstate, u64 mask); void copy_kernel_to_dynamic_supervisor(struct xregs_state *xstate, u64 mask);
enum xstate_copy_mode {
XSTATE_COPY_FP,
XSTATE_COPY_FX,
XSTATE_COPY_XSAVE,
};
struct membuf;
void copy_xstate_to_uabi_buf(struct membuf to, struct xregs_state *xsave,
enum xstate_copy_mode mode);
#endif #endif

2
arch/x86/kernel/fpu/regset.c
View file

@ -93,7 +93,7 @@ int xstateregs_get(struct task_struct *target, const struct user_regset *regset,
fpu__prepare_read(fpu); fpu__prepare_read(fpu);
copy_xstate_to_kernel(to, &fpu->state.xsave); copy_xstate_to_uabi_buf(to, &fpu->state.xsave, XSTATE_COPY_XSAVE);
return 0; return 0;
} }

42
arch/x86/kernel/fpu/xstate.c
View file

@ -1068,14 +1068,20 @@ static void copy_feature(bool from_xstate, struct membuf *to, void *xstate,
membuf_write(to, from_xstate ? xstate : init_xstate, size); membuf_write(to, from_xstate ? xstate : init_xstate, size);
} }
/* /**
* Convert from kernel XSAVE or XSAVES compacted format to UABI * copy_xstate_to_uabi_buf - Copy kernel saved xstate to a UABI buffer
* non-compacted format and copy to a kernel-space ptrace buffer. * @to: membuf descriptor
* @xsave: The kernel xstate buffer to copy from
* @copy_mode: The requested copy mode
* *
* It supports partial copy but pos always starts from zero. This is called * Converts from kernel XSAVE or XSAVES compacted format to UABI conforming
* from xstateregs_get() and there we check the CPU has XSAVE. * format, i.e. from the kernel internal hardware dependent storage format
* to the requested @mode. UABI XSTATE is always uncompacted!
*
* It supports partial copy but @to.pos always starts from zero.
*/ */
void copy_xstate_to_kernel(struct membuf to, struct xregs_state *xsave) void copy_xstate_to_uabi_buf(struct membuf to, struct xregs_state *xsave,
enum xstate_copy_mode copy_mode)
{ {
const unsigned int off_mxcsr = offsetof(struct fxregs_state, mxcsr); const unsigned int off_mxcsr = offsetof(struct fxregs_state, mxcsr);
struct xregs_state *xinit = &init_fpstate.xsave; struct xregs_state *xinit = &init_fpstate.xsave;
@ -1083,12 +1089,22 @@ void copy_xstate_to_kernel(struct membuf to, struct xregs_state *xsave)
unsigned int zerofrom; unsigned int zerofrom;
int i; int i;
/*
* The destination is a ptrace buffer; we put in only user xstates:
*/
memset(&header, 0, sizeof(header));
header.xfeatures = xsave->header.xfeatures; header.xfeatures = xsave->header.xfeatures;
header.xfeatures &= xfeatures_mask_user();
/* Mask out the feature bits depending on copy mode */
switch (copy_mode) {
case XSTATE_COPY_FP:
header.xfeatures &= XFEATURE_MASK_FP;
break;
case XSTATE_COPY_FX:
header.xfeatures &= XFEATURE_MASK_FP | XFEATURE_MASK_SSE;
break;
case XSTATE_COPY_XSAVE:
header.xfeatures &= xfeatures_mask_user();
break;
}
/* Copy FP state up to MXCSR */ /* Copy FP state up to MXCSR */
copy_feature(header.xfeatures & XFEATURE_MASK_FP, &to, &xsave->i387, copy_feature(header.xfeatures & XFEATURE_MASK_FP, &to, &xsave->i387,
@ -1109,6 +1125,9 @@ void copy_xstate_to_kernel(struct membuf to, struct xregs_state *xsave)
&to, &xsave->i387.xmm_space, &xinit->i387.xmm_space, &to, &xsave->i387.xmm_space, &xinit->i387.xmm_space,
sizeof(xsave->i387.xmm_space)); sizeof(xsave->i387.xmm_space));
if (copy_mode != XSTATE_COPY_XSAVE)
goto out;
/* Zero the padding area */ /* Zero the padding area */
membuf_zero(&to, sizeof(xsave->i387.padding)); membuf_zero(&to, sizeof(xsave->i387.padding));
@ -1150,6 +1169,7 @@ void copy_xstate_to_kernel(struct membuf to, struct xregs_state *xsave)
zerofrom = xstate_offsets[i] + xstate_sizes[i]; zerofrom = xstate_offsets[i] + xstate_sizes[i];
} }
out:
if (to.left) if (to.left)
membuf_zero(&to, to.left); membuf_zero(&to, to.left);
} }