[RFC,v2,04/20] x86: Secure Memory Encryption (SME) support

Message ID	20160822223610.29880.21739.stgit@tlendack-t1.amdoffice.net (mailing list archive)
State	New, archived
Headers	show Return-Path: <kvm-owner@kernel.org> From: Tom Lendacky <thomas.lendacky@amd.com> Subject: [RFC PATCH v2 04/20] x86: Secure Memory Encryption (SME) support To: <linux-arch@vger.kernel.org>, <linux-efi@vger.kernel.org>, <kvm@vger.kernel.org>, <linux-doc@vger.kernel.org>, <x86@kernel.org>, <linux-kernel@vger.kernel.org>, <kasan-dev@googlegroups.com>, <linux-mm@kvack.org>, <iommu@lists.linux-foundation.org> CC: Radim =?utf-8?b?S3LEjW3DocWZ?= <rkrcmar@redhat.com>, Arnd Bergmann <arnd@arndb.de>, Jonathan Corbet <corbet@lwn.net>, Matt Fleming <matt@codeblueprint.co.uk>, Joerg Roedel <joro@8bytes.org>, "Konrad Rzeszutek Wilk" <konrad.wilk@oracle.com>, Andrey Ryabinin <aryabinin@virtuozzo.com>, Ingo Molnar <mingo@redhat.com>, Borislav Petkov <bp@alien8.de>, "Andy Lutomirski" <luto@kernel.org>, "H. Peter Anvin" <hpa@zytor.com>, Paolo Bonzini <pbonzini@redhat.com>, Alexander Potapenko <glider@google.com>, "Thomas Gleixner" <tglx@linutronix.de>, Dmitry Vyukov <dvyukov@google.com> Date: Mon, 22 Aug 2016 17:36:10 -0500 Message-ID: <20160822223610.29880.21739.stgit@tlendack-t1.amdoffice.net> In-Reply-To: <20160822223529.29880.50884.stgit@tlendack-t1.amdoffice.net> References: <20160822223529.29880.50884.stgit@tlendack-t1.amdoffice.net> User-Agent: StGit/0.17.1-dirty MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit Received-SPF: None (protection.outlook.com: amd.com does not designate permitted sender hosts) X-Microsoft-Exchange-Diagnostics: =?utf-8?B?MTtNV0hQUjEyTUIxMTUxOzIzOnRrdmJrUk1wM01wZzVrNVJJRXpQa2cwSFFv?= =?utf-8?B?dzQ5M3haZWZTRW5rOWRUYkYvK1VNOVhXSWFSWE5aM2JDSVV4MGxWLytkdGx4?= =?utf-8?B?RXFuWjU5ZnhYTHFzZjQrRzMxSkNlQTFMOGFNOGpuNnRrbk5jWGhHUWZHRHU5?= =?utf-8?B?K1k3azlPZ1F0cTJ5Nlp5UEdMWlFRcEdlNUZJckxlR0FsNFdNOFZKNm1WbkYr?= =?utf-8?B?b09qTjl5NUZIeUpOUFRzc1FYSWJKb2lLRVRzZnd6M3R5akpyRlVqZkVLcys0?= =?utf-8?B?TTZxSlNEVGQ0N1BxMHQveXZqbGd1QndNNW5PWU1IaDNpYlRtaDJxNHp3WllL?= =?utf-8?B?T3VWNEdDOGVHMi8rZmJvUkRyVzErSHJlb2k3S3hrbm9VZFBjeGErbmVqd1hR?= =?utf-8?B?Z1owOThGZWxxN244KzFQMDgxRjRkNFZ5cHkvcnZwQ3lkSEhNWnAybkY4V3kx?= =?utf-8?B?TGpKbVFJUlp3NmEwUnpPUzZlTVVlWTg2U2pZZmhUb0x6NWtHU3NjTmVIK2cy?= =?utf-8?B?bkR3aVpJQkYxNXU3bUt0ODFTaGVVNy94MDlqM3J0UXppblZ4cFNLZk5COGhP?= =?utf-8?B?RzVJRjZ2djgxLzYxSWRPelAzd25sajdxNlN1dmlYT2JsVWl5cjNSelpETldC?= =?utf-8?B?V0NQNDdxaEpZR2c1ZzRkRXVkQ2JrK2JqcStnbUpQTUEwbm85SlgxVEtjQ2NO?= =?utf-8?B?dWdkVFNpV202aDg0QURPK3dqcXV3R2NQVHVYOHBUbnNHUGJnSSs3dk9nQ0p1?= =?utf-8?B?bTN2c09hMWxaSzUxTDhud1VIeHArK09ZdHdBWlBubmd3WGZqdjBUM05uNWtK?= =?utf-8?B?dG5uaGhmYzVBUzAzS3k3YjNrU1FVM2ZUTk1lUzN0T3NINngzMXl5L0FVT1BE?= =?utf-8?B?VjAwS0NlaDJUd2N4UDJnUEE2RDdUT3Jmam9Rd0FiTWtJc2VVOGJiV0N4bXo3?= =?utf-8?B?cTZtNXNmR1FETWJtT3VMbU54R3U1NTE1WVo0WnY1UFpwN3hBNHZFc1ZpRk9p?= =?utf-8?B?RTdVbFN2Z2FMblh6QTZHNlQwR0krOVY1ZkZUMDZSbFd0Z2dEQ2Rxc1lTbEdE?= =?utf-8?B?ak1YZEYrZGNTS1JJaEpnMkMrbDhmR2VBMi9OVytJM2lmemZjSmZseHR6Zk11?= =?utf-8?B?QlFpcE9DYWpIMnZoQ2UxeWNNNno1UDUrOTBpaXRNVUk5NEJ6TU1mbUt2Q2Zx?= =?utf-8?B?dzlYODFMTE1IZHZDanVmVjExRjY0WTBOU1RUenF3WUlGMnFlaFRBMGFxWnkv?= =?utf-8?B?ejkwVnhJeFg0ZzRSc0V0ZklRRG5Md1FUcy9YWGc2djNpSzdPUU1aMWI3aHlh?= =?utf-8?B?QVhSem1NUFpIQjVHODVZNDVMOUp2L2VTN25wQUgzUDlNaWpscHJoUHdXT1Jy?= =?utf-8?B?cHgxWW1sbnJ3UnY0K2tod0V5OFd5UGV3amp3dklGV2lTekdPSnVwQU8vZGc5?= =?utf-8?B?QkIrNGQrblpPYVF1N0pISk12VGh1a09JQS9KV1ZQc0ZiNjNISytJUVcwMkJ4?= =?utf-8?B?YWNJRkR3WUlDZG9QRjZMT3poVnBLWURhTFpGMU1XZnRROHNLRU5XMzZhNWd4?= =?utf-8?B?Sy9GTFYrLzlnek1vL1JSVVIxZmZibWR5UndObGFFRzE3RXhWQkxQeGlwS3pn?= =?utf-8?B?dTFTN2RlU2ZtcHE3c2tRUWVqT2Z6aVgyOFpvYjNqUWhHbU1FTUk1dzVPUVBI?= =?utf-8?B?NldGTGhZUTFQZGltTVZJaXl3Q0pUQUgzVWdZc2NiTEw0azcvaEZsR3JWaDc5?= =?utf-8?B?WVkvQjU4MUFlaTc2Z0h3ZmQwMmJxMjdBNzVwYjlnN1h4eGpDbC9OUkp3RzV3?= =?utf-8?Q?N1U6HzMkitHSG?= X-Microsoft-Exchange-Diagnostics: 1; MWHPR12MB1151; 6:4LYRWKXAsE8SBrOmuOD4fN5Dlhyg22hjdpX65dLcGqEhWNlg5IWqMn5L+yweB5FBYupgzAUUI4gVEIvVrsZ1XlQlv4VI1cu2D0dA24tzeHHKB7sA24s2eJ9i+iB98/exlf4RYZ1l+aqDxlNfARaYn5N2mKqLReb+uOpYgzH9n4aoxeG6TcWHzCevCJ5YfOivEN5y3WNSF5TW+BodhheQ5uk87qXqCrAs4Lu1tiZOHymldUTTPIkn2wWeTgWWy2MC60Sd8fNY4t5L5SAspCBktwP1ptFgtQAsmsi5Y858AXT9m8K3yVrudQdpaCRhGllZG5I9qq3SLSpnFacUPjLgmQ==; 5:pXSBWT7oX1LxrDvmYRDTIZJqsVzfDp3lz6koMrUJJOdnIjanWV1KDP0kv5QGVZnRiMX/jXCQ+KhtpdqGWKQ4qJUFzccljj81kZSx6z8rtCEODFVOhCi0bwT6WUW456pJQoOhtdnjUSykcXA9GkE/8A==; 24:KNN/uVmTXtqOU9iC3cNGW0P9aS6j0ZtrFxSCn85qv5rYWlCvM2E2N9QKCQGXrPclNgeSWSgLlNtISJnqB5xxTGX38bw1I8vcYu1Ojd8dL4k=; 7:RIorzqUn5Whg1/EPXhPxVU/viJwo31qyfbKUgRkyhhkjtcSbF0G0gYUsvVCrHZBUeDZTbyW7I7l0M60/deqws7gQRx2ILYMW8lFSzS5KVNptmVKalSsobdiqxLDUgD5mp74dCHqfeTnk1Gd/+pPcsXTA6D33sjZu7+fIKMNHlUyeV4Nk+5HxrxIIWYEtbE4LNro0Qy1m845vzltzYL0F22sP2K3h+4MESEBEwmo1/KM0Lt6qxWAYfUUMd5RyHi/J SpamDiagnosticOutput: 1:99 SpamDiagnosticMetadata: NSPM X-Microsoft-Exchange-Diagnostics: 1; MWHPR12MB1151; 20:GXSNziLy8tcPMCgm2luQT+pCKetpKveSvf8OYs3FELrUBGMcTLQbL4AxCZehSDcPFTNtUPUx4iGQGV1s3v7XdaC7U4bDeUIJe656rhhtgFdIfWiMiw9chggADmKDpL9IVJ1NjY6Ak/EnA+bAce6v20n6386WR+Q7bFo4s+otJcSvj+ibJNbf3sjAhcCPT5ns/r5u1EXMwplcMUZzfKdM7rLvXlMgrBroN1NAuZEyTIcpMoxuQ3CUZg4eSNpbcrzj Sender: kvm-owner@vger.kernel.org Precedence: bulk

Message ID

20160822223610.29880.21739.stgit@tlendack-t1.amdoffice.net (mailing list archive)

State

New, archived

Headers

From: Tom Lendacky <thomas.lendacky@amd.com>
Subject: [RFC PATCH v2 04/20] x86: Secure Memory Encryption (SME) support
To: <linux-arch@vger.kernel.org>, <linux-efi@vger.kernel.org>,
	<kvm@vger.kernel.org>, <linux-doc@vger.kernel.org>,
	<x86@kernel.org>, <linux-kernel@vger.kernel.org>,
	<kasan-dev@googlegroups.com>, <linux-mm@kvack.org>,
	<iommu@lists.linux-foundation.org>
CC: Radim =?utf-8?b?S3LEjW3DocWZ?= <rkrcmar@redhat.com>,
	Arnd Bergmann <arnd@arndb.de>, Jonathan Corbet <corbet@lwn.net>,
	Matt Fleming <matt@codeblueprint.co.uk>, Joerg Roedel <joro@8bytes.org>,
	"Konrad Rzeszutek Wilk" <konrad.wilk@oracle.com>,
	Andrey Ryabinin <aryabinin@virtuozzo.com>,
	Ingo Molnar <mingo@redhat.com>, Borislav Petkov <bp@alien8.de>,
	"Andy Lutomirski" <luto@kernel.org>, "H. Peter Anvin" <hpa@zytor.com>,
	Paolo Bonzini <pbonzini@redhat.com>,
	Alexander Potapenko <glider@google.com>,
	"Thomas Gleixner" <tglx@linutronix.de>,
	Dmitry Vyukov <dvyukov@google.com>
Date: Mon, 22 Aug 2016 17:36:10 -0500
Message-ID: <20160822223610.29880.21739.stgit@tlendack-t1.amdoffice.net>
In-Reply-To: <20160822223529.29880.50884.stgit@tlendack-t1.amdoffice.net>
References: <20160822223529.29880.50884.stgit@tlendack-t1.amdoffice.net>
User-Agent: StGit/0.17.1-dirty
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
Received-SPF: None (protection.outlook.com: amd.com does not designate
	permitted sender hosts)
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 22 Aug 2016 22:36:13.9625
	(UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MWHPR12MB1151
Sender: kvm-owner@vger.kernel.org
Precedence: bulk
List-ID: <kvm.vger.kernel.org>
X-Mailing-List: kvm@vger.kernel.org
X-Virus-Scanned: ClamAV using ClamSMTP

Commit Message

Tom Lendacky Aug. 22, 2016, 10:36 p.m. UTC

Provide support for Secure Memory Encryption (SME). This initial support
defines the memory encryption mask as a variable for quick access and an
accessor for retrieving the number of physical addressing bits lost if
SME is enabled.

Signed-off-by: Tom Lendacky <thomas.lendacky@amd.com>
---
 arch/x86/include/asm/mem_encrypt.h |   37 ++++++++++++++++++++++++++++++++++++
 arch/x86/kernel/Makefile           |    2 ++
 arch/x86/kernel/mem_encrypt.S      |   29 ++++++++++++++++++++++++++++
 arch/x86/kernel/x8664_ksyms_64.c   |    6 ++++++
 4 files changed, 74 insertions(+)
 create mode 100644 arch/x86/include/asm/mem_encrypt.h
 create mode 100644 arch/x86/kernel/mem_encrypt.S


--
To unsubscribe from this list: send the line "unsubscribe kvm" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Comments

Thomas Gleixner Aug. 25, 2016, 1:04 p.m. UTC | #1

On Mon, 22 Aug 2016, Tom Lendacky wrote:

> Provide support for Secure Memory Encryption (SME). This initial support
> defines the memory encryption mask as a variable for quick access and an
> accessor for retrieving the number of physical addressing bits lost if
> SME is enabled.

What is the reason that this needs to live in assembly code?
 
Thanks,

	tglx
--
To unsubscribe from this list: send the line "unsubscribe kvm" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Tom Lendacky Aug. 30, 2016, 1:19 p.m. UTC | #2

On 08/25/2016 08:04 AM, Thomas Gleixner wrote:
> On Mon, 22 Aug 2016, Tom Lendacky wrote:
> 
>> Provide support for Secure Memory Encryption (SME). This initial support
>> defines the memory encryption mask as a variable for quick access and an
>> accessor for retrieving the number of physical addressing bits lost if
>> SME is enabled.
> 
> What is the reason that this needs to live in assembly code?

In later patches this code is expanded and deals with a lot of page
table manipulation, cpuid/rdmsr instructions, etc. and so I thought it
was best to do it this way.

Thanks,
Tom

>  
> Thanks,
> 
> 	tglx
> 
--
To unsubscribe from this list: send the line "unsubscribe kvm" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Andy Lutomirski Aug. 30, 2016, 2:57 p.m. UTC | #3

On Aug 30, 2016 6:34 AM, "Tom Lendacky" <thomas.lendacky@amd.com> wrote:
>
> On 08/25/2016 08:04 AM, Thomas Gleixner wrote:
> > On Mon, 22 Aug 2016, Tom Lendacky wrote:
> >
> >> Provide support for Secure Memory Encryption (SME). This initial support
> >> defines the memory encryption mask as a variable for quick access and an
> >> accessor for retrieving the number of physical addressing bits lost if
> >> SME is enabled.
> >
> > What is the reason that this needs to live in assembly code?
>
> In later patches this code is expanded and deals with a lot of page
> table manipulation, cpuid/rdmsr instructions, etc. and so I thought it
> was best to do it this way.

None of that sounds like it needs to be in asm, though.

I, at least, have a strong preference for minimizing the amount of asm
in the low-level arch code.

--Andy
--
To unsubscribe from this list: send the line "unsubscribe kvm" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Tom Lendacky Aug. 31, 2016, 1:26 p.m. UTC | #4

On 08/30/2016 09:57 AM, Andy Lutomirski wrote:
> On Aug 30, 2016 6:34 AM, "Tom Lendacky" <thomas.lendacky@amd.com> wrote:
>>
>> On 08/25/2016 08:04 AM, Thomas Gleixner wrote:
>>> On Mon, 22 Aug 2016, Tom Lendacky wrote:
>>>
>>>> Provide support for Secure Memory Encryption (SME). This initial support
>>>> defines the memory encryption mask as a variable for quick access and an
>>>> accessor for retrieving the number of physical addressing bits lost if
>>>> SME is enabled.
>>>
>>> What is the reason that this needs to live in assembly code?
>>
>> In later patches this code is expanded and deals with a lot of page
>> table manipulation, cpuid/rdmsr instructions, etc. and so I thought it
>> was best to do it this way.
> 
> None of that sounds like it needs to be in asm, though.
> 
> I, at least, have a strong preference for minimizing the amount of asm
> in the low-level arch code.

I can take a look at converting it over to C code.

Thanks,
Tom

> 
> --Andy
> 
--
To unsubscribe from this list: send the line "unsubscribe kvm" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

diff --git a/arch/x86/include/asm/mem_encrypt.h b/arch/x86/include/asm/mem_encrypt.h
new file mode 100644
index 0000000..747fc52
--- /dev/null
+++ b/arch/x86/include/asm/mem_encrypt.h
@@ -0,0 +1,37 @@ 
+/*
+ * AMD Memory Encryption Support
+ *
+ * Copyright (C) 2016 Advanced Micro Devices, Inc.
+ *
+ * Author: Tom Lendacky <thomas.lendacky@amd.com>
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License version 2 as
+ * published by the Free Software Foundation.
+ */
+
+#ifndef __X86_MEM_ENCRYPT_H__
+#define __X86_MEM_ENCRYPT_H__
+
+#ifndef __ASSEMBLY__
+
+#ifdef CONFIG_AMD_MEM_ENCRYPT
+
+extern unsigned long sme_me_mask;
+
+u8 sme_get_me_loss(void);
+
+#else	/* !CONFIG_AMD_MEM_ENCRYPT */
+
+#define sme_me_mask		0UL
+
+static inline u8 sme_get_me_loss(void)
+{
+	return 0;
+}
+
+#endif	/* CONFIG_AMD_MEM_ENCRYPT */
+
+#endif	/* __ASSEMBLY__ */
+
+#endif	/* __X86_MEM_ENCRYPT_H__ */
diff --git a/arch/x86/kernel/Makefile b/arch/x86/kernel/Makefile
index 0503f5b..bda997f 100644
--- a/arch/x86/kernel/Makefile
+++ b/arch/x86/kernel/Makefile
@@ -125,6 +125,8 @@  obj-$(CONFIG_EFI)			+= sysfb_efi.o
 obj-$(CONFIG_PERF_EVENTS)		+= perf_regs.o
 obj-$(CONFIG_TRACING)			+= tracepoint.o
 
+obj-y					+= mem_encrypt.o
+
 ###
 # 64 bit specific files
 ifeq ($(CONFIG_X86_64),y)
diff --git a/arch/x86/kernel/mem_encrypt.S b/arch/x86/kernel/mem_encrypt.S
new file mode 100644
index 0000000..ef7f325
--- /dev/null
+++ b/arch/x86/kernel/mem_encrypt.S
@@ -0,0 +1,29 @@ 
+/*
+ * AMD Memory Encryption Support
+ *
+ * Copyright (C) 2016 Advanced Micro Devices, Inc.
+ *
+ * Author: Tom Lendacky <thomas.lendacky@amd.com>
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License version 2 as
+ * published by the Free Software Foundation.
+ */
+
+#include <linux/linkage.h>
+
+	.text
+	.code64
+ENTRY(sme_get_me_loss)
+	xor	%rax, %rax
+	mov	sme_me_loss(%rip), %al
+	ret
+ENDPROC(sme_get_me_loss)
+
+	.data
+	.align 16
+ENTRY(sme_me_mask)
+	.quad	0x0000000000000000
+sme_me_loss:
+	.byte	0x00
+	.align	8
diff --git a/arch/x86/kernel/x8664_ksyms_64.c b/arch/x86/kernel/x8664_ksyms_64.c
index 95e49f6..651c4c8 100644
--- a/arch/x86/kernel/x8664_ksyms_64.c
+++ b/arch/x86/kernel/x8664_ksyms_64.c
@@ -12,6 +12,7 @@ 
 #include <asm/uaccess.h>
 #include <asm/desc.h>
 #include <asm/ftrace.h>
+#include <asm/mem_encrypt.h>
 
 #ifdef CONFIG_FUNCTION_TRACER
 /* mcount and __fentry__ are defined in assembly */
@@ -83,3 +84,8 @@  EXPORT_SYMBOL(native_load_gs_index);
 EXPORT_SYMBOL(___preempt_schedule);
 EXPORT_SYMBOL(___preempt_schedule_notrace);
 #endif
+
+#ifdef CONFIG_AMD_MEM_ENCRYPT
+EXPORT_SYMBOL_GPL(sme_me_mask);
+EXPORT_SYMBOL_GPL(sme_get_me_loss);
+#endif

[RFC,v2,04/20] x86: Secure Memory Encryption (SME) support

Commit Message

Comments

Patch