| Message ID | 20250110-asi-rfc-v2-v2-17-8419288bc805@google.com (mailing list archive) |
|---|---|
| State | New |
| Headers | show
Return-Path: <owner-linux-mm@kvack.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17])
by smtp.lore.kernel.org (Postfix) with ESMTP id 2A927E7719D
for <linux-mm@archiver.kernel.org>; Fri, 10 Jan 2025 18:41:37 +0000 (UTC)
Received: by kanga.kvack.org (Postfix)
id 35CE58D0008; Fri, 10 Jan 2025 13:41:28 -0500 (EST)
Received: by kanga.kvack.org (Postfix, from userid 40)
id 2E4D38D0005; Fri, 10 Jan 2025 13:41:28 -0500 (EST)
X-Delivered-To: int-list-linux-mm@kvack.org
Received: by kanga.kvack.org (Postfix, from userid 63042)
id 13B758D0008; Fri, 10 Jan 2025 13:41:28 -0500 (EST)
X-Delivered-To: linux-mm@kvack.org
Received: from relay.hostedemail.com (smtprelay0013.hostedemail.com
[216.40.44.13])
by kanga.kvack.org (Postfix) with ESMTP id E5FA48D0005
for <linux-mm@kvack.org>; Fri, 10 Jan 2025 13:41:27 -0500 (EST)
Received: from smtpin26.hostedemail.com (a10.router.float.18 [10.200.18.1])
by unirelay01.hostedemail.com (Postfix) with ESMTP id 908921C76DA
for <linux-mm@kvack.org>; Fri, 10 Jan 2025 18:41:27 +0000 (UTC)
X-FDA: 82992410214.26.20EF374
Received: from mail-wm1-f74.google.com (mail-wm1-f74.google.com
[209.85.128.74])
by imf22.hostedemail.com (Postfix) with ESMTP id B910DC0005
for <linux-mm@kvack.org>; Fri, 10 Jan 2025 18:41:25 +0000 (UTC)
Authentication-Results: imf22.hostedemail.com;
dkim=pass header.d=google.com header.s=20230601 header.b=K4mxsxvs;
dmarc=pass (policy=reject) header.from=google.com;
spf=pass (imf22.hostedemail.com: domain of
31GmBZwgKCO8aRTbdReSXffXcV.TfdcZelo-ddbmRTb.fiX@flex--jackmanb.bounces.google.com
designates 209.85.128.74 as permitted sender)
smtp.mailfrom=31GmBZwgKCO8aRTbdReSXffXcV.TfdcZelo-ddbmRTb.fiX@flex--jackmanb.bounces.google.com
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed;
d=hostedemail.com;
s=arc-20220608; t=1736534485;
h=from:from:sender:reply-to:subject:subject:date:date:
message-id:message-id:to:to:cc:cc:mime-version:mime-version:
content-type:content-type:content-transfer-encoding:
in-reply-to:in-reply-to:references:references:dkim-signature;
bh=HFKS9He99X0lK3xnnbI99ZyULyVP6qmX2/a79HHV3Mw=;
b=JHaLW3f5+ev2q/zTYbj0AF2D4AfEnp53zxF9lMQPLmBubU0HC3DC49GC2u73woe0MjBsox
Qd4HJgT+9vG4ImP6TL0aJ9MAS3QMr8X1+ZFS1VayX0bWA6pjSIT6q/f6qzW+5U584K3cGD
79+sJ/WOUK8C0gEh33TD5R6Il1I/4bY=
ARC-Seal: i=1; s=arc-20220608; d=hostedemail.com; t=1736534485; a=rsa-sha256;
cv=none;
b=k+wYUJDgF7NM2J1y4HSkjiLGhSnmdqWJgDMntriWElwEm7+kEi+XlQvVUzdmDsNPDsmypw
cEb4tXGlkWnl8qeJRwaEQ7l92kOEc+z5AxNbc9ChDaO5ApWR68gWX3FMcUsmzHbHsX0F8p
vy4uWUb21iezHdPfM81kf6/8W7P73M8=
ARC-Authentication-Results: i=1;
imf22.hostedemail.com;
dkim=pass header.d=google.com header.s=20230601 header.b=K4mxsxvs;
dmarc=pass (policy=reject) header.from=google.com;
spf=pass (imf22.hostedemail.com: domain of
31GmBZwgKCO8aRTbdReSXffXcV.TfdcZelo-ddbmRTb.fiX@flex--jackmanb.bounces.google.com
designates 209.85.128.74 as permitted sender)
smtp.mailfrom=31GmBZwgKCO8aRTbdReSXffXcV.TfdcZelo-ddbmRTb.fiX@flex--jackmanb.bounces.google.com
Received: by mail-wm1-f74.google.com with SMTP id
5b1f17b1804b1-43621907030so19341115e9.1
for <linux-mm@kvack.org>; Fri, 10 Jan 2025 10:41:25 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=google.com; s=20230601; t=1736534484; x=1737139284; darn=kvack.org;
h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
:date:from:to:cc:subject:date:message-id:reply-to;
bh=HFKS9He99X0lK3xnnbI99ZyULyVP6qmX2/a79HHV3Mw=;
b=K4mxsxvs+J8FeIHZrXHOhckMULLJVxBeT8rxf6AjDTvyyHt92mky64wnNS6QZeJwW1
ejExxbCDtQ7Jo2ZaW+FZJGvfH2La8wWhneooJQVbkg4/2ZHP/W/3O6gC2HeBQ46yeF1/
k+nVkqdRYKgKuajCr0po3KlMCu9tq0MpxV+RK4p3dqa+r2CdqPs0Isx/rxaFqtRRELog
OnVQyTC5nXeKpGRgoO4lnmYPMt09D1WZ+QpuBijev5YIz4535IvIUGfNba9do72Z1dSa
vJu2osMfsZgdjWdO0vmYUoXeG2tcrQtwAa9QhlQjsm0Ipl4QLl4xEHh9RBBBy2YK9f9E
3alQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20230601; t=1736534484; x=1737139284;
h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
:date:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;
bh=HFKS9He99X0lK3xnnbI99ZyULyVP6qmX2/a79HHV3Mw=;
b=iOaxe8gsfT8Dz86/J34DU7as9ZikqZC7QLIwsmbAb9qvSdReu+RJo76dAB8HERacmK
dFx1bNGl8owtHtlQvE9dqUccOGkIvJaJ03yiaqr1oiD2xjVEBgWyyG2+355VXfhuR9Ah
i0RfbblZdGjR5dey1eDIap0wdK7WAdCyS+ltD3f9LR0y+soiFjoNCQYxi7+v31J1Pglz
G3g/5LdeEiPNr3dHXFxLJ1CaefS8IJFJzcxYvcNZSn/cYbEvaQyIV4KgrIOXXzk422PU
3sqb6RB46ar+SrWVLCvDlGVkKrWWKnX9QA7dK2Wu50HxTy+bd2i6SPbHHB7YtER300RF
bE7Q==
X-Forwarded-Encrypted: i=1;
AJvYcCUKaA9tjp4QpxSo3cDrsn4GTRpv4STDmwAmJUtdR5LBBcYklIEEEsTF6KypnhKYXMl+R8TnAm1I+A==@kvack.org
X-Gm-Message-State: AOJu0YwF2GK6Zm7OplIeXs6F/0az4zv1cM1MZXZ2dKTbGeBMpDT4O6Bc
dBNn48QK5OI3YZRE+wFlrWJMBdlEfhAJd5hpI9Pv6kNOCAECKocrudLekVu0BucUKS3es2lepvu
Qm+bnnRxDWA==
X-Google-Smtp-Source:
AGHT+IHb2tLJeEj/nhEIcvCueP11HP0tzz903p60s9RvGJF27LFwQlQKr5YD0ey6aPDR1IvAD0AJ740K8RZlJQ==
X-Received: from wmbbh20.prod.google.com
([2002:a05:600c:3d14:b0:434:fd4d:ffad])
(user=jackmanb job=prod-delivery.src-stubby-dispatcher) by
2002:a05:600c:3c85:b0:436:18d0:aa6e with SMTP id
5b1f17b1804b1-436e2679a7cmr125832515e9.5.1736534484149;
Fri, 10 Jan 2025 10:41:24 -0800 (PST)
Date: Fri, 10 Jan 2025 18:40:43 +0000
In-Reply-To: <20250110-asi-rfc-v2-v2-0-8419288bc805@google.com>
Mime-Version: 1.0
References: <20250110-asi-rfc-v2-v2-0-8419288bc805@google.com>
X-Mailer: b4 0.15-dev
Message-ID: <20250110-asi-rfc-v2-v2-17-8419288bc805@google.com>
Subject: [PATCH RFC v2 17/29] mm: asi: Map vmalloc/vmap data as nonsensitive
From: Brendan Jackman <jackmanb@google.com>
To: Thomas Gleixner <tglx@linutronix.de>, Ingo Molnar <mingo@redhat.com>,
Borislav Petkov <bp@alien8.de>,
Dave Hansen <dave.hansen@linux.intel.com>, "H. Peter Anvin" <hpa@zytor.com>,
Andy Lutomirski <luto@kernel.org>, Peter Zijlstra <peterz@infradead.org>,
Richard Henderson <richard.henderson@linaro.org>,
Matt Turner <mattst88@gmail.com>,
Vineet Gupta <vgupta@kernel.org>, Russell King <linux@armlinux.org.uk>,
Catalin Marinas <catalin.marinas@arm.com>, Will Deacon <will@kernel.org>,
Guo Ren <guoren@kernel.org>,
Brian Cain <bcain@quicinc.com>, Huacai Chen <chenhuacai@kernel.org>,
WANG Xuerui <kernel@xen0n.name>, Geert Uytterhoeven <geert@linux-m68k.org>,
Michal Simek <monstr@monstr.eu>,
Thomas Bogendoerfer <tsbogend@alpha.franken.de>,
Dinh Nguyen <dinguyen@kernel.org>, Jonas Bonn <jonas@southpole.se>,
Stefan Kristiansson <stefan.kristiansson@saunalahti.fi>,
Stafford Horne <shorne@gmail.com>,
"James E.J. Bottomley" <James.Bottomley@HansenPartnership.com>,
Helge Deller <deller@gmx.de>,
Michael Ellerman <mpe@ellerman.id.au>, Nicholas Piggin <npiggin@gmail.com>,
Christophe Leroy <christophe.leroy@csgroup.eu>,
Naveen N Rao <naveen@kernel.org>,
Madhavan Srinivasan <maddy@linux.ibm.com>,
Paul Walmsley <paul.walmsley@sifive.com>,
Palmer Dabbelt <palmer@dabbelt.com>, Albert Ou <aou@eecs.berkeley.edu>,
Heiko Carstens <hca@linux.ibm.com>, Vasily Gorbik <gor@linux.ibm.com>,
Alexander Gordeev <agordeev@linux.ibm.com>,
Christian Borntraeger <borntraeger@linux.ibm.com>,
Sven Schnelle <svens@linux.ibm.com>,
Yoshinori Sato <ysato@users.sourceforge.jp>,
Rich Felker <dalias@libc.org>,
John Paul Adrian Glaubitz <glaubitz@physik.fu-berlin.de>,
"David S. Miller" <davem@davemloft.net>,
Andreas Larsson <andreas@gaisler.com>,
Richard Weinberger <richard@nod.at>,
Anton Ivanov <anton.ivanov@cambridgegreys.com>,
Johannes Berg <johannes@sipsolutions.net>, Chris Zankel <chris@zankel.net>,
Max Filippov <jcmvbkbc@gmail.com>, Arnd Bergmann <arnd@arndb.de>,
Andrew Morton <akpm@linux-foundation.org>,
Juri Lelli <juri.lelli@redhat.com>,
Vincent Guittot <vincent.guittot@linaro.org>,
Dietmar Eggemann <dietmar.eggemann@arm.com>,
Steven Rostedt <rostedt@goodmis.org>, Ben Segall <bsegall@google.com>,
Mel Gorman <mgorman@suse.de>,
Valentin Schneider <vschneid@redhat.com>,
Uladzislau Rezki <urezki@gmail.com>,
Christoph Hellwig <hch@infradead.org>,
Masami Hiramatsu <mhiramat@kernel.org>,
Mathieu Desnoyers <mathieu.desnoyers@efficios.com>,
Mike Rapoport <rppt@kernel.org>,
Arnaldo Carvalho de Melo <acme@kernel.org>,
Namhyung Kim <namhyung@kernel.org>,
Mark Rutland <mark.rutland@arm.com>,
Alexander Shishkin <alexander.shishkin@linux.intel.com>,
Jiri Olsa <jolsa@kernel.org>,
Ian Rogers <irogers@google.com>, Adrian Hunter <adrian.hunter@intel.com>,
Dennis Zhou <dennis@kernel.org>, Tejun Heo <tj@kernel.org>,
Christoph Lameter <cl@linux.com>,
Sean Christopherson <seanjc@google.com>, Paolo Bonzini <pbonzini@redhat.com>,
Ard Biesheuvel <ardb@kernel.org>, Josh Poimboeuf <jpoimboe@kernel.org>,
Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
Cc: x86@kernel.org, linux-kernel@vger.kernel.org, linux-alpha@vger.kernel.org,
linux-snps-arc@lists.infradead.org, linux-arm-kernel@lists.infradead.org,
linux-csky@vger.kernel.org, linux-hexagon@vger.kernel.org,
loongarch@lists.linux.dev, linux-m68k@lists.linux-m68k.org,
linux-mips@vger.kernel.org, linux-openrisc@vger.kernel.org,
linux-parisc@vger.kernel.org, linuxppc-dev@lists.ozlabs.org,
linux-riscv@lists.infradead.org, linux-s390@vger.kernel.org,
linux-sh@vger.kernel.org, sparclinux@vger.kernel.org,
linux-um@lists.infradead.org, linux-arch@vger.kernel.org, linux-mm@kvack.org,
linux-trace-kernel@vger.kernel.org, linux-perf-users@vger.kernel.org,
kvm@vger.kernel.org, linux-efi@vger.kernel.org,
Brendan Jackman <jackmanb@google.com>
Content-Type: text/plain; charset="utf-8"
X-Stat-Signature: 436r7gop4b5bmwc397fuor9fksth7osm
X-Rspamd-Queue-Id: B910DC0005
X-Rspam-User:
X-Rspamd-Server: rspam01
X-HE-Tag: 1736534485-225950
X-HE-Meta:
U2FsdGVkX19wOkCKFRRw+DMa73BJ8t3blS0X0vL8LGyiwo8D3jr8aFOcA4Dt4Au+PAaqibkB/Qx/rH45B8+SSfFBdrhK01E4rKTmj7IxRSEUMVm/ix5hBez2EoauS1s/HrZyFw/CWGlucgpW70CmJ9iU41/CVIgTko6HTzHgV8BP/WqrE6nRjlnpbyh2/oiQlDkoob1AuwYhYOkYLFKfokJKAhQBCtlXgqs/dEktUKiAZzmmBMHTYGvJ0QStGaCLzpwXeiPK2bE7bRKf3j+s8Nm0yo0ZyqDyX4zLq0LgsLoaqgnG2BN7vk3tw835k9koKdQjXVbEwmoeQY/aZdpKzEK0CP0zH+wGrc3afH1WMXDxXIl1eD3jd0lgHZS9z5R/ymNKaGeXR7NHY1vDkZ8olzXGHw/jVvHmDkwafv6Px9ykGx3qeYEyDhQjDANNN2byXuWN9Sd/izKK0tS0fnWNRi6zJzbSiRnlJe7s86DC3JHiFKPIN5p5XqOwRNSmOGG493Tb4QUWyFiix64hE3GSMcRRlTjW2vd8mVjyOCtNtWz+7tsgBlHFWE/eloHGDPmO+i4vMbtKhk3CRcP9ifZgNEbPH/xgSSKzm9HifS/Uu1NPOF59qbJ/GqR1YR0ODsZFVwehccN8blVWUg3SLTToLgw/a0OtY3dKVc1JBvQ7Cwx/rqtR7N7+sIYQ1QCmZlFJwXlvD4rfUfGT1FGDyTUBc6T/O5XcBBMuYMKmFoV7Do6li71CeD+ufQY0h5ud5Ei7bBYL6pvnyuBeXh+xobHj5rDVrODx+3lgoqc925vUYnncQEaepUJ5aC2gz7WLDXfF1CPHaPzoThpLBE/4Pueu5j9vfWhNyeKUn/EEitBB4Pfiah4jxVTZ9q4eYMGvRnFl6O8JLdkXx3R+XNzVQwyQwX0S67zhH/XQNc2Fa5n7sTu0xCOPoKbACwb8lOIKRBuH+aSxXg0tTqsA0vrg9OW
jgm/V4JA
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
X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4
Sender: owner-linux-mm@kvack.org
Precedence: bulk
X-Loop: owner-majordomo@kvack.org
List-ID: <linux-mm.kvack.org>
List-Subscribe: <mailto:majordomo@kvack.org>
List-Unsubscribe: <mailto:majordomo@kvack.org>
|
| Series |
Address Space Isolation (ASI)
|
expand
|
diff --git a/mm/vmalloc.c b/mm/vmalloc.c index 8d260f2174fe664b54dcda054cb9759ae282bf03..00745edf0b2c5f4c769a46bdcf0872223de5299d 100644 --- a/mm/vmalloc.c +++ b/mm/vmalloc.c @@ -3210,6 +3210,7 @@ struct vm_struct *remove_vm_area(const void *addr) { struct vmap_area *va; struct vm_struct *vm; + unsigned long vm_addr; might_sleep(); @@ -3221,6 +3222,7 @@ struct vm_struct *remove_vm_area(const void *addr) if (!va || !va->vm) return NULL; vm = va->vm; + vm_addr = (unsigned long) READ_ONCE(vm->addr); debug_check_no_locks_freed(vm->addr, get_vm_area_size(vm)); debug_check_no_obj_freed(vm->addr, get_vm_area_size(vm)); @@ -3352,6 +3354,7 @@ void vfree(const void *addr) addr); return; } + asi_unmap(ASI_GLOBAL_NONSENSITIVE, vm->addr, get_vm_area_size(vm)); if (unlikely(vm->flags & VM_FLUSH_RESET_PERMS)) vm_reset_perms(vm); @@ -3397,6 +3400,7 @@ void vunmap(const void *addr) addr); return; } + asi_unmap(ASI_GLOBAL_NONSENSITIVE, vm->addr, get_vm_area_size(vm)); kfree(vm); } EXPORT_SYMBOL(vunmap); @@ -3445,16 +3449,21 @@ void *vmap(struct page **pages, unsigned int count, addr = (unsigned long)area->addr; if (vmap_pages_range(addr, addr + size, pgprot_nx(prot), - pages, PAGE_SHIFT) < 0) { - vunmap(area->addr); - return NULL; - } + pages, PAGE_SHIFT) < 0) + goto err; + + if (asi_map(ASI_GLOBAL_NONSENSITIVE, area->addr, + get_vm_area_size(area))) + goto err; /* The necessary asi_unmap() is in vunmap. */ if (flags & VM_MAP_PUT_PAGES) { area->pages = pages; area->nr_pages = count; } return area->addr; +err: + vunmap(area->addr); + return NULL; } EXPORT_SYMBOL(vmap); @@ -3711,6 +3720,10 @@ static void *__vmalloc_area_node(struct vm_struct *area, gfp_t gfp_mask, goto fail; } + if (asi_map(ASI_GLOBAL_NONSENSITIVE, area->addr, + get_vm_area_size(area))) + goto fail; /* The necessary asi_unmap() is in vfree. */ + return area->addr; fail:
We add new VM flags for sensitive and global-nonsensitive, parallel to the corresponding GFP flags. __get_vm_area_node and friends will default to creating global-nonsensitive VM areas, and vmap then calls asi_map as necessary. __vmalloc_node_range has additional logic to check and set defaults for the sensitivity of the underlying page allocation. It does this via an initial __set_asi_flags call - note that it then calls __get_vm_area_node which also calls __set_asi_flags. This second call is a NOP. By default, we mark the underlying page allocation as sensitive, even if the VM area is global-nonsensitive. This is just an optimization to avoid unnecessary asi_map etc, since presumably most code has no reason to access vmalloc'd data through the direct map. There are some details of the GFP-flag/VM-flag interaction that are not really obvious, for example: what should happen when callers of __vmalloc explicitly set GFP sensitivity flags? (That function has no VM flags argument). For the moment let's just not block on that and focus on adding the infrastructure, though. At the moment, the high-level vmalloc APIs doesn't actually provide a way to configure sensitivity, this commit just adds the infrastructure. We'll have to decide how to expose this to allocation sites as we implement more denylist logic. vmap does already allow configuring vm flags. Signed-off-by: Brendan Jackman <jackmanb@google.com> --- mm/vmalloc.c | 21 +++++++++++++++++---- 1 file changed, 17 insertions(+), 4 deletions(-)