OpenCloudOS-Kernel/arch/x86/entry/vdso/vsgx.S

/* SPDX-License-Identifier: GPL-2.0 */

#include <linux/linkage.h>
#include <asm/export.h>
#include <asm/errno.h>
#include <asm/enclu.h>

#include "extable.h"

/* Relative to %rbp. */
#define SGX_ENCLAVE_OFFSET_OF_RUN		16

/* The offsets relative to struct sgx_enclave_run. */
#define SGX_ENCLAVE_RUN_TCS			0
#define SGX_ENCLAVE_RUN_LEAF			8
#define SGX_ENCLAVE_RUN_EXCEPTION_VECTOR	12
#define SGX_ENCLAVE_RUN_EXCEPTION_ERROR_CODE	14
#define SGX_ENCLAVE_RUN_EXCEPTION_ADDR		16
#define SGX_ENCLAVE_RUN_USER_HANDLER		24
#define SGX_ENCLAVE_RUN_USER_DATA		32	/* not used */
#define SGX_ENCLAVE_RUN_RESERVED_START		40
#define SGX_ENCLAVE_RUN_RESERVED_END		256

.code64
.section .text, "ax"

SYM_FUNC_START(__vdso_sgx_enter_enclave)
	/* Prolog */
	.cfi_startproc
	push	%rbp
	.cfi_adjust_cfa_offset	8
	.cfi_rel_offset		%rbp, 0
	mov	%rsp, %rbp
	.cfi_def_cfa_register	%rbp
	push	%rbx
	.cfi_rel_offset		%rbx, -8

	mov	%ecx, %eax
.Lenter_enclave:
	/* EENTER <= function <= ERESUME */
	cmp	$EENTER, %eax
	jb	.Linvalid_input
	cmp	$ERESUME, %eax
	ja	.Linvalid_input

	mov	SGX_ENCLAVE_OFFSET_OF_RUN(%rbp), %rcx

	/* Validate that the reserved area contains only zeros. */
	mov	$SGX_ENCLAVE_RUN_RESERVED_START, %rbx
1:
	cmpq	$0, (%rcx, %rbx)
	jne	.Linvalid_input
	add	$8, %rbx
	cmpq	$SGX_ENCLAVE_RUN_RESERVED_END, %rbx
	jne	1b

	/* Load TCS and AEP */
	mov	SGX_ENCLAVE_RUN_TCS(%rcx), %rbx
	lea	.Lasync_exit_pointer(%rip), %rcx

	/* Single ENCLU serving as both EENTER and AEP (ERESUME) */
.Lasync_exit_pointer:
.Lenclu_eenter_eresume:
	enclu

	/* EEXIT jumps here unless the enclave is doing something fancy. */
	mov	SGX_ENCLAVE_OFFSET_OF_RUN(%rbp), %rbx

	/* Set exit_reason. */
	movl	$EEXIT, SGX_ENCLAVE_RUN_LEAF(%rbx)

	/* Invoke userspace's exit handler if one was provided. */
.Lhandle_exit:
	cmpq	$0, SGX_ENCLAVE_RUN_USER_HANDLER(%rbx)
	jne	.Linvoke_userspace_handler

	/* Success, in the sense that ENCLU was attempted. */
	xor	%eax, %eax

.Lout:
	pop	%rbx
	leave
	.cfi_def_cfa		%rsp, 8
	RET

	/* The out-of-line code runs with the pre-leave stack frame. */
	.cfi_def_cfa		%rbp, 16

.Linvalid_input:
	mov	$(-EINVAL), %eax
	jmp	.Lout

.Lhandle_exception:
	mov	SGX_ENCLAVE_OFFSET_OF_RUN(%rbp), %rbx

	/* Set the exception info. */
	mov	%eax, (SGX_ENCLAVE_RUN_LEAF)(%rbx)
	mov	%di,  (SGX_ENCLAVE_RUN_EXCEPTION_VECTOR)(%rbx)
	mov	%si,  (SGX_ENCLAVE_RUN_EXCEPTION_ERROR_CODE)(%rbx)
	mov	%rdx, (SGX_ENCLAVE_RUN_EXCEPTION_ADDR)(%rbx)
	jmp	.Lhandle_exit

.Linvoke_userspace_handler:
	/* Pass the untrusted RSP (at exit) to the callback via %rcx. */
	mov	%rsp, %rcx

	/* Save struct sgx_enclave_exception %rbx is about to be clobbered. */
	mov	%rbx, %rax

	/* Save the untrusted RSP offset in %rbx (non-volatile register). */
	mov	%rsp, %rbx
	and	$0xf, %rbx

	/*
	 * Align stack per x86_64 ABI. Note, %rsp needs to be 16-byte aligned
	 * _after_ pushing the parameters on the stack, hence the bonus push.
	 */
	and	$-0x10, %rsp
	push	%rax

	/* Push struct sgx_enclave_exception as a param to the callback. */
	push	%rax

	/* Clear RFLAGS.DF per x86_64 ABI */
	cld

	/*
	 * Load the callback pointer to %rax and lfence for LVI (load value
	 * injection) protection before making the call.
	 */
	mov	SGX_ENCLAVE_RUN_USER_HANDLER(%rax), %rax
	lfence
	call	*%rax

	/* Undo the post-exit %rsp adjustment. */
	lea	0x10(%rsp, %rbx), %rsp

	/*
	 * If the return from callback is zero or negative, return immediately,
	 * else re-execute ENCLU with the positive return value interpreted as
	 * the requested ENCLU function.
	 */
	cmp	$0, %eax
	jle	.Lout
	jmp	.Lenter_enclave

	.cfi_endproc

_ASM_VDSO_EXTABLE_HANDLE(.Lenclu_eenter_eresume, .Lhandle_exception)

SYM_FUNC_END(__vdso_sgx_enter_enclave)
x86/vdso: Implement a vDSO for Intel SGX enclave call Enclaves encounter exceptions for lots of reasons: everything from enclave page faults to NULL pointer dereferences, to system calls that must be “proxied” to the kernel from outside the enclave. In addition to the code contained inside an enclave, there is also supporting code outside the enclave called an “SGX runtime”, which is virtually always implemented inside a shared library. The runtime helps build the enclave and handles things like rebuilding the enclave if it got destroyed by something like a suspend/resume cycle. The rebuilding has traditionally been handled in SIGSEGV handlers, registered by the library. But, being process-wide, shared state, signal handling and shared libraries do not mix well. Introduce a vDSO function call that wraps the enclave entry functions (EENTER/ERESUME functions of the ENCLU instruciton) and returns information about any exceptions to the caller in the SGX runtime. Instead of generating a signal, the kernel places exception information in RDI, RSI and RDX. The kernel-provided userspace portion of the vDSO handler will place this information in a user-provided buffer or trigger a user-provided callback at the time of the exception. The vDSO function calling convention uses the standard RDI RSI, RDX, RCX, R8 and R9 registers. This makes it possible to declare the vDSO as a C prototype, but other than that there is no specific support for SystemV ABI. Things like storing XSAVE are the responsibility of the enclave and the runtime. [ bp: Change vsgx.o build dependency to CONFIG_X86_SGX. ] Suggested-by: Andy Lutomirski <luto@amacapital.net> Signed-off-by: Sean Christopherson <sean.j.christopherson@intel.com> Co-developed-by: Cedric Xing <cedric.xing@intel.com> Signed-off-by: Cedric Xing <cedric.xing@intel.com> Co-developed-by: Jarkko Sakkinen <jarkko@kernel.org> Signed-off-by: Jarkko Sakkinen <jarkko@kernel.org> Signed-off-by: Borislav Petkov <bp@suse.de> Tested-by: Jethro Beekman <jethro@fortanix.com> Link: https://lkml.kernel.org/r/20201112220135.165028-20-jarkko@kernel.org 2020-11-13 06:01:30 +08:00			`/* SPDX-License-Identifier: GPL-2.0 */`

			`#include <linux/linkage.h>`
			`#include <asm/export.h>`
			`#include <asm/errno.h>`
			`#include <asm/enclu.h>`

			`#include "extable.h"`

			`/* Relative to %rbp. */`
			`#define SGX_ENCLAVE_OFFSET_OF_RUN 16`

			`/* The offsets relative to struct sgx_enclave_run. */`
			`#define SGX_ENCLAVE_RUN_TCS 0`
			`#define SGX_ENCLAVE_RUN_LEAF 8`
			`#define SGX_ENCLAVE_RUN_EXCEPTION_VECTOR 12`
			`#define SGX_ENCLAVE_RUN_EXCEPTION_ERROR_CODE 14`
			`#define SGX_ENCLAVE_RUN_EXCEPTION_ADDR 16`
			`#define SGX_ENCLAVE_RUN_USER_HANDLER 24`
			`#define SGX_ENCLAVE_RUN_USER_DATA 32 /* not used */`
			`#define SGX_ENCLAVE_RUN_RESERVED_START 40`
			`#define SGX_ENCLAVE_RUN_RESERVED_END 256`

			`.code64`
			`.section .text, "ax"`

			`SYM_FUNC_START(__vdso_sgx_enter_enclave)`
			`/* Prolog */`
			`.cfi_startproc`
			`push %rbp`
			`.cfi_adjust_cfa_offset 8`
			`.cfi_rel_offset %rbp, 0`
			`mov %rsp, %rbp`
			`.cfi_def_cfa_register %rbp`
			`push %rbx`
			`.cfi_rel_offset %rbx, -8`

			`mov %ecx, %eax`
			`.Lenter_enclave:`
			`/* EENTER <= function <= ERESUME */`
			`cmp $EENTER, %eax`
			`jb .Linvalid_input`
			`cmp $ERESUME, %eax`
			`ja .Linvalid_input`

			`mov SGX_ENCLAVE_OFFSET_OF_RUN(%rbp), %rcx`

			`/* Validate that the reserved area contains only zeros. */`
			`mov $SGX_ENCLAVE_RUN_RESERVED_START, %rbx`
			`1:`
			`cmpq $0, (%rcx, %rbx)`
			`jne .Linvalid_input`
			`add $8, %rbx`
			`cmpq $SGX_ENCLAVE_RUN_RESERVED_END, %rbx`
			`jne 1b`

			`/* Load TCS and AEP */`
			`mov SGX_ENCLAVE_RUN_TCS(%rcx), %rbx`
			`lea .Lasync_exit_pointer(%rip), %rcx`

			`/* Single ENCLU serving as both EENTER and AEP (ERESUME) */`
			`.Lasync_exit_pointer:`
			`.Lenclu_eenter_eresume:`
			`enclu`

			`/* EEXIT jumps here unless the enclave is doing something fancy. */`
			`mov SGX_ENCLAVE_OFFSET_OF_RUN(%rbp), %rbx`

			`/* Set exit_reason. */`
			`movl $EEXIT, SGX_ENCLAVE_RUN_LEAF(%rbx)`

			`/* Invoke userspace's exit handler if one was provided. */`
			`.Lhandle_exit:`
			`cmpq $0, SGX_ENCLAVE_RUN_USER_HANDLER(%rbx)`
			`jne .Linvoke_userspace_handler`

			`/* Success, in the sense that ENCLU was attempted. */`
			`xor %eax, %eax`

			`.Lout:`
			`pop %rbx`
			`leave`
			`.cfi_def_cfa %rsp, 8`
x86: Prepare asm files for straight-line-speculation Replace all ret/retq instructions with RET in preparation of making RET a macro. Since AS is case insensitive it's a big no-op without RET defined. find arch/x86/ -name \.S \| while read file do sed -i 's/\<ret[q]\>/RET/' $file done Signed-off-by: Peter Zijlstra (Intel) <peterz@infradead.org> Signed-off-by: Borislav Petkov <bp@suse.de> Link: https://lore.kernel.org/r/20211204134907.905503893@infradead.org 2021-12-04 21:43:40 +08:00			`RET`
x86/vdso: Implement a vDSO for Intel SGX enclave call Enclaves encounter exceptions for lots of reasons: everything from enclave page faults to NULL pointer dereferences, to system calls that must be “proxied” to the kernel from outside the enclave. In addition to the code contained inside an enclave, there is also supporting code outside the enclave called an “SGX runtime”, which is virtually always implemented inside a shared library. The runtime helps build the enclave and handles things like rebuilding the enclave if it got destroyed by something like a suspend/resume cycle. The rebuilding has traditionally been handled in SIGSEGV handlers, registered by the library. But, being process-wide, shared state, signal handling and shared libraries do not mix well. Introduce a vDSO function call that wraps the enclave entry functions (EENTER/ERESUME functions of the ENCLU instruciton) and returns information about any exceptions to the caller in the SGX runtime. Instead of generating a signal, the kernel places exception information in RDI, RSI and RDX. The kernel-provided userspace portion of the vDSO handler will place this information in a user-provided buffer or trigger a user-provided callback at the time of the exception. The vDSO function calling convention uses the standard RDI RSI, RDX, RCX, R8 and R9 registers. This makes it possible to declare the vDSO as a C prototype, but other than that there is no specific support for SystemV ABI. Things like storing XSAVE are the responsibility of the enclave and the runtime. [ bp: Change vsgx.o build dependency to CONFIG_X86_SGX. ] Suggested-by: Andy Lutomirski <luto@amacapital.net> Signed-off-by: Sean Christopherson <sean.j.christopherson@intel.com> Co-developed-by: Cedric Xing <cedric.xing@intel.com> Signed-off-by: Cedric Xing <cedric.xing@intel.com> Co-developed-by: Jarkko Sakkinen <jarkko@kernel.org> Signed-off-by: Jarkko Sakkinen <jarkko@kernel.org> Signed-off-by: Borislav Petkov <bp@suse.de> Tested-by: Jethro Beekman <jethro@fortanix.com> Link: https://lkml.kernel.org/r/20201112220135.165028-20-jarkko@kernel.org 2020-11-13 06:01:30 +08:00
			`/* The out-of-line code runs with the pre-leave stack frame. */`
			`.cfi_def_cfa %rbp, 16`

			`.Linvalid_input:`
			`mov $(-EINVAL), %eax`
			`jmp .Lout`

			`.Lhandle_exception:`
			`mov SGX_ENCLAVE_OFFSET_OF_RUN(%rbp), %rbx`

			`/* Set the exception info. */`
			`mov %eax, (SGX_ENCLAVE_RUN_LEAF)(%rbx)`
			`mov %di, (SGX_ENCLAVE_RUN_EXCEPTION_VECTOR)(%rbx)`
			`mov %si, (SGX_ENCLAVE_RUN_EXCEPTION_ERROR_CODE)(%rbx)`
			`mov %rdx, (SGX_ENCLAVE_RUN_EXCEPTION_ADDR)(%rbx)`
			`jmp .Lhandle_exit`

			`.Linvoke_userspace_handler:`
			`/* Pass the untrusted RSP (at exit) to the callback via %rcx. */`
			`mov %rsp, %rcx`

			`/* Save struct sgx_enclave_exception %rbx is about to be clobbered. */`
			`mov %rbx, %rax`

			`/* Save the untrusted RSP offset in %rbx (non-volatile register). */`
			`mov %rsp, %rbx`
			`and $0xf, %rbx`

			`/*`
			`* Align stack per x86_64 ABI. Note, %rsp needs to be 16-byte aligned`
			`* _after_ pushing the parameters on the stack, hence the bonus push.`
			`*/`
			`and $-0x10, %rsp`
			`push %rax`

			`/* Push struct sgx_enclave_exception as a param to the callback. */`
			`push %rax`

			`/* Clear RFLAGS.DF per x86_64 ABI */`
			`cld`

			`/*`
			`* Load the callback pointer to %rax and lfence for LVI (load value`
			`* injection) protection before making the call.`
			`*/`
			`mov SGX_ENCLAVE_RUN_USER_HANDLER(%rax), %rax`
			`lfence`
			`call *%rax`

			`/* Undo the post-exit %rsp adjustment. */`
			`lea 0x10(%rsp, %rbx), %rsp`

			`/*`
			`* If the return from callback is zero or negative, return immediately,`
x86: Fix various typos in comments, take #2 Fix another ~42 single-word typos in arch/x86/ code comments, missed a few in the first pass, in particular in .S files. Signed-off-by: Ingo Molnar <mingo@kernel.org> Cc: Borislav Petkov <bp@alien8.de> Cc: Thomas Gleixner <tglx@linutronix.de> Cc: Peter Zijlstra <peterz@infradead.org> Cc: Paolo Bonzini <pbonzini@redhat.com> Cc: Bjorn Helgaas <bhelgaas@google.com> Cc: linux-kernel@vger.kernel.org 2021-03-22 05:28:53 +08:00			`* else re-execute ENCLU with the positive return value interpreted as`
x86/vdso: Implement a vDSO for Intel SGX enclave call Enclaves encounter exceptions for lots of reasons: everything from enclave page faults to NULL pointer dereferences, to system calls that must be “proxied” to the kernel from outside the enclave. In addition to the code contained inside an enclave, there is also supporting code outside the enclave called an “SGX runtime”, which is virtually always implemented inside a shared library. The runtime helps build the enclave and handles things like rebuilding the enclave if it got destroyed by something like a suspend/resume cycle. The rebuilding has traditionally been handled in SIGSEGV handlers, registered by the library. But, being process-wide, shared state, signal handling and shared libraries do not mix well. Introduce a vDSO function call that wraps the enclave entry functions (EENTER/ERESUME functions of the ENCLU instruciton) and returns information about any exceptions to the caller in the SGX runtime. Instead of generating a signal, the kernel places exception information in RDI, RSI and RDX. The kernel-provided userspace portion of the vDSO handler will place this information in a user-provided buffer or trigger a user-provided callback at the time of the exception. The vDSO function calling convention uses the standard RDI RSI, RDX, RCX, R8 and R9 registers. This makes it possible to declare the vDSO as a C prototype, but other than that there is no specific support for SystemV ABI. Things like storing XSAVE are the responsibility of the enclave and the runtime. [ bp: Change vsgx.o build dependency to CONFIG_X86_SGX. ] Suggested-by: Andy Lutomirski <luto@amacapital.net> Signed-off-by: Sean Christopherson <sean.j.christopherson@intel.com> Co-developed-by: Cedric Xing <cedric.xing@intel.com> Signed-off-by: Cedric Xing <cedric.xing@intel.com> Co-developed-by: Jarkko Sakkinen <jarkko@kernel.org> Signed-off-by: Jarkko Sakkinen <jarkko@kernel.org> Signed-off-by: Borislav Petkov <bp@suse.de> Tested-by: Jethro Beekman <jethro@fortanix.com> Link: https://lkml.kernel.org/r/20201112220135.165028-20-jarkko@kernel.org 2020-11-13 06:01:30 +08:00			`* the requested ENCLU function.`
			`*/`
			`cmp $0, %eax`
			`jle .Lout`
			`jmp .Lenter_enclave`

			`.cfi_endproc`

			`_ASM_VDSO_EXTABLE_HANDLE(.Lenclu_eenter_eresume, .Lhandle_exception)`

			`SYM_FUNC_END(__vdso_sgx_enter_enclave)`