Why goto vs just return?

It took me a bit to understand this as I thought perhaps we were relying on wrfsbase/gsbase somehow changing %fs and %gs itself, but instead it seems that the logic is that 32-bit processes can't use these instructions, but for 64-bit processes on a supported CPU we always save/restore the base in cpu_switch now?

Why does this use the msr instead of rdgsbaseq?

Ah, because the current gs base is the the kernel one. Perhaps a comment "Read user gs base" would help avoid confusion for future readers.

Is this unrelated (or leftovers from the first version)? I didn't see any references to alltraps_pushregs_no_rax.

Not sure why we need to set this flag to read pcb_fsbase/gsbase? If we need "up to date" values for userland and this is curthread then we need to just use rdfsbase() and rdmsr(MSR_KGSBASE) if this is a CPU with the new instructions instead of the values from the pcb? As it is, the effect here is that get_mcontext is now going to potentially overwrite fsbase / gsbase with stale values from the PCB (if a thread happened to invoke wrfsbase or wrgsbase in userland right before calling getmcontext without an intervening syscall or interrupt that triggered a context switch)

Same note from get_mcontext() applies to the PT_GETFS/GSBASE ptrace ops.

The instructions are not executed in 32bit mode, this is specified by Intel.

For 64bit processes I consider the MSR to be the authoritative source on CPUs with the feature implemented. But we only support the base overload using MSRs in usermode when well-known segments are loaded into the segment registers, see the iretq return path in exception.S.

If this explanation does not answer your question, perhaps I did not understand it. Please specify it more then.

Look at the very end of the prot_addrf-labeled block.

There the bases must be saved before swapgs otherwise code need to use RDMSR which would put even higher registers pressure.

I do not quite understand this comment. The set_pcb_flag(PCB_FULL_IRET) ensures that pcb_xsbase values are not stalled, i.e. the set flag function evacuates the values from the registers into pcb. Code is generally structured so that PCB_FULL_IRET flag, when not set, indicates that the bases are in MSRs, and when set, that the bases are in pcb. See the context switch code as well.

I considered extracting the code from the new set_pcb_flag() to only read the bases into pcb, but I disliked both the fact that PCB_FULL_IRET no longer reflects the bases value ownership, and that I still need to disable interrupts to reliably read the values. So use of the set_pcb_flags() seems to be most correct, although the name is somewhat confusing, I agree. This is why I added the 'update base' comments.

Ahh, I do think the 'set_pcb_flags()' name is what threw me off. I think it would be good to add a comment above set_pcb_flags() explaining why the bases are fetched, and why it is important to call set_pcb_flags() before reading or writing pcb_[fg]sbase.

Hmm, if you've already had to change all of the set_pcb_flags calls that set PCB_FULL_IRET (either to move them or make them use _raw), maybe you could leave 'set_pcb_flags' as is (just the atomic op) and add a new 'update_pcb_bases(pcb)' which is the new set_pcb_flags but hardcodes the fact that it is setting PCB_FULL_IRET.

Yes, they could, but _raw() variant has slightly less overhead. I prefer to use it there, if you do not object.