Page MenuHomeFreeBSD
Differential D31336

amd64: Set GSBASE before calling init_secondary()
ClosedPublic
Actions

Authored by markj on Jul 28 2021, 6:00 PM.
Tags
None
Referenced Files
Unknown Object (File)
Mon, Dec 30, 8:40 PM
Unknown Object (File)
Dec 12 2024, 10:08 AM
Unknown Object (File)
Dec 1 2024, 11:38 AM
Unknown Object (File)
Nov 20 2024, 9:05 AM
Unknown Object (File)
Oct 4 2024, 11:02 AM
Unknown Object (File)
Oct 2 2024, 6:16 AM
Unknown Object (File)
Sep 21 2024, 3:42 AM
Unknown Object (File)
Sep 21 2024, 1:01 AM
View All 45 Files
Subscribers
imp

Details

Reviewers
kib
Commits
rG4b136ef259ce: amd64: Set GS.base before calling init_secondary() on APs
rGe15374508381: amd64: Set MSR_KGSBASE to 0 during AP startup
Summary

The KMSAN instrumentation requires some thread-local storage to maintain
state for function parameters and return values. This buffer is checked
as part of each function's prologue. It is provided by the KMSAN
runtime, which looks up a pointer in the current thread's structure.

init_secondary() is instrumented, but it runs without a valid %gs
descriptor for some time, so the runtime cannot safely access curthread.
To work around this, load GSBASE before calling init_secondary(). Then
the runtime can check curthread == NULL and simply return a pointer to
some dummy storage.

Also change init_secondary() to initialize kernelGSBASE to 0. I don't
see any reason why we have to set it to the pcpu pointer.

Sponsored by: The FreeBSD Foundation

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

markj created this revision.Jul 28 2021, 6:00 PM
Herald added a subscriber: imp. · View Herald TranscriptJul 28 2021, 6:00 PM
markj requested review of this revision.Jul 28 2021, 6:00 PM
Harbormaster completed remote builds in B40728: Diff 92895.Jul 28 2021, 6:00 PM
kib added inline comments.Jul 28 2021, 6:23 PM
sys/amd64/amd64/mpboot.S
264 ↗(On Diff #92895)

I prefer to not put the conditional code there. I do not see a harm from doing this wrmsr unconditionally, and removing corresponding wrmsr from init_secondary().

sys/x86/x86/mp_x86.c
95 ↗(On Diff #92895)

The var is amd64-specific, am I right?

Why not put it into something amd64-specific then? At least, the definition.
As I understand, there is no useful amd64-only header.

markj added inline comments.Jul 28 2021, 6:58 PM
sys/amd64/amd64/mpboot.S
264 ↗(On Diff #92895)

Ok, but the wrmsr in init_secondary() cannot be removed. It seems that loading a selector into %gs causes the base register to be cleared, so we must write MSR_GSBASE again after calling lgdt().

sys/x86/x86/mp_x86.c
95 ↗(On Diff #92895)

Yes, it is amd64-specific, I just grouped it with bootSTK and bootAP.

Alternately, I can modify i386 to use bootpcpu, so amd64 and i386 maintain a bit of consistency. Which do you prefer?

kib added inline comments.Jul 28 2021, 7:47 PM
sys/amd64/amd64/mpboot.S
264 ↗(On Diff #92895)

Ok, perhaps expand this comment to say what you noted above.

sys/x86/x86/mp_x86.c
95 ↗(On Diff #92895)

For i386, I think the policy should be to not touching it unless required.

markj updated this revision to Diff 92900.Jul 28 2021, 8:01 PM
  • Make bootpcpu amd64-only.
  • Load GS.base unconditionally in entry_64.
Harbormaster completed remote builds in B40730: Diff 92900.Jul 28 2021, 8:01 PM
kib accepted this revision.Jul 28 2021, 8:11 PM
This revision is now accepted and ready to land.Jul 28 2021, 8:11 PM
Closed by commit rGe15374508381: amd64: Set MSR_KGSBASE to 0 during AP startup (authored by markj). · Explain WhyJul 29 2021, 2:49 PM
This revision was automatically updated to reflect the committed changes.
markj added a commit: rGe15374508381: amd64: Set MSR_KGSBASE to 0 during AP startup.
markj added a commit: rG4b136ef259ce: amd64: Set GS.base before calling init_secondary() on APs.

Revision Contents
Changeset List

PathSize
sys/
amd64/
amd64/
4 lines

Diff 92943

View Options

sys/amd64/amd64/mp_machdep.c

Loading...