Commit bb998361 authored by Lai Jiangshan's avatar Lai Jiangshan Committed by Thomas Gleixner

x86/entry: Avoid redundant CR3 write on paranoid returns

The CR3 restore happens in:

  1. #NMI return.
  2. paranoid_exit() (i.e. #MCE, #VC, #DB and #DF return)

Contrary to the implication in commit 21e94459 ("x86/mm: Optimize
RESTORE_CR3"), the kernel never modifies CR3 in any of these exceptions,
except for switching from user to kernel pagetables under PTI. That
means that most of the time when returning from an exception that
interrupted the kernel no CR3 restore is necessary. Writing CR3 is
expensive on some machines.

Most of the time because the interrupt might have come during kernel entry
before the user to kernel CR3 switch or the during exit after the kernel to
user switch. In the former case skipping the restore would be correct, but
definitely not for the latter.

So check the saved CR3 value and restore it only, if it is a user CR3.

Give the macro a new name to clarify its usage, and remove a comment that
was describing the original behaviour along with the not longer needed jump
label.
Signed-off-by: default avatarLai Jiangshan <laijs@linux.alibaba.com>
Signed-off-by: default avatarBrendan Jackman <jackmanb@google.com>
Signed-off-by: default avatarThomas Gleixner <tglx@linutronix.de>
Link: https://lore.kernel.org/r/20240108113950.360438-1-jackmanb@google.com

[Rewrote commit message; responded to review comments]
Change-Id: I6e56978c4753fb943a7897ff101f519514fa0827
parent 6613476e
...@@ -239,17 +239,19 @@ For 32-bit we have the following conventions - kernel is built with ...@@ -239,17 +239,19 @@ For 32-bit we have the following conventions - kernel is built with
.Ldone_\@: .Ldone_\@:
.endm .endm
.macro RESTORE_CR3 scratch_reg:req save_reg:req /* Restore CR3 from a kernel context. May restore a user CR3 value. */
.macro PARANOID_RESTORE_CR3 scratch_reg:req save_reg:req
ALTERNATIVE "jmp .Lend_\@", "", X86_FEATURE_PTI ALTERNATIVE "jmp .Lend_\@", "", X86_FEATURE_PTI
ALTERNATIVE "jmp .Lwrcr3_\@", "", X86_FEATURE_PCID
/* /*
* KERNEL pages can always resume with NOFLUSH as we do * If CR3 contained the kernel page tables at the paranoid exception
* explicit flushes. * entry, then there is nothing to restore as CR3 is not modified while
* handling the exception.
*/ */
bt $PTI_USER_PGTABLE_BIT, \save_reg bt $PTI_USER_PGTABLE_BIT, \save_reg
jnc .Lnoflush_\@ jnc .Lend_\@
ALTERNATIVE "jmp .Lwrcr3_\@", "", X86_FEATURE_PCID
/* /*
* Check if there's a pending flush for the user ASID we're * Check if there's a pending flush for the user ASID we're
...@@ -257,20 +259,12 @@ For 32-bit we have the following conventions - kernel is built with ...@@ -257,20 +259,12 @@ For 32-bit we have the following conventions - kernel is built with
*/ */
movq \save_reg, \scratch_reg movq \save_reg, \scratch_reg
andq $(0x7FF), \scratch_reg andq $(0x7FF), \scratch_reg
bt \scratch_reg, THIS_CPU_user_pcid_flush_mask
jnc .Lnoflush_\@
btr \scratch_reg, THIS_CPU_user_pcid_flush_mask btr \scratch_reg, THIS_CPU_user_pcid_flush_mask
jmp .Lwrcr3_\@ jc .Lwrcr3_\@
.Lnoflush_\@:
SET_NOFLUSH_BIT \save_reg SET_NOFLUSH_BIT \save_reg
.Lwrcr3_\@: .Lwrcr3_\@:
/*
* The CR3 write could be avoided when not changing its value,
* but would require a CR3 read *and* a scratch register.
*/
movq \save_reg, %cr3 movq \save_reg, %cr3
.Lend_\@: .Lend_\@:
.endm .endm
...@@ -285,7 +279,7 @@ For 32-bit we have the following conventions - kernel is built with ...@@ -285,7 +279,7 @@ For 32-bit we have the following conventions - kernel is built with
.endm .endm
.macro SAVE_AND_SWITCH_TO_KERNEL_CR3 scratch_reg:req save_reg:req .macro SAVE_AND_SWITCH_TO_KERNEL_CR3 scratch_reg:req save_reg:req
.endm .endm
.macro RESTORE_CR3 scratch_reg:req save_reg:req .macro PARANOID_RESTORE_CR3 scratch_reg:req save_reg:req
.endm .endm
#endif #endif
......
...@@ -968,14 +968,14 @@ SYM_CODE_START_LOCAL(paranoid_exit) ...@@ -968,14 +968,14 @@ SYM_CODE_START_LOCAL(paranoid_exit)
IBRS_EXIT save_reg=%r15 IBRS_EXIT save_reg=%r15
/* /*
* The order of operations is important. RESTORE_CR3 requires * The order of operations is important. PARANOID_RESTORE_CR3 requires
* kernel GSBASE. * kernel GSBASE.
* *
* NB to anyone to try to optimize this code: this code does * NB to anyone to try to optimize this code: this code does
* not execute at all for exceptions from user mode. Those * not execute at all for exceptions from user mode. Those
* exceptions go through error_return instead. * exceptions go through error_return instead.
*/ */
RESTORE_CR3 scratch_reg=%rax save_reg=%r14 PARANOID_RESTORE_CR3 scratch_reg=%rax save_reg=%r14
/* Handle the three GSBASE cases */ /* Handle the three GSBASE cases */
ALTERNATIVE "jmp .Lparanoid_exit_checkgs", "", X86_FEATURE_FSGSBASE ALTERNATIVE "jmp .Lparanoid_exit_checkgs", "", X86_FEATURE_FSGSBASE
...@@ -1404,8 +1404,7 @@ end_repeat_nmi: ...@@ -1404,8 +1404,7 @@ end_repeat_nmi:
/* Always restore stashed SPEC_CTRL value (see paranoid_entry) */ /* Always restore stashed SPEC_CTRL value (see paranoid_entry) */
IBRS_EXIT save_reg=%r15 IBRS_EXIT save_reg=%r15
/* Always restore stashed CR3 value (see paranoid_entry) */ PARANOID_RESTORE_CR3 scratch_reg=%r15 save_reg=%r14
RESTORE_CR3 scratch_reg=%r15 save_reg=%r14
/* /*
* The above invocation of paranoid_entry stored the GSBASE * The above invocation of paranoid_entry stored the GSBASE
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment