2019-08-14 07:04:50 +08:00
|
|
|
/* SPDX-License-Identifier: GPL-2.0-only */
|
|
|
|
/*
|
|
|
|
* Linker script variables to be set after section resolution, as
|
|
|
|
* ld.lld does not like variables assigned before SECTIONS is processed.
|
|
|
|
*/
|
|
|
|
#ifndef __ARM64_KERNEL_IMAGE_VARS_H
|
|
|
|
#define __ARM64_KERNEL_IMAGE_VARS_H
|
|
|
|
|
|
|
|
#ifndef LINKER_SCRIPT
|
|
|
|
#error This file should only be included in vmlinux.lds.S
|
|
|
|
#endif
|
|
|
|
|
|
|
|
#ifdef CONFIG_EFI
|
|
|
|
|
2020-02-17 19:44:37 +08:00
|
|
|
__efistub_kernel_size = _edata - _text;
|
2020-03-27 01:14:23 +08:00
|
|
|
__efistub_primary_entry_offset = primary_entry - _text;
|
2020-02-17 19:44:37 +08:00
|
|
|
|
2019-08-14 07:04:50 +08:00
|
|
|
|
|
|
|
/*
|
|
|
|
* The EFI stub has its own symbol namespace prefixed by __efistub_, to
|
|
|
|
* isolate it from the kernel proper. The following symbols are legally
|
|
|
|
* accessed by the stub, so provide some aliases to make them accessible.
|
|
|
|
* Only include data symbols here, or text symbols of functions that are
|
|
|
|
* guaranteed to be safe when executed at another offset than they were
|
|
|
|
* linked at. The routines below are all implemented in assembler in a
|
|
|
|
* position independent manner
|
|
|
|
*/
|
|
|
|
__efistub_memcmp = __pi_memcmp;
|
|
|
|
__efistub_memchr = __pi_memchr;
|
|
|
|
__efistub_memcpy = __pi_memcpy;
|
|
|
|
__efistub_memmove = __pi_memmove;
|
|
|
|
__efistub_memset = __pi_memset;
|
|
|
|
__efistub_strlen = __pi_strlen;
|
|
|
|
__efistub_strnlen = __pi_strnlen;
|
|
|
|
__efistub_strcmp = __pi_strcmp;
|
|
|
|
__efistub_strncmp = __pi_strncmp;
|
|
|
|
__efistub_strrchr = __pi_strrchr;
|
efi/arm64: Clean EFI stub exit code from cache instead of avoiding it
Commit 9f9223778 ("efi/libstub/arm: Make efi_entry() an ordinary PE/COFF
entrypoint") modified the handover code written in assembler, and for
maintainability, aligned the logic with the logic used in the 32-bit ARM
version, which is to avoid cache maintenance on the remaining instructions
in the subroutine that will be executed with the MMU and caches off, and
instead, branch into the relocated copy of the kernel image.
However, this assumes that this copy is executable, and this means we
expect EFI_LOADER_DATA regions to be executable as well, which is not
a reasonable assumption to make, even if this is true for most UEFI
implementations today.
So change this back, and add a __clean_dcache_area_poc() call to cover
the remaining code in the subroutine. While at it, switch the other
call site over to __clean_dcache_area_poc() as well, and clean up the
terminology in comments to avoid using 'flush' in the context of cache
maintenance. Also, let's switch to the new style asm annotations.
Signed-off-by: Ard Biesheuvel <ardb@kernel.org>
Signed-off-by: Ingo Molnar <mingo@kernel.org>
Cc: linux-efi@vger.kernel.org
Cc: Ingo Molnar <mingo@kernel.org>
Cc: Thomas Gleixner <tglx@linutronix.de>
Cc: David Hildenbrand <david@redhat.com>
Cc: Heinrich Schuchardt <xypron.glpk@gmx.de>
Cc: Tom Lendacky <thomas.lendacky@amd.com>
Link: https://lore.kernel.org/r/20200228121408.9075-6-ardb@kernel.org
2020-02-28 20:14:07 +08:00
|
|
|
__efistub___clean_dcache_area_poc = __pi___clean_dcache_area_poc;
|
2019-08-14 07:04:50 +08:00
|
|
|
|
2020-12-23 04:02:06 +08:00
|
|
|
#if defined(CONFIG_KASAN_GENERIC) || defined(CONFIG_KASAN_SW_TAGS)
|
2019-08-14 07:04:50 +08:00
|
|
|
__efistub___memcpy = __pi_memcpy;
|
|
|
|
__efistub___memmove = __pi_memmove;
|
|
|
|
__efistub___memset = __pi_memset;
|
|
|
|
#endif
|
|
|
|
|
|
|
|
__efistub__text = _text;
|
|
|
|
__efistub__end = _end;
|
|
|
|
__efistub__edata = _edata;
|
|
|
|
__efistub_screen_info = screen_info;
|
efi/libstub: Clean up command line parsing routine
We currently parse the command non-destructively, to avoid having to
allocate memory for a copy before passing it to the standard parsing
routines that are used by the core kernel, and which modify the input
to delineate the parsed tokens with NUL characters.
Instead, we call strstr() and strncmp() to go over the input multiple
times, and match prefixes rather than tokens, which implies that we
would match, e.g., 'nokaslrfoo' in the stub and disable KASLR, while
the kernel would disregard the option and run with KASLR enabled.
In order to avoid having to reason about whether and how this behavior
may be abused, let's clean up the parsing routines, and rebuild them
on top of the existing helpers.
Signed-off-by: Ard Biesheuvel <ardb@kernel.org>
2020-02-11 00:02:46 +08:00
|
|
|
__efistub__ctype = _ctype;
|
2019-08-14 07:04:50 +08:00
|
|
|
|
|
|
|
#endif
|
|
|
|
|
2020-06-25 21:14:08 +08:00
|
|
|
#ifdef CONFIG_KVM
|
|
|
|
|
|
|
|
/*
|
|
|
|
* KVM nVHE code has its own symbol namespace prefixed with __kvm_nvhe_, to
|
|
|
|
* separate it from the kernel proper. The following symbols are legally
|
|
|
|
* accessed by it, therefore provide aliases to make them linkable.
|
|
|
|
* Do not include symbols which may not be safely accessed under hypervisor
|
|
|
|
* memory mappings.
|
|
|
|
*/
|
|
|
|
|
2020-06-25 21:14:11 +08:00
|
|
|
/* Alternative callbacks for init-time patching of nVHE hyp code. */
|
|
|
|
KVM_NVHE_ALIAS(kvm_patch_vector_branch);
|
|
|
|
KVM_NVHE_ALIAS(kvm_update_va_mask);
|
2020-10-24 23:33:38 +08:00
|
|
|
KVM_NVHE_ALIAS(kvm_get_kimage_voffset);
|
2020-06-25 21:14:11 +08:00
|
|
|
|
|
|
|
/* Global kernel state accessed by nVHE hyp code. */
|
2020-06-25 21:14:14 +08:00
|
|
|
KVM_NVHE_ALIAS(kvm_vgic_global_state);
|
2020-06-25 21:14:11 +08:00
|
|
|
|
|
|
|
/* Kernel symbols used to call panic() from nVHE hyp code (via ERET). */
|
2020-06-25 21:14:14 +08:00
|
|
|
KVM_NVHE_ALIAS(__hyp_panic_string);
|
2020-06-25 21:14:11 +08:00
|
|
|
KVM_NVHE_ALIAS(panic);
|
|
|
|
|
2020-06-25 21:14:12 +08:00
|
|
|
/* Vectors installed by hyp-init on reset HVC. */
|
|
|
|
KVM_NVHE_ALIAS(__hyp_stub_vectors);
|
|
|
|
|
2020-06-25 21:14:13 +08:00
|
|
|
/* Kernel symbol used by icache_is_vpipt(). */
|
|
|
|
KVM_NVHE_ALIAS(__icache_flags);
|
|
|
|
|
|
|
|
/* Kernel symbols needed for cpus_have_final/const_caps checks. */
|
|
|
|
KVM_NVHE_ALIAS(arm64_const_caps_ready);
|
|
|
|
KVM_NVHE_ALIAS(cpu_hwcap_keys);
|
|
|
|
|
2020-06-25 21:14:14 +08:00
|
|
|
/* Static keys which are set if a vGIC trap should be handled in hyp. */
|
|
|
|
KVM_NVHE_ALIAS(vgic_v2_cpuif_trap);
|
|
|
|
KVM_NVHE_ALIAS(vgic_v3_cpuif_trap);
|
|
|
|
|
|
|
|
/* Static key checked in pmr_sync(). */
|
|
|
|
#ifdef CONFIG_ARM64_PSEUDO_NMI
|
|
|
|
KVM_NVHE_ALIAS(gic_pmr_sync);
|
2020-09-12 23:37:07 +08:00
|
|
|
/* Static key checked in GIC_PRIO_IRQOFF. */
|
|
|
|
KVM_NVHE_ALIAS(gic_nonsecure_priorities);
|
2020-06-25 21:14:14 +08:00
|
|
|
#endif
|
|
|
|
|
2020-08-21 22:07:05 +08:00
|
|
|
/* EL2 exception handling */
|
|
|
|
KVM_NVHE_ALIAS(__start___kvm_ex_table);
|
|
|
|
KVM_NVHE_ALIAS(__stop___kvm_ex_table);
|
|
|
|
|
2020-12-03 02:41:09 +08:00
|
|
|
/* Array containing bases of nVHE per-CPU memory regions. */
|
|
|
|
KVM_NVHE_ALIAS(kvm_arm_hyp_percpu_base);
|
|
|
|
|
2021-03-06 02:52:51 +08:00
|
|
|
/* PMU available static key */
|
|
|
|
KVM_NVHE_ALIAS(kvm_arm_pmu_available);
|
|
|
|
|
2021-03-19 18:01:10 +08:00
|
|
|
/* Position-independent library routines */
|
|
|
|
KVM_NVHE_ALIAS_HYP(clear_page, __pi_clear_page);
|
|
|
|
KVM_NVHE_ALIAS_HYP(copy_page, __pi_copy_page);
|
|
|
|
KVM_NVHE_ALIAS_HYP(memcpy, __pi_memcpy);
|
|
|
|
KVM_NVHE_ALIAS_HYP(memset, __pi_memset);
|
|
|
|
|
|
|
|
#ifdef CONFIG_KASAN
|
|
|
|
KVM_NVHE_ALIAS_HYP(__memcpy, __pi_memcpy);
|
|
|
|
KVM_NVHE_ALIAS_HYP(__memset, __pi_memset);
|
|
|
|
#endif
|
|
|
|
|
KVM: arm64: Prepare the creation of s1 mappings at EL2
When memory protection is enabled, the EL2 code needs the ability to
create and manage its own page-table. To do so, introduce a new set of
hypercalls to bootstrap a memory management system at EL2.
This leads to the following boot flow in nVHE Protected mode:
1. the host allocates memory for the hypervisor very early on, using
the memblock API;
2. the host creates a set of stage 1 page-table for EL2, installs the
EL2 vectors, and issues the __pkvm_init hypercall;
3. during __pkvm_init, the hypervisor re-creates its stage 1 page-table
and stores it in the memory pool provided by the host;
4. the hypervisor then extends its stage 1 mappings to include a
vmemmap in the EL2 VA space, hence allowing to use the buddy
allocator introduced in a previous patch;
5. the hypervisor jumps back in the idmap page, switches from the
host-provided page-table to the new one, and wraps up its
initialization by enabling the new allocator, before returning to
the host.
6. the host can free the now unused page-table created for EL2, and
will now need to issue hypercalls to make changes to the EL2 stage 1
mappings instead of modifying them directly.
Note that for the sake of simplifying the review, this patch focuses on
the hypervisor side of things. In other words, this only implements the
new hypercalls, but does not make use of them from the host yet. The
host-side changes will follow in a subsequent patch.
Credits to Will for __pkvm_init_switch_pgd.
Acked-by: Will Deacon <will@kernel.org>
Co-authored-by: Will Deacon <will@kernel.org>
Signed-off-by: Will Deacon <will@kernel.org>
Signed-off-by: Quentin Perret <qperret@google.com>
Signed-off-by: Marc Zyngier <maz@kernel.org>
Link: https://lore.kernel.org/r/20210319100146.1149909-18-qperret@google.com
2021-03-19 18:01:25 +08:00
|
|
|
/* Kernel memory sections */
|
|
|
|
KVM_NVHE_ALIAS(__start_rodata);
|
|
|
|
KVM_NVHE_ALIAS(__end_rodata);
|
|
|
|
KVM_NVHE_ALIAS(__bss_start);
|
|
|
|
KVM_NVHE_ALIAS(__bss_stop);
|
|
|
|
|
|
|
|
/* Hyp memory sections */
|
|
|
|
KVM_NVHE_ALIAS(__hyp_idmap_text_start);
|
|
|
|
KVM_NVHE_ALIAS(__hyp_idmap_text_end);
|
|
|
|
KVM_NVHE_ALIAS(__hyp_text_start);
|
|
|
|
KVM_NVHE_ALIAS(__hyp_text_end);
|
|
|
|
KVM_NVHE_ALIAS(__hyp_bss_start);
|
|
|
|
KVM_NVHE_ALIAS(__hyp_bss_end);
|
|
|
|
KVM_NVHE_ALIAS(__hyp_rodata_start);
|
|
|
|
KVM_NVHE_ALIAS(__hyp_rodata_end);
|
|
|
|
|
2021-03-19 18:01:43 +08:00
|
|
|
/* pKVM static key */
|
|
|
|
KVM_NVHE_ALIAS(kvm_protected_mode_initialized);
|
|
|
|
|
2020-06-25 21:14:08 +08:00
|
|
|
#endif /* CONFIG_KVM */
|
|
|
|
|
2019-08-14 07:04:50 +08:00
|
|
|
#endif /* __ARM64_KERNEL_IMAGE_VARS_H */
|