From nobody Mon Feb  9 00:53:59 2026
Return-Path: <linux-kernel-owner@vger.kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from vger.kernel.org (vger.kernel.org [23.128.96.18])
	by smtp.lore.kernel.org (Postfix) with ESMTP id DD167C77B73
	for <linux-kernel@archiver.kernel.org>; Tue, 30 May 2023 11:44:48 +0000 (UTC)
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S231714AbjE3Lop (ORCPT <rfc822;linux-kernel@archiver.kernel.org>);
        Tue, 30 May 2023 07:44:45 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:47076 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S231963AbjE3Ln6 (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Tue, 30 May 2023 07:43:58 -0400
Received: from mga01.intel.com (mga01.intel.com [192.55.52.88])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id C2B93E8
        for <linux-kernel@vger.kernel.org>;
 Tue, 30 May 2023 04:43:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple;
  d=intel.com; i=@intel.com; q=dns/txt; s=Intel;
  t=1685447032; x=1716983032;
  h=from:to:subject:date:message-id:in-reply-to:references:
   mime-version:content-transfer-encoding;
  bh=6JK6GfSo8ZIvaNztCv9bRQqNHJQKx6PWj0vQ3SQJIHw=;
  b=RyLtvvYp+eAq9kGtvvJufNZd6L/2e7n0xCIGakFRVUipWaI5tbRkmSvo
   8inveQCu2r4ktBRnpTHs2LjRPmgIgJZdqx0Wem4HWUMlLjCmTRCM76RcL
   EBldCIi3a1ArS7fHicPS1+gX6HPGAT20Bvi1ZxleDi1Fn/uZKAyA2oNu+
   9rRSIvB8EfcOc2PpCVjCAd6PAN48Swu+42Ni0FaEcC0w6aGuf2r1yijvs
   +xDgXE7mLICaYh2x6wtwvzYoGiofoSOjk/0/qMbRBuoetZJYyk9aYaJ8i
   2n8WREzNhOBQhyblrfxJTa7zmtYdPRxcHomEXsQcUd7lwErsaN9CjreE1
   w==;
X-IronPort-AV: E=McAfee;i="6600,9927,10725"; a="383145414"
X-IronPort-AV: E=Sophos;i="6.00,204,1681196400";
   d="scan'208";a="383145414"
Received: from orsmga007.jf.intel.com ([10.7.209.58])
  by fmsmga101.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384;
 30 May 2023 04:43:29 -0700
X-ExtLoop1: 1
X-IronPort-AV: E=McAfee;i="6600,9927,10725"; a="700588786"
X-IronPort-AV: E=Sophos;i="6.00,204,1681196400";
   d="scan'208";a="700588786"
Received: from black.fi.intel.com (HELO black.fi.intel.com.) ([10.237.72.28])
  by orsmga007.jf.intel.com with ESMTP; 30 May 2023 04:43:26 -0700
From: Alexander Shishkin <alexander.shishkin@linux.intel.com>
To: linux-kernel@vger.kernel.org, x86@kernel.org,
        Andy Lutomirski <luto@kernel.org>,
        Dave Hansen <dave.hansen@linux.intel.com>,
        Ravi Shankar <ravi.v.shankar@intel.com>,
        Tony Luck <tony.luck@intel.com>,
        Sohil Mehta <sohil.mehta@intel.com>,
        Paul Lai <paul.c.lai@intel.com>
Subject: [RFC v2 12/12] x86/efi: Disable LASS enforcement when switching to
 EFI MM
Date: Tue, 30 May 2023 14:42:47 +0300
Message-Id: <20230530114247.21821-13-alexander.shishkin@linux.intel.com>
X-Mailer: git-send-email 2.39.2
In-Reply-To: <20230530114247.21821-1-alexander.shishkin@linux.intel.com>
References: <20230530114247.21821-1-alexander.shishkin@linux.intel.com>
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org
Content-Type: text/plain; charset="utf-8"

From: Sohil Mehta <sohil.mehta@intel.com>

[Code is experimental and not yet ready to be merged upstream]

PeterZ suggested that EFI memory can be mapped in user virtual address
space which would trigger LASS violation upon access. It isn't exactly
clear how and when these user address mapping happen. It may be possible
this is related to EFI mixed mode.
Link:https://lore.kernel.org/lkml/Y73S56t%2FwDIGEPlK@hirez.programming.kick=
s-ass.net/

stac()/clac() calls in the EFI MM enter and exit functions trigger
objtool warnings due to switch_mm() not being classified as
func_uaccess_safe. Refer Objtool warnings section #9 in the document
tools/objtool/Documentation/objtool.txt. This would need to be resolved
before even considering merging.

Signed-off-by: Sohil Mehta <sohil.mehta@intel.com>
---
 arch/x86/platform/efi/efi_64.c | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/arch/x86/platform/efi/efi_64.c b/arch/x86/platform/efi/efi_64.c
index 232acf418cfb..20966efcd87a 100644
--- a/arch/x86/platform/efi/efi_64.c
+++ b/arch/x86/platform/efi/efi_64.c
@@ -473,9 +473,14 @@ void __init efi_dump_pagetable(void)
  * while the EFI-mm is borrowed. mmgrab()/mmdrop() is not used because the=
 mm
  * can not change under us.
  * It should be ensured that there are no concurrent calls to this functio=
n.
+ *
+ * Disable LASS enforcement temporarily when switching to EFI MM since it =
could
+ * be mapped into the low 64-bit virtual address space with address bit 63=
 set
+ * to 0.
  */
 void efi_enter_mm(void)
 {
+	stac();
 	efi_prev_mm =3D current->active_mm;
 	current->active_mm =3D &efi_mm;
 	switch_mm(efi_prev_mm, &efi_mm, NULL);
@@ -485,6 +490,7 @@ void efi_leave_mm(void)
 {
 	current->active_mm =3D efi_prev_mm;
 	switch_mm(&efi_mm, efi_prev_mm, NULL);
+	clac();
 }
=20
 static DEFINE_SPINLOCK(efi_runtime_lock);
--=20
2.39.2