- To: X86-ML <x86@xxxxxxxxxx>
- Subject: RE: [PATCH 1/2] x86, microcode: Sanitize per-cpu microcode reloading interface
- From: "Yu, Fenghua" <fenghua.yu@xxxxxxxxx>
- Date: Tue, 19 Jun 2012 23:15:56 +0000
- Accept-language: en-US
- Cc: "H. Peter Anvin" <hpa@xxxxxxxxx>, Ingo Molnar <mingo@xxxxxxxxxx>, Thomas Gleixner <tglx@xxxxxxxxxxxxx>, LKML <linux-kernel@xxxxxxxxxxxxxxx>, Andreas Herrmann <andreas.herrmann3@xxxxxxx>, Borislav Petkov <borislav.petkov@xxxxxxx>, Henrique de Moraes Holschuh <hmh@xxxxxxxxxx>, Peter Zijlstra <peterz@xxxxxxxxxxxxx>
- In-reply-to: <CANDHA0iu+QtQn=UxjpN34U=Ob4ABkZc4VWpPT5EidAgZm59JJQ@mail.gmail.com>
- Thread-index: AQHNTnDiqMXd/kEv8ESer2bZVn7a/5cCRPNg
- Thread-topic: [PATCH 1/2] x86, microcode: Sanitize per-cpu microcode reloading interface
> From: Borislav Petkov <bp@xxxxxxxxx>
> Date: Tue, 19 Jun 2012 18:03:30 +0200
> Subject: [PATCH 1/2] x86, microcode: Sanitize per-cpu microcode
> reloading interface
> To: X86-ML <x86@xxxxxxxxxx>
> Cc: "H. Peter Anvin" <hpa@xxxxxxxxx>, Ingo Molnar <mingo@xxxxxxxxxx>,
> Thomas Gleixner <tglx@xxxxxxxxxxxxx>, LKML
> <linux-kernel@xxxxxxxxxxxxxxx>, Andreas Herrmann
> <andreas.herrmann3@xxxxxxx>, Borislav Petkov
> <borislav.petkov@xxxxxxx>, Henrique de Moraes Holschuh
> <hmh@xxxxxxxxxx>, Peter Zijlstra <peterz@xxxxxxxxxxxxx>,
> stable@xxxxxxxxxxxxxxx
>
> From: Borislav Petkov <borislav.petkov@xxxxxxx>
>
> Microcode reloading in a per-core manner is a very bad idea for both
> major x86 vendors. And the thing is, we have such interface with which
> we can end up with different microcode versions applied on different
> cores of an otherwise homogeneous wrt (family,model,stepping) system.
>
> So turn off the possibility of doing that per core and allow it only
> system-wide.
>
> This is a minimal fix which we'd like to see in stable too thus the
> more-or-less arbitrary decision to allow system-wide reloading only on
> the BSP:
>
> $ echo 1 > /sys/devices/system/cpu/cpu0/microcode/reload
> ...
>
> and disable the interface on the other cores:
>
> $ echo 1 > /sys/devices/system/cpu/cpu23/microcode/reload
> -bash: echo: write error: Invalid argument
>
> Also, allowing the reload only from one CPU (the BSP in
> that case) doesn't allow the reload procedure to degenerate
> into an O(n^2) deal when triggering reloads from all
> /sys/devices/system/cpu/cpuX/microcode/reload sysfs nodes
> simultaneously.
>
> A more generic fix will follow.
>
> Cc: Henrique de Moraes Holschuh <hmh@xxxxxxxxxx>
> Cc: Peter Zijlstra <peterz@xxxxxxxxxxxxx>
> Cc: stable@xxxxxxxxxxxxxxx
> Signed-off-by: Borislav Petkov <borislav.petkov@xxxxxxx>
> ---
> arch/x86/kernel/microcode_core.c | 26 +++++++++++++++++++-------
> 1 file changed, 19 insertions(+), 7 deletions(-)
>
> diff --git a/arch/x86/kernel/microcode_core.c
> b/arch/x86/kernel/microcode_core.c
> index fbdfc6917180..24b852b61be3 100644
> --- a/arch/x86/kernel/microcode_core.c
> +++ b/arch/x86/kernel/microcode_core.c
> @@ -298,19 +298,31 @@ static ssize_t reload_store(struct device *dev,
> const char *buf, size_t size)
> {
> unsigned long val;
> - int cpu = dev->id;
> - ssize_t ret = 0;
> + int cpu;
> + ssize_t ret = 0, tmp_ret;
> +
> + /* allow reload only from the BSP */
> + if (boot_cpu_data.cpu_index != dev->id)
> + return -EINVAL;
With the /sys/devices/system/cpu/microcode/reload interface in your patch 2/2, this will be broken, right? With the new interface, reload_store() can be executed on any cpu or dev. I think you need to remove this check if working with the patch 2/2.
Thanks.
-Fenghua
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
[Other Archives]
[Linux Kernel Newbies]
[Linux Driver Development]
[Linux Kbuild]
[Fedora Kernel]
[Linux Kernel Testers]
[Linux SH]
[Linux Omap]
[Linux Tape]
[Linux Input]
[Linux Kernel Janitors]
[Linux Kernel Packagers]
[Linux Doc]
[Linux Man Pages]
[Linux API]
[Linux Memory Management]
[Linux Modules]
[Linux Standards]
[Kernel Announce]
[Netdev]
[Git]
[Linux PCI]
Linux CAN Development
[Linux I2C]
[Linux RDMA]
[Linux NUMA]
[Netfilter]
[Netfilter Devel]
[SELinux]
[Bugtraq]
[FIO]
[Linux Perf Users]
[Linux Serial]
[Linux PPP]
[Linux ISDN]
[Linux Next]
[Kernel Stable Commits]
[Linux Tip Commits]
[Kernel MM Commits]
[Linux Security Module]
[AutoFS]
[Filesystem Development]
[Ext3 Filesystem]
[Linux bcache]
[Ext4 Filesystem]
[Linux BTRFS]
[Linux CEPH Filesystem]
[Linux XFS]
[XFS]
[Linux NFS]
[Linux CIFS]
[Ecryptfs]
[Linux NILFS]
[Linux Cachefs]
[Reiser FS]
[Initramfs]
[Linux FB Devel]
[Linux OpenGL]
[DRI Devel]
[Fastboot]
[Linux RT Users]
[Linux RT Stable]
[eCos]
[Corosync]
[Linux Clusters]
[LVS Devel]
[Hot Plug]
[Linux Virtualization]
[KVM]
[KVM PPC]
[KVM ia64]
[Linux Containers]
[Linux Hexagon]
[Linux Cgroups]
[Util Linux]
[Wireless]
[Linux Bluetooth]
[Bluez Devel]
[Ethernet Bridging]
[Embedded Linux]
[Barebox]
[Linux MMC]
[Linux IIO]
[Sparse]
[Smatch]
[Linux Arch]
[x86 Platform Driver]
[Linux ACPI]
[Linux IBM ACPI]
[LM Sensors]
[CPU Freq]
[Linux Power Management]
[Linmodems]
[Linux DCCP]
[Linux SCTP]
[ALSA Devel]
[Linux USB]
[Linux PA RISC]
[Linux Samsung SOC]
[MIPS Linux]
[IBM S/390 Linux]
[ARM Linux]
[ARM Kernel]
[ARM MSM]
[Tegra Devel]
[Sparc Linux]
[Linux Security]
[Linux Sound]
[Linux Media]
[Video 4 Linux]
[Linux IRDA Users]
[Linux for the blind]
[Linux RAID]
[Linux ATA RAID]
[Device Mapper]
[Linux SCSI]
[SCSI Target Devel]
[Linux SCSI Target Infrastructure]
[Linux IDE]
[Linux SMP]
[Linux AXP]
[Linux Alpha]
[Linux M68K]
[Linux ia64]
[Linux 8086]
[Linux x86_64]
[Linux Config]
[Linux Apps]
[Linux MSDOS]
[Linux X.25]
[Linux Crypto]
[DM Crypt]
[Linux Trace Users]
[Linux Btrace]
[Linux Watchdog]
[Utrace Devel]
[Linux C Programming]
[Linux Assembly]
[Dash]
[DWARVES]
[Hail Devel]
[Linux Kernel Debugger]
[Linux gcc]
[Gcc Help]
[X.Org]
[Wine]
 |
 |
[Older Kernel Discussion]
[Yosemite National Park Forum]
[Large Format Photos]
[Gimp]
[Yosemite Photos]
[Stuff]