Commit | Line | Data |
---|---|---|
457c8996 | 1 | // SPDX-License-Identifier: GPL-2.0-only |
2458e53f KS |
2 | /* cpu_feature_enabled() cannot be used this early */ |
3 | #define USE_EARLY_PGTABLE_L5 | |
4 | ||
57c8a661 | 5 | #include <linux/memblock.h> |
9766cdbc | 6 | #include <linux/linkage.h> |
f0fc4aff | 7 | #include <linux/bitops.h> |
9766cdbc | 8 | #include <linux/kernel.h> |
186f4360 | 9 | #include <linux/export.h> |
9766cdbc JSR |
10 | #include <linux/percpu.h> |
11 | #include <linux/string.h> | |
ee098e1a | 12 | #include <linux/ctype.h> |
1da177e4 | 13 | #include <linux/delay.h> |
68e21be2 | 14 | #include <linux/sched/mm.h> |
e6017571 | 15 | #include <linux/sched/clock.h> |
9164bb4a | 16 | #include <linux/sched/task.h> |
b47a3698 | 17 | #include <linux/sched/smt.h> |
9766cdbc | 18 | #include <linux/init.h> |
0f46efeb | 19 | #include <linux/kprobes.h> |
9766cdbc | 20 | #include <linux/kgdb.h> |
439e1757 | 21 | #include <linux/mem_encrypt.h> |
1da177e4 | 22 | #include <linux/smp.h> |
7c7077a7 | 23 | #include <linux/cpu.h> |
9766cdbc | 24 | #include <linux/io.h> |
b51ef52d | 25 | #include <linux/syscore_ops.h> |
65fddcfc | 26 | #include <linux/pgtable.h> |
b3883a9a | 27 | #include <linux/stackprotector.h> |
7c7077a7 | 28 | #include <linux/utsname.h> |
9766cdbc | 29 | |
7c7077a7 | 30 | #include <asm/alternative.h> |
1ef5423a | 31 | #include <asm/cmdline.h> |
cdd6c482 | 32 | #include <asm/perf_event.h> |
1da177e4 | 33 | #include <asm/mmu_context.h> |
dc4e0021 | 34 | #include <asm/doublefault.h> |
49d859d7 | 35 | #include <asm/archrandom.h> |
9766cdbc JSR |
36 | #include <asm/hypervisor.h> |
37 | #include <asm/processor.h> | |
1e02ce4c | 38 | #include <asm/tlbflush.h> |
f649e938 | 39 | #include <asm/debugreg.h> |
9766cdbc | 40 | #include <asm/sections.h> |
f40c3300 | 41 | #include <asm/vsyscall.h> |
8bdbd962 AC |
42 | #include <linux/topology.h> |
43 | #include <linux/cpumask.h> | |
60063497 | 44 | #include <linux/atomic.h> |
9766cdbc JSR |
45 | #include <asm/proto.h> |
46 | #include <asm/setup.h> | |
47 | #include <asm/apic.h> | |
48 | #include <asm/desc.h> | |
b56d2795 | 49 | #include <asm/fpu/api.h> |
27b07da7 | 50 | #include <asm/mtrr.h> |
0274f955 | 51 | #include <asm/hwcap2.h> |
8bdbd962 | 52 | #include <linux/numa.h> |
0cd39f46 | 53 | #include <asm/numa.h> |
9766cdbc | 54 | #include <asm/asm.h> |
0f6ff2bc | 55 | #include <asm/bugs.h> |
9766cdbc | 56 | #include <asm/cpu.h> |
a03a3e28 | 57 | #include <asm/mce.h> |
9766cdbc | 58 | #include <asm/msr.h> |
0b9a6a8b | 59 | #include <asm/cacheinfo.h> |
eb243d1d | 60 | #include <asm/memtype.h> |
d288e1cf | 61 | #include <asm/microcode.h> |
fec9434a DW |
62 | #include <asm/intel-family.h> |
63 | #include <asm/cpu_device_id.h> | |
208d8c79 | 64 | #include <asm/fred.h> |
bdbcdd48 | 65 | #include <asm/uv/uv.h> |
61382281 | 66 | #include <asm/ia32.h> |
7c7077a7 | 67 | #include <asm/set_memory.h> |
991625f3 | 68 | #include <asm/traps.h> |
95d33bfa | 69 | #include <asm/sev.h> |
765a0542 | 70 | #include <asm/tdx.h> |
43650dcf | 71 | #include <asm/posted_intr.h> |
1da177e4 LT |
72 | |
73 | #include "cpu.h" | |
74 | ||
71eb4893 TG |
75 | DEFINE_PER_CPU_READ_MOSTLY(struct cpuinfo_x86, cpu_info); |
76 | EXPORT_PER_CPU_SYMBOL(cpu_info); | |
77 | ||
0274f955 GA |
78 | u32 elf_hwcap2 __read_mostly; |
79 | ||
f8b64d08 | 80 | /* Number of siblings per CPU package */ |
8078f4d6 TG |
81 | unsigned int __max_threads_per_core __ro_after_init = 1; |
82 | EXPORT_SYMBOL(__max_threads_per_core); | |
f8b64d08 | 83 | |
090610ba TG |
84 | unsigned int __max_dies_per_package __ro_after_init = 1; |
85 | EXPORT_SYMBOL(__max_dies_per_package); | |
86 | ||
87 | unsigned int __max_logical_packages __ro_after_init = 1; | |
88 | EXPORT_SYMBOL(__max_logical_packages); | |
92853a77 | 89 | |
fd43b8ae TG |
90 | unsigned int __num_cores_per_package __ro_after_init = 1; |
91 | EXPORT_SYMBOL(__num_cores_per_package); | |
92 | ||
93 | unsigned int __num_threads_per_package __ro_after_init = 1; | |
94 | EXPORT_SYMBOL(__num_threads_per_package); | |
95 | ||
0dcab41d TL |
96 | static struct ppin_info { |
97 | int feature; | |
98 | int msr_ppin_ctl; | |
822ccfad | 99 | int msr_ppin; |
0dcab41d TL |
100 | } ppin_info[] = { |
101 | [X86_VENDOR_INTEL] = { | |
102 | .feature = X86_FEATURE_INTEL_PPIN, | |
103 | .msr_ppin_ctl = MSR_PPIN_CTL, | |
822ccfad | 104 | .msr_ppin = MSR_PPIN |
0dcab41d TL |
105 | }, |
106 | [X86_VENDOR_AMD] = { | |
107 | .feature = X86_FEATURE_AMD_PPIN, | |
108 | .msr_ppin_ctl = MSR_AMD_PPIN_CTL, | |
822ccfad | 109 | .msr_ppin = MSR_AMD_PPIN |
0dcab41d TL |
110 | }, |
111 | }; | |
112 | ||
113 | static const struct x86_cpu_id ppin_cpuids[] = { | |
114 | X86_MATCH_FEATURE(X86_FEATURE_AMD_PPIN, &ppin_info[X86_VENDOR_AMD]), | |
00a2f23e | 115 | X86_MATCH_FEATURE(X86_FEATURE_INTEL_PPIN, &ppin_info[X86_VENDOR_INTEL]), |
0dcab41d TL |
116 | |
117 | /* Legacy models without CPUID enumeration */ | |
b24e466a TL |
118 | X86_MATCH_VFM(INTEL_IVYBRIDGE_X, &ppin_info[X86_VENDOR_INTEL]), |
119 | X86_MATCH_VFM(INTEL_HASWELL_X, &ppin_info[X86_VENDOR_INTEL]), | |
120 | X86_MATCH_VFM(INTEL_BROADWELL_D, &ppin_info[X86_VENDOR_INTEL]), | |
121 | X86_MATCH_VFM(INTEL_BROADWELL_X, &ppin_info[X86_VENDOR_INTEL]), | |
122 | X86_MATCH_VFM(INTEL_SKYLAKE_X, &ppin_info[X86_VENDOR_INTEL]), | |
123 | X86_MATCH_VFM(INTEL_ICELAKE_X, &ppin_info[X86_VENDOR_INTEL]), | |
124 | X86_MATCH_VFM(INTEL_ICELAKE_D, &ppin_info[X86_VENDOR_INTEL]), | |
125 | X86_MATCH_VFM(INTEL_SAPPHIRERAPIDS_X, &ppin_info[X86_VENDOR_INTEL]), | |
126 | X86_MATCH_VFM(INTEL_EMERALDRAPIDS_X, &ppin_info[X86_VENDOR_INTEL]), | |
127 | X86_MATCH_VFM(INTEL_XEON_PHI_KNL, &ppin_info[X86_VENDOR_INTEL]), | |
128 | X86_MATCH_VFM(INTEL_XEON_PHI_KNM, &ppin_info[X86_VENDOR_INTEL]), | |
0dcab41d TL |
129 | |
130 | {} | |
131 | }; | |
132 | ||
133 | static void ppin_init(struct cpuinfo_x86 *c) | |
134 | { | |
135 | const struct x86_cpu_id *id; | |
136 | unsigned long long val; | |
137 | struct ppin_info *info; | |
138 | ||
139 | id = x86_match_cpu(ppin_cpuids); | |
140 | if (!id) | |
141 | return; | |
142 | ||
143 | /* | |
144 | * Testing the presence of the MSR is not enough. Need to check | |
145 | * that the PPIN_CTL allows reading of the PPIN. | |
146 | */ | |
147 | info = (struct ppin_info *)id->driver_data; | |
148 | ||
149 | if (rdmsrl_safe(info->msr_ppin_ctl, &val)) | |
150 | goto clear_ppin; | |
151 | ||
152 | if ((val & 3UL) == 1UL) { | |
153 | /* PPIN locked in disabled mode */ | |
154 | goto clear_ppin; | |
155 | } | |
156 | ||
157 | /* If PPIN is disabled, try to enable */ | |
158 | if (!(val & 2UL)) { | |
159 | wrmsrl_safe(info->msr_ppin_ctl, val | 2UL); | |
160 | rdmsrl_safe(info->msr_ppin_ctl, &val); | |
161 | } | |
162 | ||
163 | /* Is the enable bit set? */ | |
164 | if (val & 2UL) { | |
822ccfad | 165 | c->ppin = __rdmsr(info->msr_ppin); |
0dcab41d TL |
166 | set_cpu_cap(c, info->feature); |
167 | return; | |
168 | } | |
169 | ||
170 | clear_ppin: | |
171 | clear_cpu_cap(c, info->feature); | |
172 | } | |
173 | ||
148f9bb8 | 174 | static void default_init(struct cpuinfo_x86 *c) |
e8055139 OZ |
175 | { |
176 | #ifdef CONFIG_X86_64 | |
27c13ece | 177 | cpu_detect_cache_sizes(c); |
e8055139 OZ |
178 | #else |
179 | /* Not much we can do here... */ | |
180 | /* Check if at least it has cpuid */ | |
181 | if (c->cpuid_level == -1) { | |
182 | /* No cpuid. It must be an ancient CPU */ | |
183 | if (c->x86 == 4) | |
184 | strcpy(c->x86_model_id, "486"); | |
185 | else if (c->x86 == 3) | |
186 | strcpy(c->x86_model_id, "386"); | |
187 | } | |
188 | #endif | |
189 | } | |
190 | ||
148f9bb8 | 191 | static const struct cpu_dev default_cpu = { |
e8055139 OZ |
192 | .c_init = default_init, |
193 | .c_vendor = "Unknown", | |
194 | .c_x86_vendor = X86_VENDOR_UNKNOWN, | |
195 | }; | |
196 | ||
148f9bb8 | 197 | static const struct cpu_dev *this_cpu = &default_cpu; |
0a488a53 | 198 | |
06deef89 | 199 | DEFINE_PER_CPU_PAGE_ALIGNED(struct gdt_page, gdt_page) = { .gdt = { |
950ad7ff | 200 | #ifdef CONFIG_X86_64 |
06deef89 BG |
201 | /* |
202 | * We need valid kernel segments for data and code in long mode too | |
203 | * IRET will check the segment types kkeil 2000/10/28 | |
204 | * Also sysret mandates a special GDT layout | |
205 | * | |
9766cdbc | 206 | * TLS descriptors are currently at a different place compared to i386. |
06deef89 BG |
207 | * Hopefully nobody expects them at a fixed place (Wine?) |
208 | */ | |
3b184b71 VN |
209 | [GDT_ENTRY_KERNEL32_CS] = GDT_ENTRY_INIT(DESC_CODE32, 0, 0xfffff), |
210 | [GDT_ENTRY_KERNEL_CS] = GDT_ENTRY_INIT(DESC_CODE64, 0, 0xfffff), | |
211 | [GDT_ENTRY_KERNEL_DS] = GDT_ENTRY_INIT(DESC_DATA64, 0, 0xfffff), | |
212 | [GDT_ENTRY_DEFAULT_USER32_CS] = GDT_ENTRY_INIT(DESC_CODE32 | DESC_USER, 0, 0xfffff), | |
213 | [GDT_ENTRY_DEFAULT_USER_DS] = GDT_ENTRY_INIT(DESC_DATA64 | DESC_USER, 0, 0xfffff), | |
214 | [GDT_ENTRY_DEFAULT_USER_CS] = GDT_ENTRY_INIT(DESC_CODE64 | DESC_USER, 0, 0xfffff), | |
950ad7ff | 215 | #else |
1445f6e1 VN |
216 | [GDT_ENTRY_KERNEL_CS] = GDT_ENTRY_INIT(DESC_CODE32, 0, 0xfffff), |
217 | [GDT_ENTRY_KERNEL_DS] = GDT_ENTRY_INIT(DESC_DATA32, 0, 0xfffff), | |
218 | [GDT_ENTRY_DEFAULT_USER_CS] = GDT_ENTRY_INIT(DESC_CODE32 | DESC_USER, 0, 0xfffff), | |
219 | [GDT_ENTRY_DEFAULT_USER_DS] = GDT_ENTRY_INIT(DESC_DATA32 | DESC_USER, 0, 0xfffff), | |
bf504672 RR |
220 | /* |
221 | * Segments used for calling PnP BIOS have byte granularity. | |
222 | * They code segments and data segments have fixed 64k limits, | |
223 | * the transfer segment sizes are set at run time. | |
224 | */ | |
1445f6e1 VN |
225 | [GDT_ENTRY_PNPBIOS_CS32] = GDT_ENTRY_INIT(DESC_CODE32_BIOS, 0, 0xffff), |
226 | [GDT_ENTRY_PNPBIOS_CS16] = GDT_ENTRY_INIT(DESC_CODE16, 0, 0xffff), | |
227 | [GDT_ENTRY_PNPBIOS_DS] = GDT_ENTRY_INIT(DESC_DATA16, 0, 0xffff), | |
228 | [GDT_ENTRY_PNPBIOS_TS1] = GDT_ENTRY_INIT(DESC_DATA16, 0, 0), | |
229 | [GDT_ENTRY_PNPBIOS_TS2] = GDT_ENTRY_INIT(DESC_DATA16, 0, 0), | |
bf504672 RR |
230 | /* |
231 | * The APM segments have byte granularity and their bases | |
232 | * are set at run time. All have 64k limits. | |
233 | */ | |
1445f6e1 VN |
234 | [GDT_ENTRY_APMBIOS_BASE] = GDT_ENTRY_INIT(DESC_CODE32_BIOS, 0, 0xffff), |
235 | [GDT_ENTRY_APMBIOS_BASE+1] = GDT_ENTRY_INIT(DESC_CODE16, 0, 0xffff), | |
236 | [GDT_ENTRY_APMBIOS_BASE+2] = GDT_ENTRY_INIT(DESC_DATA32_BIOS, 0, 0xffff), | |
bf504672 | 237 | |
1445f6e1 VN |
238 | [GDT_ENTRY_ESPFIX_SS] = GDT_ENTRY_INIT(DESC_DATA32, 0, 0xfffff), |
239 | [GDT_ENTRY_PERCPU] = GDT_ENTRY_INIT(DESC_DATA32, 0, 0xfffff), | |
950ad7ff | 240 | #endif |
06deef89 | 241 | } }; |
7a61d35d | 242 | EXPORT_PER_CPU_SYMBOL_GPL(gdt_page); |
ae1ee11b | 243 | |
0790c9aa | 244 | #ifdef CONFIG_X86_64 |
c7ad5ad2 | 245 | static int __init x86_nopcid_setup(char *s) |
0790c9aa | 246 | { |
c7ad5ad2 AL |
247 | /* nopcid doesn't accept parameters */ |
248 | if (s) | |
249 | return -EINVAL; | |
0790c9aa AL |
250 | |
251 | /* do not emit a message if the feature is not present */ | |
252 | if (!boot_cpu_has(X86_FEATURE_PCID)) | |
c7ad5ad2 | 253 | return 0; |
0790c9aa AL |
254 | |
255 | setup_clear_cpu_cap(X86_FEATURE_PCID); | |
256 | pr_info("nopcid: PCID feature disabled\n"); | |
c7ad5ad2 | 257 | return 0; |
0790c9aa | 258 | } |
c7ad5ad2 | 259 | early_param("nopcid", x86_nopcid_setup); |
0790c9aa AL |
260 | #endif |
261 | ||
d12a72b8 AL |
262 | static int __init x86_noinvpcid_setup(char *s) |
263 | { | |
264 | /* noinvpcid doesn't accept parameters */ | |
265 | if (s) | |
266 | return -EINVAL; | |
267 | ||
268 | /* do not emit a message if the feature is not present */ | |
269 | if (!boot_cpu_has(X86_FEATURE_INVPCID)) | |
270 | return 0; | |
271 | ||
272 | setup_clear_cpu_cap(X86_FEATURE_INVPCID); | |
273 | pr_info("noinvpcid: INVPCID feature disabled\n"); | |
274 | return 0; | |
275 | } | |
276 | early_param("noinvpcid", x86_noinvpcid_setup); | |
277 | ||
ba51dced | 278 | #ifdef CONFIG_X86_32 |
148f9bb8 PG |
279 | static int cachesize_override = -1; |
280 | static int disable_x86_serial_nr = 1; | |
1da177e4 | 281 | |
0a488a53 YL |
282 | static int __init cachesize_setup(char *str) |
283 | { | |
284 | get_option(&str, &cachesize_override); | |
285 | return 1; | |
286 | } | |
287 | __setup("cachesize=", cachesize_setup); | |
288 | ||
0a488a53 YL |
289 | /* Standard macro to see if a specific flag is changeable */ |
290 | static inline int flag_is_changeable_p(u32 flag) | |
291 | { | |
292 | u32 f1, f2; | |
293 | ||
94f6bac1 KH |
294 | /* |
295 | * Cyrix and IDT cpus allow disabling of CPUID | |
296 | * so the code below may return different results | |
297 | * when it is executed before and after enabling | |
298 | * the CPUID. Add "volatile" to not allow gcc to | |
299 | * optimize the subsequent calls to this function. | |
300 | */ | |
0f3fa48a IM |
301 | asm volatile ("pushfl \n\t" |
302 | "pushfl \n\t" | |
303 | "popl %0 \n\t" | |
304 | "movl %0, %1 \n\t" | |
305 | "xorl %2, %0 \n\t" | |
306 | "pushl %0 \n\t" | |
307 | "popfl \n\t" | |
308 | "pushfl \n\t" | |
309 | "popl %0 \n\t" | |
310 | "popfl \n\t" | |
311 | ||
94f6bac1 KH |
312 | : "=&r" (f1), "=&r" (f2) |
313 | : "ir" (flag)); | |
0a488a53 YL |
314 | |
315 | return ((f1^f2) & flag) != 0; | |
316 | } | |
317 | ||
318 | /* Probe for the CPUID instruction */ | |
148f9bb8 | 319 | int have_cpuid_p(void) |
0a488a53 YL |
320 | { |
321 | return flag_is_changeable_p(X86_EFLAGS_ID); | |
322 | } | |
323 | ||
148f9bb8 | 324 | static void squash_the_stupid_serial_number(struct cpuinfo_x86 *c) |
0a488a53 | 325 | { |
0f3fa48a IM |
326 | unsigned long lo, hi; |
327 | ||
328 | if (!cpu_has(c, X86_FEATURE_PN) || !disable_x86_serial_nr) | |
329 | return; | |
330 | ||
331 | /* Disable processor serial number: */ | |
332 | ||
333 | rdmsr(MSR_IA32_BBL_CR_CTL, lo, hi); | |
334 | lo |= 0x200000; | |
335 | wrmsr(MSR_IA32_BBL_CR_CTL, lo, hi); | |
336 | ||
1b74dde7 | 337 | pr_notice("CPU serial number disabled.\n"); |
0f3fa48a IM |
338 | clear_cpu_cap(c, X86_FEATURE_PN); |
339 | ||
340 | /* Disabling the serial number may affect the cpuid level */ | |
341 | c->cpuid_level = cpuid_eax(0); | |
0a488a53 YL |
342 | } |
343 | ||
344 | static int __init x86_serial_nr_setup(char *s) | |
345 | { | |
346 | disable_x86_serial_nr = 0; | |
347 | return 1; | |
348 | } | |
349 | __setup("serialnumber", x86_serial_nr_setup); | |
ba51dced | 350 | #else |
102bbe3a YL |
351 | static inline int flag_is_changeable_p(u32 flag) |
352 | { | |
353 | return 1; | |
354 | } | |
102bbe3a YL |
355 | static inline void squash_the_stupid_serial_number(struct cpuinfo_x86 *c) |
356 | { | |
357 | } | |
ba51dced | 358 | #endif |
0a488a53 | 359 | |
b2cc2a07 | 360 | static __always_inline void setup_smep(struct cpuinfo_x86 *c) |
de5397ad | 361 | { |
b2cc2a07 | 362 | if (cpu_has(c, X86_FEATURE_SMEP)) |
375074cc | 363 | cr4_set_bits(X86_CR4_SMEP); |
de5397ad FY |
364 | } |
365 | ||
b2cc2a07 PA |
366 | static __always_inline void setup_smap(struct cpuinfo_x86 *c) |
367 | { | |
581b7f15 | 368 | unsigned long eflags = native_save_fl(); |
b2cc2a07 PA |
369 | |
370 | /* This should have been cleared long ago */ | |
b2cc2a07 PA |
371 | BUG_ON(eflags & X86_EFLAGS_AC); |
372 | ||
dbae0a93 | 373 | if (cpu_has(c, X86_FEATURE_SMAP)) |
375074cc | 374 | cr4_set_bits(X86_CR4_SMAP); |
de5397ad FY |
375 | } |
376 | ||
aa35f896 RN |
377 | static __always_inline void setup_umip(struct cpuinfo_x86 *c) |
378 | { | |
379 | /* Check the boot processor, plus build option for UMIP. */ | |
380 | if (!cpu_feature_enabled(X86_FEATURE_UMIP)) | |
381 | goto out; | |
382 | ||
383 | /* Check the current processor's cpuid bits. */ | |
384 | if (!cpu_has(c, X86_FEATURE_UMIP)) | |
385 | goto out; | |
386 | ||
387 | cr4_set_bits(X86_CR4_UMIP); | |
388 | ||
438cbf88 | 389 | pr_info_once("x86/cpu: User Mode Instruction Prevention (UMIP) activated\n"); |
770c7755 | 390 | |
aa35f896 RN |
391 | return; |
392 | ||
393 | out: | |
394 | /* | |
395 | * Make sure UMIP is disabled in case it was enabled in a | |
396 | * previous boot (e.g., via kexec). | |
397 | */ | |
398 | cr4_clear_bits(X86_CR4_UMIP); | |
399 | } | |
400 | ||
a13b9d0b | 401 | /* These bits should not change their value after CPU init is finished. */ |
ff45746f PAI |
402 | static const unsigned long cr4_pinned_mask = X86_CR4_SMEP | X86_CR4_SMAP | X86_CR4_UMIP | |
403 | X86_CR4_FSGSBASE | X86_CR4_CET | X86_CR4_FRED; | |
7652ac92 TG |
404 | static DEFINE_STATIC_KEY_FALSE_RO(cr_pinning); |
405 | static unsigned long cr4_pinned_bits __ro_after_init; | |
406 | ||
407 | void native_write_cr0(unsigned long val) | |
408 | { | |
409 | unsigned long bits_missing = 0; | |
410 | ||
411 | set_register: | |
aa5cacdc | 412 | asm volatile("mov %0,%%cr0": "+r" (val) : : "memory"); |
7652ac92 TG |
413 | |
414 | if (static_branch_likely(&cr_pinning)) { | |
415 | if (unlikely((val & X86_CR0_WP) != X86_CR0_WP)) { | |
416 | bits_missing = X86_CR0_WP; | |
417 | val |= bits_missing; | |
418 | goto set_register; | |
419 | } | |
420 | /* Warn after we've set the missing bits. */ | |
421 | WARN_ONCE(bits_missing, "CR0 WP bit went missing!?\n"); | |
422 | } | |
423 | } | |
424 | EXPORT_SYMBOL(native_write_cr0); | |
425 | ||
b64dfcde | 426 | void __no_profile native_write_cr4(unsigned long val) |
7652ac92 | 427 | { |
a13b9d0b | 428 | unsigned long bits_changed = 0; |
7652ac92 TG |
429 | |
430 | set_register: | |
aa5cacdc | 431 | asm volatile("mov %0,%%cr4": "+r" (val) : : "memory"); |
7652ac92 TG |
432 | |
433 | if (static_branch_likely(&cr_pinning)) { | |
a13b9d0b KC |
434 | if (unlikely((val & cr4_pinned_mask) != cr4_pinned_bits)) { |
435 | bits_changed = (val & cr4_pinned_mask) ^ cr4_pinned_bits; | |
436 | val = (val & ~cr4_pinned_mask) | cr4_pinned_bits; | |
7652ac92 TG |
437 | goto set_register; |
438 | } | |
a13b9d0b KC |
439 | /* Warn after we've corrected the changed bits. */ |
440 | WARN_ONCE(bits_changed, "pinned CR4 bits changed: 0x%lx!?\n", | |
441 | bits_changed); | |
7652ac92 TG |
442 | } |
443 | } | |
21953ee5 | 444 | #if IS_MODULE(CONFIG_LKDTM) |
d8f0b353 | 445 | EXPORT_SYMBOL_GPL(native_write_cr4); |
21953ee5 | 446 | #endif |
d8f0b353 TG |
447 | |
448 | void cr4_update_irqsoff(unsigned long set, unsigned long clear) | |
449 | { | |
450 | unsigned long newval, cr4 = this_cpu_read(cpu_tlbstate.cr4); | |
451 | ||
452 | lockdep_assert_irqs_disabled(); | |
453 | ||
454 | newval = (cr4 & ~clear) | set; | |
455 | if (newval != cr4) { | |
456 | this_cpu_write(cpu_tlbstate.cr4, newval); | |
457 | __write_cr4(newval); | |
458 | } | |
459 | } | |
460 | EXPORT_SYMBOL(cr4_update_irqsoff); | |
461 | ||
462 | /* Read the CR4 shadow. */ | |
463 | unsigned long cr4_read_shadow(void) | |
464 | { | |
465 | return this_cpu_read(cpu_tlbstate.cr4); | |
466 | } | |
467 | EXPORT_SYMBOL_GPL(cr4_read_shadow); | |
7652ac92 TG |
468 | |
469 | void cr4_init(void) | |
470 | { | |
471 | unsigned long cr4 = __read_cr4(); | |
472 | ||
473 | if (boot_cpu_has(X86_FEATURE_PCID)) | |
474 | cr4 |= X86_CR4_PCIDE; | |
475 | if (static_branch_likely(&cr_pinning)) | |
a13b9d0b | 476 | cr4 = (cr4 & ~cr4_pinned_mask) | cr4_pinned_bits; |
7652ac92 TG |
477 | |
478 | __write_cr4(cr4); | |
479 | ||
480 | /* Initialize cr4 shadow for this CPU. */ | |
481 | this_cpu_write(cpu_tlbstate.cr4, cr4); | |
482 | } | |
873d50d5 KC |
483 | |
484 | /* | |
485 | * Once CPU feature detection is finished (and boot params have been | |
486 | * parsed), record any of the sensitive CR bits that are set, and | |
487 | * enable CR pinning. | |
488 | */ | |
489 | static void __init setup_cr_pinning(void) | |
490 | { | |
a13b9d0b | 491 | cr4_pinned_bits = this_cpu_read(cpu_tlbstate.cr4) & cr4_pinned_mask; |
873d50d5 KC |
492 | static_key_enable(&cr_pinning.key); |
493 | } | |
494 | ||
b745cfba | 495 | static __init int x86_nofsgsbase_setup(char *arg) |
dd649bd0 | 496 | { |
b745cfba AL |
497 | /* Require an exact match without trailing characters. */ |
498 | if (strlen(arg)) | |
499 | return 0; | |
500 | ||
501 | /* Do not emit a message if the feature is not present. */ | |
502 | if (!boot_cpu_has(X86_FEATURE_FSGSBASE)) | |
503 | return 1; | |
504 | ||
505 | setup_clear_cpu_cap(X86_FEATURE_FSGSBASE); | |
506 | pr_info("FSGSBASE disabled via kernel command line\n"); | |
dd649bd0 AL |
507 | return 1; |
508 | } | |
b745cfba | 509 | __setup("nofsgsbase", x86_nofsgsbase_setup); |
dd649bd0 | 510 | |
06976945 DH |
511 | /* |
512 | * Protection Keys are not available in 32-bit mode. | |
513 | */ | |
514 | static bool pku_disabled; | |
515 | ||
516 | static __always_inline void setup_pku(struct cpuinfo_x86 *c) | |
517 | { | |
8a1dc55a TG |
518 | if (c == &boot_cpu_data) { |
519 | if (pku_disabled || !cpu_feature_enabled(X86_FEATURE_PKU)) | |
520 | return; | |
521 | /* | |
522 | * Setting CR4.PKE will cause the X86_FEATURE_OSPKE cpuid | |
523 | * bit to be set. Enforce it. | |
524 | */ | |
525 | setup_force_cpu_cap(X86_FEATURE_OSPKE); | |
a5eff725 | 526 | |
8a1dc55a | 527 | } else if (!cpu_feature_enabled(X86_FEATURE_OSPKE)) { |
06976945 | 528 | return; |
8a1dc55a | 529 | } |
06976945 DH |
530 | |
531 | cr4_set_bits(X86_CR4_PKE); | |
fa8c84b7 TG |
532 | /* Load the default PKRU value */ |
533 | pkru_write_default(); | |
06976945 DH |
534 | } |
535 | ||
536 | #ifdef CONFIG_X86_INTEL_MEMORY_PROTECTION_KEYS | |
537 | static __init int setup_disable_pku(char *arg) | |
538 | { | |
539 | /* | |
540 | * Do not clear the X86_FEATURE_PKU bit. All of the | |
541 | * runtime checks are against OSPKE so clearing the | |
542 | * bit does nothing. | |
543 | * | |
544 | * This way, we will see "pku" in cpuinfo, but not | |
545 | * "ospke", which is exactly what we want. It shows | |
546 | * that the CPU has PKU, but the OS has not enabled it. | |
547 | * This happens to be exactly how a system would look | |
548 | * if we disabled the config option. | |
549 | */ | |
550 | pr_info("x86: 'nopku' specified, disabling Memory Protection Keys\n"); | |
551 | pku_disabled = true; | |
552 | return 1; | |
553 | } | |
554 | __setup("nopku", setup_disable_pku); | |
d55dcb73 | 555 | #endif |
06976945 | 556 | |
fe379fa4 PZ |
557 | #ifdef CONFIG_X86_KERNEL_IBT |
558 | ||
93be2859 | 559 | __noendbr u64 ibt_save(bool disable) |
fe379fa4 PZ |
560 | { |
561 | u64 msr = 0; | |
562 | ||
563 | if (cpu_feature_enabled(X86_FEATURE_IBT)) { | |
564 | rdmsrl(MSR_IA32_S_CET, msr); | |
93be2859 AB |
565 | if (disable) |
566 | wrmsrl(MSR_IA32_S_CET, msr & ~CET_ENDBR_EN); | |
fe379fa4 PZ |
567 | } |
568 | ||
569 | return msr; | |
570 | } | |
571 | ||
572 | __noendbr void ibt_restore(u64 save) | |
573 | { | |
574 | u64 msr; | |
575 | ||
576 | if (cpu_feature_enabled(X86_FEATURE_IBT)) { | |
577 | rdmsrl(MSR_IA32_S_CET, msr); | |
578 | msr &= ~CET_ENDBR_EN; | |
579 | msr |= (save & CET_ENDBR_EN); | |
580 | wrmsrl(MSR_IA32_S_CET, msr); | |
581 | } | |
582 | } | |
583 | ||
584 | #endif | |
585 | ||
991625f3 PZ |
586 | static __always_inline void setup_cet(struct cpuinfo_x86 *c) |
587 | { | |
0dc2a760 | 588 | bool user_shstk, kernel_ibt; |
991625f3 | 589 | |
0dc2a760 | 590 | if (!IS_ENABLED(CONFIG_X86_CET)) |
991625f3 PZ |
591 | return; |
592 | ||
0dc2a760 RE |
593 | kernel_ibt = HAS_KERNEL_IBT && cpu_feature_enabled(X86_FEATURE_IBT); |
594 | user_shstk = cpu_feature_enabled(X86_FEATURE_SHSTK) && | |
595 | IS_ENABLED(CONFIG_X86_USER_SHADOW_STACK); | |
596 | ||
597 | if (!kernel_ibt && !user_shstk) | |
598 | return; | |
599 | ||
600 | if (user_shstk) | |
601 | set_cpu_cap(c, X86_FEATURE_USER_SHSTK); | |
602 | ||
603 | if (kernel_ibt) | |
604 | wrmsrl(MSR_IA32_S_CET, CET_ENDBR_EN); | |
605 | else | |
606 | wrmsrl(MSR_IA32_S_CET, 0); | |
607 | ||
991625f3 PZ |
608 | cr4_set_bits(X86_CR4_CET); |
609 | ||
c6cfcbd8 | 610 | if (kernel_ibt && ibt_selftest()) { |
991625f3 | 611 | pr_err("IBT selftest: Failed!\n"); |
931ab636 | 612 | wrmsrl(MSR_IA32_S_CET, 0); |
991625f3 | 613 | setup_clear_cpu_cap(X86_FEATURE_IBT); |
991625f3 PZ |
614 | } |
615 | } | |
616 | ||
af227003 PZ |
617 | __noendbr void cet_disable(void) |
618 | { | |
0dc2a760 RE |
619 | if (!(cpu_feature_enabled(X86_FEATURE_IBT) || |
620 | cpu_feature_enabled(X86_FEATURE_SHSTK))) | |
621 | return; | |
622 | ||
623 | wrmsrl(MSR_IA32_S_CET, 0); | |
624 | wrmsrl(MSR_IA32_U_CET, 0); | |
af227003 PZ |
625 | } |
626 | ||
b38b0665 PA |
627 | /* |
628 | * Some CPU features depend on higher CPUID levels, which may not always | |
629 | * be available due to CPUID level capping or broken virtualization | |
630 | * software. Add those features to this table to auto-disable them. | |
631 | */ | |
632 | struct cpuid_dependent_feature { | |
633 | u32 feature; | |
634 | u32 level; | |
635 | }; | |
0f3fa48a | 636 | |
148f9bb8 | 637 | static const struct cpuid_dependent_feature |
b38b0665 PA |
638 | cpuid_dependent_features[] = { |
639 | { X86_FEATURE_MWAIT, 0x00000005 }, | |
640 | { X86_FEATURE_DCA, 0x00000009 }, | |
641 | { X86_FEATURE_XSAVE, 0x0000000d }, | |
642 | { 0, 0 } | |
643 | }; | |
644 | ||
148f9bb8 | 645 | static void filter_cpuid_features(struct cpuinfo_x86 *c, bool warn) |
b38b0665 PA |
646 | { |
647 | const struct cpuid_dependent_feature *df; | |
9766cdbc | 648 | |
b38b0665 | 649 | for (df = cpuid_dependent_features; df->feature; df++) { |
0f3fa48a IM |
650 | |
651 | if (!cpu_has(c, df->feature)) | |
652 | continue; | |
b38b0665 PA |
653 | /* |
654 | * Note: cpuid_level is set to -1 if unavailable, but | |
655 | * extended_extended_level is set to 0 if unavailable | |
656 | * and the legitimate extended levels are all negative | |
657 | * when signed; hence the weird messing around with | |
658 | * signs here... | |
659 | */ | |
0f3fa48a | 660 | if (!((s32)df->level < 0 ? |
f6db44df | 661 | (u32)df->level > (u32)c->extended_cpuid_level : |
0f3fa48a IM |
662 | (s32)df->level > (s32)c->cpuid_level)) |
663 | continue; | |
664 | ||
665 | clear_cpu_cap(c, df->feature); | |
666 | if (!warn) | |
667 | continue; | |
668 | ||
1b74dde7 CY |
669 | pr_warn("CPU: CPU feature " X86_CAP_FMT " disabled, no CPUID level 0x%x\n", |
670 | x86_cap_flag(df->feature), df->level); | |
b38b0665 | 671 | } |
f6db44df | 672 | } |
b38b0665 | 673 | |
102bbe3a YL |
674 | /* |
675 | * Naming convention should be: <Name> [(<Codename>)] | |
676 | * This table only is used unless init_<vendor>() below doesn't set it; | |
0f3fa48a IM |
677 | * in particular, if CPUID levels 0x80000002..4 are supported, this |
678 | * isn't used | |
102bbe3a YL |
679 | */ |
680 | ||
681 | /* Look up CPU names by table lookup. */ | |
148f9bb8 | 682 | static const char *table_lookup_model(struct cpuinfo_x86 *c) |
102bbe3a | 683 | { |
09dc68d9 JB |
684 | #ifdef CONFIG_X86_32 |
685 | const struct legacy_cpu_model_info *info; | |
102bbe3a YL |
686 | |
687 | if (c->x86_model >= 16) | |
688 | return NULL; /* Range check */ | |
689 | ||
690 | if (!this_cpu) | |
691 | return NULL; | |
692 | ||
09dc68d9 | 693 | info = this_cpu->legacy_models; |
102bbe3a | 694 | |
09dc68d9 | 695 | while (info->family) { |
102bbe3a YL |
696 | if (info->family == c->x86) |
697 | return info->model_names[c->x86_model]; | |
698 | info++; | |
699 | } | |
09dc68d9 | 700 | #endif |
102bbe3a YL |
701 | return NULL; /* Not found */ |
702 | } | |
703 | ||
f6a892dd FY |
704 | /* Aligned to unsigned long to avoid split lock in atomic bitmap ops */ |
705 | __u32 cpu_caps_cleared[NCAPINTS + NBUGINTS] __aligned(sizeof(unsigned long)); | |
706 | __u32 cpu_caps_set[NCAPINTS + NBUGINTS] __aligned(sizeof(unsigned long)); | |
7d851c8d | 707 | |
72f5e08d AL |
708 | #ifdef CONFIG_X86_32 |
709 | /* The 32-bit entry code needs to find cpu_entry_area. */ | |
710 | DEFINE_PER_CPU(struct cpu_entry_area *, cpu_entry_area); | |
711 | #endif | |
712 | ||
45fc8757 TG |
713 | /* Load the original GDT from the per-cpu structure */ |
714 | void load_direct_gdt(int cpu) | |
715 | { | |
716 | struct desc_ptr gdt_descr; | |
717 | ||
718 | gdt_descr.address = (long)get_cpu_gdt_rw(cpu); | |
719 | gdt_descr.size = GDT_SIZE - 1; | |
720 | load_gdt(&gdt_descr); | |
721 | } | |
722 | EXPORT_SYMBOL_GPL(load_direct_gdt); | |
723 | ||
69218e47 TG |
724 | /* Load a fixmap remapping of the per-cpu GDT */ |
725 | void load_fixmap_gdt(int cpu) | |
726 | { | |
727 | struct desc_ptr gdt_descr; | |
728 | ||
729 | gdt_descr.address = (long)get_cpu_gdt_ro(cpu); | |
730 | gdt_descr.size = GDT_SIZE - 1; | |
731 | load_gdt(&gdt_descr); | |
732 | } | |
45fc8757 | 733 | EXPORT_SYMBOL_GPL(load_fixmap_gdt); |
69218e47 | 734 | |
b5636d45 | 735 | /** |
1f19e2d5 | 736 | * switch_gdt_and_percpu_base - Switch to direct GDT and runtime per CPU base |
b5636d45 TG |
737 | * @cpu: The CPU number for which this is invoked |
738 | * | |
1f19e2d5 TG |
739 | * Invoked during early boot to switch from early GDT and early per CPU to |
740 | * the direct GDT and the runtime per CPU area. On 32-bit the percpu base | |
741 | * switch is implicit by loading the direct GDT. On 64bit this requires | |
742 | * to update GSBASE. | |
0f3fa48a | 743 | */ |
1f19e2d5 | 744 | void __init switch_gdt_and_percpu_base(int cpu) |
9d31d35b | 745 | { |
45fc8757 | 746 | load_direct_gdt(cpu); |
b5636d45 TG |
747 | |
748 | #ifdef CONFIG_X86_64 | |
749 | /* | |
750 | * No need to load %gs. It is already correct. | |
751 | * | |
752 | * Writing %gs on 64bit would zero GSBASE which would make any per | |
753 | * CPU operation up to the point of the wrmsrl() fault. | |
754 | * | |
755 | * Set GSBASE to the new offset. Until the wrmsrl() happens the | |
756 | * early mapping is still valid. That means the GSBASE update will | |
757 | * lose any prior per CPU data which was not copied over in | |
758 | * setup_per_cpu_areas(). | |
2cb15faa TG |
759 | * |
760 | * This works even with stackprotector enabled because the | |
761 | * per CPU stack canary is 0 in both per CPU areas. | |
b5636d45 TG |
762 | */ |
763 | wrmsrl(MSR_GS_BASE, cpu_kernelmode_gs_base(cpu)); | |
764 | #else | |
765 | /* | |
766 | * %fs is already set to __KERNEL_PERCPU, but after switching GDT | |
767 | * it is required to load FS again so that the 'hidden' part is | |
768 | * updated from the new GDT. Up to this point the early per CPU | |
769 | * translation is active. Any content of the early per CPU data | |
770 | * which was not copied over in setup_per_cpu_areas() is lost. | |
771 | */ | |
772 | loadsegment(fs, __KERNEL_PERCPU); | |
773 | #endif | |
9d31d35b YL |
774 | } |
775 | ||
148f9bb8 | 776 | static const struct cpu_dev *cpu_devs[X86_VENDOR_NUM] = {}; |
1da177e4 | 777 | |
148f9bb8 | 778 | static void get_model_name(struct cpuinfo_x86 *c) |
1da177e4 LT |
779 | { |
780 | unsigned int *v; | |
ee098e1a | 781 | char *p, *q, *s; |
1da177e4 | 782 | |
3da99c97 | 783 | if (c->extended_cpuid_level < 0x80000004) |
1b05d60d | 784 | return; |
1da177e4 | 785 | |
0f3fa48a | 786 | v = (unsigned int *)c->x86_model_id; |
1da177e4 LT |
787 | cpuid(0x80000002, &v[0], &v[1], &v[2], &v[3]); |
788 | cpuid(0x80000003, &v[4], &v[5], &v[6], &v[7]); | |
789 | cpuid(0x80000004, &v[8], &v[9], &v[10], &v[11]); | |
790 | c->x86_model_id[48] = 0; | |
791 | ||
ee098e1a BP |
792 | /* Trim whitespace */ |
793 | p = q = s = &c->x86_model_id[0]; | |
794 | ||
795 | while (*p == ' ') | |
796 | p++; | |
797 | ||
798 | while (*p) { | |
799 | /* Note the last non-whitespace index */ | |
800 | if (!isspace(*p)) | |
801 | s = q; | |
802 | ||
803 | *q++ = *p++; | |
804 | } | |
805 | ||
806 | *(s + 1) = '\0'; | |
1da177e4 LT |
807 | } |
808 | ||
148f9bb8 | 809 | void cpu_detect_cache_sizes(struct cpuinfo_x86 *c) |
1da177e4 | 810 | { |
9d31d35b | 811 | unsigned int n, dummy, ebx, ecx, edx, l2size; |
1da177e4 | 812 | |
3da99c97 | 813 | n = c->extended_cpuid_level; |
1da177e4 LT |
814 | |
815 | if (n >= 0x80000005) { | |
9d31d35b | 816 | cpuid(0x80000005, &dummy, &ebx, &ecx, &edx); |
9d31d35b | 817 | c->x86_cache_size = (ecx>>24) + (edx>>24); |
140fc727 YL |
818 | #ifdef CONFIG_X86_64 |
819 | /* On K8 L1 TLB is inclusive, so don't count it */ | |
820 | c->x86_tlbsize = 0; | |
821 | #endif | |
1da177e4 LT |
822 | } |
823 | ||
824 | if (n < 0x80000006) /* Some chips just has a large L1. */ | |
825 | return; | |
826 | ||
0a488a53 | 827 | cpuid(0x80000006, &dummy, &ebx, &ecx, &edx); |
1da177e4 | 828 | l2size = ecx >> 16; |
34048c9e | 829 | |
140fc727 YL |
830 | #ifdef CONFIG_X86_64 |
831 | c->x86_tlbsize += ((ebx >> 16) & 0xfff) + (ebx & 0xfff); | |
832 | #else | |
1da177e4 | 833 | /* do processor-specific cache resizing */ |
09dc68d9 JB |
834 | if (this_cpu->legacy_cache_size) |
835 | l2size = this_cpu->legacy_cache_size(c, l2size); | |
1da177e4 LT |
836 | |
837 | /* Allow user to override all this if necessary. */ | |
838 | if (cachesize_override != -1) | |
839 | l2size = cachesize_override; | |
840 | ||
34048c9e | 841 | if (l2size == 0) |
1da177e4 | 842 | return; /* Again, no L2 cache is possible */ |
140fc727 | 843 | #endif |
1da177e4 LT |
844 | |
845 | c->x86_cache_size = l2size; | |
1da177e4 LT |
846 | } |
847 | ||
e0ba94f1 AS |
848 | u16 __read_mostly tlb_lli_4k[NR_INFO]; |
849 | u16 __read_mostly tlb_lli_2m[NR_INFO]; | |
850 | u16 __read_mostly tlb_lli_4m[NR_INFO]; | |
851 | u16 __read_mostly tlb_lld_4k[NR_INFO]; | |
852 | u16 __read_mostly tlb_lld_2m[NR_INFO]; | |
853 | u16 __read_mostly tlb_lld_4m[NR_INFO]; | |
dd360393 | 854 | u16 __read_mostly tlb_lld_1g[NR_INFO]; |
e0ba94f1 | 855 | |
f94fe119 | 856 | static void cpu_detect_tlb(struct cpuinfo_x86 *c) |
e0ba94f1 AS |
857 | { |
858 | if (this_cpu->c_detect_tlb) | |
859 | this_cpu->c_detect_tlb(c); | |
860 | ||
f94fe119 | 861 | pr_info("Last level iTLB entries: 4KB %d, 2MB %d, 4MB %d\n", |
e0ba94f1 | 862 | tlb_lli_4k[ENTRIES], tlb_lli_2m[ENTRIES], |
f94fe119 SH |
863 | tlb_lli_4m[ENTRIES]); |
864 | ||
865 | pr_info("Last level dTLB entries: 4KB %d, 2MB %d, 4MB %d, 1GB %d\n", | |
866 | tlb_lld_4k[ENTRIES], tlb_lld_2m[ENTRIES], | |
867 | tlb_lld_4m[ENTRIES], tlb_lld_1g[ENTRIES]); | |
e0ba94f1 AS |
868 | } |
869 | ||
148f9bb8 | 870 | static void get_cpu_vendor(struct cpuinfo_x86 *c) |
1da177e4 LT |
871 | { |
872 | char *v = c->x86_vendor_id; | |
0f3fa48a | 873 | int i; |
1da177e4 LT |
874 | |
875 | for (i = 0; i < X86_VENDOR_NUM; i++) { | |
10a434fc YL |
876 | if (!cpu_devs[i]) |
877 | break; | |
878 | ||
879 | if (!strcmp(v, cpu_devs[i]->c_ident[0]) || | |
880 | (cpu_devs[i]->c_ident[1] && | |
881 | !strcmp(v, cpu_devs[i]->c_ident[1]))) { | |
0f3fa48a | 882 | |
10a434fc YL |
883 | this_cpu = cpu_devs[i]; |
884 | c->x86_vendor = this_cpu->c_x86_vendor; | |
885 | return; | |
1da177e4 LT |
886 | } |
887 | } | |
10a434fc | 888 | |
1b74dde7 CY |
889 | pr_err_once("CPU: vendor_id '%s' unknown, using generic init.\n" \ |
890 | "CPU: Your system may be unstable.\n", v); | |
10a434fc | 891 | |
fe38d855 CE |
892 | c->x86_vendor = X86_VENDOR_UNKNOWN; |
893 | this_cpu = &default_cpu; | |
1da177e4 LT |
894 | } |
895 | ||
148f9bb8 | 896 | void cpu_detect(struct cpuinfo_x86 *c) |
1da177e4 | 897 | { |
1da177e4 | 898 | /* Get vendor name */ |
4a148513 HH |
899 | cpuid(0x00000000, (unsigned int *)&c->cpuid_level, |
900 | (unsigned int *)&c->x86_vendor_id[0], | |
901 | (unsigned int *)&c->x86_vendor_id[8], | |
902 | (unsigned int *)&c->x86_vendor_id[4]); | |
1da177e4 | 903 | |
1da177e4 | 904 | c->x86 = 4; |
9d31d35b | 905 | /* Intel-defined flags: level 0x00000001 */ |
1da177e4 LT |
906 | if (c->cpuid_level >= 0x00000001) { |
907 | u32 junk, tfms, cap0, misc; | |
0f3fa48a | 908 | |
1da177e4 | 909 | cpuid(0x00000001, &tfms, &misc, &junk, &cap0); |
99f925ce BP |
910 | c->x86 = x86_family(tfms); |
911 | c->x86_model = x86_model(tfms); | |
b399151c | 912 | c->x86_stepping = x86_stepping(tfms); |
0f3fa48a | 913 | |
d4387bd3 | 914 | if (cap0 & (1<<19)) { |
d4387bd3 | 915 | c->x86_clflush_size = ((misc >> 8) & 0xff) * 8; |
9d31d35b | 916 | c->x86_cache_alignment = c->x86_clflush_size; |
d4387bd3 | 917 | } |
1da177e4 | 918 | } |
1da177e4 | 919 | } |
3da99c97 | 920 | |
8bf1ebca AL |
921 | static void apply_forced_caps(struct cpuinfo_x86 *c) |
922 | { | |
923 | int i; | |
924 | ||
6cbd2171 | 925 | for (i = 0; i < NCAPINTS + NBUGINTS; i++) { |
8bf1ebca AL |
926 | c->x86_capability[i] &= ~cpu_caps_cleared[i]; |
927 | c->x86_capability[i] |= cpu_caps_set[i]; | |
928 | } | |
929 | } | |
930 | ||
7fcae111 DW |
931 | static void init_speculation_control(struct cpuinfo_x86 *c) |
932 | { | |
933 | /* | |
934 | * The Intel SPEC_CTRL CPUID bit implies IBRS and IBPB support, | |
935 | * and they also have a different bit for STIBP support. Also, | |
936 | * a hypervisor might have set the individual AMD bits even on | |
937 | * Intel CPUs, for finer-grained selection of what's available. | |
7fcae111 DW |
938 | */ |
939 | if (cpu_has(c, X86_FEATURE_SPEC_CTRL)) { | |
940 | set_cpu_cap(c, X86_FEATURE_IBRS); | |
941 | set_cpu_cap(c, X86_FEATURE_IBPB); | |
7eb8956a | 942 | set_cpu_cap(c, X86_FEATURE_MSR_SPEC_CTRL); |
7fcae111 | 943 | } |
e7c587da | 944 | |
7fcae111 DW |
945 | if (cpu_has(c, X86_FEATURE_INTEL_STIBP)) |
946 | set_cpu_cap(c, X86_FEATURE_STIBP); | |
e7c587da | 947 | |
bc226f07 TL |
948 | if (cpu_has(c, X86_FEATURE_SPEC_CTRL_SSBD) || |
949 | cpu_has(c, X86_FEATURE_VIRT_SSBD)) | |
52817587 TG |
950 | set_cpu_cap(c, X86_FEATURE_SSBD); |
951 | ||
7eb8956a | 952 | if (cpu_has(c, X86_FEATURE_AMD_IBRS)) { |
e7c587da | 953 | set_cpu_cap(c, X86_FEATURE_IBRS); |
7eb8956a TG |
954 | set_cpu_cap(c, X86_FEATURE_MSR_SPEC_CTRL); |
955 | } | |
e7c587da BP |
956 | |
957 | if (cpu_has(c, X86_FEATURE_AMD_IBPB)) | |
958 | set_cpu_cap(c, X86_FEATURE_IBPB); | |
959 | ||
7eb8956a | 960 | if (cpu_has(c, X86_FEATURE_AMD_STIBP)) { |
e7c587da | 961 | set_cpu_cap(c, X86_FEATURE_STIBP); |
7eb8956a TG |
962 | set_cpu_cap(c, X86_FEATURE_MSR_SPEC_CTRL); |
963 | } | |
6ac2f49e KRW |
964 | |
965 | if (cpu_has(c, X86_FEATURE_AMD_SSBD)) { | |
966 | set_cpu_cap(c, X86_FEATURE_SSBD); | |
967 | set_cpu_cap(c, X86_FEATURE_MSR_SPEC_CTRL); | |
968 | clear_cpu_cap(c, X86_FEATURE_VIRT_SSBD); | |
969 | } | |
7fcae111 DW |
970 | } |
971 | ||
148f9bb8 | 972 | void get_cpu_cap(struct cpuinfo_x86 *c) |
093af8d7 | 973 | { |
39c06df4 | 974 | u32 eax, ebx, ecx, edx; |
093af8d7 | 975 | |
3da99c97 YL |
976 | /* Intel-defined flags: level 0x00000001 */ |
977 | if (c->cpuid_level >= 0x00000001) { | |
39c06df4 | 978 | cpuid(0x00000001, &eax, &ebx, &ecx, &edx); |
0f3fa48a | 979 | |
39c06df4 BP |
980 | c->x86_capability[CPUID_1_ECX] = ecx; |
981 | c->x86_capability[CPUID_1_EDX] = edx; | |
3da99c97 | 982 | } |
093af8d7 | 983 | |
3df8d920 AL |
984 | /* Thermal and Power Management Leaf: level 0x00000006 (eax) */ |
985 | if (c->cpuid_level >= 0x00000006) | |
986 | c->x86_capability[CPUID_6_EAX] = cpuid_eax(0x00000006); | |
987 | ||
bdc802dc PA |
988 | /* Additional Intel-defined flags: level 0x00000007 */ |
989 | if (c->cpuid_level >= 0x00000007) { | |
bdc802dc | 990 | cpuid_count(0x00000007, 0, &eax, &ebx, &ecx, &edx); |
39c06df4 | 991 | c->x86_capability[CPUID_7_0_EBX] = ebx; |
dfb4a70f | 992 | c->x86_capability[CPUID_7_ECX] = ecx; |
95ca0ee8 | 993 | c->x86_capability[CPUID_7_EDX] = edx; |
b302e4b1 FY |
994 | |
995 | /* Check valid sub-leaf index before accessing it */ | |
996 | if (eax >= 1) { | |
997 | cpuid_count(0x00000007, 1, &eax, &ebx, &ecx, &edx); | |
998 | c->x86_capability[CPUID_7_1_EAX] = eax; | |
999 | } | |
bdc802dc PA |
1000 | } |
1001 | ||
6229ad27 FY |
1002 | /* Extended state features: level 0x0000000d */ |
1003 | if (c->cpuid_level >= 0x0000000d) { | |
6229ad27 FY |
1004 | cpuid_count(0x0000000d, 1, &eax, &ebx, &ecx, &edx); |
1005 | ||
39c06df4 | 1006 | c->x86_capability[CPUID_D_1_EAX] = eax; |
6229ad27 FY |
1007 | } |
1008 | ||
3da99c97 | 1009 | /* AMD-defined flags: level 0x80000001 */ |
39c06df4 BP |
1010 | eax = cpuid_eax(0x80000000); |
1011 | c->extended_cpuid_level = eax; | |
1012 | ||
1013 | if ((eax & 0xffff0000) == 0x80000000) { | |
1014 | if (eax >= 0x80000001) { | |
1015 | cpuid(0x80000001, &eax, &ebx, &ecx, &edx); | |
0f3fa48a | 1016 | |
39c06df4 BP |
1017 | c->x86_capability[CPUID_8000_0001_ECX] = ecx; |
1018 | c->x86_capability[CPUID_8000_0001_EDX] = edx; | |
093af8d7 | 1019 | } |
093af8d7 | 1020 | } |
093af8d7 | 1021 | |
71faad43 YG |
1022 | if (c->extended_cpuid_level >= 0x80000007) { |
1023 | cpuid(0x80000007, &eax, &ebx, &ecx, &edx); | |
1024 | ||
1025 | c->x86_capability[CPUID_8000_0007_EBX] = ebx; | |
1026 | c->x86_power = edx; | |
1027 | } | |
1028 | ||
c65732e4 TG |
1029 | if (c->extended_cpuid_level >= 0x80000008) { |
1030 | cpuid(0x80000008, &eax, &ebx, &ecx, &edx); | |
1031 | c->x86_capability[CPUID_8000_0008_EBX] = ebx; | |
1032 | } | |
1033 | ||
2ccd71f1 | 1034 | if (c->extended_cpuid_level >= 0x8000000a) |
39c06df4 | 1035 | c->x86_capability[CPUID_8000_000A_EDX] = cpuid_edx(0x8000000a); |
093af8d7 | 1036 | |
fb35d30f SC |
1037 | if (c->extended_cpuid_level >= 0x8000001f) |
1038 | c->x86_capability[CPUID_8000_001F_EAX] = cpuid_eax(0x8000001f); | |
1039 | ||
8415a748 KP |
1040 | if (c->extended_cpuid_level >= 0x80000021) |
1041 | c->x86_capability[CPUID_8000_0021_EAX] = cpuid_eax(0x80000021); | |
1042 | ||
1dedefd1 | 1043 | init_scattered_cpuid_features(c); |
7fcae111 | 1044 | init_speculation_control(c); |
60d34501 AL |
1045 | |
1046 | /* | |
1047 | * Clear/Set all flags overridden by options, after probe. | |
1048 | * This needs to happen each time we re-probe, which may happen | |
1049 | * several times during CPU initialization. | |
1050 | */ | |
1051 | apply_forced_caps(c); | |
093af8d7 | 1052 | } |
1da177e4 | 1053 | |
405c018a | 1054 | void get_cpu_address_sizes(struct cpuinfo_x86 *c) |
d94a155c KS |
1055 | { |
1056 | u32 eax, ebx, ecx, edx; | |
1057 | ||
fbf6449f | 1058 | if (!cpu_has(c, X86_FEATURE_CPUID) || |
95bfb352 | 1059 | (c->extended_cpuid_level < 0x80000008)) { |
fbf6449f AD |
1060 | if (IS_ENABLED(CONFIG_X86_64)) { |
1061 | c->x86_clflush_size = 64; | |
1062 | c->x86_phys_bits = 36; | |
1063 | c->x86_virt_bits = 48; | |
1064 | } else { | |
1065 | c->x86_clflush_size = 32; | |
1066 | c->x86_virt_bits = 32; | |
1067 | c->x86_phys_bits = 32; | |
1068 | ||
1069 | if (cpu_has(c, X86_FEATURE_PAE) || | |
1070 | cpu_has(c, X86_FEATURE_PSE36)) | |
1071 | c->x86_phys_bits = 36; | |
1072 | } | |
95bfb352 BPA |
1073 | } else { |
1074 | cpuid(0x80000008, &eax, &ebx, &ecx, &edx); | |
1075 | ||
1076 | c->x86_virt_bits = (eax >> 8) & 0xff; | |
1077 | c->x86_phys_bits = eax & 0xff; | |
d94a155c | 1078 | } |
95bfb352 | 1079 | |
cc51e542 | 1080 | c->x86_cache_bits = c->x86_phys_bits; |
3e325526 | 1081 | c->x86_cache_alignment = c->x86_clflush_size; |
d94a155c KS |
1082 | } |
1083 | ||
148f9bb8 | 1084 | static void identify_cpu_without_cpuid(struct cpuinfo_x86 *c) |
aef93c8b YL |
1085 | { |
1086 | #ifdef CONFIG_X86_32 | |
1087 | int i; | |
1088 | ||
1089 | /* | |
1090 | * First of all, decide if this is a 486 or higher | |
1091 | * It's a 486 if we can modify the AC flag | |
1092 | */ | |
1093 | if (flag_is_changeable_p(X86_EFLAGS_AC)) | |
1094 | c->x86 = 4; | |
1095 | else | |
1096 | c->x86 = 3; | |
1097 | ||
1098 | for (i = 0; i < X86_VENDOR_NUM; i++) | |
1099 | if (cpu_devs[i] && cpu_devs[i]->c_identify) { | |
1100 | c->x86_vendor_id[0] = 0; | |
1101 | cpu_devs[i]->c_identify(c); | |
1102 | if (c->x86_vendor_id[0]) { | |
1103 | get_cpu_vendor(c); | |
1104 | break; | |
1105 | } | |
1106 | } | |
1107 | #endif | |
1108 | } | |
1109 | ||
db4d30fb VT |
1110 | #define NO_SPECULATION BIT(0) |
1111 | #define NO_MELTDOWN BIT(1) | |
1112 | #define NO_SSB BIT(2) | |
1113 | #define NO_L1TF BIT(3) | |
1114 | #define NO_MDS BIT(4) | |
1115 | #define MSBDS_ONLY BIT(5) | |
1116 | #define NO_SWAPGS BIT(6) | |
1117 | #define NO_ITLB_MULTIHIT BIT(7) | |
1e41a766 | 1118 | #define NO_SPECTRE_V2 BIT(8) |
7df54884 PG |
1119 | #define NO_MMIO BIT(9) |
1120 | #define NO_EIBRS_PBRSB BIT(10) | |
be482ff9 | 1121 | #define NO_BHI BIT(11) |
36ad3513 | 1122 | |
f6d502fc TG |
1123 | #define VULNWL(vendor, family, model, whitelist) \ |
1124 | X86_MATCH_VENDOR_FAM_MODEL(vendor, family, model, whitelist) | |
36ad3513 | 1125 | |
b24e466a TL |
1126 | #define VULNWL_INTEL(vfm, whitelist) \ |
1127 | X86_MATCH_VFM(vfm, whitelist) | |
36ad3513 TG |
1128 | |
1129 | #define VULNWL_AMD(family, whitelist) \ | |
1130 | VULNWL(AMD, family, X86_MODEL_ANY, whitelist) | |
1131 | ||
1132 | #define VULNWL_HYGON(family, whitelist) \ | |
1133 | VULNWL(HYGON, family, X86_MODEL_ANY, whitelist) | |
1134 | ||
1135 | static const __initconst struct x86_cpu_id cpu_vuln_whitelist[] = { | |
1136 | VULNWL(ANY, 4, X86_MODEL_ANY, NO_SPECULATION), | |
1137 | VULNWL(CENTAUR, 5, X86_MODEL_ANY, NO_SPECULATION), | |
1138 | VULNWL(INTEL, 5, X86_MODEL_ANY, NO_SPECULATION), | |
1139 | VULNWL(NSC, 5, X86_MODEL_ANY, NO_SPECULATION), | |
639475d4 MDSV |
1140 | VULNWL(VORTEX, 5, X86_MODEL_ANY, NO_SPECULATION), |
1141 | VULNWL(VORTEX, 6, X86_MODEL_ANY, NO_SPECULATION), | |
36ad3513 | 1142 | |
ed5194c2 | 1143 | /* Intel Family 6 */ |
b24e466a TL |
1144 | VULNWL_INTEL(INTEL_TIGERLAKE, NO_MMIO), |
1145 | VULNWL_INTEL(INTEL_TIGERLAKE_L, NO_MMIO), | |
1146 | VULNWL_INTEL(INTEL_ALDERLAKE, NO_MMIO), | |
1147 | VULNWL_INTEL(INTEL_ALDERLAKE_L, NO_MMIO), | |
7df54884 | 1148 | |
b24e466a TL |
1149 | VULNWL_INTEL(INTEL_ATOM_SALTWELL, NO_SPECULATION | NO_ITLB_MULTIHIT), |
1150 | VULNWL_INTEL(INTEL_ATOM_SALTWELL_TABLET, NO_SPECULATION | NO_ITLB_MULTIHIT), | |
1151 | VULNWL_INTEL(INTEL_ATOM_SALTWELL_MID, NO_SPECULATION | NO_ITLB_MULTIHIT), | |
1152 | VULNWL_INTEL(INTEL_ATOM_BONNELL, NO_SPECULATION | NO_ITLB_MULTIHIT), | |
1153 | VULNWL_INTEL(INTEL_ATOM_BONNELL_MID, NO_SPECULATION | NO_ITLB_MULTIHIT), | |
db4d30fb | 1154 | |
b24e466a TL |
1155 | VULNWL_INTEL(INTEL_ATOM_SILVERMONT, NO_SSB | NO_L1TF | MSBDS_ONLY | NO_SWAPGS | NO_ITLB_MULTIHIT), |
1156 | VULNWL_INTEL(INTEL_ATOM_SILVERMONT_D, NO_SSB | NO_L1TF | MSBDS_ONLY | NO_SWAPGS | NO_ITLB_MULTIHIT), | |
1157 | VULNWL_INTEL(INTEL_ATOM_SILVERMONT_MID, NO_SSB | NO_L1TF | MSBDS_ONLY | NO_SWAPGS | NO_ITLB_MULTIHIT), | |
1158 | VULNWL_INTEL(INTEL_ATOM_AIRMONT, NO_SSB | NO_L1TF | MSBDS_ONLY | NO_SWAPGS | NO_ITLB_MULTIHIT), | |
1159 | VULNWL_INTEL(INTEL_XEON_PHI_KNL, NO_SSB | NO_L1TF | MSBDS_ONLY | NO_SWAPGS | NO_ITLB_MULTIHIT), | |
1160 | VULNWL_INTEL(INTEL_XEON_PHI_KNM, NO_SSB | NO_L1TF | MSBDS_ONLY | NO_SWAPGS | NO_ITLB_MULTIHIT), | |
36ad3513 | 1161 | |
b24e466a | 1162 | VULNWL_INTEL(INTEL_CORE_YONAH, NO_SSB), |
36ad3513 | 1163 | |
b24e466a TL |
1164 | VULNWL_INTEL(INTEL_ATOM_AIRMONT_MID, NO_L1TF | MSBDS_ONLY | NO_SWAPGS | NO_ITLB_MULTIHIT), |
1165 | VULNWL_INTEL(INTEL_ATOM_AIRMONT_NP, NO_L1TF | NO_SWAPGS | NO_ITLB_MULTIHIT), | |
36ad3513 | 1166 | |
b24e466a TL |
1167 | VULNWL_INTEL(INTEL_ATOM_GOLDMONT, NO_MDS | NO_L1TF | NO_SWAPGS | NO_ITLB_MULTIHIT | NO_MMIO), |
1168 | VULNWL_INTEL(INTEL_ATOM_GOLDMONT_D, NO_MDS | NO_L1TF | NO_SWAPGS | NO_ITLB_MULTIHIT | NO_MMIO), | |
1169 | VULNWL_INTEL(INTEL_ATOM_GOLDMONT_PLUS, NO_MDS | NO_L1TF | NO_SWAPGS | NO_ITLB_MULTIHIT | NO_MMIO | NO_EIBRS_PBRSB), | |
f36cf386 TG |
1170 | |
1171 | /* | |
1172 | * Technically, swapgs isn't serializing on AMD (despite it previously | |
1173 | * being documented as such in the APM). But according to AMD, %gs is | |
1174 | * updated non-speculatively, and the issuing of %gs-relative memory | |
1175 | * operands will be blocked until the %gs update completes, which is | |
1176 | * good enough for our purposes. | |
1177 | */ | |
ed5194c2 | 1178 | |
b24e466a TL |
1179 | VULNWL_INTEL(INTEL_ATOM_TREMONT, NO_EIBRS_PBRSB), |
1180 | VULNWL_INTEL(INTEL_ATOM_TREMONT_L, NO_EIBRS_PBRSB), | |
1181 | VULNWL_INTEL(INTEL_ATOM_TREMONT_D, NO_ITLB_MULTIHIT | NO_EIBRS_PBRSB), | |
cad14885 | 1182 | |
ed5194c2 | 1183 | /* AMD Family 0xf - 0x12 */ |
be482ff9 PG |
1184 | VULNWL_AMD(0x0f, NO_MELTDOWN | NO_SSB | NO_L1TF | NO_MDS | NO_SWAPGS | NO_ITLB_MULTIHIT | NO_MMIO | NO_BHI), |
1185 | VULNWL_AMD(0x10, NO_MELTDOWN | NO_SSB | NO_L1TF | NO_MDS | NO_SWAPGS | NO_ITLB_MULTIHIT | NO_MMIO | NO_BHI), | |
1186 | VULNWL_AMD(0x11, NO_MELTDOWN | NO_SSB | NO_L1TF | NO_MDS | NO_SWAPGS | NO_ITLB_MULTIHIT | NO_MMIO | NO_BHI), | |
1187 | VULNWL_AMD(0x12, NO_MELTDOWN | NO_SSB | NO_L1TF | NO_MDS | NO_SWAPGS | NO_ITLB_MULTIHIT | NO_MMIO | NO_BHI), | |
36ad3513 TG |
1188 | |
1189 | /* FAMILY_ANY must be last, otherwise 0x0f - 0x12 matches won't work */ | |
be482ff9 PG |
1190 | VULNWL_AMD(X86_FAMILY_ANY, NO_MELTDOWN | NO_L1TF | NO_MDS | NO_SWAPGS | NO_ITLB_MULTIHIT | NO_MMIO | NO_EIBRS_PBRSB | NO_BHI), |
1191 | VULNWL_HYGON(X86_FAMILY_ANY, NO_MELTDOWN | NO_L1TF | NO_MDS | NO_SWAPGS | NO_ITLB_MULTIHIT | NO_MMIO | NO_EIBRS_PBRSB | NO_BHI), | |
1e41a766 TW |
1192 | |
1193 | /* Zhaoxin Family 7 */ | |
be482ff9 PG |
1194 | VULNWL(CENTAUR, 7, X86_MODEL_ANY, NO_SPECTRE_V2 | NO_SWAPGS | NO_MMIO | NO_BHI), |
1195 | VULNWL(ZHAOXIN, 7, X86_MODEL_ANY, NO_SPECTRE_V2 | NO_SWAPGS | NO_MMIO | NO_BHI), | |
fec9434a DW |
1196 | {} |
1197 | }; | |
1198 | ||
6b80b59b AC |
1199 | #define VULNBL(vendor, family, model, blacklist) \ |
1200 | X86_MATCH_VENDOR_FAM_MODEL(vendor, family, model, blacklist) | |
1201 | ||
b24e466a TL |
1202 | #define VULNBL_INTEL_STEPPINGS(vfm, steppings, issues) \ |
1203 | X86_MATCH_VFM_STEPPINGS(vfm, steppings, issues) | |
7e5b3c26 | 1204 | |
6b80b59b AC |
1205 | #define VULNBL_AMD(family, blacklist) \ |
1206 | VULNBL(AMD, family, X86_MODEL_ANY, blacklist) | |
1207 | ||
1208 | #define VULNBL_HYGON(family, blacklist) \ | |
1209 | VULNBL(HYGON, family, X86_MODEL_ANY, blacklist) | |
1210 | ||
7e5b3c26 | 1211 | #define SRBDS BIT(0) |
51802186 PG |
1212 | /* CPU is affected by X86_BUG_MMIO_STALE_DATA */ |
1213 | #define MMIO BIT(1) | |
a992b8a4 PG |
1214 | /* CPU is affected by Shared Buffers Data Sampling (SBDS), a variant of X86_BUG_MMIO_STALE_DATA */ |
1215 | #define MMIO_SBDS BIT(2) | |
6b80b59b AC |
1216 | /* CPU is affected by RETbleed, speculating where you would not expect it */ |
1217 | #define RETBLEED BIT(3) | |
be8de49b TL |
1218 | /* CPU is affected by SMT (cross-thread) return predictions */ |
1219 | #define SMT_RSB BIT(4) | |
fb3bd914 BPA |
1220 | /* CPU is affected by SRSO */ |
1221 | #define SRSO BIT(5) | |
8974eb58 | 1222 | /* CPU is affected by GDS */ |
64094e7e | 1223 | #define GDS BIT(6) |
8076fcde PG |
1224 | /* CPU is affected by Register File Data Sampling */ |
1225 | #define RFDS BIT(7) | |
7e5b3c26 MG |
1226 | |
1227 | static const struct x86_cpu_id cpu_vuln_blacklist[] __initconst = { | |
b24e466a TL |
1228 | VULNBL_INTEL_STEPPINGS(INTEL_IVYBRIDGE, X86_STEPPING_ANY, SRBDS), |
1229 | VULNBL_INTEL_STEPPINGS(INTEL_HASWELL, X86_STEPPING_ANY, SRBDS), | |
1230 | VULNBL_INTEL_STEPPINGS(INTEL_HASWELL_L, X86_STEPPING_ANY, SRBDS), | |
1231 | VULNBL_INTEL_STEPPINGS(INTEL_HASWELL_G, X86_STEPPING_ANY, SRBDS), | |
1232 | VULNBL_INTEL_STEPPINGS(INTEL_HASWELL_X, X86_STEPPING_ANY, MMIO), | |
1233 | VULNBL_INTEL_STEPPINGS(INTEL_BROADWELL_D, X86_STEPPING_ANY, MMIO), | |
1234 | VULNBL_INTEL_STEPPINGS(INTEL_BROADWELL_G, X86_STEPPING_ANY, SRBDS), | |
1235 | VULNBL_INTEL_STEPPINGS(INTEL_BROADWELL_X, X86_STEPPING_ANY, MMIO), | |
1236 | VULNBL_INTEL_STEPPINGS(INTEL_BROADWELL, X86_STEPPING_ANY, SRBDS), | |
1237 | VULNBL_INTEL_STEPPINGS(INTEL_SKYLAKE_X, X86_STEPPING_ANY, MMIO | RETBLEED | GDS), | |
1238 | VULNBL_INTEL_STEPPINGS(INTEL_SKYLAKE_L, X86_STEPPING_ANY, MMIO | RETBLEED | GDS | SRBDS), | |
1239 | VULNBL_INTEL_STEPPINGS(INTEL_SKYLAKE, X86_STEPPING_ANY, MMIO | RETBLEED | GDS | SRBDS), | |
1240 | VULNBL_INTEL_STEPPINGS(INTEL_KABYLAKE_L, X86_STEPPING_ANY, MMIO | RETBLEED | GDS | SRBDS), | |
1241 | VULNBL_INTEL_STEPPINGS(INTEL_KABYLAKE, X86_STEPPING_ANY, MMIO | RETBLEED | GDS | SRBDS), | |
1242 | VULNBL_INTEL_STEPPINGS(INTEL_CANNONLAKE_L, X86_STEPPING_ANY, RETBLEED), | |
1243 | VULNBL_INTEL_STEPPINGS(INTEL_ICELAKE_L, X86_STEPPING_ANY, MMIO | MMIO_SBDS | RETBLEED | GDS), | |
1244 | VULNBL_INTEL_STEPPINGS(INTEL_ICELAKE_D, X86_STEPPING_ANY, MMIO | GDS), | |
1245 | VULNBL_INTEL_STEPPINGS(INTEL_ICELAKE_X, X86_STEPPING_ANY, MMIO | GDS), | |
1246 | VULNBL_INTEL_STEPPINGS(INTEL_COMETLAKE, X86_STEPPING_ANY, MMIO | MMIO_SBDS | RETBLEED | GDS), | |
1247 | VULNBL_INTEL_STEPPINGS(INTEL_COMETLAKE_L, X86_STEPPINGS(0x0, 0x0), MMIO | RETBLEED), | |
1248 | VULNBL_INTEL_STEPPINGS(INTEL_COMETLAKE_L, X86_STEPPING_ANY, MMIO | MMIO_SBDS | RETBLEED | GDS), | |
1249 | VULNBL_INTEL_STEPPINGS(INTEL_TIGERLAKE_L, X86_STEPPING_ANY, GDS), | |
1250 | VULNBL_INTEL_STEPPINGS(INTEL_TIGERLAKE, X86_STEPPING_ANY, GDS), | |
1251 | VULNBL_INTEL_STEPPINGS(INTEL_LAKEFIELD, X86_STEPPING_ANY, MMIO | MMIO_SBDS | RETBLEED), | |
1252 | VULNBL_INTEL_STEPPINGS(INTEL_ROCKETLAKE, X86_STEPPING_ANY, MMIO | RETBLEED | GDS), | |
1253 | VULNBL_INTEL_STEPPINGS(INTEL_ALDERLAKE, X86_STEPPING_ANY, RFDS), | |
1254 | VULNBL_INTEL_STEPPINGS(INTEL_ALDERLAKE_L, X86_STEPPING_ANY, RFDS), | |
1255 | VULNBL_INTEL_STEPPINGS(INTEL_RAPTORLAKE, X86_STEPPING_ANY, RFDS), | |
1256 | VULNBL_INTEL_STEPPINGS(INTEL_RAPTORLAKE_P, X86_STEPPING_ANY, RFDS), | |
1257 | VULNBL_INTEL_STEPPINGS(INTEL_RAPTORLAKE_S, X86_STEPPING_ANY, RFDS), | |
1258 | VULNBL_INTEL_STEPPINGS(INTEL_ATOM_GRACEMONT, X86_STEPPING_ANY, RFDS), | |
1259 | VULNBL_INTEL_STEPPINGS(INTEL_ATOM_TREMONT, X86_STEPPING_ANY, MMIO | MMIO_SBDS | RFDS), | |
1260 | VULNBL_INTEL_STEPPINGS(INTEL_ATOM_TREMONT_D, X86_STEPPING_ANY, MMIO | RFDS), | |
1261 | VULNBL_INTEL_STEPPINGS(INTEL_ATOM_TREMONT_L, X86_STEPPING_ANY, MMIO | MMIO_SBDS | RFDS), | |
1262 | VULNBL_INTEL_STEPPINGS(INTEL_ATOM_GOLDMONT, X86_STEPPING_ANY, RFDS), | |
1263 | VULNBL_INTEL_STEPPINGS(INTEL_ATOM_GOLDMONT_D, X86_STEPPING_ANY, RFDS), | |
1264 | VULNBL_INTEL_STEPPINGS(INTEL_ATOM_GOLDMONT_PLUS, X86_STEPPING_ANY, RFDS), | |
6b80b59b AC |
1265 | |
1266 | VULNBL_AMD(0x15, RETBLEED), | |
1267 | VULNBL_AMD(0x16, RETBLEED), | |
fb3bd914 | 1268 | VULNBL_AMD(0x17, RETBLEED | SMT_RSB | SRSO), |
a5ef7d68 | 1269 | VULNBL_HYGON(0x18, RETBLEED | SMT_RSB | SRSO), |
fb3bd914 | 1270 | VULNBL_AMD(0x19, SRSO), |
7e5b3c26 MG |
1271 | {} |
1272 | }; | |
1273 | ||
93920f61 | 1274 | static bool __init cpu_matches(const struct x86_cpu_id *table, unsigned long which) |
36ad3513 | 1275 | { |
93920f61 | 1276 | const struct x86_cpu_id *m = x86_match_cpu(table); |
c456442c | 1277 | |
36ad3513 TG |
1278 | return m && !!(m->driver_data & which); |
1279 | } | |
17dbca11 | 1280 | |
286836a7 | 1281 | u64 x86_read_arch_cap_msr(void) |
fec9434a | 1282 | { |
d0485730 | 1283 | u64 x86_arch_cap_msr = 0; |
fec9434a | 1284 | |
286836a7 | 1285 | if (boot_cpu_has(X86_FEATURE_ARCH_CAPABILITIES)) |
d0485730 | 1286 | rdmsrl(MSR_IA32_ARCH_CAPABILITIES, x86_arch_cap_msr); |
286836a7 | 1287 | |
d0485730 | 1288 | return x86_arch_cap_msr; |
286836a7 PG |
1289 | } |
1290 | ||
d0485730 | 1291 | static bool arch_cap_mmio_immune(u64 x86_arch_cap_msr) |
51802186 | 1292 | { |
d0485730 IM |
1293 | return (x86_arch_cap_msr & ARCH_CAP_FBSDP_NO && |
1294 | x86_arch_cap_msr & ARCH_CAP_PSDP_NO && | |
1295 | x86_arch_cap_msr & ARCH_CAP_SBDR_SSDP_NO); | |
51802186 PG |
1296 | } |
1297 | ||
d0485730 | 1298 | static bool __init vulnerable_to_rfds(u64 x86_arch_cap_msr) |
8076fcde PG |
1299 | { |
1300 | /* The "immunity" bit trumps everything else: */ | |
d0485730 | 1301 | if (x86_arch_cap_msr & ARCH_CAP_RFDS_NO) |
8076fcde PG |
1302 | return false; |
1303 | ||
1304 | /* | |
1305 | * VMMs set ARCH_CAP_RFDS_CLEAR for processors not in the blacklist to | |
1306 | * indicate that mitigation is needed because guest is running on a | |
1307 | * vulnerable hardware or may migrate to such hardware: | |
1308 | */ | |
d0485730 | 1309 | if (x86_arch_cap_msr & ARCH_CAP_RFDS_CLEAR) |
8076fcde PG |
1310 | return true; |
1311 | ||
1312 | /* Only consult the blacklist when there is no enumeration: */ | |
1313 | return cpu_matches(cpu_vuln_blacklist, RFDS); | |
1314 | } | |
1315 | ||
286836a7 PG |
1316 | static void __init cpu_set_bug_bits(struct cpuinfo_x86 *c) |
1317 | { | |
d0485730 | 1318 | u64 x86_arch_cap_msr = x86_read_arch_cap_msr(); |
286836a7 | 1319 | |
db4d30fb | 1320 | /* Set ITLB_MULTIHIT bug if cpu is not in the whitelist and not mitigated */ |
93920f61 | 1321 | if (!cpu_matches(cpu_vuln_whitelist, NO_ITLB_MULTIHIT) && |
d0485730 | 1322 | !(x86_arch_cap_msr & ARCH_CAP_PSCHANGE_MC_NO)) |
db4d30fb VT |
1323 | setup_force_cpu_bug(X86_BUG_ITLB_MULTIHIT); |
1324 | ||
93920f61 | 1325 | if (cpu_matches(cpu_vuln_whitelist, NO_SPECULATION)) |
8ecc4979 DB |
1326 | return; |
1327 | ||
1328 | setup_force_cpu_bug(X86_BUG_SPECTRE_V1); | |
1e41a766 | 1329 | |
93920f61 | 1330 | if (!cpu_matches(cpu_vuln_whitelist, NO_SPECTRE_V2)) |
1e41a766 | 1331 | setup_force_cpu_bug(X86_BUG_SPECTRE_V2); |
8ecc4979 | 1332 | |
93920f61 | 1333 | if (!cpu_matches(cpu_vuln_whitelist, NO_SSB) && |
d0485730 | 1334 | !(x86_arch_cap_msr & ARCH_CAP_SSB_NO) && |
24809860 | 1335 | !cpu_has(c, X86_FEATURE_AMD_SSB_NO)) |
c456442c KRW |
1336 | setup_force_cpu_bug(X86_BUG_SPEC_STORE_BYPASS); |
1337 | ||
e7862eda KP |
1338 | /* |
1339 | * AMD's AutoIBRS is equivalent to Intel's eIBRS - use the Intel feature | |
1340 | * flag and protect from vendor-specific bugs via the whitelist. | |
acaa4b5c KP |
1341 | * |
1342 | * Don't use AutoIBRS when SNP is enabled because it degrades host | |
1343 | * userspace indirect branch performance. | |
e7862eda | 1344 | */ |
d0485730 | 1345 | if ((x86_arch_cap_msr & ARCH_CAP_IBRS_ALL) || |
acaa4b5c KP |
1346 | (cpu_has(c, X86_FEATURE_AUTOIBRS) && |
1347 | !cpu_feature_enabled(X86_FEATURE_SEV_SNP))) { | |
706d5168 | 1348 | setup_force_cpu_cap(X86_FEATURE_IBRS_ENHANCED); |
e7862eda | 1349 | if (!cpu_matches(cpu_vuln_whitelist, NO_EIBRS_PBRSB) && |
d0485730 | 1350 | !(x86_arch_cap_msr & ARCH_CAP_PBRSB_NO)) |
e7862eda KP |
1351 | setup_force_cpu_bug(X86_BUG_EIBRS_PBRSB); |
1352 | } | |
706d5168 | 1353 | |
93920f61 | 1354 | if (!cpu_matches(cpu_vuln_whitelist, NO_MDS) && |
d0485730 | 1355 | !(x86_arch_cap_msr & ARCH_CAP_MDS_NO)) { |
ed5194c2 | 1356 | setup_force_cpu_bug(X86_BUG_MDS); |
93920f61 | 1357 | if (cpu_matches(cpu_vuln_whitelist, MSBDS_ONLY)) |
e261f209 TG |
1358 | setup_force_cpu_bug(X86_BUG_MSBDS_ONLY); |
1359 | } | |
ed5194c2 | 1360 | |
93920f61 | 1361 | if (!cpu_matches(cpu_vuln_whitelist, NO_SWAPGS)) |
f36cf386 TG |
1362 | setup_force_cpu_bug(X86_BUG_SWAPGS); |
1363 | ||
1b42f017 PG |
1364 | /* |
1365 | * When the CPU is not mitigated for TAA (TAA_NO=0) set TAA bug when: | |
1366 | * - TSX is supported or | |
1367 | * - TSX_CTRL is present | |
1368 | * | |
1369 | * TSX_CTRL check is needed for cases when TSX could be disabled before | |
1370 | * the kernel boot e.g. kexec. | |
1371 | * TSX_CTRL check alone is not sufficient for cases when the microcode | |
1372 | * update is not present or running as guest that don't get TSX_CTRL. | |
1373 | */ | |
d0485730 | 1374 | if (!(x86_arch_cap_msr & ARCH_CAP_TAA_NO) && |
1b42f017 | 1375 | (cpu_has(c, X86_FEATURE_RTM) || |
d0485730 | 1376 | (x86_arch_cap_msr & ARCH_CAP_TSX_CTRL_MSR))) |
1b42f017 PG |
1377 | setup_force_cpu_bug(X86_BUG_TAA); |
1378 | ||
7e5b3c26 MG |
1379 | /* |
1380 | * SRBDS affects CPUs which support RDRAND or RDSEED and are listed | |
1381 | * in the vulnerability blacklist. | |
a992b8a4 PG |
1382 | * |
1383 | * Some of the implications and mitigation of Shared Buffers Data | |
1384 | * Sampling (SBDS) are similar to SRBDS. Give SBDS same treatment as | |
1385 | * SRBDS. | |
7e5b3c26 MG |
1386 | */ |
1387 | if ((cpu_has(c, X86_FEATURE_RDRAND) || | |
1388 | cpu_has(c, X86_FEATURE_RDSEED)) && | |
a992b8a4 | 1389 | cpu_matches(cpu_vuln_blacklist, SRBDS | MMIO_SBDS)) |
7e5b3c26 MG |
1390 | setup_force_cpu_bug(X86_BUG_SRBDS); |
1391 | ||
51802186 PG |
1392 | /* |
1393 | * Processor MMIO Stale Data bug enumeration | |
1394 | * | |
1395 | * Affected CPU list is generally enough to enumerate the vulnerability, | |
1396 | * but for virtualization case check for ARCH_CAP MSR bits also, VMM may | |
1397 | * not want the guest to enumerate the bug. | |
7df54884 PG |
1398 | * |
1399 | * Set X86_BUG_MMIO_UNKNOWN for CPUs that are neither in the blacklist, | |
1400 | * nor in the whitelist and also don't enumerate MSR ARCH_CAP MMIO bits. | |
51802186 | 1401 | */ |
d0485730 | 1402 | if (!arch_cap_mmio_immune(x86_arch_cap_msr)) { |
7df54884 PG |
1403 | if (cpu_matches(cpu_vuln_blacklist, MMIO)) |
1404 | setup_force_cpu_bug(X86_BUG_MMIO_STALE_DATA); | |
1405 | else if (!cpu_matches(cpu_vuln_whitelist, NO_MMIO)) | |
1406 | setup_force_cpu_bug(X86_BUG_MMIO_UNKNOWN); | |
1407 | } | |
51802186 | 1408 | |
26aae8cc | 1409 | if (!cpu_has(c, X86_FEATURE_BTC_NO)) { |
d0485730 | 1410 | if (cpu_matches(cpu_vuln_blacklist, RETBLEED) || (x86_arch_cap_msr & ARCH_CAP_RSBA)) |
26aae8cc AC |
1411 | setup_force_cpu_bug(X86_BUG_RETBLEED); |
1412 | } | |
6b80b59b | 1413 | |
be8de49b TL |
1414 | if (cpu_matches(cpu_vuln_blacklist, SMT_RSB)) |
1415 | setup_force_cpu_bug(X86_BUG_SMT_RSB); | |
1416 | ||
1b5277c0 BPA |
1417 | if (!cpu_has(c, X86_FEATURE_SRSO_NO)) { |
1418 | if (cpu_matches(cpu_vuln_blacklist, SRSO)) | |
1419 | setup_force_cpu_bug(X86_BUG_SRSO); | |
1420 | } | |
fb3bd914 | 1421 | |
8974eb58 DS |
1422 | /* |
1423 | * Check if CPU is vulnerable to GDS. If running in a virtual machine on | |
1424 | * an affected processor, the VMM may have disabled the use of GATHER by | |
1425 | * disabling AVX2. The only way to do this in HW is to clear XCR0[2], | |
1426 | * which means that AVX will be disabled. | |
1427 | */ | |
d0485730 | 1428 | if (cpu_matches(cpu_vuln_blacklist, GDS) && !(x86_arch_cap_msr & ARCH_CAP_GDS_NO) && |
8974eb58 DS |
1429 | boot_cpu_has(X86_FEATURE_AVX)) |
1430 | setup_force_cpu_bug(X86_BUG_GDS); | |
1431 | ||
d0485730 | 1432 | if (vulnerable_to_rfds(x86_arch_cap_msr)) |
8076fcde PG |
1433 | setup_force_cpu_bug(X86_BUG_RFDS); |
1434 | ||
be482ff9 | 1435 | /* When virtualized, eIBRS could be hidden, assume vulnerable */ |
d0485730 | 1436 | if (!(x86_arch_cap_msr & ARCH_CAP_BHI_NO) && |
be482ff9 PG |
1437 | !cpu_matches(cpu_vuln_whitelist, NO_BHI) && |
1438 | (boot_cpu_has(X86_FEATURE_IBRS_ENHANCED) || | |
1439 | boot_cpu_has(X86_FEATURE_HYPERVISOR))) | |
1440 | setup_force_cpu_bug(X86_BUG_BHI); | |
1441 | ||
93920f61 | 1442 | if (cpu_matches(cpu_vuln_whitelist, NO_MELTDOWN)) |
4a28bfe3 | 1443 | return; |
fec9434a | 1444 | |
fec9434a | 1445 | /* Rogue Data Cache Load? No! */ |
d0485730 | 1446 | if (x86_arch_cap_msr & ARCH_CAP_RDCL_NO) |
4a28bfe3 | 1447 | return; |
fec9434a | 1448 | |
4a28bfe3 | 1449 | setup_force_cpu_bug(X86_BUG_CPU_MELTDOWN); |
17dbca11 | 1450 | |
93920f61 | 1451 | if (cpu_matches(cpu_vuln_whitelist, NO_L1TF)) |
17dbca11 AK |
1452 | return; |
1453 | ||
1454 | setup_force_cpu_bug(X86_BUG_L1TF); | |
fec9434a DW |
1455 | } |
1456 | ||
8990cac6 PT |
1457 | /* |
1458 | * The NOPL instruction is supposed to exist on all CPUs of family >= 6; | |
1459 | * unfortunately, that's not true in practice because of early VIA | |
1460 | * chips and (more importantly) broken virtualizers that are not easy | |
1461 | * to detect. In the latter case it doesn't even *fail* reliably, so | |
1462 | * probing for it doesn't even work. Disable it completely on 32-bit | |
1463 | * unless we can find a reliable way to detect all the broken cases. | |
1464 | * Enable it explicitly on 64-bit for non-constant inputs of cpu_has(). | |
1465 | */ | |
9b3661cd | 1466 | static void detect_nopl(void) |
8990cac6 PT |
1467 | { |
1468 | #ifdef CONFIG_X86_32 | |
9b3661cd | 1469 | setup_clear_cpu_cap(X86_FEATURE_NOPL); |
8990cac6 | 1470 | #else |
9b3661cd | 1471 | setup_force_cpu_cap(X86_FEATURE_NOPL); |
8990cac6 PT |
1472 | #endif |
1473 | } | |
1474 | ||
1ef5423a MH |
1475 | /* |
1476 | * We parse cpu parameters early because fpu__init_system() is executed | |
1477 | * before parse_early_param(). | |
1478 | */ | |
1479 | static void __init cpu_parse_early_param(void) | |
1480 | { | |
1481 | char arg[128]; | |
1625c833 BP |
1482 | char *argptr = arg, *opt; |
1483 | int arglen, taint = 0; | |
1ef5423a MH |
1484 | |
1485 | #ifdef CONFIG_X86_32 | |
1486 | if (cmdline_find_option_bool(boot_command_line, "no387")) | |
1487 | #ifdef CONFIG_MATH_EMULATION | |
1488 | setup_clear_cpu_cap(X86_FEATURE_FPU); | |
1489 | #else | |
1490 | pr_err("Option 'no387' required CONFIG_MATH_EMULATION enabled.\n"); | |
1491 | #endif | |
1492 | ||
1493 | if (cmdline_find_option_bool(boot_command_line, "nofxsr")) | |
1494 | setup_clear_cpu_cap(X86_FEATURE_FXSR); | |
1495 | #endif | |
1496 | ||
1497 | if (cmdline_find_option_bool(boot_command_line, "noxsave")) | |
1498 | setup_clear_cpu_cap(X86_FEATURE_XSAVE); | |
1499 | ||
1500 | if (cmdline_find_option_bool(boot_command_line, "noxsaveopt")) | |
1501 | setup_clear_cpu_cap(X86_FEATURE_XSAVEOPT); | |
1502 | ||
1503 | if (cmdline_find_option_bool(boot_command_line, "noxsaves")) | |
1504 | setup_clear_cpu_cap(X86_FEATURE_XSAVES); | |
1505 | ||
0dc2a760 RE |
1506 | if (cmdline_find_option_bool(boot_command_line, "nousershstk")) |
1507 | setup_clear_cpu_cap(X86_FEATURE_USER_SHSTK); | |
1508 | ||
1ef5423a MH |
1509 | arglen = cmdline_find_option(boot_command_line, "clearcpuid", arg, sizeof(arg)); |
1510 | if (arglen <= 0) | |
1511 | return; | |
1512 | ||
1513 | pr_info("Clearing CPUID bits:"); | |
1ef5423a | 1514 | |
1625c833 BP |
1515 | while (argptr) { |
1516 | bool found __maybe_unused = false; | |
1517 | unsigned int bit; | |
1ef5423a | 1518 | |
1625c833 BP |
1519 | opt = strsep(&argptr, ","); |
1520 | ||
1521 | /* | |
1522 | * Handle naked numbers first for feature flags which don't | |
1523 | * have names. | |
1524 | */ | |
1525 | if (!kstrtouint(opt, 10, &bit)) { | |
1526 | if (bit < NCAPINTS * 32) { | |
1527 | ||
1625c833 BP |
1528 | /* empty-string, i.e., ""-defined feature flags */ |
1529 | if (!x86_cap_flags[bit]) | |
1530 | pr_cont(" " X86_CAP_FMT_NUM, x86_cap_flag_num(bit)); | |
1531 | else | |
1625c833 BP |
1532 | pr_cont(" " X86_CAP_FMT, x86_cap_flag(bit)); |
1533 | ||
1534 | setup_clear_cpu_cap(bit); | |
1535 | taint++; | |
1536 | } | |
1537 | /* | |
1538 | * The assumption is that there are no feature names with only | |
1539 | * numbers in the name thus go to the next argument. | |
1540 | */ | |
1541 | continue; | |
1542 | } | |
1543 | ||
1625c833 BP |
1544 | for (bit = 0; bit < 32 * NCAPINTS; bit++) { |
1545 | if (!x86_cap_flag(bit)) | |
1546 | continue; | |
1ef5423a | 1547 | |
1625c833 BP |
1548 | if (strcmp(x86_cap_flag(bit), opt)) |
1549 | continue; | |
1550 | ||
1551 | pr_cont(" %s", opt); | |
1ef5423a | 1552 | setup_clear_cpu_cap(bit); |
1625c833 BP |
1553 | taint++; |
1554 | found = true; | |
1555 | break; | |
1ef5423a | 1556 | } |
1625c833 BP |
1557 | |
1558 | if (!found) | |
1559 | pr_cont(" (unknown: %s)", opt); | |
1625c833 | 1560 | } |
1ef5423a | 1561 | pr_cont("\n"); |
1625c833 BP |
1562 | |
1563 | if (taint) | |
1564 | add_taint(TAINT_CPU_OUT_OF_SPEC, LOCKDEP_STILL_OK); | |
1ef5423a MH |
1565 | } |
1566 | ||
34048c9e PC |
1567 | /* |
1568 | * Do minimum CPU detection early. | |
1569 | * Fields really needed: vendor, cpuid_level, family, model, mask, | |
1570 | * cache alignment. | |
1571 | * The others are not touched to avoid unwanted side effects. | |
1572 | * | |
a1652bb8 JD |
1573 | * WARNING: this function is only called on the boot CPU. Don't add code |
1574 | * here that is supposed to run on all CPUs. | |
34048c9e | 1575 | */ |
3da99c97 | 1576 | static void __init early_identify_cpu(struct cpuinfo_x86 *c) |
d7cd5611 | 1577 | { |
0e96f31e | 1578 | memset(&c->x86_capability, 0, sizeof(c->x86_capability)); |
0a488a53 | 1579 | c->extended_cpuid_level = 0; |
d7cd5611 | 1580 | |
2893cc8f MW |
1581 | if (!have_cpuid_p()) |
1582 | identify_cpu_without_cpuid(c); | |
1583 | ||
aef93c8b | 1584 | /* cyrix could have cpuid enabled via c_identify()*/ |
05fb3c19 AL |
1585 | if (have_cpuid_p()) { |
1586 | cpu_detect(c); | |
1587 | get_cpu_vendor(c); | |
1588 | get_cpu_cap(c); | |
78d1b296 | 1589 | setup_force_cpu_cap(X86_FEATURE_CPUID); |
9a458198 | 1590 | get_cpu_address_sizes(c); |
1ef5423a | 1591 | cpu_parse_early_param(); |
d7cd5611 | 1592 | |
ebdb2036 TG |
1593 | cpu_init_topology(c); |
1594 | ||
05fb3c19 AL |
1595 | if (this_cpu->c_early_init) |
1596 | this_cpu->c_early_init(c); | |
12cf105c | 1597 | |
05fb3c19 AL |
1598 | c->cpu_index = 0; |
1599 | filter_cpuid_features(c, false); | |
093af8d7 | 1600 | |
05fb3c19 AL |
1601 | if (this_cpu->c_bsp_init) |
1602 | this_cpu->c_bsp_init(c); | |
78d1b296 | 1603 | } else { |
78d1b296 | 1604 | setup_clear_cpu_cap(X86_FEATURE_CPUID); |
9a458198 | 1605 | get_cpu_address_sizes(c); |
ebdb2036 | 1606 | cpu_init_topology(c); |
05fb3c19 | 1607 | } |
c3b83598 BP |
1608 | |
1609 | setup_force_cpu_cap(X86_FEATURE_ALWAYS); | |
a89f040f | 1610 | |
4a28bfe3 | 1611 | cpu_set_bug_bits(c); |
99c6fa25 | 1612 | |
ebb1064e | 1613 | sld_setup(c); |
6650cdd9 | 1614 | |
b8b7abae AL |
1615 | #ifdef CONFIG_X86_32 |
1616 | /* | |
1617 | * Regardless of whether PCID is enumerated, the SDM says | |
1618 | * that it can't be enabled in 32-bit mode. | |
1619 | */ | |
1620 | setup_clear_cpu_cap(X86_FEATURE_PCID); | |
1621 | #endif | |
372fddf7 KS |
1622 | |
1623 | /* | |
1624 | * Later in the boot process pgtable_l5_enabled() relies on | |
1625 | * cpu_feature_enabled(X86_FEATURE_LA57). If 5-level paging is not | |
1626 | * enabled by this point we need to clear the feature bit to avoid | |
1627 | * false-positives at the later stage. | |
1628 | * | |
1629 | * pgtable_l5_enabled() can be false here for several reasons: | |
1630 | * - 5-level paging is disabled compile-time; | |
1631 | * - it's 32-bit kernel; | |
1632 | * - machine doesn't support 5-level paging; | |
1633 | * - user specified 'no5lvl' in kernel command line. | |
1634 | */ | |
1635 | if (!pgtable_l5_enabled()) | |
1636 | setup_clear_cpu_cap(X86_FEATURE_LA57); | |
8990cac6 | 1637 | |
9b3661cd | 1638 | detect_nopl(); |
d7cd5611 RR |
1639 | } |
1640 | ||
9d31d35b YL |
1641 | void __init early_cpu_init(void) |
1642 | { | |
02dde8b4 | 1643 | const struct cpu_dev *const *cdev; |
10a434fc YL |
1644 | int count = 0; |
1645 | ||
ac23f253 | 1646 | #ifdef CONFIG_PROCESSOR_SELECT |
1b74dde7 | 1647 | pr_info("KERNEL supported cpus:\n"); |
31c997ca IM |
1648 | #endif |
1649 | ||
10a434fc | 1650 | for (cdev = __x86_cpu_dev_start; cdev < __x86_cpu_dev_end; cdev++) { |
02dde8b4 | 1651 | const struct cpu_dev *cpudev = *cdev; |
9d31d35b | 1652 | |
10a434fc YL |
1653 | if (count >= X86_VENDOR_NUM) |
1654 | break; | |
1655 | cpu_devs[count] = cpudev; | |
1656 | count++; | |
1657 | ||
ac23f253 | 1658 | #ifdef CONFIG_PROCESSOR_SELECT |
31c997ca IM |
1659 | { |
1660 | unsigned int j; | |
1661 | ||
1662 | for (j = 0; j < 2; j++) { | |
1663 | if (!cpudev->c_ident[j]) | |
1664 | continue; | |
1b74dde7 | 1665 | pr_info(" %s %s\n", cpudev->c_vendor, |
31c997ca IM |
1666 | cpudev->c_ident[j]); |
1667 | } | |
10a434fc | 1668 | } |
0388423d | 1669 | #endif |
10a434fc | 1670 | } |
9d31d35b | 1671 | early_identify_cpu(&boot_cpu_data); |
d7cd5611 | 1672 | } |
093af8d7 | 1673 | |
415de440 | 1674 | static bool detect_null_seg_behavior(void) |
7a5d6704 | 1675 | { |
58a5aac5 | 1676 | /* |
7a5d6704 AL |
1677 | * Empirically, writing zero to a segment selector on AMD does |
1678 | * not clear the base, whereas writing zero to a segment | |
1679 | * selector on Intel does clear the base. Intel's behavior | |
1680 | * allows slightly faster context switches in the common case | |
1681 | * where GS is unused by the prev and next threads. | |
58a5aac5 | 1682 | * |
7a5d6704 | 1683 | * Since neither vendor documents this anywhere that I can see, |
d9f6e12f | 1684 | * detect it directly instead of hard-coding the choice by |
7a5d6704 AL |
1685 | * vendor. |
1686 | * | |
1687 | * I've designated AMD's behavior as the "bug" because it's | |
1688 | * counterintuitive and less friendly. | |
58a5aac5 | 1689 | */ |
7a5d6704 AL |
1690 | |
1691 | unsigned long old_base, tmp; | |
1692 | rdmsrl(MSR_FS_BASE, old_base); | |
1693 | wrmsrl(MSR_FS_BASE, 1); | |
1694 | loadsegment(fs, 0); | |
1695 | rdmsrl(MSR_FS_BASE, tmp); | |
7a5d6704 | 1696 | wrmsrl(MSR_FS_BASE, old_base); |
415de440 JM |
1697 | return tmp == 0; |
1698 | } | |
1699 | ||
1700 | void check_null_seg_clears_base(struct cpuinfo_x86 *c) | |
1701 | { | |
1702 | /* BUG_NULL_SEG is only relevant with 64bit userspace */ | |
1703 | if (!IS_ENABLED(CONFIG_X86_64)) | |
1704 | return; | |
1705 | ||
5b909d4a | 1706 | if (cpu_has(c, X86_FEATURE_NULL_SEL_CLR_BASE)) |
415de440 JM |
1707 | return; |
1708 | ||
1709 | /* | |
1710 | * CPUID bit above wasn't set. If this kernel is still running | |
1711 | * as a HV guest, then the HV has decided not to advertize | |
1712 | * that CPUID bit for whatever reason. For example, one | |
1713 | * member of the migration pool might be vulnerable. Which | |
1714 | * means, the bug is present: set the BUG flag and return. | |
1715 | */ | |
1716 | if (cpu_has(c, X86_FEATURE_HYPERVISOR)) { | |
1717 | set_cpu_bug(c, X86_BUG_NULL_SEG); | |
1718 | return; | |
1719 | } | |
1720 | ||
1721 | /* | |
1722 | * Zen2 CPUs also have this behaviour, but no CPUID bit. | |
1723 | * 0x18 is the respective family for Hygon. | |
1724 | */ | |
1725 | if ((c->x86 == 0x17 || c->x86 == 0x18) && | |
1726 | detect_null_seg_behavior()) | |
1727 | return; | |
1728 | ||
1729 | /* All the remaining ones are affected */ | |
1730 | set_cpu_bug(c, X86_BUG_NULL_SEG); | |
d7cd5611 RR |
1731 | } |
1732 | ||
148f9bb8 | 1733 | static void generic_identify(struct cpuinfo_x86 *c) |
1da177e4 | 1734 | { |
aef93c8b | 1735 | c->extended_cpuid_level = 0; |
1da177e4 | 1736 | |
3da99c97 | 1737 | if (!have_cpuid_p()) |
aef93c8b | 1738 | identify_cpu_without_cpuid(c); |
1d67953f | 1739 | |
aef93c8b | 1740 | /* cyrix could have cpuid enabled via c_identify()*/ |
a9853dd6 | 1741 | if (!have_cpuid_p()) |
aef93c8b | 1742 | return; |
1da177e4 | 1743 | |
3da99c97 | 1744 | cpu_detect(c); |
1da177e4 | 1745 | |
3da99c97 | 1746 | get_cpu_vendor(c); |
1da177e4 | 1747 | |
3da99c97 | 1748 | get_cpu_cap(c); |
1da177e4 | 1749 | |
d94a155c KS |
1750 | get_cpu_address_sizes(c); |
1751 | ||
1b05d60d | 1752 | get_model_name(c); /* Default name */ |
1da177e4 | 1753 | |
0230bb03 AL |
1754 | /* |
1755 | * ESPFIX is a strange bug. All real CPUs have it. Paravirt | |
1756 | * systems that run Linux at CPL > 0 may or may not have the | |
1757 | * issue, but, even if they have the issue, there's absolutely | |
1758 | * nothing we can do about it because we can't use the real IRET | |
1759 | * instruction. | |
1760 | * | |
1761 | * NB: For the time being, only 32-bit kernels support | |
1762 | * X86_BUG_ESPFIX as such. 64-bit kernels directly choose | |
1763 | * whether to apply espfix using paravirt hooks. If any | |
1764 | * non-paravirt system ever shows up that does *not* have the | |
1765 | * ESPFIX issue, we can change this. | |
1766 | */ | |
1767 | #ifdef CONFIG_X86_32 | |
0230bb03 | 1768 | set_cpu_bug(c, X86_BUG_ESPFIX); |
0230bb03 | 1769 | #endif |
1da177e4 | 1770 | } |
1da177e4 LT |
1771 | |
1772 | /* | |
1773 | * This does the hard work of actually picking apart the CPU stuff... | |
1774 | */ | |
148f9bb8 | 1775 | static void identify_cpu(struct cpuinfo_x86 *c) |
1da177e4 LT |
1776 | { |
1777 | int i; | |
1778 | ||
1779 | c->loops_per_jiffy = loops_per_jiffy; | |
24dbc600 | 1780 | c->x86_cache_size = 0; |
1da177e4 | 1781 | c->x86_vendor = X86_VENDOR_UNKNOWN; |
b399151c | 1782 | c->x86_model = c->x86_stepping = 0; /* So far unknown... */ |
1da177e4 LT |
1783 | c->x86_vendor_id[0] = '\0'; /* Unset */ |
1784 | c->x86_model_id[0] = '\0'; /* Unset */ | |
11fdd252 | 1785 | #ifdef CONFIG_X86_64 |
102bbe3a | 1786 | c->x86_clflush_size = 64; |
13c6c532 JB |
1787 | c->x86_phys_bits = 36; |
1788 | c->x86_virt_bits = 48; | |
102bbe3a YL |
1789 | #else |
1790 | c->cpuid_level = -1; /* CPUID not detected */ | |
770d132f | 1791 | c->x86_clflush_size = 32; |
13c6c532 JB |
1792 | c->x86_phys_bits = 32; |
1793 | c->x86_virt_bits = 32; | |
102bbe3a YL |
1794 | #endif |
1795 | c->x86_cache_alignment = c->x86_clflush_size; | |
0e96f31e | 1796 | memset(&c->x86_capability, 0, sizeof(c->x86_capability)); |
b47ce1fe SC |
1797 | #ifdef CONFIG_X86_VMX_FEATURE_NAMES |
1798 | memset(&c->vmx_capability, 0, sizeof(c->vmx_capability)); | |
1799 | #endif | |
1da177e4 | 1800 | |
1da177e4 LT |
1801 | generic_identify(c); |
1802 | ||
ebdb2036 TG |
1803 | cpu_parse_topology(c); |
1804 | ||
3898534d | 1805 | if (this_cpu->c_identify) |
1da177e4 LT |
1806 | this_cpu->c_identify(c); |
1807 | ||
6a6256f9 | 1808 | /* Clear/Set all flags overridden by options, after probe */ |
8bf1ebca | 1809 | apply_forced_caps(c); |
2759c328 | 1810 | |
04c30245 BPA |
1811 | /* |
1812 | * Set default APIC and TSC_DEADLINE MSR fencing flag. AMD and | |
1813 | * Hygon will clear it in ->c_init() below. | |
1814 | */ | |
1815 | set_cpu_cap(c, X86_FEATURE_APIC_MSRS_FENCE); | |
1816 | ||
1da177e4 LT |
1817 | /* |
1818 | * Vendor-specific initialization. In this section we | |
1819 | * canonicalize the feature flags, meaning if there are | |
1820 | * features a certain CPU supports which CPUID doesn't | |
1821 | * tell us, CPUID claiming incorrect flags, or other bugs, | |
1822 | * we handle them here. | |
1823 | * | |
1824 | * At the end of this section, c->x86_capability better | |
1825 | * indicate the features this CPU genuinely supports! | |
1826 | */ | |
1827 | if (this_cpu->c_init) | |
1828 | this_cpu->c_init(c); | |
1829 | ||
1830 | /* Disable the PN if appropriate */ | |
1831 | squash_the_stupid_serial_number(c); | |
1832 | ||
aa35f896 | 1833 | /* Set up SMEP/SMAP/UMIP */ |
b2cc2a07 PA |
1834 | setup_smep(c); |
1835 | setup_smap(c); | |
aa35f896 | 1836 | setup_umip(c); |
b2cc2a07 | 1837 | |
dd649bd0 | 1838 | /* Enable FSGSBASE instructions if available. */ |
742c45c3 | 1839 | if (cpu_has(c, X86_FEATURE_FSGSBASE)) { |
b745cfba | 1840 | cr4_set_bits(X86_CR4_FSGSBASE); |
742c45c3 AK |
1841 | elf_hwcap2 |= HWCAP2_FSGSBASE; |
1842 | } | |
dd649bd0 | 1843 | |
1da177e4 | 1844 | /* |
0f3fa48a IM |
1845 | * The vendor-specific functions might have changed features. |
1846 | * Now we do "generic changes." | |
1da177e4 LT |
1847 | */ |
1848 | ||
b38b0665 PA |
1849 | /* Filter out anything that depends on CPUID levels we don't have */ |
1850 | filter_cpuid_features(c, true); | |
1851 | ||
1da177e4 | 1852 | /* If the model name is still unset, do table lookup. */ |
34048c9e | 1853 | if (!c->x86_model_id[0]) { |
02dde8b4 | 1854 | const char *p; |
1da177e4 | 1855 | p = table_lookup_model(c); |
34048c9e | 1856 | if (p) |
1da177e4 LT |
1857 | strcpy(c->x86_model_id, p); |
1858 | else | |
1859 | /* Last resort... */ | |
1860 | sprintf(c->x86_model_id, "%02x/%02x", | |
54a20f8c | 1861 | c->x86, c->x86_model); |
1da177e4 LT |
1862 | } |
1863 | ||
49d859d7 | 1864 | x86_init_rdrand(c); |
06976945 | 1865 | setup_pku(c); |
991625f3 | 1866 | setup_cet(c); |
3e0c3737 YL |
1867 | |
1868 | /* | |
6a6256f9 | 1869 | * Clear/Set all flags overridden by options, need do it |
3e0c3737 YL |
1870 | * before following smp all cpus cap AND. |
1871 | */ | |
8bf1ebca | 1872 | apply_forced_caps(c); |
3e0c3737 | 1873 | |
1da177e4 LT |
1874 | /* |
1875 | * On SMP, boot_cpu_data holds the common feature set between | |
1876 | * all CPUs; so make sure that we indicate which features are | |
1877 | * common between the CPUs. The first time this routine gets | |
1878 | * executed, c == &boot_cpu_data. | |
1879 | */ | |
34048c9e | 1880 | if (c != &boot_cpu_data) { |
1da177e4 | 1881 | /* AND the already accumulated flags with these */ |
9d31d35b | 1882 | for (i = 0; i < NCAPINTS; i++) |
1da177e4 | 1883 | boot_cpu_data.x86_capability[i] &= c->x86_capability[i]; |
65fc985b BP |
1884 | |
1885 | /* OR, i.e. replicate the bug flags */ | |
1886 | for (i = NCAPINTS; i < NCAPINTS + NBUGINTS; i++) | |
1887 | c->x86_capability[i] |= boot_cpu_data.x86_capability[i]; | |
1da177e4 LT |
1888 | } |
1889 | ||
0dcab41d TL |
1890 | ppin_init(c); |
1891 | ||
1da177e4 | 1892 | /* Init Machine Check Exception if available. */ |
5e09954a | 1893 | mcheck_cpu_init(c); |
30d432df | 1894 | |
de2d9445 | 1895 | #ifdef CONFIG_NUMA |
102bbe3a YL |
1896 | numa_add_cpu(smp_processor_id()); |
1897 | #endif | |
a6c4e076 | 1898 | } |
31ab269a | 1899 | |
8b6c0ab1 IM |
1900 | /* |
1901 | * Set up the CPU state needed to execute SYSENTER/SYSEXIT instructions | |
1902 | * on 32-bit kernels: | |
1903 | */ | |
cfda7bb9 AL |
1904 | #ifdef CONFIG_X86_32 |
1905 | void enable_sep_cpu(void) | |
1906 | { | |
8b6c0ab1 IM |
1907 | struct tss_struct *tss; |
1908 | int cpu; | |
cfda7bb9 | 1909 | |
b3edfda4 BP |
1910 | if (!boot_cpu_has(X86_FEATURE_SEP)) |
1911 | return; | |
1912 | ||
8b6c0ab1 | 1913 | cpu = get_cpu(); |
c482feef | 1914 | tss = &per_cpu(cpu_tss_rw, cpu); |
8b6c0ab1 | 1915 | |
8b6c0ab1 | 1916 | /* |
cf9328cc AL |
1917 | * We cache MSR_IA32_SYSENTER_CS's value in the TSS's ss1 field -- |
1918 | * see the big comment in struct x86_hw_tss's definition. | |
8b6c0ab1 | 1919 | */ |
cfda7bb9 AL |
1920 | |
1921 | tss->x86_tss.ss1 = __KERNEL_CS; | |
8b6c0ab1 | 1922 | wrmsr(MSR_IA32_SYSENTER_CS, tss->x86_tss.ss1, 0); |
4fe2d8b1 | 1923 | wrmsr(MSR_IA32_SYSENTER_ESP, (unsigned long)(cpu_entry_stack(cpu) + 1), 0); |
4c8cd0c5 | 1924 | wrmsr(MSR_IA32_SYSENTER_EIP, (unsigned long)entry_SYSENTER_32, 0); |
8b6c0ab1 | 1925 | |
cfda7bb9 AL |
1926 | put_cpu(); |
1927 | } | |
e04d645f GC |
1928 | #endif |
1929 | ||
3ba3fdfe | 1930 | static __init void identify_boot_cpu(void) |
a6c4e076 JF |
1931 | { |
1932 | identify_cpu(&boot_cpu_data); | |
991625f3 PZ |
1933 | if (HAS_KERNEL_IBT && cpu_feature_enabled(X86_FEATURE_IBT)) |
1934 | pr_info("CET detected: Indirect Branch Tracking enabled\n"); | |
102bbe3a | 1935 | #ifdef CONFIG_X86_32 |
6fe940d6 | 1936 | enable_sep_cpu(); |
102bbe3a | 1937 | #endif |
5b556332 | 1938 | cpu_detect_tlb(&boot_cpu_data); |
873d50d5 | 1939 | setup_cr_pinning(); |
95c5824f PG |
1940 | |
1941 | tsx_init(); | |
765a0542 | 1942 | tdx_init(); |
92cbbadf | 1943 | lkgs_init(); |
a6c4e076 | 1944 | } |
3b520b23 | 1945 | |
148f9bb8 | 1946 | void identify_secondary_cpu(struct cpuinfo_x86 *c) |
a6c4e076 JF |
1947 | { |
1948 | BUG_ON(c == &boot_cpu_data); | |
1949 | identify_cpu(c); | |
102bbe3a | 1950 | #ifdef CONFIG_X86_32 |
a6c4e076 | 1951 | enable_sep_cpu(); |
102bbe3a | 1952 | #endif |
77243971 | 1953 | x86_spec_ctrl_setup_ap(); |
7e5b3c26 | 1954 | update_srbds_msr(); |
8974eb58 DS |
1955 | if (boot_cpu_has_bug(X86_BUG_GDS)) |
1956 | update_gds_msr(); | |
400331f8 PG |
1957 | |
1958 | tsx_ap_init(); | |
1da177e4 LT |
1959 | } |
1960 | ||
148f9bb8 | 1961 | void print_cpu_info(struct cpuinfo_x86 *c) |
1da177e4 | 1962 | { |
02dde8b4 | 1963 | const char *vendor = NULL; |
1da177e4 | 1964 | |
0f3fa48a | 1965 | if (c->x86_vendor < X86_VENDOR_NUM) { |
1da177e4 | 1966 | vendor = this_cpu->c_vendor; |
0f3fa48a IM |
1967 | } else { |
1968 | if (c->cpuid_level >= 0) | |
1969 | vendor = c->x86_vendor_id; | |
1970 | } | |
1da177e4 | 1971 | |
bd32a8cf | 1972 | if (vendor && !strstr(c->x86_model_id, vendor)) |
1b74dde7 | 1973 | pr_cont("%s ", vendor); |
1da177e4 | 1974 | |
9d31d35b | 1975 | if (c->x86_model_id[0]) |
1b74dde7 | 1976 | pr_cont("%s", c->x86_model_id); |
1da177e4 | 1977 | else |
1b74dde7 | 1978 | pr_cont("%d86", c->x86); |
1da177e4 | 1979 | |
1b74dde7 | 1980 | pr_cont(" (family: 0x%x, model: 0x%x", c->x86, c->x86_model); |
924e101a | 1981 | |
b399151c JZ |
1982 | if (c->x86_stepping || c->cpuid_level >= 0) |
1983 | pr_cont(", stepping: 0x%x)\n", c->x86_stepping); | |
1da177e4 | 1984 | else |
1b74dde7 | 1985 | pr_cont(")\n"); |
1da177e4 LT |
1986 | } |
1987 | ||
0c2a3913 | 1988 | /* |
ce38f038 TG |
1989 | * clearcpuid= was already parsed in cpu_parse_early_param(). This dummy |
1990 | * function prevents it from becoming an environment variable for init. | |
0c2a3913 AK |
1991 | */ |
1992 | static __init int setup_clearcpuid(char *arg) | |
ac72e788 | 1993 | { |
ac72e788 AK |
1994 | return 1; |
1995 | } | |
0c2a3913 | 1996 | __setup("clearcpuid=", setup_clearcpuid); |
ac72e788 | 1997 | |
e57ef2ed TG |
1998 | DEFINE_PER_CPU_ALIGNED(struct pcpu_hot, pcpu_hot) = { |
1999 | .current_task = &init_task, | |
64701838 | 2000 | .preempt_count = INIT_PREEMPT_COUNT, |
c063a217 | 2001 | .top_of_stack = TOP_OF_INIT_STACK, |
e57ef2ed TG |
2002 | }; |
2003 | EXPORT_PER_CPU_SYMBOL(pcpu_hot); | |
ed2f752e | 2004 | EXPORT_PER_CPU_SYMBOL(const_pcpu_hot); |
e57ef2ed | 2005 | |
d5494d4f | 2006 | #ifdef CONFIG_X86_64 |
e6401c13 AL |
2007 | DEFINE_PER_CPU_FIRST(struct fixed_percpu_data, |
2008 | fixed_percpu_data) __aligned(PAGE_SIZE) __visible; | |
2009 | EXPORT_PER_CPU_SYMBOL_GPL(fixed_percpu_data); | |
0f3fa48a | 2010 | |
9c7e2634 AK |
2011 | static void wrmsrl_cstar(unsigned long val) |
2012 | { | |
2013 | /* | |
2014 | * Intel CPUs do not support 32-bit SYSCALL. Writing to MSR_CSTAR | |
2015 | * is so far ignored by the CPU, but raises a #VE trap in a TDX | |
2016 | * guest. Avoid the pointless write on all Intel CPUs. | |
2017 | */ | |
2018 | if (boot_cpu_data.x86_vendor != X86_VENDOR_INTEL) | |
2019 | wrmsrl(MSR_CSTAR, val); | |
2020 | } | |
2021 | ||
530dce27 | 2022 | static inline void idt_syscall_init(void) |
1da177e4 | 2023 | { |
bf904d27 | 2024 | wrmsrl(MSR_LSTAR, (unsigned long)entry_SYSCALL_64); |
d56fe4bf | 2025 | |
61382281 NB |
2026 | if (ia32_enabled()) { |
2027 | wrmsrl_cstar((unsigned long)entry_SYSCALL_compat); | |
2028 | /* | |
2029 | * This only works on Intel CPUs. | |
2030 | * On AMD CPUs these MSRs are 32-bit, CPU truncates MSR_IA32_SYSENTER_EIP. | |
2031 | * This does not cause SYSENTER to jump to the wrong location, because | |
2032 | * AMD doesn't allow SYSENTER in long mode (either 32- or 64-bit). | |
2033 | */ | |
2034 | wrmsrl_safe(MSR_IA32_SYSENTER_CS, (u64)__KERNEL_CS); | |
2035 | wrmsrl_safe(MSR_IA32_SYSENTER_ESP, | |
2036 | (unsigned long)(cpu_entry_stack(smp_processor_id()) + 1)); | |
2037 | wrmsrl_safe(MSR_IA32_SYSENTER_EIP, (u64)entry_SYSENTER_compat); | |
2038 | } else { | |
2039 | wrmsrl_cstar((unsigned long)entry_SYSCALL32_ignore); | |
2040 | wrmsrl_safe(MSR_IA32_SYSENTER_CS, (u64)GDT_ENTRY_INVALID_SEG); | |
2041 | wrmsrl_safe(MSR_IA32_SYSENTER_ESP, 0ULL); | |
2042 | wrmsrl_safe(MSR_IA32_SYSENTER_EIP, 0ULL); | |
2043 | } | |
03ae5768 | 2044 | |
6de4ac1d PAI |
2045 | /* |
2046 | * Flags to clear on syscall; clear as much as possible | |
2047 | * to minimize user space-kernel interference. | |
2048 | */ | |
d5494d4f | 2049 | wrmsrl(MSR_SYSCALL_MASK, |
6de4ac1d PAI |
2050 | X86_EFLAGS_CF|X86_EFLAGS_PF|X86_EFLAGS_AF| |
2051 | X86_EFLAGS_ZF|X86_EFLAGS_SF|X86_EFLAGS_TF| | |
2052 | X86_EFLAGS_IF|X86_EFLAGS_DF|X86_EFLAGS_OF| | |
2053 | X86_EFLAGS_IOPL|X86_EFLAGS_NT|X86_EFLAGS_RF| | |
2054 | X86_EFLAGS_AC|X86_EFLAGS_ID); | |
1da177e4 | 2055 | } |
62111195 | 2056 | |
530dce27 XL |
2057 | /* May not be marked __init: used by software suspend */ |
2058 | void syscall_init(void) | |
2059 | { | |
2060 | /* The default user and kernel segments */ | |
2061 | wrmsr(MSR_STAR, 0, (__USER32_CS << 16) | __KERNEL_CS); | |
2062 | ||
208d8c79 PAI |
2063 | /* |
2064 | * Except the IA32_STAR MSR, there is NO need to setup SYSCALL and | |
2065 | * SYSENTER MSRs for FRED, because FRED uses the ring 3 FRED | |
2066 | * entrypoint for SYSCALL and SYSENTER, and ERETU is the only legit | |
2067 | * instruction to return to ring 3 (both sysexit and sysret cause | |
2068 | * #UD when FRED is enabled). | |
2069 | */ | |
2070 | if (!cpu_feature_enabled(X86_FEATURE_FRED)) | |
2071 | idt_syscall_init(); | |
530dce27 XL |
2072 | } |
2073 | ||
0f3fa48a | 2074 | #else /* CONFIG_X86_64 */ |
d5494d4f | 2075 | |
050e9baa | 2076 | #ifdef CONFIG_STACKPROTECTOR |
3fb0fdb3 AL |
2077 | DEFINE_PER_CPU(unsigned long, __stack_chk_guard); |
2078 | EXPORT_PER_CPU_SYMBOL(__stack_chk_guard); | |
60a5317f | 2079 | #endif |
d5494d4f | 2080 | |
0f3fa48a | 2081 | #endif /* CONFIG_X86_64 */ |
c5413fbe | 2082 | |
9766cdbc JSR |
2083 | /* |
2084 | * Clear all 6 debug registers: | |
2085 | */ | |
2086 | static void clear_all_debug_regs(void) | |
2087 | { | |
2088 | int i; | |
2089 | ||
2090 | for (i = 0; i < 8; i++) { | |
2091 | /* Ignore db4, db5 */ | |
2092 | if ((i == 4) || (i == 5)) | |
2093 | continue; | |
2094 | ||
2095 | set_debugreg(0, i); | |
2096 | } | |
2097 | } | |
c5413fbe | 2098 | |
0bb9fef9 JW |
2099 | #ifdef CONFIG_KGDB |
2100 | /* | |
2101 | * Restore debug regs if using kgdbwait and you have a kernel debugger | |
2102 | * connection established. | |
2103 | */ | |
2104 | static void dbg_restore_debug_regs(void) | |
2105 | { | |
2106 | if (unlikely(kgdb_connected && arch_kgdb_ops.correct_hw_break)) | |
2107 | arch_kgdb_ops.correct_hw_break(); | |
2108 | } | |
2109 | #else /* ! CONFIG_KGDB */ | |
2110 | #define dbg_restore_debug_regs() | |
2111 | #endif /* ! CONFIG_KGDB */ | |
2112 | ||
505b7899 | 2113 | static inline void setup_getcpu(int cpu) |
b2e2ba57 | 2114 | { |
22245bdf | 2115 | unsigned long cpudata = vdso_encode_cpunode(cpu, early_cpu_to_node(cpu)); |
b2e2ba57 CB |
2116 | struct desc_struct d = { }; |
2117 | ||
b6b4fbd9 | 2118 | if (boot_cpu_has(X86_FEATURE_RDTSCP) || boot_cpu_has(X86_FEATURE_RDPID)) |
fc48a6d1 | 2119 | wrmsr(MSR_TSC_AUX, cpudata, 0); |
b2e2ba57 CB |
2120 | |
2121 | /* Store CPU and node number in limit. */ | |
2122 | d.limit0 = cpudata; | |
2123 | d.limit1 = cpudata >> 16; | |
2124 | ||
2125 | d.type = 5; /* RO data, expand down, accessed */ | |
2126 | d.dpl = 3; /* Visible to user code */ | |
2127 | d.s = 1; /* Not a system segment */ | |
2128 | d.p = 1; /* Present */ | |
2129 | d.d = 1; /* 32-bit */ | |
2130 | ||
22245bdf | 2131 | write_gdt_entry(get_cpu_gdt_rw(cpu), GDT_ENTRY_CPUNODE, &d, DESCTYPE_S); |
b2e2ba57 | 2132 | } |
505b7899 | 2133 | |
717cce3b | 2134 | #ifdef CONFIG_X86_64 |
505b7899 TG |
2135 | static inline void tss_setup_ist(struct tss_struct *tss) |
2136 | { | |
2137 | /* Set up the per-CPU TSS IST stacks */ | |
2138 | tss->x86_tss.ist[IST_INDEX_DF] = __this_cpu_ist_top_va(DF); | |
2139 | tss->x86_tss.ist[IST_INDEX_NMI] = __this_cpu_ist_top_va(NMI); | |
2140 | tss->x86_tss.ist[IST_INDEX_DB] = __this_cpu_ist_top_va(DB); | |
2141 | tss->x86_tss.ist[IST_INDEX_MCE] = __this_cpu_ist_top_va(MCE); | |
02772fb9 JR |
2142 | /* Only mapped when SEV-ES is active */ |
2143 | tss->x86_tss.ist[IST_INDEX_VC] = __this_cpu_ist_top_va(VC); | |
505b7899 | 2144 | } |
505b7899 | 2145 | #else /* CONFIG_X86_64 */ |
505b7899 | 2146 | static inline void tss_setup_ist(struct tss_struct *tss) { } |
505b7899 | 2147 | #endif /* !CONFIG_X86_64 */ |
b2e2ba57 | 2148 | |
111e7b15 TG |
2149 | static inline void tss_setup_io_bitmap(struct tss_struct *tss) |
2150 | { | |
2151 | tss->x86_tss.io_bitmap_base = IO_BITMAP_OFFSET_INVALID; | |
2152 | ||
2153 | #ifdef CONFIG_X86_IOPL_IOPERM | |
2154 | tss->io_bitmap.prev_max = 0; | |
2155 | tss->io_bitmap.prev_sequence = 0; | |
2156 | memset(tss->io_bitmap.bitmap, 0xff, sizeof(tss->io_bitmap.bitmap)); | |
2157 | /* | |
2158 | * Invalidate the extra array entry past the end of the all | |
2159 | * permission bitmap as required by the hardware. | |
2160 | */ | |
2161 | tss->io_bitmap.mapall[IO_BITMAP_LONGS] = ~0UL; | |
b2e2ba57 | 2162 | #endif |
111e7b15 | 2163 | } |
b2e2ba57 | 2164 | |
520d0308 JR |
2165 | /* |
2166 | * Setup everything needed to handle exceptions from the IDT, including the IST | |
2167 | * exceptions which use paranoid_entry(). | |
2168 | */ | |
2169 | void cpu_init_exception_handling(void) | |
2170 | { | |
2171 | struct tss_struct *tss = this_cpu_ptr(&cpu_tss_rw); | |
2172 | int cpu = raw_smp_processor_id(); | |
2173 | ||
2174 | /* paranoid_entry() gets the CPU number from the GDT */ | |
2175 | setup_getcpu(cpu); | |
2176 | ||
208d8c79 PAI |
2177 | /* For IDT mode, IST vectors need to be set in TSS. */ |
2178 | if (!cpu_feature_enabled(X86_FEATURE_FRED)) | |
2179 | tss_setup_ist(tss); | |
520d0308 JR |
2180 | tss_setup_io_bitmap(tss); |
2181 | set_tss_desc(cpu, &get_cpu_entry_area(cpu)->tss.x86_tss); | |
2182 | ||
2183 | load_TR_desc(); | |
2184 | ||
95d33bfa BS |
2185 | /* GHCB needs to be setup to handle #VC. */ |
2186 | setup_ghcb(); | |
2187 | ||
208d8c79 PAI |
2188 | if (cpu_feature_enabled(X86_FEATURE_FRED)) |
2189 | cpu_init_fred_exceptions(); | |
2190 | else | |
2191 | load_current_idt(); | |
520d0308 JR |
2192 | } |
2193 | ||
d2cbcc49 RR |
2194 | /* |
2195 | * cpu_init() initializes state that is per-CPU. Some data is already | |
b1efd0ff BP |
2196 | * initialized (naturally) in the bootstrap process, such as the GDT. We |
2197 | * reload it nevertheless, this function acts as a 'CPU state barrier', | |
2198 | * nothing should get across. | |
d2cbcc49 | 2199 | */ |
148f9bb8 | 2200 | void cpu_init(void) |
1ba76586 | 2201 | { |
505b7899 | 2202 | struct task_struct *cur = current; |
f6ef7322 | 2203 | int cpu = raw_smp_processor_id(); |
1ba76586 | 2204 | |
e7a22c1e | 2205 | #ifdef CONFIG_NUMA |
27fd185f | 2206 | if (this_cpu_read(numa_node) == 0 && |
e534c7c5 LS |
2207 | early_cpu_to_node(cpu) != NUMA_NO_NODE) |
2208 | set_numa_node(early_cpu_to_node(cpu)); | |
e7a22c1e | 2209 | #endif |
2eaad1fd | 2210 | pr_debug("Initializing CPU#%d\n", cpu); |
1ba76586 | 2211 | |
505b7899 TG |
2212 | if (IS_ENABLED(CONFIG_X86_64) || cpu_feature_enabled(X86_FEATURE_VME) || |
2213 | boot_cpu_has(X86_FEATURE_TSC) || boot_cpu_has(X86_FEATURE_DE)) | |
2214 | cr4_clear_bits(X86_CR4_VME|X86_CR4_PVI|X86_CR4_TSD|X86_CR4_DE); | |
1ba76586 | 2215 | |
505b7899 TG |
2216 | if (IS_ENABLED(CONFIG_X86_64)) { |
2217 | loadsegment(fs, 0); | |
2218 | memset(cur->thread.tls_array, 0, GDT_ENTRY_TLS_ENTRIES * 8); | |
2219 | syscall_init(); | |
1ba76586 | 2220 | |
505b7899 TG |
2221 | wrmsrl(MSR_FS_BASE, 0); |
2222 | wrmsrl(MSR_KERNEL_GS_BASE, 0); | |
2223 | barrier(); | |
1ba76586 | 2224 | |
505b7899 | 2225 | x2apic_setup(); |
43650dcf JP |
2226 | |
2227 | intel_posted_msi_init(); | |
1ba76586 YL |
2228 | } |
2229 | ||
f1f10076 | 2230 | mmgrab(&init_mm); |
505b7899 TG |
2231 | cur->active_mm = &init_mm; |
2232 | BUG_ON(cur->mm); | |
72c0098d | 2233 | initialize_tlbstate_and_flush(); |
505b7899 | 2234 | enter_lazy_tlb(&init_mm, cur); |
1ba76586 | 2235 | |
505b7899 TG |
2236 | /* |
2237 | * sp0 points to the entry trampoline stack regardless of what task | |
2238 | * is running. | |
2239 | */ | |
4fe2d8b1 | 2240 | load_sp0((unsigned long)(cpu_entry_stack(cpu) + 1)); |
20bb8344 | 2241 | |
37868fe1 | 2242 | load_mm_ldt(&init_mm); |
1ba76586 | 2243 | |
0bb9fef9 JW |
2244 | clear_all_debug_regs(); |
2245 | dbg_restore_debug_regs(); | |
1ba76586 | 2246 | |
dc4e0021 | 2247 | doublefault_init_cpu_tss(); |
505b7899 | 2248 | |
1ba76586 YL |
2249 | if (is_uv_system()) |
2250 | uv_cpu_init(); | |
69218e47 | 2251 | |
69218e47 | 2252 | load_fixmap_gdt(cpu); |
1ba76586 YL |
2253 | } |
2254 | ||
a77a94f8 | 2255 | #ifdef CONFIG_MICROCODE_LATE_LOADING |
c0dd9245 AR |
2256 | /** |
2257 | * store_cpu_caps() - Store a snapshot of CPU capabilities | |
2258 | * @curr_info: Pointer where to store it | |
2259 | * | |
2260 | * Returns: None | |
2261 | */ | |
2262 | void store_cpu_caps(struct cpuinfo_x86 *curr_info) | |
2263 | { | |
2264 | /* Reload CPUID max function as it might've changed. */ | |
2265 | curr_info->cpuid_level = cpuid_eax(0); | |
2266 | ||
2267 | /* Copy all capability leafs and pick up the synthetic ones. */ | |
2268 | memcpy(&curr_info->x86_capability, &boot_cpu_data.x86_capability, | |
2269 | sizeof(curr_info->x86_capability)); | |
2270 | ||
2271 | /* Get the hardware CPUID leafs */ | |
2272 | get_cpu_cap(curr_info); | |
2273 | } | |
2274 | ||
ab31c744 AR |
2275 | /** |
2276 | * microcode_check() - Check if any CPU capabilities changed after an update. | |
2277 | * @prev_info: CPU capabilities stored before an update. | |
2278 | * | |
1008c52c | 2279 | * The microcode loader calls this upon late microcode load to recheck features, |
80347cd5 | 2280 | * only when microcode has been updated. Caller holds and CPU hotplug lock. |
ab31c744 AR |
2281 | * |
2282 | * Return: None | |
1008c52c | 2283 | */ |
ab31c744 | 2284 | void microcode_check(struct cpuinfo_x86 *prev_info) |
1008c52c | 2285 | { |
c0dd9245 | 2286 | struct cpuinfo_x86 curr_info; |
42ca8082 | 2287 | |
1008c52c | 2288 | perf_check_microcode(); |
42ca8082 | 2289 | |
522b1d69 BPA |
2290 | amd_check_microcode(); |
2291 | ||
c0dd9245 | 2292 | store_cpu_caps(&curr_info); |
42ca8082 | 2293 | |
c0dd9245 | 2294 | if (!memcmp(&prev_info->x86_capability, &curr_info.x86_capability, |
ab31c744 | 2295 | sizeof(prev_info->x86_capability))) |
42ca8082 BP |
2296 | return; |
2297 | ||
2298 | pr_warn("x86/CPU: CPU features have changed after loading microcode, but might not take effect.\n"); | |
2299 | pr_warn("x86/CPU: Please consider either early loading through initrd/built-in or a potential BIOS update.\n"); | |
1008c52c | 2300 | } |
a77a94f8 | 2301 | #endif |
9c92374b TG |
2302 | |
2303 | /* | |
2304 | * Invoked from core CPU hotplug code after hotplug operations | |
2305 | */ | |
2306 | void arch_smt_update(void) | |
2307 | { | |
2308 | /* Handle the speculative execution misfeatures */ | |
2309 | cpu_bugs_smt_update(); | |
6a1cb5f5 TG |
2310 | /* Check whether IPI broadcasting can be enabled */ |
2311 | apic_smt_update(); | |
9c92374b | 2312 | } |
7c7077a7 TG |
2313 | |
2314 | void __init arch_cpu_finalize_init(void) | |
2315 | { | |
c90399fb TG |
2316 | struct cpuinfo_x86 *c = this_cpu_ptr(&cpu_info); |
2317 | ||
7c7077a7 TG |
2318 | identify_boot_cpu(); |
2319 | ||
35ce6492 TG |
2320 | select_idle_routine(); |
2321 | ||
7c7077a7 TG |
2322 | /* |
2323 | * identify_boot_cpu() initialized SMT support information, let the | |
2324 | * core code know. | |
2325 | */ | |
8078f4d6 | 2326 | cpu_smt_set_num_threads(__max_threads_per_core, __max_threads_per_core); |
7c7077a7 TG |
2327 | |
2328 | if (!IS_ENABLED(CONFIG_SMP)) { | |
2329 | pr_info("CPU: "); | |
2330 | print_cpu_info(&boot_cpu_data); | |
2331 | } | |
2332 | ||
2333 | cpu_select_mitigations(); | |
2334 | ||
2335 | arch_smt_update(); | |
2336 | ||
2337 | if (IS_ENABLED(CONFIG_X86_32)) { | |
2338 | /* | |
2339 | * Check whether this is a real i386 which is not longer | |
2340 | * supported and fixup the utsname. | |
2341 | */ | |
2342 | if (boot_cpu_data.x86 < 4) | |
2343 | panic("Kernel requires i486+ for 'invlpg' and other features"); | |
2344 | ||
2345 | init_utsname()->machine[1] = | |
2346 | '0' + (boot_cpu_data.x86 > 6 ? 6 : boot_cpu_data.x86); | |
2347 | } | |
2348 | ||
b81fac90 TG |
2349 | /* |
2350 | * Must be before alternatives because it might set or clear | |
2351 | * feature bits. | |
2352 | */ | |
2353 | fpu__init_system(); | |
2354 | fpu__init_cpu(); | |
2355 | ||
c90399fb TG |
2356 | /* |
2357 | * Ensure that access to the per CPU representation has the initial | |
2358 | * boot CPU configuration. | |
2359 | */ | |
2360 | *c = boot_cpu_data; | |
2361 | c->initialized = true; | |
2362 | ||
7c7077a7 TG |
2363 | alternative_instructions(); |
2364 | ||
2365 | if (IS_ENABLED(CONFIG_X86_64)) { | |
2366 | /* | |
2367 | * Make sure the first 2MB area is not mapped by huge pages | |
2368 | * There are typically fixed size MTRRs in there and overlapping | |
2369 | * MTRRs into large pages causes slow downs. | |
2370 | * | |
2371 | * Right now we don't do that with gbpages because there seems | |
2372 | * very little benefit for that case. | |
2373 | */ | |
2374 | if (!direct_gbpages) | |
2375 | set_memory_4k((unsigned long)__va(0), 1); | |
2376 | } else { | |
2377 | fpu__init_check_bugs(); | |
2378 | } | |
439e1757 TG |
2379 | |
2380 | /* | |
2381 | * This needs to be called before any devices perform DMA | |
2382 | * operations that might use the SWIOTLB bounce buffers. It will | |
2383 | * mark the bounce buffers as decrypted so that their usage will | |
2384 | * not cause "plain-text" data to be decrypted when accessed. It | |
2385 | * must be called after late_time_init() so that Hyper-V x86/x64 | |
2386 | * hypercalls work when the SWIOTLB bounce buffers are decrypted. | |
2387 | */ | |
2388 | mem_encrypt_init(); | |
7c7077a7 | 2389 | } |