Xen project Mailing List

Re: [PATCH 14/22] x86/traps: Extend struct cpu_user_regs/cpu_info with FRED fields

From: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>

Date: Thu, 14 Aug 2025 16:07:26 +0100

Autocrypt: addr=andrew.cooper3@xxxxxxxxxx; keydata= xsFNBFLhNn8BEADVhE+Hb8i0GV6mihnnr/uiQQdPF8kUoFzCOPXkf7jQ5sLYeJa0cQi6Penp VtiFYznTairnVsN5J+ujSTIb+OlMSJUWV4opS7WVNnxHbFTPYZVQ3erv7NKc2iVizCRZ2Kxn srM1oPXWRic8BIAdYOKOloF2300SL/bIpeD+x7h3w9B/qez7nOin5NzkxgFoaUeIal12pXSR Q354FKFoy6Vh96gc4VRqte3jw8mPuJQpfws+Pb+swvSf/i1q1+1I4jsRQQh2m6OTADHIqg2E ofTYAEh7R5HfPx0EXoEDMdRjOeKn8+vvkAwhviWXTHlG3R1QkbE5M/oywnZ83udJmi+lxjJ5 YhQ5IzomvJ16H0Bq+TLyVLO/VRksp1VR9HxCzItLNCS8PdpYYz5TC204ViycobYU65WMpzWe LFAGn8jSS25XIpqv0Y9k87dLbctKKA14Ifw2kq5OIVu2FuX+3i446JOa2vpCI9GcjCzi3oHV e00bzYiHMIl0FICrNJU0Kjho8pdo0m2uxkn6SYEpogAy9pnatUlO+erL4LqFUO7GXSdBRbw5 gNt25XTLdSFuZtMxkY3tq8MFss5QnjhehCVPEpE6y9ZjI4XB8ad1G4oBHVGK5LMsvg22PfMJ ISWFSHoF/B5+lHkCKWkFxZ0gZn33ju5n6/FOdEx4B8cMJt+cWwARAQABzSlBbmRyZXcgQ29v cGVyIDxhbmRyZXcuY29vcGVyM0BjaXRyaXguY29tPsLBegQTAQgAJAIbAwULCQgHAwUVCgkI CwUWAgMBAAIeAQIXgAUCWKD95wIZAQAKCRBlw/kGpdefoHbdD/9AIoR3k6fKl+RFiFpyAhvO 59ttDFI7nIAnlYngev2XUR3acFElJATHSDO0ju+hqWqAb8kVijXLops0gOfqt3VPZq9cuHlh IMDquatGLzAadfFx2eQYIYT+FYuMoPZy/aTUazmJIDVxP7L383grjIkn+7tAv+qeDfE+txL4 SAm1UHNvmdfgL2/lcmL3xRh7sub3nJilM93RWX1Pe5LBSDXO45uzCGEdst6uSlzYR/MEr+5Z JQQ32JV64zwvf/aKaagSQSQMYNX9JFgfZ3TKWC1KJQbX5ssoX/5hNLqxMcZV3TN7kU8I3kjK mPec9+1nECOjjJSO/h4P0sBZyIUGfguwzhEeGf4sMCuSEM4xjCnwiBwftR17sr0spYcOpqET ZGcAmyYcNjy6CYadNCnfR40vhhWuCfNCBzWnUW0lFoo12wb0YnzoOLjvfD6OL3JjIUJNOmJy RCsJ5IA/Iz33RhSVRmROu+TztwuThClw63g7+hoyewv7BemKyuU6FTVhjjW+XUWmS/FzknSi dAG+insr0746cTPpSkGl3KAXeWDGJzve7/SBBfyznWCMGaf8E2P1oOdIZRxHgWj0zNr1+ooF /PzgLPiCI4OMUttTlEKChgbUTQ+5o0P080JojqfXwbPAyumbaYcQNiH1/xYbJdOFSiBv9rpt TQTBLzDKXok86M7BTQRS4TZ/ARAAkgqudHsp+hd82UVkvgnlqZjzz2vyrYfz7bkPtXaGb9H4 Rfo7mQsEQavEBdWWjbga6eMnDqtu+FC+qeTGYebToxEyp2lKDSoAsvt8w82tIlP/EbmRbDVn 7bhjBlfRcFjVYw8uVDPptT0TV47vpoCVkTwcyb6OltJrvg/QzV9f07DJswuda1JH3/qvYu0p vjPnYvCq4NsqY2XSdAJ02HrdYPFtNyPEntu1n1KK+gJrstjtw7KsZ4ygXYrsm/oCBiVW/OgU g/XIlGErkrxe4vQvJyVwg6YH653YTX5hLLUEL1NS4TCo47RP+wi6y+TnuAL36UtK/uFyEuPy wwrDVcC4cIFhYSfsO0BumEI65yu7a8aHbGfq2lW251UcoU48Z27ZUUZd2Dr6O/n8poQHbaTd 6bJJSjzGGHZVbRP9UQ3lkmkmc0+XCHmj5WhwNNYjgbbmML7y0fsJT5RgvefAIFfHBg7fTY/i kBEimoUsTEQz+N4hbKwo1hULfVxDJStE4sbPhjbsPCrlXf6W9CxSyQ0qmZ2bXsLQYRj2xqd1 bpA+1o1j2N4/au1R/uSiUFjewJdT/LX1EklKDcQwpk06Af/N7VZtSfEJeRV04unbsKVXWZAk uAJyDDKN99ziC0Wz5kcPyVD1HNf8bgaqGDzrv3TfYjwqayRFcMf7xJaL9xXedMcAEQEAAcLB XwQYAQgACQUCUuE2fwIbDAAKCRBlw/kGpdefoG4XEACD1Qf/er8EA7g23HMxYWd3FXHThrVQ HgiGdk5Yh632vjOm9L4sd/GCEACVQKjsu98e8o3ysitFlznEns5EAAXEbITrgKWXDDUWGYxd pnjj2u+GkVdsOAGk0kxczX6s+VRBhpbBI2PWnOsRJgU2n10PZ3mZD4Xu9kU2IXYmuW+e5KCA vTArRUdCrAtIa1k01sPipPPw6dfxx2e5asy21YOytzxuWFfJTGnVxZZSCyLUO83sh6OZhJkk b9rxL9wPmpN/t2IPaEKoAc0FTQZS36wAMOXkBh24PQ9gaLJvfPKpNzGD8XWR5HHF0NLIJhgg 4ZlEXQ2fVp3XrtocHqhu4UZR4koCijgB8sB7Tb0GCpwK+C4UePdFLfhKyRdSXuvY3AHJd4CP 4JzW0Bzq/WXY3XMOzUTYApGQpnUpdOmuQSfpV9MQO+/jo7r6yPbxT7CwRS5dcQPzUiuHLK9i nvjREdh84qycnx0/6dDroYhp0DFv4udxuAvt1h4wGwTPRQZerSm4xaYegEFusyhbZrI0U9tJ B8WrhBLXDiYlyJT6zOV2yZFuW47VrLsjYnHwn27hmxTC/7tvG3euCklmkn9Sl9IAKFu29RSo d5bD8kMSCYsTqtTfT6W4A3qHGvIDta3ptLYpIAOD2sY3GYq2nf3Bbzx81wZK14JdDDHUX2Rs 6+ahAA==

Cc: Roger Pau Monné <roger.pau@xxxxxxxxxx>, Xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxxx>

Delivery-date: Thu, 14 Aug 2025 15:07:42 +0000

List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On 14/08/2025 2:12 pm, Jan Beulich wrote: > On 08.08.2025 22:23, Andrew Cooper wrote: >> @@ -42,17 +46,76 @@ struct cpu_user_regs >> */ >> >> union { uint64_t rip; uint32_t eip; uint16_t ip; }; >> - uint16_t cs, _pad0[1]; >> - uint8_t saved_upcall_mask; /* PV (v)rflags.IF == !saved_upcall_mask */ >> - uint8_t _pad1[3]; >> + union { >> + struct { >> + uint16_t cs; >> + unsigned long :16; >> + uint8_t saved_upcall_mask; /* PV (v)rflags.IF == >> !saved_upcall_mask */ > Would this better be reproduced ... > >> + }; >> + unsigned long csx; >> + struct { >> + /* >> + * Bits 0 thru 31 control ERET{U,S} behaviour, and is state of >> the >> + * interrupted context. >> + */ >> + uint16_t cs; >> + unsigned int sl:2; /* Stack Level */ >> + bool wfe:1; /* Wait-for-ENDBRANCH state */ > ... here as well, just like you reproduce "cs"? saved_upcall_mask is a property of an in-guest IRET frame only. It is only produced in create_bounce_frame, and never consumed by Xen. It needs to exist in this structure so asm-offsets.c can generate a constant. Also, be aware that there are new features being planned which rely on FRED. > >> + } fred_cs; >> + }; >> union { uint64_t rflags; uint32_t eflags; uint16_t flags; }; >> union { uint64_t rsp; uint32_t esp; uint16_t sp; uint8_t spl; >> }; >> - uint16_t ss, _pad2[3]; >> + union { >> + uint16_t ss; >> + unsigned long ssx; > What use do you foresee for this and "csx"? That also came from Linux. I'm using it to zero the control metadata so ERETU behaves more like IRET. > >> + struct { >> + /* >> + * Bits 0 thru 31 control ERET{U,S} behaviour, and is state >> about >> + * the event which occured. >> + */ >> + uint16_t ss; >> + bool sti:1; /* Was blocked-by-STI, and not >> cancelled */ >> + bool swint:1; /* Was a SYSCALL/SYSENTER/INT $N */ >> + bool nmi:1; /* Was an NMI. */ >> + unsigned long :13; >> + >> + /* >> + * Bits 32 thru 63 are ignored by ERET{U,S} and are informative >> + * only. >> + */ >> + uint8_t vector; >> + unsigned long :8; >> + unsigned int type:4; /* X86_ET_* */ >> + unsigned long :4; >> + bool enclave:1; /* Event taken in SGX mode */ >> + bool lm:1; /* Was in Long Mode */ > The bit indicates 64-bit mode aiui, not long mode (without which FRED isn't > even > available). Oh, yes. This is something that changed across revisions, and I wrote this patch to an older spec. It's %cs.l of the interrupted context, so I probably should just drop the m. > >> --- a/xen/arch/x86/include/asm/current.h >> +++ b/xen/arch/x86/include/asm/current.h >> @@ -38,6 +38,8 @@ struct vcpu; >> >> struct cpu_info { >> struct cpu_user_regs guest_cpu_user_regs; >> + struct fred_info _fred; /* Only used when FRED is active. */ > Any particular need for the leading underscore? Somewhat, yes. It's not safe to reference this field, except for loading MSR_PL0_RSP. Everyone else should use cpu_regs_fred_info() to get the fred_info, which has a safety ASSERT(). ~Andrew

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.