Kezdőlap Felfedezés Súgó
Bejelentkezés
samsung-sm8650
/
android_kernel_samsung_sm8650_ksu
2
0
Másolás 0
Fájlok Problémák 0 Beolvasztási kérések 0 Wiki
Fa: 9e449c3f83
Branch-ok Tag-ek
android_kernel_...
/
arch
/
x86
/
kernel
/
cpu
/
sgx
/
driver.c

driver.c 4.0 KB
Előzmények Nyers

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180 
  1. // SPDX-License-Identifier: GPL-2.0
    2. 

  2. /*  Copyright(c) 2016-20 Intel Corporation. */
    3. 

  3. 

  4. #include <linux/acpi.h>
    5. 

  5. #include <linux/miscdevice.h>
    6. 

  6. #include <linux/mman.h>
    7. 

  7. #include <linux/security.h>
    8. 

  8. #include <linux/suspend.h>
    9. 

  9. #include <asm/traps.h>
    10. 

  10. #include "driver.h"
    11. 

  11. #include "encl.h"
    12. 

  12. 

  13. u64 sgx_attributes_reserved_mask;
    14. 

  14. u64 sgx_xfrm_reserved_mask = ~0x3;
    15. 

  15. u32 sgx_misc_reserved_mask;
    16. 

  16. 

  17. static int sgx_open(struct inode *inode, struct file *file)
    18. 

  18. {
    19. 

  19. 	struct sgx_encl *encl;
    20. 

  20. 	int ret;
    21. 

  21. 

  22. 	encl = kzalloc(sizeof(*encl), GFP_KERNEL);
    23. 

  23. 	if (!encl)
    24. 

  24. 		return -ENOMEM;
    25. 

  25. 

  26. 	kref_init(&encl->refcount);
    27. 

  27. 	xa_init(&encl->page_array);
    28. 

  28. 	mutex_init(&encl->lock);
    29. 

  29. 	INIT_LIST_HEAD(&encl->va_pages);
    30. 

  30. 	INIT_LIST_HEAD(&encl->mm_list);
    31. 

  31. 	spin_lock_init(&encl->mm_lock);
    32. 

  32. 

  33. 	ret = init_srcu_struct(&encl->srcu);
    34. 

  34. 	if (ret) {
    35. 

  35. 		kfree(encl);
    36. 

  36. 		return ret;
    37. 

  37. 	}
    38. 

  38. 

  39. 	file->private_data = encl;
    40. 

  40. 

  41. 	return 0;
    42. 

  42. }
    43. 

  43. 

  44. static int sgx_release(struct inode *inode, struct file *file)
    45. 

  45. {
    46. 

  46. 	struct sgx_encl *encl = file->private_data;
    47. 

  47. 	struct sgx_encl_mm *encl_mm;
    48. 

  48. 

  49. 	/*
    50. 

  50. 	 * Drain the remaining mm_list entries. At this point the list contains
    51. 

  51. 	 * entries for processes, which have closed the enclave file but have
    52. 

  52. 	 * not exited yet. The processes, which have exited, are gone from the
    53. 

  53. 	 * list by sgx_mmu_notifier_release().
    54. 

  54. 	 */
    55. 

  55. 	for ( ; ; )  {
    56. 

  56. 		spin_lock(&encl->mm_lock);
    57. 

  57. 

  58. 		if (list_empty(&encl->mm_list)) {
    59. 

  59. 			encl_mm = NULL;
    60. 

  60. 		} else {
    61. 

  61. 			encl_mm = list_first_entry(&encl->mm_list,
    62. 

  62. 						   struct sgx_encl_mm, list);
    63. 

  63. 			list_del_rcu(&encl_mm->list);
    64. 

  64. 		}
    65. 

  65. 

  66. 		spin_unlock(&encl->mm_lock);
    67. 

  67. 

  68. 		/* The enclave is no longer mapped by any mm. */
    69. 

  69. 		if (!encl_mm)
    70. 

  70. 			break;
    71. 

  71. 

  72. 		synchronize_srcu(&encl->srcu);
    73. 

  73. 		mmu_notifier_unregister(&encl_mm->mmu_notifier, encl_mm->mm);
    74. 

  74. 		kfree(encl_mm);
    75. 

  75. 

  76. 		/* 'encl_mm' is gone, put encl_mm->encl reference: */
    77. 

  77. 		kref_put(&encl->refcount, sgx_encl_release);
    78. 

  78. 	}
    79. 

  79. 

  80. 	kref_put(&encl->refcount, sgx_encl_release);
    81. 

  81. 	return 0;
    82. 

  82. }
    83. 

  83. 

  84. static int sgx_mmap(struct file *file, struct vm_area_struct *vma)
    85. 

  85. {
    86. 

  86. 	struct sgx_encl *encl = file->private_data;
    87. 

  87. 	int ret;
    88. 

  88. 

  89. 	ret = sgx_encl_may_map(encl, vma->vm_start, vma->vm_end, vma->vm_flags);
    90. 

  90. 	if (ret)
    91. 

  91. 		return ret;
    92. 

  92. 

  93. 	ret = sgx_encl_mm_add(encl, vma->vm_mm);
    94. 

  94. 	if (ret)
    95. 

  95. 		return ret;
    96. 

  96. 

  97. 	vma->vm_ops = &sgx_vm_ops;
    98. 

  98. 	vm_flags_set(vma, VM_PFNMAP | VM_DONTEXPAND | VM_DONTDUMP | VM_IO);
    99. 

  99. 	vma->vm_private_data = encl;
    100. 

  100. 

  101. 	return 0;
    102. 

  102. }
    103. 

  103. 

  104. static unsigned long sgx_get_unmapped_area(struct file *file,
    105. 

  105. 					   unsigned long addr,
    106. 

  106. 					   unsigned long len,
    107. 

  107. 					   unsigned long pgoff,
    108. 

  108. 					   unsigned long flags)
    109. 

  109. {
    110. 

  110. 	if ((flags & MAP_TYPE) == MAP_PRIVATE)
    111. 

  111. 		return -EINVAL;
    112. 

  112. 

  113. 	if (flags & MAP_FIXED)
    114. 

  114. 		return addr;
    115. 

  115. 

  116. 	return current->mm->get_unmapped_area(file, addr, len, pgoff, flags);
    117. 

  117. }
    118. 

  118. 

  119. #ifdef CONFIG_COMPAT
    120. 

  120. static long sgx_compat_ioctl(struct file *filep, unsigned int cmd,
    121. 

  121. 			      unsigned long arg)
    122. 

  122. {
    123. 

  123. 	return sgx_ioctl(filep, cmd, arg);
    124. 

  124. }
    125. 

  125. #endif
    126. 

  126. 

  127. static const struct file_operations sgx_encl_fops = {
    128. 

  128. 	.owner			= THIS_MODULE,
    129. 

  129. 	.open			= sgx_open,
    130. 

  130. 	.release		= sgx_release,
    131. 

  131. 	.unlocked_ioctl		= sgx_ioctl,
    132. 

  132. #ifdef CONFIG_COMPAT
    133. 

  133. 	.compat_ioctl		= sgx_compat_ioctl,
    134. 

  134. #endif
    135. 

  135. 	.mmap			= sgx_mmap,
    136. 

  136. 	.get_unmapped_area	= sgx_get_unmapped_area,
    137. 

  137. };
    138. 

  138. 

  139. static struct miscdevice sgx_dev_enclave = {
    140. 

  140. 	.minor = MISC_DYNAMIC_MINOR,
    141. 

  141. 	.name = "sgx_enclave",
    142. 

  142. 	.nodename = "sgx_enclave",
    143. 

  143. 	.fops = &sgx_encl_fops,
    144. 

  144. };
    145. 

  145. 

  146. int __init sgx_drv_init(void)
    147. 

  147. {
    148. 

  148. 	unsigned int eax, ebx, ecx, edx;
    149. 

  149. 	u64 attr_mask;
    150. 

  150. 	u64 xfrm_mask;
    151. 

  151. 	int ret;
    152. 

  152. 

  153. 	if (!cpu_feature_enabled(X86_FEATURE_SGX_LC))
    154. 

  154. 		return -ENODEV;
    155. 

  155. 

  156. 	cpuid_count(SGX_CPUID, 0, &eax, &ebx, &ecx, &edx);
    157. 

  157. 

  158. 	if (!(eax & 1))  {
    159. 

  159. 		pr_err("SGX disabled: SGX1 instruction support not available.\n");
    160. 

  160. 		return -ENODEV;
    161. 

  161. 	}
    162. 

  162. 

  163. 	sgx_misc_reserved_mask = ~ebx | SGX_MISC_RESERVED_MASK;
    164. 

  164. 

  165. 	cpuid_count(SGX_CPUID, 1, &eax, &ebx, &ecx, &edx);
    166. 

  166. 

  167. 	attr_mask = (((u64)ebx) << 32) + (u64)eax;
    168. 

  168. 	sgx_attributes_reserved_mask = ~attr_mask | SGX_ATTR_RESERVED_MASK;
    169. 

  169. 

  170. 	if (cpu_feature_enabled(X86_FEATURE_OSXSAVE)) {
    171. 

  171. 		xfrm_mask = (((u64)edx) << 32) + (u64)ecx;
    172. 

  172. 		sgx_xfrm_reserved_mask = ~xfrm_mask;
    173. 

  173. 	}
    174. 

  174. 

  175. 	ret = misc_register(&sgx_dev_enclave);
    176. 

  176. 	if (ret)
    177. 

  177. 		return ret;
    178. 

  178. 

  179. 	return 0;
    180. 

  180. }
    181.