From: Borislav Petkov <bp@alien8.de>
To: Mathieu Chouquet-Stringer <me@mathieu.digital>
Cc: Matthew Garrett <mjg59@google.com>,
Chris Down <chris@chrisdown.name>,
Linux Kernel Mailing List <linux-kernel@vger.kernel.org>,
sean.j.christopherson@intel.com, tony.luck@intel.com,
Linus Torvalds <torvalds@linux-foundation.org>,
the arch/x86 maintainers <x86@kernel.org>,
kernel-team@fb.com
Subject: Re: [PATCH] x86/msr: Filter MSR writes
Date: Thu, 26 Nov 2020 11:03:26 +0100 [thread overview]
Message-ID: <20201126100326.GA31565@zn.tnic> (raw)
In-Reply-To: <20201119105344.GA434279@weirdfishes>
On Thu, Nov 19, 2020 at 11:53:44AM +0100, Mathieu Chouquet-Stringer wrote:
> ---
> TAINT_CPU_OUT_OF_SPEC now means what a bit more than what it implies as
s/now means what a bit/now means a bit/
> the flag isn't set just because of a CPU misconfiguration or mismatch.
> Historically it was for SMP kernel oops on an officially SMP incapable
> processor but now it also covers CPUs whose MSRs have been incorrectly
> poked at from userspace, drivers being used on non supported
> architectures, broken firmware, mismatched CPUs, ...
>
> Update documentation and script to reflect that.
>
> Signed-off-by: Mathieu Chouquet-Stringer <me@mathieu.digital>
> ---
> Documentation/admin-guide/sysctl/kernel.rst | 2 +-
> Documentation/admin-guide/tainted-kernels.rst | 22 +++++++++++++++++-----
> tools/debugging/kernel-chktaint | 2 +-
> 3 files changed, 19 insertions(+), 7 deletions(-)
>
>
> diff --git a/Documentation/admin-guide/sysctl/kernel.rst b/Documentation/admin-guide/sysctl/kernel.rst
> index d4b32cc32bb7..edd89e2d3af7 100644
> --- a/Documentation/admin-guide/sysctl/kernel.rst
> +++ b/Documentation/admin-guide/sysctl/kernel.rst
> @@ -1336,7 +1336,7 @@ ORed together. The letters are seen in "Tainted" line of Oops reports.
> ====== ===== ==============================================================
> 1 `(P)` proprietary module was loaded
> 2 `(F)` module was force loaded
> - 4 `(S)` SMP kernel oops on an officially SMP incapable processor
> + 4 `(S)` kernel running on an out of specification system
> 8 `(R)` module was force unloaded
> 16 `(M)` processor reported a Machine Check Exception (MCE)
> 32 `(B)` bad page referenced or some unexpected page flags
> diff --git a/Documentation/admin-guide/tainted-kernels.rst b/Documentation/admin-guide/tainted-kernels.rst
> index f718a2eaf1f6..5737dfa17cd1 100644
> --- a/Documentation/admin-guide/tainted-kernels.rst
> +++ b/Documentation/admin-guide/tainted-kernels.rst
> @@ -84,7 +84,7 @@ Bit Log Number Reason that got the kernel tainted
> === === ====== ========================================================
> 0 G/P 1 proprietary module was loaded
> 1 _/F 2 module was force loaded
> - 2 _/S 4 SMP kernel oops on an officially SMP incapable processor
> + 2 _/S 4 kernel running on an out of specification system
> 3 _/R 8 module was force unloaded
> 4 _/M 16 processor reported a Machine Check Exception (MCE)
> 5 _/B 32 bad page referenced or some unexpected page flags
> @@ -116,10 +116,22 @@ More detailed explanation for tainting
> 1) ``F`` if any module was force loaded by ``insmod -f``, ``' '`` if all
> modules were loaded normally.
>
> - 2) ``S`` if the oops occurred on an SMP kernel running on hardware that
> - hasn't been certified as safe to run multiprocessor.
> - Currently this occurs only on various Athlons that are not
> - SMP capable.
> + 2) ``S`` if the kernel is running on a processor or system that is out of
> + specification: hardware has been put into an unsupported configuration,
> + therefore proper execution cannot be guaranteed.
> + Kernel will be tainted for example if:
"Kernel will be tainted if, for example:"
> +
> + - on x86: you force PAE on intel CPUs, you run a SMP kernel on non
"user forces PAE on some Intel CPUs which do not advertize it by default"
- otherwise it doesn't make sense.
Also, please use passive voice: no "we" or "I", etc. Look at how the
rest of the text in that file is written and try to mimick it and get
rid of the "you" formulations.
> + officially capable SMP Athlon CPUs, you poke at random MSRs from
> + userspace.
> + - on arm: you run a kernel on certain CPUs (such as Keystone 2) without
> + having certain kernel features enabled.
> + - on arm64: you have mismatched hardware features between CPUs, the
> + bootloader has booted CPUs in different modes.
> + - you use certain drivers on non supported architectures (such as
> + scsi/snic on something else than x86_64, scsi/ips on non
> + x86/x86_64/itanium, have broken firmware settings for the
> + irqchip/irq-gic on arm64 ...).
Yes, the text should be giving the idea that the configuration the
system is running on, is not supported.
All in all, this is shaping up ok, you can send the next one as
a proper patch with the people on Cc who should take it - (use
./scripts/get_maintainer.pl for that) and not as an inline diff anymore.
Thx.
--
Regards/Gruss,
Boris.
https://people.kernel.org/tglx/notes-about-netiquette
next prev parent reply other threads:[~2020-11-26 10:03 UTC|newest]
Thread overview: 43+ messages / expand[flat|nested] mbox.gz Atom feed top
2020-06-12 10:50 [RFC PATCH] x86/msr: Filter MSR writes Borislav Petkov
2020-06-12 16:34 ` Sean Christopherson
2020-06-12 16:46 ` Borislav Petkov
2020-06-12 16:57 ` Sean Christopherson
2020-06-12 17:03 ` Borislav Petkov
2020-06-12 17:43 ` Sean Christopherson
2020-06-12 17:52 ` Borislav Petkov
2020-06-12 17:20 ` Linus Torvalds
2020-06-12 17:48 ` Borislav Petkov
2020-06-12 19:47 ` Borislav Petkov
2020-06-12 20:39 ` Peter Zijlstra
2020-06-13 5:40 ` Tony Luck
2020-06-13 9:39 ` Borislav Petkov
2020-06-13 15:48 ` [PATCH -v2] " Borislav Petkov
2020-06-15 6:38 ` [PATCH -v2.1] " Borislav Petkov
2020-06-25 5:51 ` Sean Christopherson
2020-06-25 8:37 ` Borislav Petkov
2020-07-14 12:19 ` Chris Down
2020-07-14 15:47 ` Borislav Petkov
2020-07-14 16:04 ` Chris Down
2020-07-14 16:46 ` Luck, Tony
2020-07-14 16:58 ` Borislav Petkov
2020-07-14 17:02 ` Chris Down
2020-07-14 16:56 ` Borislav Petkov
2020-07-14 17:04 ` Chris Down
2020-07-14 18:52 ` Srinivas Pandruvada
2020-07-15 4:26 ` Borislav Petkov
2020-07-14 19:17 ` Matthew Garrett
2020-11-17 21:00 ` Mathieu Chouquet-Stringer
2020-11-17 21:20 ` Borislav Petkov
2020-11-18 8:58 ` Mathieu Chouquet-Stringer
2020-11-18 9:09 ` Mathieu Chouquet-Stringer
2020-11-18 11:50 ` Borislav Petkov
2020-11-18 14:04 ` [PATCH] " Mathieu Chouquet-Stringer
2020-11-18 17:50 ` Borislav Petkov
2020-11-19 10:53 ` Mathieu Chouquet-Stringer
2020-11-25 21:41 ` Mathieu Chouquet-Stringer
2020-11-26 10:03 ` Borislav Petkov [this message]
2020-11-17 21:21 ` [PATCH -v2.1] " Matthew Garrett
2020-11-17 21:22 ` Matthew Garrett
2020-11-18 9:02 ` Mathieu Chouquet-Stringer
2020-06-17 15:06 ` [tip: x86/misc] " tip-bot2 for Borislav Petkov
2020-06-25 8:45 ` tip-bot2 for Borislav Petkov
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20201126100326.GA31565@zn.tnic \
--to=bp@alien8.de \
--cc=chris@chrisdown.name \
--cc=kernel-team@fb.com \
--cc=linux-kernel@vger.kernel.org \
--cc=me@mathieu.digital \
--cc=mjg59@google.com \
--cc=sean.j.christopherson@intel.com \
--cc=tony.luck@intel.com \
--cc=torvalds@linux-foundation.org \
--cc=x86@kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.