git.ipfire.org Git - thirdparty/kernel/linux.git/commit

author	Kai Huang <kai.huang@intel.com>
	Fri, 6 Jun 2025 13:07:37 +0000 (01:07 +1200)
committer	Dave Hansen <dave.hansen@linux.intel.com>
	Tue, 10 Jun 2025 19:32:52 +0000 (12:32 -0700)
commit	0b3bc018e86afdc0cbfef61328c63d5c08f8b370
tree	2a3d23e6cda65a21493a0cf7ccab179aec66506f	tree
parent	f287822688eeb44ae1cf6ac45701d965efc33218	commit \| diff

x86/virt/tdx: Avoid indirect calls to TDX assembly functions

Two 'static inline' TDX helper functions (sc_retry() and
sc_retry_prerr()) take function pointer arguments which refer to
assembly functions. Normally, the compiler inlines the TDX helper,
realizes that the function pointer targets are completely static --
thus can be resolved at compile time -- and generates direct call
instructions.

But, other times (like when CONFIG_CC_OPTIMIZE_FOR_SIZE=y), the
compiler declines to inline the helpers and will instead generate
indirect call instructions.

Indirect calls to assembly functions require special annotation (for
various Control Flow Integrity mechanisms). But TDX assembly
functions lack the special annotations and can only be called
directly.

Annotate both the helpers as '__always_inline' to prod the compiler
into maintaining the direct calls. There is no guarantee here, but
Peter has volunteered to report the compiler bug if this assumption
ever breaks[1].

Fixes: 1e66a7e27539 ("x86/virt/tdx: Handle SEAMCALL no entropy error in common code")
Fixes: df01f5ae07dd ("x86/virt/tdx: Add SEAMCALL error printing for module initialization")
Signed-off-by: Kai Huang <kai.huang@intel.com>
Signed-off-by: Dave Hansen <dave.hansen@linux.intel.com>
Cc: stable@vger.kernel.org
Link: https://lore.kernel.org/lkml/20250605145914.GW39944@noisy.programming.kicks-ass.net/
Link: https://lore.kernel.org/all/20250606130737.30713-1-kai.huang%40intel.com

arch/x86/include/asm/tdx.h		diff \| blob \| blame \| history
arch/x86/virt/vmx/tdx/tdx.c		diff \| blob \| blame \| history