Enable SMAP (always)

fwsGonzo · fwsGonzo · commit 6e8472f56ce8 · 2023-09-20T20:22:17.000+02:00
diff --git a/lib/tinykvm/amd64/builtin/interrupts.asm b/lib/tinykvm/amd64/builtin/interrupts.asm
@@ -40,12 +40,13 @@ ALIGN 0x10
 	o64 sysret
 
 .vm64_prctl:
+	stac
 	push rsi
 	push rcx
 	push rdx
 	cmp rdi, 0x1002 ;; PRCTL: SET_FS
 	jne .vm64_prctl_get
-	;; SET_FS [rsi]
+	;; SET_FS := rsi
 	mov ecx, 0xC0000100  ;; FSBASE
 	mov eax, esi ;; low-32 FS base
 	shr rsi, 32
@@ -56,11 +57,12 @@ ALIGN 0x10
 	pop rdx
 	pop rcx
 	pop rsi
+	clac
 	o64 sysret
 .vm64_prctl_get:
 	cmp rdi, 0x1003 ;; PRCTL: GET_FS
 	jne .vm64_prctl_trap
-	;; GET_FS [rsi]
+	;; GET_FS [rsi] := FSBASE
 	mov ecx, 0xC0000100  ;; FSBASE
 	rdmsr
 	shl rdx, 32   ;; lift high-32 FS base
diff --git a/lib/tinykvm/amd64/builtin/kernel_assembly.h b/lib/tinykvm/amd64/builtin/kernel_assembly.h
@@ -1,32 +1,33 @@
 unsigned char interrupts[] = {
-  0x10, 0x00, 0x72, 0x00, 0xa8, 0x00, 0x08, 0x00, 0x7b, 0x00, 0x90, 0x90,
+  0x10, 0x00, 0x78, 0x00, 0xb0, 0x00, 0x08, 0x00, 0x81, 0x00, 0x90, 0x90,
   0x90, 0x90, 0x90, 0x90, 0x3d, 0x9e, 0x00, 0x00, 0x00, 0x74, 0x13, 0x3d,
-  0x77, 0xf7, 0x01, 0x00, 0x74, 0x63, 0x3d, 0x07, 0xf7, 0x01, 0x00, 0x74,
-  0x65, 0xe7, 0x00, 0x48, 0x0f, 0x07, 0x56, 0x51, 0x52, 0x48, 0x81, 0xff,
-  0x02, 0x10, 0x00, 0x00, 0x75, 0x18, 0xb9, 0x00, 0x01, 0x00, 0xc0, 0x89,
-  0xf0, 0x48, 0xc1, 0xee, 0x20, 0x89, 0xf2, 0x0f, 0x30, 0x48, 0x31, 0xc0,
-  0x5a, 0x59, 0x5e, 0x48, 0x0f, 0x07, 0x48, 0x81, 0xff, 0x03, 0x10, 0x00,
-  0x00, 0x75, 0x16, 0xb9, 0x00, 0x01, 0x00, 0xc0, 0x0f, 0x32, 0x48, 0xc1,
-  0xe2, 0x20, 0x48, 0x09, 0xc2, 0x48, 0x89, 0x06, 0x48, 0x31, 0xc0, 0xeb,
-  0xdb, 0x66, 0xe7, 0x00, 0xeb, 0xd6, 0xb8, 0x60, 0x00, 0x00, 0x00, 0x66,
-  0xe7, 0x00, 0xc3, 0xb8, 0x72, 0x00, 0x00, 0x00, 0xc3, 0x0f, 0x20, 0xd8,
-  0x0f, 0x22, 0xd8, 0x48, 0x0f, 0x07, 0x48, 0x0f, 0x07, 0x57, 0x0f, 0x20,
-  0xd7, 0x66, 0xe7, 0x8e, 0x0f, 0x01, 0x3f, 0x5f, 0x48, 0x83, 0xc4, 0x08,
-  0x48, 0xcf, 0x66, 0xe7, 0xa1, 0x48, 0xcf, 0x90, 0x90, 0x90, 0x90, 0x90,
-  0x66, 0xe7, 0x80, 0x48, 0xcf, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x81, 0x48,
-  0xcf, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x82, 0x48, 0xcf, 0x90, 0x90, 0x90,
-  0x66, 0xe7, 0x83, 0x48, 0xcf, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x84, 0x48,
-  0xcf, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x85, 0x48, 0xcf, 0x90, 0x90, 0x90,
-  0x66, 0xe7, 0x86, 0x48, 0xcf, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x87, 0x48,
-  0xcf, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x88, 0xeb, 0xab, 0x90, 0x90, 0x90,
-  0x66, 0xe7, 0x89, 0x48, 0xcf, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x8a, 0xeb,
-  0x9b, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x8b, 0xeb, 0x93, 0x90, 0x90, 0x90,
-  0x66, 0xe7, 0x8c, 0xeb, 0x8b, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x8d, 0xeb,
-  0x83, 0x90, 0x90, 0x90, 0xe9, 0x70, 0xff, 0xff, 0xff, 0x90, 0x90, 0x90,
-  0x66, 0xe7, 0x8f, 0x48, 0xcf, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x90, 0x48,
-  0xcf, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x91, 0xe9, 0x60, 0xff, 0xff, 0xff,
-  0x66, 0xe7, 0x92, 0x48, 0xcf, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x93, 0x48,
-  0xcf, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x94, 0x48, 0xcf, 0x90, 0x90, 0x90,
-  0xe9, 0x49, 0xff, 0xff, 0xff
+  0x77, 0xf7, 0x01, 0x00, 0x74, 0x69, 0x3d, 0x07, 0xf7, 0x01, 0x00, 0x74,
+  0x6b, 0xe7, 0x00, 0x48, 0x0f, 0x07, 0x0f, 0x01, 0xcb, 0x56, 0x51, 0x52,
+  0x48, 0x81, 0xff, 0x02, 0x10, 0x00, 0x00, 0x75, 0x1b, 0xb9, 0x00, 0x01,
+  0x00, 0xc0, 0x89, 0xf0, 0x48, 0xc1, 0xee, 0x20, 0x89, 0xf2, 0x0f, 0x30,
+  0x48, 0x31, 0xc0, 0x5a, 0x59, 0x5e, 0x0f, 0x01, 0xca, 0x48, 0x0f, 0x07,
+  0x48, 0x81, 0xff, 0x03, 0x10, 0x00, 0x00, 0x75, 0x16, 0xb9, 0x00, 0x01,
+  0x00, 0xc0, 0x0f, 0x32, 0x48, 0xc1, 0xe2, 0x20, 0x48, 0x09, 0xc2, 0x48,
+  0x89, 0x06, 0x48, 0x31, 0xc0, 0xeb, 0xd8, 0x66, 0xe7, 0x00, 0xeb, 0xd3,
+  0xb8, 0x60, 0x00, 0x00, 0x00, 0x66, 0xe7, 0x00, 0xc3, 0xb8, 0x78, 0x00,
+  0x00, 0x00, 0xc3, 0x0f, 0x20, 0xd8, 0x0f, 0x22, 0xd8, 0x48, 0x0f, 0x07,
+  0x48, 0x0f, 0x07, 0x57, 0x0f, 0x20, 0xd7, 0x66, 0xe7, 0x8e, 0x0f, 0x01,
+  0x3f, 0x5f, 0x48, 0x83, 0xc4, 0x08, 0x48, 0xcf, 0x66, 0xe7, 0xa1, 0x48,
+  0xcf, 0x90, 0x90, 0x90, 0x90, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x80, 0x48,
+  0xcf, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x81, 0x48, 0xcf, 0x90, 0x90, 0x90,
+  0x66, 0xe7, 0x82, 0x48, 0xcf, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x83, 0x48,
+  0xcf, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x84, 0x48, 0xcf, 0x90, 0x90, 0x90,
+  0x66, 0xe7, 0x85, 0x48, 0xcf, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x86, 0x48,
+  0xcf, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x87, 0x48, 0xcf, 0x90, 0x90, 0x90,
+  0x66, 0xe7, 0x88, 0xeb, 0xa9, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x89, 0x48,
+  0xcf, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x8a, 0xeb, 0x99, 0x90, 0x90, 0x90,
+  0x66, 0xe7, 0x8b, 0xeb, 0x91, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x8c, 0xeb,
+  0x89, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x8d, 0xeb, 0x81, 0x90, 0x90, 0x90,
+  0xe9, 0x6e, 0xff, 0xff, 0xff, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x8f, 0x48,
+  0xcf, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x90, 0x48, 0xcf, 0x90, 0x90, 0x90,
+  0x66, 0xe7, 0x91, 0xe9, 0x5e, 0xff, 0xff, 0xff, 0x66, 0xe7, 0x92, 0x48,
+  0xcf, 0x90, 0x90, 0x90, 0x66, 0xe7, 0x93, 0x48, 0xcf, 0x90, 0x90, 0x90,
+  0x66, 0xe7, 0x94, 0x48, 0xcf, 0x90, 0x90, 0x90, 0xe9, 0x47, 0xff, 0xff,
+  0xff
 };
-unsigned int interrupts_len = 341;
+unsigned int interrupts_len = 349;
diff --git a/lib/tinykvm/vcpu.cpp b/lib/tinykvm/vcpu.cpp
@@ -106,7 +106,7 @@ void vCPU::init(int id, Machine& machine)
 		master_sregs.cr3 = physbase + PT_ADDR;
 		master_sregs.cr4 =
 			CR4_PAE | CR4_OSFXSR | CR4_OSXMMEXCPT | CR4_OSXSAVE |
-			CR4_FSGSBASE | CR4_SMEP;
+			CR4_FSGSBASE | CR4_SMEP | CR4_SMAP;
 		master_sregs.cr0 =
 			CR0_PE | CR0_MP | CR0_ET | CR0_NE | CR0_AM | CR0_PG | CR0_WP;
 		master_sregs.efer =
