From patchwork Mon Apr 12 12:16:10 2021 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Anup Patel X-Patchwork-Id: 1465208 Return-Path: X-Original-To: incoming@patchwork.ozlabs.org Delivered-To: patchwork-incoming@bilbo.ozlabs.org Authentication-Results: ozlabs.org; spf=none (no SPF record) smtp.mailfrom=lists.infradead.org (client-ip=2001:8b0:10b:1:d65d:64ff:fe57:4e05; helo=desiato.infradead.org; envelope-from=opensbi-bounces+incoming=patchwork.ozlabs.org@lists.infradead.org; receiver=) Authentication-Results: ozlabs.org; dkim=pass (2048-bit key; secure) header.d=lists.infradead.org header.i=@lists.infradead.org header.a=rsa-sha256 header.s=desiato.20200630 header.b=leM5LPGJ; dkim=fail reason="signature verification failed" (2048-bit key; secure) header.d=infradead.org header.i=@infradead.org header.a=rsa-sha256 header.s=bombadil.20210309 header.b=vtsoZJ2F; dkim=fail reason="signature verification failed" (2048-bit key; unprotected) header.d=wdc.com header.i=@wdc.com header.a=rsa-sha256 header.s=dkim.wdc.com header.b=Bsn6nwou; dkim=neutral header.d=sharedspace.onmicrosoft.com header.i=@sharedspace.onmicrosoft.com header.a=rsa-sha256 header.s=selector2-sharedspace-onmicrosoft-com header.b=tisDnY/B; dkim-atps=neutral Received: from desiato.infradead.org (desiato.infradead.org [IPv6:2001:8b0:10b:1:d65d:64ff:fe57:4e05]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by ozlabs.org (Postfix) with ESMTPS id 4FJnmM513Mz9sWX for ; Mon, 12 Apr 2021 22:17:07 +1000 (AEST) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=lists.infradead.org; s=desiato.20200630; h=Sender:Content-Transfer-Encoding :Content-Type:List-Subscribe:List-Help:List-Post:List-Archive: List-Unsubscribe:List-Id:MIME-Version:Message-Id:Date:Subject:Cc:To:From: Reply-To:Content-ID:Content-Description:Resent-Date:Resent-From:Resent-Sender :Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Owner; bh=RROZTmbjo/1jxXwRGHpoSN/KkGLMhcP4u47ds+qdWTE=; b=leM5LPGJ2u9teW2XLSz5ToAFSQ sga8eXysMVuU7skFw6VUt6VXXhxvGjWv0/WQ+6piymNLwIJodf14NcmQntXR1h50VNlZ6K1sJNLfC 4biCc9WnXQFtGrk8XSxBcrT1ZwVIIziMCViAGoJekAI88TxXGTJtttpdO0IC4Hr3lV1a84Njh/lD/ ++zIdmz7mjqkO3n7H/9RClZGMM/v99gK8SbdrrTrJng7SxQnCn5UMrY2j+HshICRWM7grIjMZWNpe kSGDaTbOqoc8gy2wd547NFTTk+/xnqXZ0QZ2hxS6GbODhnQVRqZHRQYwHBap1FFmPVyKNaWX1C1pM 8lA0uZAA==; Received: from localhost ([::1] helo=desiato.infradead.org) by desiato.infradead.org with esmtp (Exim 4.94 #2 (Red Hat Linux)) id 1lVvV0-006f7o-CP; Mon, 12 Apr 2021 12:17:02 +0000 Received: from bombadil.infradead.org ([2607:7c80:54:e::133]) by desiato.infradead.org with esmtps (Exim 4.94 #2 (Red Hat Linux)) id 1lVvUx-006f7J-3z for opensbi@desiato.infradead.org; Mon, 12 Apr 2021 12:16:59 +0000 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=infradead.org; s=bombadil.20210309; h=MIME-Version:Content-Type: Content-Transfer-Encoding:Message-Id:Date:Subject:Cc:To:From:Sender:Reply-To: Content-ID:Content-Description:In-Reply-To:References; bh=Ddq5jEjDCrr39mCou4XJ1ZgMQlfI+eA+SXvxu4HdyYc=; b=vtsoZJ2F2G7XSM9OQGCxkjB6Lp wVgYx8Fy+Z5EJFAKiZ6YHdj8bwRYGOCiNwSL2j7BvC3gR/mHx8g2Fzp03Pa7/xecTukpko1Y9QoJp 2j/jDty8oJH78kVeUk/zs+yedPj9wjNXDaWZDvryhISnedGaXUnUKyP0kbNrjuRf6nwYY4MogFbcC 8VTbAuG8IDWVapUu/okXk2uFO093On5jzogizxY0YPflq1Hqh3RSY5hg2C5SzUj1sp/EfmQuC+KUi LLvolTkoGWszjz4XA8F9ubNh1GbtMfHhxZy7FLIxS+xxIJu4ODNleiCm+41c9thYxb7M1M/jTTX2z Mt9dUBJA==; Received: from esa6.hgst.iphmx.com ([216.71.154.45]) by bombadil.infradead.org with esmtps (Exim 4.94 #2 (Red Hat Linux)) id 1lVvUu-006DAU-8X for opensbi@lists.infradead.org; Mon, 12 Apr 2021 12:16:57 +0000 DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=wdc.com; i=@wdc.com; q=dns/txt; s=dkim.wdc.com; t=1618229817; x=1649765817; h=from:to:cc:subject:date:message-id: content-transfer-encoding:mime-version; bh=qsuGokc+0/PltILTM0bMVAquos9E9bl06um/TbvYzzM=; b=Bsn6nwouci7/lQX0YlkjyXOeKZuu2gHMQGfoSf0EOfI1VXgr5KtC0eCH 6ZhsKZQDI+OM1y7qvIzGlXrsmgRgHxyiXPhGNW69am1benc/jJUDjJ35N g4WyUrXCfHtT/4Fk9zcvYHw8Q1wfROmfuSqHCHdhDlXAyyy+Z4ICTmxNy aco9n4CDqeVspSbnDGOdx7xZYSXvr6TKySnQhIoYSAfxRsUI5YxgFkGcn aM9AfWCdduWZYwbM/jYW+z43ephOcnZxEHcjfxjYEmun9yvkUpAN1nL+s /9ot3dq7NA3LAkWqJAZeWISz/7B+ucirCYXsIuaCsM+JlSjPwEEehsoS4 g==; IronPort-SDR: vFDPPfuMfsn4K/nxnD+cZ73Wx4u7xZXeFvc3bUvHxVScx8lqgCksH95LRih9bTf3vj3bxVf+iq 8EYzJ+e3bCJbhE3i/b9Bh7nGeYLp3jTYSUjhkMthbo0CbKbnKqhb5Cx932f7fS58QsOBLBEvA3 5+gFuXb/m+FnMic7A6X1qURvACPjnl4NonbUyiLoncnVPvRNZHP0TvcMOiPkjLLNTr5bMdLIaQ n8Dl2jYGoIG4Z85dthKhuCvGNjxdhgbmvecekdJjlEaEAMZhhf7aEa5uerIpMx61JTZJt4h0Yc I5A= X-IronPort-AV: E=Sophos;i="5.82,216,1613404800"; d="scan'208";a="165314292" Received: from mail-bn8nam12lp2176.outbound.protection.outlook.com (HELO NAM12-BN8-obe.outbound.protection.outlook.com) ([104.47.55.176]) by ob1.hgst.iphmx.com with ESMTP; 12 Apr 2021 20:16:45 +0800 ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=XyBWXjtvSRhQeKfHI6XBA1y2LGhsc35hTnivS6NB0EvQW8Pw+APMmdNVRVRGwZq0HsnVEOkU6UvwpjCTW/0JlTj0rRe+p0fgMYKNmlTB6iRhv6lvzGSoOn+VGD7/VtxrZbcc0QOYCMhWIVuJFYoC/Yf0nA82+kP98E7+9o2QzPghftKTE2mSPugT+EGvzGaOB5aBAXYjVadggXUVEyLwp+oyjPewFln+E2QcQrDq6w59nAMQhB4/JN5nWFmRjffob5r1clNhpgMgVIetqo04aou2jojk5EF/HcoDK9mOX0LPEnXjDGVMyvZFl2skMLEoacQcKf62HQBjKleLl3pOng== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Ddq5jEjDCrr39mCou4XJ1ZgMQlfI+eA+SXvxu4HdyYc=; b=YgkqRjzJSyv9E7gJxNq+xkSFg/jRyUFJ4FCGqURNIF4t0DdmkLZTnfzQBM4akZcXMyM0hrIqFRhDxTEbxHl3xrriHkbojHF/ZdzS2Zx3g8uFa3N3hul5jfHBZ8sc+kt2W9xf+EE8Axp6jePVmmESAKC4WDwGdaBhJ39mchn9S/5wWEd9rGBnfhkK7hd0dAgIc1orORtAl4txOyuRKbZCuHBzWrqTooXr82pFrjEOA7QXgKsxN7Gl+FbRJAKDLER/Pi8w/TeiWtQYEQWSjlmSipIrsu6/CaqKGdmqRZ8aXwqvQIkkJ62oZXk8XJkF7dYE/3AYcGlKcn2sGUw74Wr0qA== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=wdc.com; dmarc=pass action=none header.from=wdc.com; dkim=pass header.d=wdc.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sharedspace.onmicrosoft.com; s=selector2-sharedspace-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Ddq5jEjDCrr39mCou4XJ1ZgMQlfI+eA+SXvxu4HdyYc=; b=tisDnY/BEhDrZyBnmsvav9UXElMlSIbfXv8wg0ViI5FkCK5Rxk1G52j1Pwy7seNURmF0biq6/8cDyeGyEaeta74N/RSaSLpJWVzfi/MjuParBZlwvnd4ViLRVlaqw9FOYfn/bcFiTsw42UXj2yhatknc3Z6NjUMWSPdPvHRYw3E= Authentication-Results: wdc.com; dkim=none (message not signed) header.d=none;wdc.com; dmarc=none action=none header.from=wdc.com; Received: from DM6PR04MB6201.namprd04.prod.outlook.com (2603:10b6:5:127::32) by DM6PR04MB4394.namprd04.prod.outlook.com (2603:10b6:5:9d::28) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4020.22; Mon, 12 Apr 2021 12:16:39 +0000 Received: from DM6PR04MB6201.namprd04.prod.outlook.com ([fe80::38c0:cc46:192b:1868]) by DM6PR04MB6201.namprd04.prod.outlook.com ([fe80::38c0:cc46:192b:1868%7]) with mapi id 15.20.4020.022; Mon, 12 Apr 2021 12:16:38 +0000 From: Anup Patel To: Atish Patra , Alistair Francis Cc: Anup Patel , opensbi@lists.infradead.org, Anup Patel Subject: [PATCH v2 0/7] Protect M-mode only MMIO devices Date: Mon, 12 Apr 2021 17:46:10 +0530 Message-Id: <20210412121617.933493-1-anup.patel@wdc.com> X-Mailer: git-send-email 2.25.1 X-Originating-IP: [122.166.88.44] X-ClientProxiedBy: MAXPR01CA0085.INDPRD01.PROD.OUTLOOK.COM (2603:1096:a00:49::27) To DM6PR04MB6201.namprd04.prod.outlook.com (2603:10b6:5:127::32) MIME-Version: 1.0 X-MS-Exchange-MessageSentRepresentingType: 1 Received: from wdc.com (122.166.88.44) by MAXPR01CA0085.INDPRD01.PROD.OUTLOOK.COM (2603:1096:a00:49::27) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4020.17 via Frontend Transport; Mon, 12 Apr 2021 12:16:36 +0000 X-MS-PublicTrafficType: Email X-MS-Office365-Filtering-Correlation-Id: 1b2d4701-0abc-446c-b948-08d8fdacd29c X-MS-TrafficTypeDiagnostic: DM6PR04MB4394: X-MS-Exchange-Transport-Forked: True X-Microsoft-Antispam-PRVS: WDCIPOUTBOUND: EOP-TRUE X-MS-Oob-TLC-OOBClassifiers: OLM:8882; X-MS-Exchange-SenderADCheck: 1 X-Microsoft-Antispam: BCL:0; X-Microsoft-Antispam-Message-Info: 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 X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DM6PR04MB6201.namprd04.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(136003)(396003)(366004)(346002)(376002)(39860400002)(55016002)(66556008)(66946007)(4326008)(186003)(66476007)(16526019)(478600001)(2906002)(1076003)(5660300002)(966005)(36756003)(8886007)(8676002)(8936002)(52116002)(38100700002)(6636002)(110136005)(54906003)(6666004)(316002)(83380400001)(26005)(956004)(2616005)(38350700002)(7696005)(44832011)(86362001); DIR:OUT; SFP:1102; X-MS-Exchange-AntiSpam-MessageData: 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 X-OriginatorOrg: wdc.com X-MS-Exchange-CrossTenant-Network-Message-Id: 1b2d4701-0abc-446c-b948-08d8fdacd29c X-MS-Exchange-CrossTenant-AuthSource: DM6PR04MB6201.namprd04.prod.outlook.com X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-OriginalArrivalTime: 12 Apr 2021 12:16:38.6911 (UTC) X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted X-MS-Exchange-CrossTenant-Id: b61c8803-16f3-4c35-9b17-6f65f441df86 X-MS-Exchange-CrossTenant-MailboxType: HOSTED X-MS-Exchange-CrossTenant-UserPrincipalName: 4BYLRjiEAWg1yDulX6GFw0zTF/Vi9v+m5Cl+P9Wl8PtUYcf01yKkrwsnL11Bxg9JeYP0RyEE7FejQxhcmNrbqg== X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR04MB4394 X-CRM114-Version: 20100106-BlameMichelson ( TRE 0.8.0 (BSD) ) MR-646709E3 X-CRM114-CacheID: sfid-20210412_051656_415741_BB949192 X-CRM114-Status: GOOD ( 10.41 ) X-Spam-Score: -0.9 (/) X-Spam-Report: Spam detection software, running on the system "bombadil.infradead.org", has NOT identified this incoming email as spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see the administrator of that system for details. Content preview: We should protect the M-mode only MMIO devices (such as CLINT) using the OpenSBI domain support. This can be easily achieved by having APIs to allow platform support (and drivers) to add memregions fo [...] Content analysis details: (-0.9 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- -0.7 RCVD_IN_DNSWL_LOW RBL: Sender listed at https://www.dnswl.org/, low trust [216.71.154.45 listed in list.dnswl.org] 0.0 SPF_NONE SPF: sender does not publish an SPF Record -0.0 SPF_HELO_PASS SPF: HELO matches SPF record -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from envelope-from domain 0.0 MSGID_FROM_MTA_HEADER Message-Id was added by a relay X-BeenThere: opensbi@lists.infradead.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Sender: "opensbi" Errors-To: opensbi-bounces+incoming=patchwork.ozlabs.org@lists.infradead.org We should protect the M-mode only MMIO devices (such as CLINT) using the OpenSBI domain support. This can be easily achieved by having APIs to allow platform support (and drivers) to add memregions for the root domain. This series extends OpenSBI domain support to protect M-mode only devices. These patches can be found in domain_root_region_v2 branch at: https://github.com/avpatel/opensbi Changes since v2: - Improved sbi_domain_root_add_memregion() API to merge consecutive memregions in PATCH3 - Use updated sbi_domain_root_add_memregion() API in PATCH4 for CLINT Anup Patel (7): lib: sbi: Domains can be registered only before finalizing domains lib: sbi: Add sbi_domain_memregion_init() API lib: sbi: Add sbi_domain_root_add_memregion() API lib: utils/sys: Add CLINT memregion in the root domain lib: sbi: Make the root domain instance global variable lib: utils: Copy over restricted root domain memregions to FDT domains lib: sbi: Make sbi_domain_memregion_initfw() a local function include/sbi/sbi_domain.h | 26 ++++++- lib/sbi/sbi_domain.c | 139 +++++++++++++++++++++++++++++++------ lib/utils/fdt/fdt_domain.c | 26 +++++-- lib/utils/sys/clint.c | 29 +++++++- 4 files changed, 190 insertions(+), 30 deletions(-)