lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Mon, 19 Jul 2021 12:37:52 -0700 From: Oliver Upton <oupton@...gle.com> To: Jean-Philippe Brucker <jean-philippe@...aro.org> Cc: Alexandru Elisei <Alexandru.Elisei@....com>, salil.mehta@...wei.com, lorenzo.pieralisi@....com, kvm@...r.kernel.org, corbet@....net, maz@...nel.org, linux-kernel@...r.kernel.org, jonathan.cameron@...wei.com, catalin.marinas@....com, pbonzini@...hat.com, will@...nel.org, kvmarm@...ts.cs.columbia.edu, linux-arm-kernel@...ts.infradead.org Subject: Re: [RFC PATCH 0/5] KVM: arm64: Pass PSCI to userspace On Mon, Jul 19, 2021 at 11:02 AM Jean-Philippe Brucker <jean-philippe@...aro.org> wrote: > We forward the whole PSCI function range, so it's either KVM or userspace. > If KVM manages PSCI and the guest calls an unimplemented function, that > returns directly to the guest without going to userspace. > > The concern is valid for any other range, though. If userspace enables the > HVC cap it receives function calls that at some point KVM might need to > handle itself. So we need some negotiation between user and KVM about the > specific HVC ranges that userspace can and will handle. Are we going to use KVM_CAPs for every interesting HVC range that userspace may want to trap? I wonder if a more generic interface for hypercall filtering would have merit to handle the aforementioned cases, and whatever else a VMM will want to intercept down the line. For example, x86 has the concept of 'MSR filtering', wherein userspace can specify a set of registers that it wants to intercept. Doing something similar for HVCs would avoid the need for a kernel change each time a VMM wishes to intercept a new hypercall. -- Thanks, Oliver
Powered by blists - more mailing lists