| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 10 Jan 2022 16:10:34 +0100
From: Paolo Bonzini <pbonzini@...hat.com>
To: Sean Christopherson <seanjc@...gle.com>
Cc: Maxim Levitsky <mlevitsk@...hat.com>, kvm@...r.kernel.org,
Jim Mattson <jmattson@...gle.com>,
Thomas Gleixner <tglx@...utronix.de>,
Joerg Roedel <joro@...tes.org>,
"maintainer:X86 ARCHITECTURE (32-BIT AND 64-BIT)" <x86@...nel.org>,
Vitaly Kuznetsov <vkuznets@...hat.com>,
Borislav Petkov <bp@...en8.de>, linux-kernel@...r.kernel.org,
Dave Hansen <dave.hansen@...ux.intel.com>,
"H. Peter Anvin" <hpa@...or.com>,
Wanpeng Li <wanpengli@...cent.com>,
Ingo Molnar <mingo@...hat.com>
Subject: Re: [PATCH v2 3/5] KVM: SVM: fix race between interrupt delivery and
AVIC inhibition
On 1/8/22 00:42, Sean Christopherson wrote:
> Yeah, I don't disagree, but the flip side is that without the early check, it's
> not all that obvious that SVM must not return -1.
But that's what the comment is about.
> And when AVIC isn't supported
> or is disabled at the module level, flowing into AVIC "specific" IRR logic is
> a bit weird. And the LAPIC code effectively becomes Intel-only.
Yeah, I agree that this particular aspect is a bit weird at first. But
it is also natural if you consider how IRR is implemented for AVIC vs.
APICv, especially with respect to incomplete IPIs. And the LAPIC code
becomes a blueprint for AVIC's, i.e. you can see that the AVIC code
effectively becomes the one in lapic.c when you have either
!vcpu->arch.apicv_active or an incomplete IPI.
I don't hate the code below, it does lose a bit of expressiveness of the
LAPIC code but I guess it's a good middle ground.
Paolo
> To make everyone happy, and fix the tracepoint issue, what about moving delivery
> into vendor code? E.g. the below (incomplete), with SVM functions renamed so that
> anything that isn't guaranteed to be AVIC specific uses svm_ instead of avic_.
>
> diff --git a/arch/x86/kvm/lapic.c b/arch/x86/kvm/lapic.c
> index baca9fa37a91..a9ac724c6305 100644
> --- a/arch/x86/kvm/lapic.c
> +++ b/arch/x86/kvm/lapic.c
> @@ -1096,14 +1096,7 @@ static int __apic_accept_irq(struct kvm_lapic *apic, int delivery_mode,
> apic->regs + APIC_TMR);
> }
>
> - if (static_call(kvm_x86_deliver_posted_interrupt)(vcpu, vector)) {
> - kvm_lapic_set_irr(vector, apic);
> - kvm_make_request(KVM_REQ_EVENT, vcpu);
> - kvm_vcpu_kick(vcpu);
> - } else {
> - trace_kvm_apicv_accept_irq(vcpu->vcpu_id, delivery_mode,
> - trig_mode, vector);
> - }
> + static_call(kvm_x86_deliver_interrupt)(vcpu, vector);
> break;
>
> case APIC_DM_REMRD:
> diff --git a/arch/x86/kvm/vmx/vmx.c b/arch/x86/kvm/vmx/vmx.c
> index fe06b02994e6..1fadd14ea884 100644
> --- a/arch/x86/kvm/vmx/vmx.c
> +++ b/arch/x86/kvm/vmx/vmx.c
> @@ -4012,6 +4012,18 @@ static int vmx_deliver_posted_interrupt(struct kvm_vcpu *vcpu, int vector)
> return 0;
> }
>
> +static void vmx_deliver_interrupt(struct kvm_vcpu *vcpu, int vector)
> +{
> + if (vmx_deliver_posted_interrupt(vcpu, vector)) {
> + kvm_lapic_set_irr(vector, apic);
> + kvm_make_request(KVM_REQ_EVENT, vcpu);
> + kvm_vcpu_kick(vcpu);
> + } else {
> + trace_kvm_apicv_accept_irq(vcpu->vcpu_id, delivery_mode,
> + trig_mode, vector);
> + }
> +}
> +
> /*
> * Set up the vmcs's constant host-state fields, i.e., host-state fields that
> * will not change in the lifetime of the guest.
> @@ -7651,7 +7663,7 @@ static struct kvm_x86_ops vmx_x86_ops __initdata = {
> .hwapic_isr_update = vmx_hwapic_isr_update,
> .guest_apic_has_interrupt = vmx_guest_apic_has_interrupt,
> .sync_pir_to_irr = vmx_sync_pir_to_irr,
> - .deliver_posted_interrupt = vmx_deliver_posted_interrupt,
> + .deliver_interrupt = vmx_deliver_interrupt,
> .dy_apicv_has_pending_interrupt = pi_has_pending_interrupt,
>
> .set_tss_addr = vmx_set_tss_addr,
>
Powered by blists - more mailing lists