| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 16 May 2024 00:13:44 +0000 From: "Edgecombe, Rick P" <rick.p.edgecombe@...el.com> To: "seanjc@...gle.com" <seanjc@...gle.com>, "Huang, Kai" <kai.huang@...el.com>, "Yamahata, Isaku" <isaku.yamahata@...el.com> CC: "pbonzini@...hat.com" <pbonzini@...hat.com>, "linux-kernel@...r.kernel.org" <linux-kernel@...r.kernel.org>, "sagis@...gle.com" <sagis@...gle.com>, "isaku.yamahata@...ux.intel.com" <isaku.yamahata@...ux.intel.com>, "Aktas, Erdem" <erdemaktas@...gle.com>, "Zhao, Yan Y" <yan.y.zhao@...el.com>, "kvm@...r.kernel.org" <kvm@...r.kernel.org>, "dmatlack@...gle.com" <dmatlack@...gle.com>, "isaku.yamahata@...il.com" <isaku.yamahata@...il.com> Subject: Re: [PATCH 08/16] KVM: x86/mmu: Bug the VM if kvm_zap_gfn_range() is called for TDX On Thu, 2024-05-16 at 11:38 +1200, Huang, Kai wrote: > > > On 16/05/2024 11:14 am, Edgecombe, Rick P wrote: > > On Thu, 2024-05-16 at 10:17 +1200, Huang, Kai wrote: > > > > TDX has several aspects related to the TDP MMU. > > > > 1) Based on the faulting GPA, determine which KVM page table to walk. > > > > (private-vs-shared) > > > > 2) Need to call TDX SEAMCALL to operate on Secure-EPT instead of direct > > > > memory > > > > load/store. TDP MMU needs hooks for it. > > > > 3) The tables must be zapped from the leaf. not the root or the middle. > > > > > > > > For 1) and 2), what about something like this? TDX backend code will > > > > set > > > > kvm->arch.has_mirrored_pt = true; I think we will use > > > > kvm_gfn_shared_mask() > > > > only > > > > for address conversion (shared<->private). > > > > 1 and 2 are not the same as "mirrored" though. You could have a design that > > mirrors half of the EPT and doesn't track it with separate roots. In fact, 1 > > might be just a KVM design choice, even for TDX. > > I am not sure whether I understand this correctly. If they are not > tracked with separate roots, it means they use the same page table (root). There are three roots, right? Shared, private and mirrored. Shared and mirrored don't have to be different roots, but it makes some operations arguably easier to have it that way. > > So IIUC what you said is to support "mirror PT" at any sub-tree of the > page table? > > That will only complicate things. I don't think we should consider > this. In reality, we only have TDX and SEV-SNP. We should have a > simple solution to cover both of them. Look at "bool is_private" in kvm_tdp_mmu_map(). Do you see how it switches between different roots in the iterator? That is one use. The second use is to decide whether to call out to the x86_ops. It happens via the role bit in the sp, which is copied from the parent sp role. The root's bit is set originally via a kvm_gfn_shared_mask() check. BTW, the role bit is the thing I'm wondering if we really need, because we have shared_mask. While the shared_mask is used for lots of things today, we need still need it for masking GPAs. Where as the role bit is only needed to know if a SP is for private (which we can tell from the GPA).
Powered by blists - more mailing lists