| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <20240806221237.1634126-1-yunhong.jiang@linux.intel.com>
Date: Tue, 6 Aug 2024 15:12:30 -0700
From: Yunhong Jiang <yunhong.jiang@...ux.intel.com>
To: tglx@...utronix.de,
mingo@...hat.com,
bp@...en8.de,
dave.hansen@...ux.intel.com,
x86@...nel.org,
hpa@...or.com,
robh@...nel.org,
krzk+dt@...nel.org,
conor+dt@...nel.org,
kys@...rosoft.com,
haiyangz@...rosoft.com,
wei.liu@...nel.org,
decui@...rosoft.com,
rafael@...nel.org,
lenb@...nel.org,
kirill.shutemov@...ux.intel.com
Cc: linux-kernel@...r.kernel.org,
devicetree@...r.kernel.org,
linux-hyperv@...r.kernel.org,
linux-acpi@...r.kernel.org,
yunhong.jiang@...ux.intel.com
Subject: [PATCH 0/7] x86/acpi: Move ACPI MADT wakeup to generic code
This set of patches add ACPI multiprocessor wakeup support to TDX VMs
booting with device tree instead of ACPI.
Historically, x86 platforms have booted secondary processors (APs) using
INIT followed by the start up IPI (SIPI) messages. However, TDX VMs
can't use this protocol because this protocol requires assistance from
VMMs while VMMs are not trusted by TDX guest.
ACPI specification version 6.4 introduced a new wakeup mailbox model to
address this issue. A "Multiprocessor Wakeup Structure" has been added to
an existing ACPI table (MADT). This structure provides the physical of a
"Multiprocessor Wakeup Mailbox Structure". Message written to the mailbox
structure steers the APs to the boot code.
With this new wakeup model, TDX VMs with ACPI support boot the APs
securely. However, TDX VMs with the device tree have no ACPI support and
still face the challenge.
To fix this challenge, either a new mechanism from scratch is
introduced, or the TDX VMs with device tree can utilize the ACPI wakeup
model.
By reusing the ACPI wakeup mailbox model, the Multiprocessor Wakeup Mailbox
Structure will be kept and the message mechanism will be the same as ACPI.
This will reduce maintenance effort in the long term.
The first patch moves the madt wakeup implementation to generic code.
The second/third patches add the mailbox support to the device tree.
The last four patches apply the mailbox support to the hyper-v TDX VMs
with device tree.
Yunhong Jiang (7):
x86/acpi: Move ACPI MADT wakeup to generic code
dt-bindings: x86: Add ACPI wakeup mailbox
x86/dt: Support the ACPI multiprocessor wakeup for device tree
x86/hyperv: Parse the ACPI wakeup mailbox
x86/hyperv: Mark ACPI wakeup mailbox page as private
x86/hyperv: Reserve real mode when ACPI wakeup mailbox is available
x86/hyperv: Use the ACPI wakeup mailbox for VTL2 guests when available
.../devicetree/bindings/x86/wakeup.yaml | 41 ++++++++++++++++
MAINTAINERS | 3 ++
arch/x86/Kconfig | 2 +-
arch/x86/hyperv/hv_vtl.c | 43 +++++++++++++++--
arch/x86/include/asm/acpi.h | 1 -
arch/x86/include/asm/madt_wakeup.h | 16 +++++++
arch/x86/include/asm/mshyperv.h | 3 ++
arch/x86/kernel/Makefile | 1 +
arch/x86/kernel/acpi/Makefile | 1 -
arch/x86/kernel/cpu/mshyperv.c | 2 +
arch/x86/kernel/{acpi => }/madt_playdead.S | 0
arch/x86/kernel/{acpi => }/madt_wakeup.c | 47 ++++++++++++++++++-
drivers/hv/hv_common.c | 8 ++++
13 files changed, 159 insertions(+), 9 deletions(-)
create mode 100644 Documentation/devicetree/bindings/x86/wakeup.yaml
create mode 100644 arch/x86/include/asm/madt_wakeup.h
rename arch/x86/kernel/{acpi => }/madt_playdead.S (100%)
rename arch/x86/kernel/{acpi => }/madt_wakeup.c (87%)
base-commit: 9ebdc7589cbb5c976e6c8807cbe13f263d70d32c
--
2.25.1
Powered by blists - more mailing lists