lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-ID: <0efe04cf-9b12-4a22-ad76-b7cd1f719f45@amd.com>
Date: Mon, 4 Nov 2024 22:14:47 -0600
From: "Pratik R. Sampat" <pratikrajesh.sampat@....com>
To: Sean Christopherson <seanjc@...gle.com>
CC: <kvm@...r.kernel.org>, <pbonzini@...hat.com>, <pgonda@...gle.com>,
	<thomas.lendacky@....com>, <michael.roth@....com>, <shuah@...nel.org>,
	<linux-kselftest@...r.kernel.org>, <linux-kernel@...r.kernel.org>
Subject: Re: [PATCH v3 2/9] KVM: selftests: Add a basic SNP smoke test



On 11/4/2024 5:47 PM, Sean Christopherson wrote:
> On Mon, Nov 04, 2024, Pratik R. Sampat wrote:
>>
>>
>> On 10/31/2024 11:27 AM, Sean Christopherson wrote:
>>> On Thu, Oct 31, 2024, Pratik R. Sampat wrote:
>>>> Hi Sean,
>>>>
>>>> On 10/30/2024 12:57 PM, Sean Christopherson wrote:
>>>>> On Wed, Oct 30, 2024, Pratik R. Sampat wrote:
>>>>>> On 10/30/2024 8:46 AM, Sean Christopherson wrote:
>>>>>>> +/* Minimum firmware version required for the SEV-SNP support */
>>>>>>> +#define SNP_FW_REQ_VER_MAJOR   1
>>>>>>> +#define SNP_FW_REQ_VER_MINOR   51
>>>>>>>
>>>>>>> Side topic, why are these hardcoded?  And where did they come from?  If they're
>>>>>>> arbitrary KVM selftests values, make that super duper clear.
>>>>>>
>>>>>> Well, it's not entirely arbitrary. This was the version that SNP GA'd
>>>>>> with first so that kind of became the minimum required version needed.
>>>>>>
>>>>>> I think the only place we've documented this is here -
>>>>>> https://github.com/AMDESE/AMDSEV/tree/snp-latest?tab=readme-ov-file#upgrade-sev-firmware.
>>>>>>
>>>>>> Maybe, I can modify the comment above to say something like -
>>>>>> Minimum general availability release firmware required for SEV-SNP support.
>>>>>
>>>>> Hmm, so if AMD says SNP is only supported for firmware version >= 1.51, why on
>>>>> earth is that not checked and enforced by the kernel?  Relying on userspace to
>>>>> not crash the host (or worse) because of unsupported firmware is not a winning
>>>>> strategy.
>>>>
>>>> We do check against the firmware level 1.51 while setting things up
>>>> first (drivers/crypto/ccp/sev-dev.c:__sev_snp_init_locked()) and we bail
>>>> out if it's otherwise. From the userspace, calls to KVM_SEV_INIT2 or any
>>>> other corresponding SNP calls should fail cleanly without any adverse
>>>> effects to the host.
>>>
>>> And I'm saying, that's not good enough.  If the platform doesn't support SNP,
>>> the KVM *must not* advertise support for SNP.
>>>
>>
>> Sure, fair to expect this. Currently, if the FW check fails, SNP is not
>> setup and there is nothing that indicates in the KVM capabilities (apart
>> from one dmesg error) that the support does not exist.
>>
>> One thing I could do (as an independent patch) is to introduce a CC API
>> that abstracts the FW version check made by the CCP module. Since sev
>> platform status can be gotten before INIT to extract the major and minor
>> version numbers, KVM can also call into this API and use that to decide
>> if the KVM capabilities for SNP must be set or not.
> 
> Why is CC_ATTR_HOST_SEV_SNP set if hardware/firmware can't actually support SNP?
> KVM shouldn't have to care about some arbitrary firmware API version, the whole
> point of a driver is so that KVM doesn't have to deal with such details.
> 
> I'm a-ok with a KVM selftest *asserting* that the kernel isn't broken, but KVM
> itself shouldn't need to manually check the firmware version.

Clearing CC_ATTR_HOST_SEV_SNP when the init fails is one approach to go
about it. Here we could clear it from here and eventually that would
prevent the the SNP feature being set in KVM capability.

+++ b/drivers/crypto/ccp/sev-dev.c
@@ -1099,6 +1099,7 @@ static int __sev_snp_init_locked(int *error)
                return 0;

        if (!sev_version_greater_or_equal(SNP_MIN_API_MAJOR, SNP_MIN_API_MINOR)) {
+               cc_platform_clear(CC_ATTR_HOST_SEV_SNP);

A suggestion where we could more directly approach this could be by
exporting an explicit check from ccp instead?

--- a/drivers/crypto/ccp/sev-dev.c
+++ b/drivers/crypto/ccp/sev-dev.c
@@ -122,6 +122,12 @@ static inline bool sev_version_greater_or_equal(u8 maj, u8 min)
        return false;
 }

+bool sev_snp_fw_available(void)
+{
+    return sev_version_greater_or_equal(SNP_MIN_API_MAJOR, SNP_MIN_API_MINOR);
+}
+EXPORT_SYMBOL_GPL(sev_snp_fw_available);

which could be then called on will as follows:

--- a/arch/x86/kvm/svm/sev.c
+++ b/arch/x86/kvm/svm/sev.c
@@ -3050,7 +3050,9 @@ void __init sev_hardware_setup(void)
        sev_es_asid_count = min_sev_asid - 1;
        WARN_ON_ONCE(misc_cg_set_capacity(MISC_CG_RES_SEV_ES, sev_es_asid_count));
        sev_es_supported = true;
-       sev_snp_supported = sev_snp_enabled && cc_platform_has(CC_ATTR_HOST_SEV_SNP);
+       sev_snp_supported = sev_snp_enabled && cc_platform_has(CC_ATTR_HOST_SEV_SNP) && sev_snp_fw_available();

 out:
        if (boot_cpu_has(X86_FEATURE_SEV))

This would ensure that we could enable and disable the SNP capability
even in the case where maybe the firmware can get hotloaded using the
proposed download_firmware_ex[1] or in cases where the INIT could be
deferred; all while KVM wouldn't need to be bothered with the API
details.

[1]: https://lore.kernel.org/lkml/20241029183907.3536683-1-dionnaglaze@google.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ