| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <aa6a2af0-fa4b-42a7-98d6-d295efbb2732@linux.intel.com> Date: Fri, 14 Feb 2025 08:47:47 +0800 From: Binbin Wu <binbin.wu@...ux.intel.com> To: "Edgecombe, Rick P" <rick.p.edgecombe@...el.com>, "Gao, Chao" <chao.gao@...el.com> Cc: "seanjc@...gle.com" <seanjc@...gle.com>, "Huang, Kai" <kai.huang@...el.com>, "Chatre, Reinette" <reinette.chatre@...el.com>, "Li, Xiaoyao" <xiaoyao.li@...el.com>, "Hunter, Adrian" <adrian.hunter@...el.com>, "Lindgren, Tony" <tony.lindgren@...el.com>, "kvm@...r.kernel.org" <kvm@...r.kernel.org>, "pbonzini@...hat.com" <pbonzini@...hat.com>, "Yamahata, Isaku" <isaku.yamahata@...el.com>, "linux-kernel@...r.kernel.org" <linux-kernel@...r.kernel.org>, "Zhao, Yan Y" <yan.y.zhao@...el.com> Subject: Re: [PATCH v2 8/8] KVM: TDX: Handle TDX PV MMIO hypercall On 2/14/2025 5:41 AM, Edgecombe, Rick P wrote: > On Wed, 2025-02-12 at 10:39 +0800, Binbin Wu wrote: >>> IIRC, a TD-exit may occur due to an EPT MISCONFIG. Do you need to >>> distinguish >>> between a genuine EPT MISCONFIG and a morphed one, and handle them >>> differently? >> It will be handled separately, which will be in the last section of the KVM >> basic support. But the v2 of "the rest" section is on hold because there is >> a discussion related to MTRR MSR handling: >> https://lore.kernel.org/all/20250201005048.657470-1-seanjc@google.com/ >> Want to send the v2 of "the rest" section after the MTRR discussion is >> finalized. > I think we can just put back the original MTRR code (post KVM MTRR removal > version) for the next posting of the rest. The reason being Sean was pointing > that it is more architecturally correct given that the CPUID bit is exposed. So > we will need that regardless of the guest solution. The original MTRR code before removing is: https://lore.kernel.org/kvm/81119d66392bc9446340a16f8a532c7e1b2665a2.1708933498.git.isaku.yamahata@intel.com/ It enforces WB as default memtype and disables fixed/variable range MTRRs. That means this solution doesn't allow guest to use MTRRs as a communication channel if the guest firmware wants to program some ranges to UC for legacy devices. How about to allow TDX guests to access MTRR MSRs as what KVM does for normal VMs? Guest kernels may use MTRRs as a crutch to get the desired memtype for devices. E.g., in most KVM-based setups, legacy devices such as the HPET and TPM are enumerated via ACPI. And in Linux kernel, for unknown reasons, ACPI auto-maps such devices as WB, whereas the dedicated device drivers map memory as WC or UC. The ACPI mappings rely on firmware to configure PCI hole (and other device memory) to be UC in the MTRRs to end up UC-, which is compatible with the drivers' requested WC/UC-. So KVM needs to allow guests to program the desired value in MTRRs in case guests want to use MTRRs as a communication channel between guest firmware and the kernel. Allow TDX guests to access MTRR MSRs as what KVM does for normal VMs, i.e., KVM emulates accesses to MTRR MSRs, but doesn't virtualize guest MTRR memory types. One open is whether enforce the value of default MTRR memtype as WB. However, TDX disallows toggling CR0.CD. If a TDX guest wants to use MTRRs as the communication channel, it should skip toggling CR0.CD when it programs MTRRs both in guest firmware and guest kernel. For a guest, there is no reason to disable caches because it's in a virtual environment. It makes sense for guest firmware/kernel to skip toggling CR0.CD when it detects it's running as a TDX guest. > > But it would probably would be good to update this before re-posting: > https://lore.kernel.org/kvm/20241210004946.3718496-19-binbin.wu@linux.intel.com/#t > > Given the last one got hardly any comments and the mostly recent patches are > already in kvm-coco-queue, I say we try to review that version a bit more. This > is different then previously discussed. Any objections?
Powered by blists - more mailing lists