| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <Z8iPFYx4q9VSttiV@8bytes.org> Date: Wed, 5 Mar 2025 18:51:17 +0100 From: Joerg Roedel <joro@...tes.org> To: Dave Hansen <dave.hansen@...el.com> Cc: Borislav Petkov <bp@...en8.de>, Joerg Roedel <jroedel@...e.de>, "Kirill A. Shutemov" <kirill.shutemov@...ux.intel.com>, Ingo Molnar <mingo@...nel.org>, x86@...nel.org, hpa@...or.com, Tom Lendacky <thomas.lendacky@....com>, Nikunj A Dadhania <nikunj@....com>, linux-kernel@...r.kernel.org, Larry.Dewey@....com Subject: Re: [PATCH] x86/sev: Make SEV_STATUS available via SYSFS On Wed, Mar 05, 2025 at 09:09:47AM -0800, Dave Hansen wrote: > They are documented as coming straight from the TDX module when TDX is > in place. But there's nothing stopping an evil hypervisor from faking > them, except attestation. That is the same for MSR_SEV_STATUS. A malicious HV can emulate it on older hardware and give fake values to the guest. The only trusted proof is attestation. > Joerg, why do folks care if they're running under SEV? What kind of > stuff are they doing after they do the rdmsr and see that SEV is in play? So people started to use tooling which tells them whether the VM runs with SEV (and what level of SEV). One of these tools is snpguest which has the 'ok' subcommand that basically takes the SEV_GUEST MSR and dumps its bits in a human readable form. The tool can also do full attestation, but for a first check it only relies on the MSR. I think the tool is also called by some remote management tooling to fetch information about the VM. Regards, Joerg
Powered by blists - more mailing lists