Re: [PATCH] x86/coco, x86/sev: Use cpu_feature_enabled() to detect SEV guest flavor

From: Borislav Petkov
Date: Tue Dec 05 2023 - 09:46:38 EST

Next message: Luca Ceresoli: "Re: [PATCH v14 0/8] NVMEM cells in sysfs"
Previous message: Christian Marangi: "Re: [net-next PATCH v3 3/3] net: phy: add support for PHY package MMD read/write"
In reply to: Kirill A. Shutemov: "[PATCH] x86/coco, x86/sev: Use cpu_feature_enabled() to detect SEV guest flavor"
Next in thread: Kirill A. Shutemov: "Re: [PATCH] x86/coco, x86/sev: Use cpu_feature_enabled() to detect SEV guest flavor"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Dec 05, 2023 at 05:37:38PM +0300, Kirill A. Shutemov wrote:
> The SEV code uses cc_platform_has() checks to detect the SEV flavor.
> However, these checks can sometimes produce false positives depending on
> the context.
>
> For example, sev_map_percpu_data() uses CC_ATTR_GUEST_MEM_ENCRYPT to
> detect SEV guest, but this check will also pass for TDX guests.

Well, a function prefixed with "sev_" should check cc_vendor first...

--
Regards/Gruss,
Boris.

https://people.kernel.org/tglx/notes-about-netiquette

Next message: Luca Ceresoli: "Re: [PATCH v14 0/8] NVMEM cells in sysfs"
Previous message: Christian Marangi: "Re: [net-next PATCH v3 3/3] net: phy: add support for PHY package MMD read/write"
In reply to: Kirill A. Shutemov: "[PATCH] x86/coco, x86/sev: Use cpu_feature_enabled() to detect SEV guest flavor"
Next in thread: Kirill A. Shutemov: "Re: [PATCH] x86/coco, x86/sev: Use cpu_feature_enabled() to detect SEV guest flavor"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]