Re: [PATCH v4 1/1] x86/tdx: Handle MWAIT, MONITOR and WBINVD

From: Andi Kleen
Date: Wed Mar 31 2021 - 23:37:38 EST

Next message: Gao Xiang: "[PATCH v2 01/10] erofs: reserve physical_clusterbits[]"
Previous message: Wong Vee Khee: "[PATCH 1/1] watchdog: Fix a typo in Kconfig"
In reply to: Dave Hansen: "Re: [PATCH v4 1/1] x86/tdx: Handle MWAIT, MONITOR and WBINVD"
Next in thread: Dave Hansen: "Re: [PATCH v4 1/1] x86/tdx: Handle MWAIT, MONITOR and WBINVD"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> The hardware (and VMMs and SEAM) have ways of telling the guest kernel
> what is supported: CPUID. If it screws up, and the guest gets an
> unexpected #VE, so be it.

The main reason for disabling stuff is actually that we don't need
to harden it. All these things are potential attack paths.

>
> We don't have all kinds of crazy handling in the kernel's #UD handler
> just in case a CPU mis-enumerates a feature and we get a #UD. We have
> to trust the underlying hardware to be sane. If it isn't, we die a
> horrible death as fast as possible. Why should TDX be any different?

That's what the original patch did -- no unnecessary checks -- but reviewers
keep asking for the extra checks, so Sathya added more. We have the not
unusual problem here that reviewers don't agree among themselves.

-Andi

Next message: Gao Xiang: "[PATCH v2 01/10] erofs: reserve physical_clusterbits[]"
Previous message: Wong Vee Khee: "[PATCH 1/1] watchdog: Fix a typo in Kconfig"
In reply to: Dave Hansen: "Re: [PATCH v4 1/1] x86/tdx: Handle MWAIT, MONITOR and WBINVD"
Next in thread: Dave Hansen: "Re: [PATCH v4 1/1] x86/tdx: Handle MWAIT, MONITOR and WBINVD"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]