Re: Virt Call depth tracking mitigation

From: Thomas Gleixner
Date: Tue Jul 19 2022 - 17:17:20 EST

Next message: Sean Christopherson: "Re: [PATCH V3 01/12] KVM: X86/MMU: Verify PDPTE for nested NPT in PAE paging mode when page fault"
Previous message: Arnd Bergmann: "Re: build failure of next-20220718 due to 'imx6_pcie_host_exit' defined but not used"
In reply to: Andrew Cooper: "Re: Virt Call depth tracking mitigation"
Next in thread: Michael Kelley (LINUX): "RE: Virt Call depth tracking mitigation"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Jul 19 2022 at 16:23, Andrew Cooper wrote:
> On 19/07/2022 15:13, Thomas Gleixner wrote:
>> Well, that makes the guest side "safe", but isn't a deep hypercall > 16
>> already underflowing in the hypervisor code before it returns to the
>> guest?
>
> Yeah, but that's the hypervisor's problem to deal with, in whatever
> manner it sees fit.
>
> And if the hypervisor is using IBeeRS then the first ret in guest
> context will underflow.

I have a look tomorrow.

>>> That said, after a return from the hypervisor, Linux has no idea what
>>> state the RSB is in, so the only safe course of action is to re-stuff.
>> Indeed.
>>
>> Another proof for my claim that virt creates more problems than it
>> solves.
>
> So how did you like debugging the gsbase crash on native hardware. :)

First of all I said it's creating more problems than it solves, which
means it solves some problems.

But more important, I'm not a wimp.

Thanks,

tglx

Next message: Sean Christopherson: "Re: [PATCH V3 01/12] KVM: X86/MMU: Verify PDPTE for nested NPT in PAE paging mode when page fault"
Previous message: Arnd Bergmann: "Re: build failure of next-20220718 due to 'imx6_pcie_host_exit' defined but not used"
In reply to: Andrew Cooper: "Re: Virt Call depth tracking mitigation"
Next in thread: Michael Kelley (LINUX): "RE: Virt Call depth tracking mitigation"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]