Re: [PATCH 2/2] x86/tdx: Do not allow #VE due to EPT violation on the private memory

From: Dave Hansen
Date: Mon Oct 31 2022 - 10:22:45 EST

Next message: David Sterba: "Re: [syzbot] WARNING in btrfs_space_info_update_bytes_may_use"
Previous message: Peter Newman: "Re: [PATCH 18/18] x86/resctrl: Separate arch and fs resctrl locks"
In reply to: Kirill A. Shutemov: "Re: [PATCH 2/2] x86/tdx: Do not allow #VE due to EPT violation on the private memory"
Next in thread: Kirill A. Shutemov: "[PATCH 1/2] x86/tdx: Extract GET_INFO call from get_cc_mask()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 10/30/22 21:07, Guorui Yu wrote:
> We have encountered similar problems on SEV-ES, here are their fixes
> on Kernel [1] and OVMF[2].

SEV-ES and TDX are very different beasts in this area.

> Instead of enforcing the ATTR_SEPT_VE_DISABLE in TDX guest kernel, I
> think the fix should also include necessary check on the MMIO path of
> the #VE routine.

Instead?

Without ATTR_SEPT_VE_DISABLE, a #VE can occur on basically any
instruction. We call those kinds of exceptions "paranoid entry" points.
They need special handling like the NMI or #MC handlers.

I'd be happy to look at a patch that does the MMIO path check *and*
turns the #VE handler into a robust entry point.

Bonus points if you can do ~5 lines of C like the approach in this thread.

Next message: David Sterba: "Re: [syzbot] WARNING in btrfs_space_info_update_bytes_may_use"
Previous message: Peter Newman: "Re: [PATCH 18/18] x86/resctrl: Separate arch and fs resctrl locks"
In reply to: Kirill A. Shutemov: "Re: [PATCH 2/2] x86/tdx: Do not allow #VE due to EPT violation on the private memory"
Next in thread: Kirill A. Shutemov: "[PATCH 1/2] x86/tdx: Extract GET_INFO call from get_cc_mask()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]