Re: [RFC PATCH V6 01/14] x86/sev: Add a #HV exception handler

From: Dave Hansen
Date: Tue May 30 2023 - 15:04:00 EST

Next message: Alex Elder: "Re: [PATCH net] net: ipa: Use the correct value for IPA_STATUS_SIZE"
Previous message: Bjorn Helgaas: "Re: [PATCH v6 5/6] drm/etnaviv: add driver support for the PCI devices"
In reply to: Peter Zijlstra: "Re: [RFC PATCH V6 01/14] x86/sev: Add a #HV exception handler"
Next in thread: Peter Zijlstra: "Re: [RFC PATCH V6 01/14] x86/sev: Add a #HV exception handler"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 5/30/23 11:52, Peter Zijlstra wrote:
>> That should really say that a nested #HV should never be raised by the
>> hypervisor, but if it is, then the guest should detect that and
>> self-terminate knowing that the hypervisor is possibly being malicious.
> I've yet to see code that can do that reliably.

By "#HV should never be raised by the hypervisor", I think Tom means:

#HV can and will be raised by malicious hypervisors and the
guest must be able to unambiguously handle it in a way that
will not result in the guest getting rooted.

Right? ;)

Next message: Alex Elder: "Re: [PATCH net] net: ipa: Use the correct value for IPA_STATUS_SIZE"
Previous message: Bjorn Helgaas: "Re: [PATCH v6 5/6] drm/etnaviv: add driver support for the PCI devices"
In reply to: Peter Zijlstra: "Re: [RFC PATCH V6 01/14] x86/sev: Add a #HV exception handler"
Next in thread: Peter Zijlstra: "Re: [RFC PATCH V6 01/14] x86/sev: Add a #HV exception handler"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]