Re: [PATCH v15 07/13] x86/sev: Mark Secure TSC as reliable clocksource

From: Borislav Petkov
Date: Wed Dec 11 2024 - 15:32:50 EST

Next message: Luis Felipe Hernandez: "[PATCH v5] lib/math: Add int_sqrt test suite"
Previous message: Akhil P Oommen: "Re: [PATCH 2/3] arm64: dts: qcom: qcs615: Add gpu and gmu nodes"
Next in thread: Nikunj A Dadhania: "Re: [PATCH v15 07/13] x86/sev: Mark Secure TSC as reliable clocksource"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Dec 03, 2024 at 02:30:39PM +0530, Nikunj A Dadhania wrote:
> diff --git a/arch/x86/mm/mem_encrypt_amd.c b/arch/x86/mm/mem_encrypt_amd.c
> index 774f9677458f..fa0bc52ef707 100644
> --- a/arch/x86/mm/mem_encrypt_amd.c
> +++ b/arch/x86/mm/mem_encrypt_amd.c
> @@ -541,6 +541,10 @@ void __init sme_early_init(void)
> * kernel mapped.
> */
> snp_update_svsm_ca();
> +
> + /* Mark the TSC as reliable when Secure TSC is enabled */
> + if (sev_status & MSR_AMD64_SNP_SECURE_TSC)
> + setup_force_cpu_cap(X86_FEATURE_TSC_RELIABLE);

What happens if someone writes MSR 0x10 on some CPU and thus makes the TSCs on
the host unsynchronized and that CPU runs a SecureTSC guest?

That guest would use RDTSC and get wrong values and turn the guest into
a mess, right?

--
Regards/Gruss,
Boris.

https://people.kernel.org/tglx/notes-about-netiquette

Next message: Luis Felipe Hernandez: "[PATCH v5] lib/math: Add int_sqrt test suite"
Previous message: Akhil P Oommen: "Re: [PATCH 2/3] arm64: dts: qcom: qcs615: Add gpu and gmu nodes"
Next in thread: Nikunj A Dadhania: "Re: [PATCH v15 07/13] x86/sev: Mark Secure TSC as reliable clocksource"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]