Received: by 2002:a25:7ec1:0:0:0:0:0 with SMTP id z184csp2888418ybc; Thu, 14 Nov 2019 00:14:48 -0800 (PST) X-Google-Smtp-Source: APXvYqywjyzdfM8Glc9kFJR9KqBWz3D8NBSuelwA9QFhWyrfeychKHuvX+MSUUtZg5LeOxRMFcaY X-Received: by 2002:a50:ef16:: with SMTP id m22mr8427129eds.154.1573719288034; Thu, 14 Nov 2019 00:14:48 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1573719288; cv=none; d=google.com; s=arc-20160816; b=0xeMMfTgsL3DLiYOXWtUmc/k3amT9J64dk5w+P4QupnLSew1+i4nGp8MMvUcTdpbqo v+fk3tCeExCFGU3jVeGb5OC3xlw+chJCJ5yDs4yPEec7yUcHdd/Ar6klJ55T970QxM3y L+a6Lx7+3b1Ufq2W9VYOi0BIaU5Eki4usNbPq7me8WJJ9TPRZyuztv9xEAPSzRgPs/2K +QDxu3twWAYVa5ahBB/51qCpAP7o3mxGqXUfiB6i9UCivHxuxIULoZbSPufZh13KHu53 u7x+PyTAq1yhfyY0QA5+JFP4Op/BbQh3N78eUXoR/JEBFXzcJ0J2qRk/+ga43Pgw3j6E LHaA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-transfer-encoding :content-language:in-reply-to:mime-version:user-agent:date :message-id:from:references:cc:to:subject; bh=AT5MeZ6BeEpj/qolkJizvx7R4rsI9+gZyjYO612ttBk=; b=mWSce/ta7q3Ww4Lx2nWcgrnuH9owNzww8isAkZGOwT+Oo+7obcSSL8C5nymmoZpS62 ZaeCDxndomV5s8jrk1UxvAKFTg0Oi2JeG8xbxZOuAtmgx1v3senX6CLA++Lu3axx/W9S PG6d4LY8d8Wkm5JbppWnJlxtLpt+5WMZSRWFzI5cQNcZClcqJEAKy+vRg/ami/nIc5Al 6Nw2MgajQJYrKtd4Xw2rZ5dFzgKkoSdQtt1jpg5DeGXt6XVFyEArc0KCltcYajqiV+3n 7C5zK5V/Ou/wnH9oxf8XuaTE2uF5xadYPbViotstYVWm/UdS3IlNIlctnjiHmA8Gdw2D BIyg== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=siemens.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id qh15si2880580ejb.295.2019.11.14.00.14.22; Thu, 14 Nov 2019 00:14:48 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=siemens.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726202AbfKNINg (ORCPT + 99 others); Thu, 14 Nov 2019 03:13:36 -0500 Received: from thoth.sbs.de ([192.35.17.2]:39146 "EHLO thoth.sbs.de" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1725965AbfKNINg (ORCPT ); Thu, 14 Nov 2019 03:13:36 -0500 Received: from mail1.sbs.de (mail1.sbs.de [192.129.41.35]) by thoth.sbs.de (8.15.2/8.15.2) with ESMTPS id xAE8DNNI008618 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK); Thu, 14 Nov 2019 09:13:23 +0100 Received: from [167.87.46.11] ([167.87.46.11]) by mail1.sbs.de (8.15.2/8.15.2) with ESMTP id xAE8DM5G023544; Thu, 14 Nov 2019 09:13:22 +0100 Subject: Re: [FYI PATCH 0/7] Mitigation for CVE-2018-12207 To: Pawan Gupta , Paolo Bonzini Cc: linux-kernel@vger.kernel.org, kvm@vger.kernel.org, Ralf Ramsauer , "Gupta, Pawan Kumar" References: <1573593697-25061-1-git-send-email-pbonzini@redhat.com> <23353382-53ea-8b20-7e30-763ef6df374c@siemens.com> <20191113232510.GB891@guptapadev.amr> From: Jan Kiszka Message-ID: <671b49ab-f65d-8b44-4da6-137d05cd1b9c@siemens.com> Date: Thu, 14 Nov 2019 09:13:22 +0100 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.2.1 MIME-Version: 1.0 In-Reply-To: <20191113232510.GB891@guptapadev.amr> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 14.11.19 00:25, Pawan Gupta wrote: > On Wed, Nov 13, 2019 at 09:23:30AM +0100, Paolo Bonzini wrote: >> On 13/11/19 07:38, Jan Kiszka wrote: >>> When reading MCE, error code 0150h, ie. SRAR, I was wondering if that >>> couldn't simply be handled by the host. But I suppose the symptom of >>> that erratum is not "just" regular recoverable MCE, rather >>> sometimes/always an unrecoverable CPU state, despite the error code, right? >> >> The erratum documentation talks explicitly about hanging the system, but >> it's not clear if it's just a result of the OS mishandling the MCE, or >> something worse. So I don't know. :( Pawan, do you? > > As Dave mentioned in the other email its "something worse". > > Although this erratum results in a machine check with the same MCACOD > signature as an SRAR error (0x150) the MCi_STATUS.PCC bit will be set to > one. The Intel Software Developers manual says that PCC=1 errors are > fatal and cannot be recovered. > > 15.10.4.1 Machine-Check Exception Handler for Error Recovery [1] > > [...] > The PCC flag in each IA32_MCi_STATUS register indicates whether recovery > from the error is possible for uncorrected errors (UC=1). If the PCC > flag is set for enabled uncorrected errors (UC=1 and EN=1), recovery is > not possible. > And, as Dave observed, even that event is not delivered to software (maybe just logged by firmware for post-reset analysis) but can or does cause a machine lock-up, right? Thanks, Jan -- Siemens AG, Corporate Technology, CT RDA IOT SES-DE Corporate Competence Center Embedded Linux