Received: by 2002:a05:6a10:8c0a:0:0:0:0 with SMTP id go10csp4474940pxb;
        Sun, 14 Feb 2021 11:42:15 -0800 (PST)
X-Google-Smtp-Source: ABdhPJx0FhYaRyMtId+Dar/v+A1kgZohgiXd5hx8zGfAqq6QeICh9C6ZsgFeGTJwtzPsDfMuISTt
X-Received: by 2002:a05:6402:50ce:: with SMTP id h14mr12558705edb.283.1613331735462;
        Sun, 14 Feb 2021 11:42:15 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1613331735; cv=none;
        d=google.com; s=arc-20160816;
        b=MAKq/E6VLXmBRyovH8ezg75ki0dTJuMYgY0aRXK9JoELmDf7lfZthOpwUu5ZDq7Vek
         jd6bdF/2yXg0ZFZA4z99PMNITvSmi0MCS1WSNZo0QrDMMoY3tz+hYHY32yLkrW5XIROv
         fsQfOSHIyjv25Jh7gSRMlSyOPS63fbLsq/8UVFvrxq6y0ZUlAzcxY7MXlCsV0dCaqzC4
         kKV/4YXZwgzN+jVwo/QS9Fh/fxzJZ+g5KQUlsD8zDn3+6d9D6BJdNyAhgtRYTXiZK7un
         mSNOJ+enTm1j3fIJcbN5Ot0h52I4RtR6WZj+AVjH01oU8zZLS7TiceEs1eVhWmXFjFc5
         GiCQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:in-reply-to:content-disposition:mime-version
         :references:message-id:subject:cc:to:from:date:ironport-sdr
         :ironport-sdr;
        bh=7B7Sf2yGfzhORLX3LG95P8OH4WQNxWmoLe3cEFiwDAw=;
        b=TMivsyFlr9iTxZDTBmvrAeBABdYksbvbwqBhR76vJgWfr10LLBfkz7MuqHSOERq5YL
         2C1nqJ/F/ic2nf0yl3xkI6Xzj63qcgHdahpG2P4eMoS5UQSQfigeImf5cwz9GCdLffaB
         Mzl0t59Yszw4t4NpwgQ8TE/EP0u0DhliA2mD2LTEDoIF9byQS40qDFyfFtJ8YAiexm+f
         W7HRLsqKKGL+y6hj3i4HyZllSVpkdOr91R1GA7n5+L6xaPnKbs0J80RY973bkCAvHJpL
         Ih6olaVBpvUqrfL3BynyU17RTZi1WGNmhfp8TsgvLelX5h7EwaR8SA/8ljOu0wf2xwJH
         J4Xg==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id u9si3244522eda.409.2021.02.14.11.41.40;
        Sun, 14 Feb 2021 11:42:15 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S229789AbhBNTfJ (ORCPT <rfc822;lowstz@gmail.com> + 99 others);
        Sun, 14 Feb 2021 14:35:09 -0500
Received: from mga12.intel.com ([192.55.52.136]:53951 "EHLO mga12.intel.com"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S229642AbhBNTfI (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Sun, 14 Feb 2021 14:35:08 -0500
IronPort-SDR: O9MjSacBhjWCgLheiIbex1RVbMh2ZZmKyzfMbHuZ7FsoQb69tWnDcH7WBb3L4S0B+YV5JvDnTl
 pmIa0sQMwqnw==
X-IronPort-AV: E=McAfee;i="6000,8403,9895"; a="161736102"
X-IronPort-AV: E=Sophos;i="5.81,179,1610438400"; 
   d="scan'208";a="161736102"
Received: from orsmga002.jf.intel.com ([10.7.209.21])
  by fmsmga106.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 14 Feb 2021 11:33:22 -0800
IronPort-SDR: V2grEBjIPBMLQfK0YatjbkaTnDA5f3Ijs8X5sKxsnCJ6c3Kkf0XqQ0YrVNYTefrvBZKIwoq8D/
 uOxLM2jO5kSg==
X-IronPort-AV: E=Sophos;i="5.81,179,1610438400"; 
   d="scan'208";a="376990409"
Received: from tassilo.jf.intel.com ([10.54.74.11])
  by orsmga002-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 14 Feb 2021 11:33:22 -0800
Date:   Sun, 14 Feb 2021 11:33:20 -0800
From:   Andi Kleen <ak@linux.intel.com>
To:     Dave Hansen <dave.hansen@intel.com>
Cc:     Andy Lutomirski <luto@kernel.org>,
        Sean Christopherson <seanjc@google.com>,
        Kuppuswamy Sathyanarayanan 
        <sathyanarayanan.kuppuswamy@linux.intel.com>,
        Peter Zijlstra <peterz@infradead.org>,
        Kirill Shutemov <kirill.shutemov@linux.intel.com>,
        Kuppuswamy Sathyanarayanan <knsathya@kernel.org>,
        Dan Williams <dan.j.williams@intel.com>,
        Raj Ashok <ashok.raj@intel.com>,
        LKML <linux-kernel@vger.kernel.org>,
        Sean Christopherson <sean.j.christopherson@intel.com>
Subject: Re: [RFC v1 05/26] x86/traps: Add #VE support for TDX guest
Message-ID: <20210214193320.GH365765@tassilo.jf.intel.com>
References: <CALCETrWPCTmoeFBEJvw98zwNpw316Xii_16COZAWoYNC=obF+w@mail.gmail.com>
 <YCbfyde9jl7ti0Oz@google.com>
 <8c23bbfd-e371-a7cf-7f77-ec744181547b@intel.com>
 <YCbm/umiGUS7UuVb@google.com>
 <514734d9-d8be-03ee-417e-4d0ad2f56276@intel.com>
 <YCbq+UEMIsE0NIWI@google.com>
 <7d0b08c4-5ae7-f914-e217-767a9fae7b78@intel.com>
 <YCb0/Dg28uI7TRD/@google.com>
 <CALCETrUnOVvC4d8c_Z=5ZDefAo+0t6-9hadttOjTypJykN6_3A@mail.gmail.com>
 <caa0b029-038c-cb59-6a69-70c84922fc6f@intel.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <caa0b029-038c-cb59-6a69-70c84922fc6f@intel.com>
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Fri, Feb 12, 2021 at 01:48:36PM -0800, Dave Hansen wrote:
> On 2/12/21 1:47 PM, Andy Lutomirski wrote:
> >> What about adding a property to the TD, e.g. via a flag set during TD creation,
> >> that controls whether unaccepted accesses cause #VE or are, for all intents and
> >> purposes, fatal?  That would allow Linux to pursue treating EPT #VEs for private
> >> GPAs as fatal, but would give us a safety and not prevent others from utilizing
> >> #VEs.
> > That seems reasonable.
> 
> Ditto.
> 
> We first need to double check to see if the docs are right, though.

I confirmed with the TDX module owners that #VE can only happen for:
- unaccepted pages
- instructions like MSR access or CPUID
- specific instructions that are no in the syscall gap

Also if there are future asynchronous #VEs they would only happen
with IF=1, which would also protect the gap.

So no need to make #VE an IST.

-Andi