Received: by 2002:a05:6a10:9848:0:0:0:0 with SMTP id x8csp2555477pxf; Sat, 27 Mar 2021 15:58:33 -0700 (PDT) X-Google-Smtp-Source: ABdhPJxbCLLBNw/XQqH+eS1tKunMZB1rtqH+NizfU14FSWn4qvE1Bju43KUBAYqFIkY1p3/MiJVp X-Received: by 2002:a17:907:9611:: with SMTP id gb17mr22593721ejc.325.1616885913539; Sat, 27 Mar 2021 15:58:33 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1616885913; cv=none; d=google.com; s=arc-20160816; b=RBS7kMjpeFg50GY0PJEMCNRQnS4BXWYVbk7FklIY6Y4/NjweHBquED9MgFbA7gEvG+ w3JRA9LiaJTIlzJGBhSxZ3j1UEn6n+vEF2O8MxwwQox3qdlvrP4G6wpZHdYpi+n+FWz2 TO4NRT2qUkl2JiSby0IC+N0VMOIhi5Ni3QMR8+hQHgQJoxn+KB+lQ7GTcl0Tjwcfi1Iw TV/tWkbF4hDl0YBKN35J2gC/lUCtxpnm0AzoW/ZASVmbfcpahg+NKz2qTOfYphY34h20 anKyXxQCqvvWvtuNqzArLjdIjB6Pdr+4VSglXpjBG63G4t+k8tJcaIV7pFCP+HGXV7gK 4rJA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :references:in-reply-to:message-id:date:subject:cc:to:from :ironport-sdr:ironport-sdr; bh=aED9GJR7L4uE+q6qHdIS3n7W+Alz/2EjpRvzdXKulJY=; b=DC6E5m9zOlkj1ilRNo1Bi+Vwzfg65MM6WMgCGGkKaXNqMFyBOxL08bVfsr2CEZbari NdVEwt4UolAYfG5leDe03YS1j/YglGBfG4809PSm//LM+1YAdJHe1VFcN4wTEPi/cOXd Uxz1NKC6RwQSUbrUdZXdmuz6PiPQjiYMG72pZdoS7EBA7NIjyF8SJYFh3WE1TEshPCyI zEb3omCqU3X4jXPpYp//BP8NoQApXg3EQ1HTK7bNU5Few7EK6yChOiBLzNjI6PanSsCr qHYy7Yw6ru+hLLnkGoDyyw3ocCPS4vExzK9ytz9BAn1Dfx9DtHX3kipGhw7z1uGaZjHP 325Q== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id wn9si9431895ejb.491.2021.03.27.15.58.07; Sat, 27 Mar 2021 15:58:33 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S230490AbhC0Wy6 (ORCPT + 99 others); Sat, 27 Mar 2021 18:54:58 -0400 Received: from mga03.intel.com ([134.134.136.65]:51892 "EHLO mga03.intel.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S230442AbhC0Wyv (ORCPT ); Sat, 27 Mar 2021 18:54:51 -0400 IronPort-SDR: +XnP62xFZ1ZskJbyJpMBKTJ473a6MYBKT/lJIfSfAGRBzhZK/9xpwSJ6YIREi86uG8w4bjnavF 0uxBiKVOpB7Q== X-IronPort-AV: E=McAfee;i="6000,8403,9936"; a="191372617" X-IronPort-AV: E=Sophos;i="5.81,284,1610438400"; d="scan'208";a="191372617" Received: from orsmga002.jf.intel.com ([10.7.209.21]) by orsmga103.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 27 Mar 2021 15:54:50 -0700 IronPort-SDR: tLs+vEWBm+KU13l9rHtZuMweC2BQY8CntP+pmIr7kzddndrVxq4uZMkkb62u+90ChAj35C15tv WR5C8fGTuQVw== X-IronPort-AV: E=Sophos;i="5.81,284,1610438400"; d="scan'208";a="392673510" Received: from ovanloen-mobl.amr.corp.intel.com (HELO skuppusw-mobl5.amr.corp.intel.com) ([10.209.177.136]) by orsmga002-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 27 Mar 2021 15:54:49 -0700 From: Kuppuswamy Sathyanarayanan To: Peter Zijlstra , Andy Lutomirski , Dave Hansen Cc: Andi Kleen , Kirill Shutemov , Kuppuswamy Sathyanarayanan , Dan Williams , Raj Ashok , Sean Christopherson , linux-kernel@vger.kernel.org, Kuppuswamy Sathyanarayanan Subject: [PATCH v2 1/1] x86/tdx: Handle MWAIT, MONITOR and WBINVD Date: Sat, 27 Mar 2021 15:54:40 -0700 Message-Id: X-Mailer: git-send-email 2.25.1 In-Reply-To: <91C0F6F1-B8C3-4130-B903-C63CD4B87F3F@amacapital.net> References: <91C0F6F1-B8C3-4130-B903-C63CD4B87F3F@amacapital.net> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org In non-root TDX guest mode, MWAIT, MONITOR and WBINVD instructions are not supported. So handle #VE due to these instructions as no ops. Signed-off-by: Kuppuswamy Sathyanarayanan Reviewed-by: Andi Kleen --- Changes since v1: * Added WARN() for MWAIT #VE exception. Changes since previous series: * Suppressed MWAIT feature as per Andi's comment. * Added warning debug log for MWAIT #VE exception. arch/x86/kernel/tdx.c | 23 +++++++++++++++++++++++ 1 file changed, 23 insertions(+) diff --git a/arch/x86/kernel/tdx.c b/arch/x86/kernel/tdx.c index e936b2f88bf6..3c6158a53c17 100644 --- a/arch/x86/kernel/tdx.c +++ b/arch/x86/kernel/tdx.c @@ -308,6 +308,9 @@ void __init tdx_early_init(void) setup_force_cpu_cap(X86_FEATURE_TDX_GUEST); + /* MWAIT is not supported in TDX platform, so suppress it */ + setup_clear_cpu_cap(X86_FEATURE_MWAIT); + tdg_get_info(); pv_ops.irq.safe_halt = tdg_safe_halt; @@ -362,6 +365,26 @@ int tdg_handle_virtualization_exception(struct pt_regs *regs, case EXIT_REASON_EPT_VIOLATION: ve->instr_len = tdg_handle_mmio(regs, ve); break; + /* + * Per Guest-Host-Communication Interface (GHCI) for Intel Trust + * Domain Extensions (Intel TDX) specification, sec 2.4, + * some instructions that unconditionally cause #VE (such as WBINVD, + * MONITOR, MWAIT) do not have corresponding TDCALL + * [TDG.VP.VMCALL ] leaves, since the TD has been designed + * with no deterministic way to confirm the result of those operations + * performed by the host VMM. In those cases, the goal is for the TD + * #VE handler to increment the RIP appropriately based on the VE + * information provided via TDCALL. + */ + case EXIT_REASON_WBINVD: + pr_warn_once("WBINVD #VE Exception\n"); + case EXIT_REASON_MONITOR_INSTRUCTION: + /* Handle as nops. */ + break; + case EXIT_REASON_MWAIT_INSTRUCTION: + /* MWAIT is supressed, not supposed to reach here. */ + WARN(1, "MWAIT unexpected #VE Exception\n"); + return -EFAULT; default: pr_warn("Unexpected #VE: %d\n", ve->exit_reason); return -EFAULT; -- 2.25.1