Received: by 2002:a05:6a10:206:0:0:0:0 with SMTP id 6csp3665237pxj; Tue, 1 Jun 2021 10:18:34 -0700 (PDT) X-Google-Smtp-Source: ABdhPJxLUY6cQx6caoQAmJP8z2RidYjYCvmlkZ4Yv6nxuyVF3McMYt6M69DHPPNbwYy307GTSYmq X-Received: by 2002:a02:9442:: with SMTP id a60mr14368533jai.105.1622567914275; Tue, 01 Jun 2021 10:18:34 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1622567914; cv=none; d=google.com; s=arc-20160816; b=QQ4FzinG9LZG8OLzJCnCwWSgFGmKEORzpZI/EWb9pGRxNF+UUzRECbuCXNGZ70HclU 6uB3lnC0njicfDK3HaXmzWFV2N9d7jyyGBURFhs7RsBJ7XOGuAGcvqkNaZ78MQhFGkT+ EISOGtUpRlzaeCdzYyPlEHxFwYnzX3Ygt7x7H4uBebnvw9thaFdyKPUzle2jgjPTeMn1 6hvsq7hZMC8GszZLx77VLyGd78mEQAHOZS69ufHAl8/Ujk26wHA7HHRNfcJVgQXdnBxP ZLdnAwQp8WWI2nLnc3YsLjDYK0ZPpB9MjyVCjecpmlJICbpfe24JhfR5r11cxiAMxoLh EAmg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:in-reply-to:content-disposition:mime-version :references:message-id:subject:cc:to:from:date:dkim-signature; bh=03YGTpNwQSOs+dI0DajKWE/HnlTsHUlOJKv/uB8bu8o=; b=kOS+T4VbkmsuDVEgXeDrElg5IG5WZwypFUB2BZrMCz+IKcUHQesAVwUfCJJRBVgIsj Xvzhv2sHscg+ywILW6PEdTtj4zUujEuasbg7TFPPQO1r5yjsLQiPwEJ81Lf41HtPTGAJ Cemanq7mpDotcT4DlsICsbr2gcH2qJ8qEt2PL+ZvJs+DgVoXlX7+BgwY3czuWZ2AnK5m EGjLtbrPIZJNoxuEZ3GE3MjTAis7qRM+kiVN/S6Qfzlr+JHkEJYlHLukJv44K8QjWNEE MDXxVYA3q+FpmRuYyztZ/LCR0tMY2v0xUNoLDLGoG56sos4cXWoa5hry0x5/VrSEldUB bm0Q== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=lQf4HXK1; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id c15si10307633iln.17.2021.06.01.10.18.19; Tue, 01 Jun 2021 10:18:34 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=lQf4HXK1; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S234492AbhFARSB (ORCPT + 99 others); Tue, 1 Jun 2021 13:18:01 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:36540 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S232490AbhFARR7 (ORCPT ); Tue, 1 Jun 2021 13:17:59 -0400 Received: from mail-pj1-x1033.google.com (mail-pj1-x1033.google.com [IPv6:2607:f8b0:4864:20::1033]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 85B20C061574 for ; Tue, 1 Jun 2021 10:16:17 -0700 (PDT) Received: by mail-pj1-x1033.google.com with SMTP id o17-20020a17090a9f91b029015cef5b3c50so1818356pjp.4 for ; Tue, 01 Jun 2021 10:16:17 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=date:from:to:cc:subject:message-id:references:mime-version :content-disposition:in-reply-to; bh=03YGTpNwQSOs+dI0DajKWE/HnlTsHUlOJKv/uB8bu8o=; b=lQf4HXK19/hFZG81cGyUp07I8F+flEDEOIxVB1Z/Rt2SEAWS3YszoIHLRAJgmgAUTw Edy2QW9uzPi+mzLbA9XbJwsVRcfjLOMRajCMS1vssNlGY6HyMiUnwxvLpqT2iiGAWkNY CqORDo3gPhJlFccupKxkE2/usq7xSdkR7wYPJtsIjxN8VIgPoGjDk9clMHss+BEafbJw +LNWiFb7hJLe3xFkbB33M/EUXFPgszY8Om3Uf2prmU0HnrOWUwnfO+cEi4c3fC+sizsE kE4wbGfst49nJFzgDNQMbjlKmUogCyjYPViFQ0cJjHZAyqqxR9XosG3Ova7FUWdFywbQ RL2A== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:date:from:to:cc:subject:message-id:references :mime-version:content-disposition:in-reply-to; bh=03YGTpNwQSOs+dI0DajKWE/HnlTsHUlOJKv/uB8bu8o=; b=QEZgvWNdfuHhzbkDnX3Qg1ZOvBjr+nnl17ILdGlAgr0k3s2jr6OQm6+cAob6XZtJqv Md6z9Y24pYPdqTQGMrUzeuwArB30bInPS9Gohy5H/5Hm9aUIrElsFbWhHIRcLLz3QChH dACi9rIpPNp6yWzuZFCCC6PwZFT32tyVKoMpei7Z0lywicGOl0dQjP2zQOicYHhQ25Jv 1C3kuVxoUq+VEEkpTzII9qGoI0HU6fV5phggzpmhW0DsUVNHyJetmML5uQUvcK5AQMVE MyAfuUr8CwQTRDuo+tndlGTEgWkvyV4ah76xW3+9+U3L4MgDCJDs6vO7L8BHIZjBAVXv X9Cg== X-Gm-Message-State: AOAM532EeyXT7TpE8Had9b3bo7SPr7TRsVQNACazJMDkDYDcE86wXTll eMjAq6TR/VRutsWwvgNkqVw7Xw== X-Received: by 2002:a17:90a:e7c2:: with SMTP id kb2mr26667597pjb.193.1622567776919; Tue, 01 Jun 2021 10:16:16 -0700 (PDT) Received: from google.com (240.111.247.35.bc.googleusercontent.com. [35.247.111.240]) by smtp.gmail.com with ESMTPSA id b10sm8787458pfi.122.2021.06.01.10.16.16 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 01 Jun 2021 10:16:16 -0700 (PDT) Date: Tue, 1 Jun 2021 17:16:12 +0000 From: Sean Christopherson To: Borislav Petkov Cc: Tom Lendacky , Pu Wen , Joerg Roedel , x86@kernel.org, joro@8bytes.org, dave.hansen@linux.intel.com, peterz@infradead.org, tglx@linutronix.de, mingo@redhat.com, hpa@zytor.com, sashal@kernel.org, gregkh@linuxfoundation.org, linux-kernel@vger.kernel.org, kvm@vger.kernel.org, stable@vger.kernel.org Subject: Re: [PATCH] x86/sev: Check whether SEV or SME is supported first Message-ID: References: <20210526072424.22453-1-puwen@hygon.cn> <905ecd90-54d2-35f1-c8ab-c123d8a3d9a0@hygon.cn> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Tue, Jun 01, 2021, Borislav Petkov wrote: > Yah, ain't gonna happen. I'm not taking some #GP handler to the early > code just because some hardware is operating out of spec. The bug isn't limited to out-of-spec hardware. At the point of #GP, sme_enable() has only verified the max leaf is greater than 0x8000001f, it has not verified that 0x8000001f is actually supported. The APM itself declares several leafs between 0x80000000 and 0x8000001f as reserved/unsupported, so we can't argue that 0x8000001f must be supported if the max leaf is greater than 0x8000001f. The only way to verify that 0x8000001f is supported is to find a non-zero bit, which is what Pu Wen's patch does.