Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Date:   Thu, 15 Jun 2023 10:23:01 -0500
From:   John Allen <john.allen@amd.com>
To:     Borislav Petkov <bp@alien8.de>
Cc:     kvm@vger.kernel.org, linux-kernel@vger.kernel.org,
        pbonzini@redhat.com, weijiang.yang@intel.com,
        rick.p.edgecombe@intel.com, seanjc@google.com, x86@kernel.org,
        thomas.lendacky@amd.com
Subject: Re: [RFC PATCH v2] x86/sev-es: Include XSS value in GHCB CPUID
 request
Message-ID: <ZIss1TJ3ra+dZKOg@johallen-workstation.lan>
References: <20230524155619.415961-1-john.allen@amd.com>
 <20230615115255.GBZIr7l2XNKau16ayl@fat_crate.local>
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20230615115255.GBZIr7l2XNKau16ayl@fat_crate.local>
MIME-Version: 1.0
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: =?us-ascii?Q?FB2vInsy56TdPa+i1g5WiTbvfcETTk6hMZ3gGOphpbDwipaqBRSv/3rgELg2?=
 =?us-ascii?Q?BYs8KhFf/PpQZAwe5zrNVcu3pLhxKgbg6g6HtGD32tq/j5/0a5xK+SeEpM1e?=
 =?us-ascii?Q?FMFagXthjDmi11PPy7JA7RIQrnSmPh8Bcn6tlbwK8ttuyif0/uHM0iJ9Ss4K?=
 =?us-ascii?Q?tp4FUNQTMw0lCQT92T6SFcyOqErpmW/IVeusmvIVwWM56v2Aljn75Tv3UYVg?=
 =?us-ascii?Q?R9+PebCH0O7Q6voKKk21fPWRaG/MecmWBqw9OdLxyAvBIYI7kIsWn/XtbmGO?=
 =?us-ascii?Q?Wer4TFFtQzLwUrd6wdhdbav7W8NAIlKcXyzyjJrm9APNyEO2X8oYHZFleCP+?=
 =?us-ascii?Q?Q7FYYEnRP8JwMkld8a5iOOo0o1K0IVnLJ/gh/aJH1Ht0PMgA+jQfo1yL8BWs?=
 =?us-ascii?Q?xGSAP+BZGYYdtrYZQNyyDmmwp9eIwgAUwrkkG5ipebTpCv7a6FVt9VVAG8g3?=
 =?us-ascii?Q?054Rfi8GqNkUPg8vSPSJqggzOnzM2jGnIafxreZfvf3nmOcp6b9qtKI7Q8WW?=
 =?us-ascii?Q?TkwQ8TPUt416/I+rCUIFU+ByuibXKXYz/f9GpAIMUgd7Qlu+N0pkDPEhTc+d?=
 =?us-ascii?Q?9rsAXkUky1tfBsL05Ur7Wgj+nHVOQVQYFWJh2J/1c0tDop6d5CclUB6UNvb2?=
 =?us-ascii?Q?OR9WyXCvlvGFKZnM1Bt2Amh9gYy1pz5VQiYOYg9DnwQsn7m37QKVYDQLJoZ4?=
 =?us-ascii?Q?DmZBh6c0rnm7ttkx0v+feDlR20tPhUy7K/VWUU6EMrySKMBpssBdcDa8dAfl?=
 =?us-ascii?Q?2/XzpwuUYvKsDvZBCYpwqO9MXYjpCQ5PSbLtAjgBByZff9HhcNmb3/2WqCjV?=
 =?us-ascii?Q?zKLNTeGtN/0u6/gOacj4N6nwKPZMuwxDjO5GrULH3DnRTV/YzoMzLDEHgz8G?=
 =?us-ascii?Q?o0RNUzeCdzx1qVfZEM+HvlQyuR+kPQJNUhvrEQ1rxwyGx87UqFIUC18ksLvy?=
 =?us-ascii?Q?wjrk+eOwcY9Cru6smeHlaJTAfMcdtgZg9ygFc1y0x+iCsYwKQyvspZlP2Yb0?=
 =?us-ascii?Q?1zPVjOSp+ue473IwQDihWHfq/SO3/e77JniR96DCETkqVhOvfdaB8A8neElp?=
 =?us-ascii?Q?Ct0cqtCikpTNTZgHBQ10nffSs9zvWuhQ4mzQxv8wNVjQKv1Hr23oqU17LLvb?=
 =?us-ascii?Q?NtwxdX4YhLtuQRshNIgr7i2/qTemjpo3gEIC2KmlahOVAwxSsj2/qJGet3f4?=
 =?us-ascii?Q?MEKzjU8fJq3HUC0+Y1JPFQbNvQA32j2r0cIB819LsANFePqx9yQEplgY8IOs?=
 =?us-ascii?Q?V7/T5snb0+T9bioDwFw0++kwM3FlcWFRRN7nZiyut+G8C56wShktzPn23Kto?=
 =?us-ascii?Q?Z0NoM1pW3L/iRnIXfOlbv82bkjFcgtE0NIwcwLFzptvZUpwAARhNCYuR34mo?=
 =?us-ascii?Q?UVqG/lmj8NpqSTl02D1Io3rgglcjk8Kqa5nf/dewrtzffXyhb/Fmt1IiliW1?=
 =?us-ascii?Q?cH94m/65zBqulkW2rDGDTcZatBRCmOBG/OZLZ+cJmVjkrvrXMRjFUmtdAdo2?=
 =?us-ascii?Q?soSOS+ncUgdZeXcsIP0Xb1KXh24JPgt2lVYmUYftXqMeCBoGbRrr4oYl2KAt?=
 =?us-ascii?Q?e01PzRkdTwYW6ZI8wVjqQaHa6fiavRSk45m+zHc+?=
X-OriginatorOrg: amd.com
X-MS-Exchange-CrossTenant-Network-Message-Id: a0808cb6-99ca-4c1c-488b-08db6db46aca
X-MS-Exchange-CrossTenant-AuthSource: BL1PR12MB5995.namprd12.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 15 Jun 2023 15:23:05.8120
 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 3dd8961f-e488-4e60-8e11-a82d994e183d
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: rEhBmf9BKXD9ET3BUyBEzIqF4FPl6WrgNRsipRm/E/qQvWlsDenhnpQjQIdvLT3R3zC25YSf+aO6hYvfTTGPGw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN9PR12MB5338
X-Spam-Status: No, score=-1.1 required=5.0 tests=BAYES_00,DKIM_SIGNED,
        DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,FORGED_SPF_HELO,
        RCVD_IN_DNSWL_NONE,RCVD_IN_MSPIKE_H2,SPF_HELO_PASS,SPF_NONE,
        T_SCC_BODY_TEXT_LINE autolearn=no autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Thu, Jun 15, 2023 at 01:52:55PM +0200, Borislav Petkov wrote:
> On Wed, May 24, 2023 at 03:56:19PM +0000, John Allen wrote:
> > +	if (has_cpuflag(X86_FEATURE_SHSTK) && regs->ax == 0xd && regs->cx <= 1) {
> > +		unsigned long lo, hi;
> > +		u64 xss;
> > +
> > +		/*
> > +		 * Since vc_handle_cpuid may be used during early boot, the
> > +		 * rdmsr wrappers are incompatible and should not be used.
> > +		 * Invoke the instruction directly.
> > +		 */
> > +		asm volatile("rdmsr" : "=a" (lo), "=d" (hi)
> > +			     : "c" (MSR_IA32_XSS));
> > +		xss = (hi << 32) | lo;
> > +		ghcb_set_xss(ghcb, xss);
> 
> $ git grep ghcb_set_xss
> $
> 
> So this patch needs some tree which I'm not aware of.
> 
> Also, this passing through of host XSS to the guest looks like it is
> bypassing the vcpu->arch.ia32_xss copy which KVM seems to maintain. It
> looks to me like the handling needs to be synchronized with it or so.

Hi Boris,

Yeah, sorry, this is confusing. This patch is logically part of the SVM
shadow stack support series:
https://lore.kernel.org/all/20230524155339.415820-1-john.allen@amd.com/

Since this patch is for the guest kernel, it is meant for the tip tree
rather than the kvm tree so I sent it as a separate patch. However, as
you noted, this patch depends on patch 5/6 of that series to introduce
the ghcb_set_xss function. How would you advise that I handle this
entanglement in the next series?

Thanks,
John