Received: by 2002:a05:7412:98c1:b0:fa:551:50a7 with SMTP id kc1csp242990rdb;
        Fri, 5 Jan 2024 08:22:42 -0800 (PST)
X-Google-Smtp-Source: AGHT+IGDfnKMA+z07eYWOTCnz7FflBRXC7Kq8Oao0SI0dqpjAzgiGvVl9hLoNUZPffnlOY1Q05nn
X-Received: by 2002:a05:6512:1326:b0:50e:4ea7:f2c3 with SMTP id x38-20020a056512132600b0050e4ea7f2c3mr906262lfu.121.1704471762080;
        Fri, 05 Jan 2024 08:22:42 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1704471762; cv=none;
        d=google.com; s=arc-20160816;
        b=fIqdZtsz5VTJbRdEfjtPWTwVwo/WNvea0c8eMX5/yI3MyD2vSM2dW1AccacRLX4zza
         g56J3BW317Ng2IHkfTWLkqLY1aoQpfSSzdUGrn1DSMaoz3A4NTt7iOcixp7BauehfABy
         1gnpdePw/t1ViIGklMVKRsNVtHmjXncoCkyUq7YsZP7+SH3tp/HQ+57WtaWsGMJ/NWhI
         PT69yZkPNIltUJ7hossxgoGB4FNavC39SVQA8jOWAGgikhQ1HrfJEL27wXA0mAFgA6GY
         Swz+xQ1Tu3Rfbe0KJyeyZQD3kViNpZl2na//SN5zqFzpNeAdMt9wrqfl5yITKd8xaVsL
         eG+w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=in-reply-to:content-disposition:mime-version:list-unsubscribe
         :list-subscribe:list-id:precedence:references:message-id:subject:cc
         :to:from:date:dkim-signature;
        bh=j+eM5pN/ZJjguSTXrDo3g1D8mHy8zmaIa7AEsjD59Ss=;
        fh=1QzQcF2Dj7wlVpLlnEybLIoIWUmLbX0DfE30vBsQDho=;
        b=EgiCDNb24iqdCNjyo/tSZiUsQC507yOi8NsSeOnzJDdH2rSpQTWYoA5QZrexadz9eF
         QroLrZLpByQNU8u6Zg20KEOUiz9s7cxArxM5qTeVqVzV260/unNygTESGwpKlM4l6xcU
         forW719KiPLL/+Uo5aVWANglXC1bP9noLZEJy92u5kWA9ClBZqbsrmd6ijpbqS3cUamD
         n0OtRyvkQhK+aElVb+ydVqoOKhcmyLw0VK5dbVPYOhwG28YIcz5UFkMxCk6cx/U41gh9
         2Fw5Av7fxXPhZjw1r3+mtmrv5bD6Lgvf2ye//fiAcOrDO2NvaTlh8GyKd9ZwPc6pZs/Q
         b5IQ==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@alien8.de header.s=alien8 header.b=B5hW1EV9;
       spf=pass (google.com: domain of linux-crypto+bounces-1256-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.80.249 as permitted sender) smtp.mailfrom="linux-crypto+bounces-1256-linux.lists.archive=gmail.com@vger.kernel.org";
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=alien8.de
Return-Path: <linux-crypto+bounces-1256-linux.lists.archive=gmail.com@vger.kernel.org>
Received: from am.mirrors.kernel.org (am.mirrors.kernel.org. [147.75.80.249])
        by mx.google.com with ESMTPS id cb20-20020a170906a45400b00a2829787f3dsi688173ejb.1048.2024.01.05.08.22.42
        for <linux.lists.archive@gmail.com>
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Fri, 05 Jan 2024 08:22:42 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-crypto+bounces-1256-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.80.249 as permitted sender) client-ip=147.75.80.249;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@alien8.de header.s=alien8 header.b=B5hW1EV9;
       spf=pass (google.com: domain of linux-crypto+bounces-1256-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.80.249 as permitted sender) smtp.mailfrom="linux-crypto+bounces-1256-linux.lists.archive=gmail.com@vger.kernel.org";
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=alien8.de
Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by am.mirrors.kernel.org (Postfix) with ESMTPS id CC6641F21669
	for <linux.lists.archive@gmail.com>; Fri,  5 Jan 2024 16:22:41 +0000 (UTC)
Received: from localhost.localdomain (localhost.localdomain [127.0.0.1])
	by smtp.subspace.kernel.org (Postfix) with ESMTP id 93D2F2E84F;
	Fri,  5 Jan 2024 16:22:33 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (4096-bit key) header.d=alien8.de header.i=@alien8.de header.b="B5hW1EV9"
X-Original-To: linux-crypto@vger.kernel.org
Received: from mail.alien8.de (mail.alien8.de [65.109.113.108])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id C92D4328A7;
	Fri,  5 Jan 2024 16:22:31 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=alien8.de
Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=alien8.de
Received: from localhost (localhost.localdomain [127.0.0.1])
	by mail.alien8.de (SuperMail on ZX Spectrum 128k) with ESMTP id C73DD40E016C;
	Fri,  5 Jan 2024 16:22:28 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at mail.alien8.de
Authentication-Results: mail.alien8.de (amavisd-new); dkim=pass (4096-bit key)
	header.d=alien8.de
Received: from mail.alien8.de ([127.0.0.1])
	by localhost (mail.alien8.de [127.0.0.1]) (amavisd-new, port 10026)
	with ESMTP id 84HtEWuwaCZG; Fri,  5 Jan 2024 16:22:26 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=alien8.de; s=alien8;
	t=1704471746; bh=j+eM5pN/ZJjguSTXrDo3g1D8mHy8zmaIa7AEsjD59Ss=;
	h=Date:From:To:Cc:Subject:References:In-Reply-To:From;
	b=B5hW1EV9vq5JsAI+1K8hZ+f2YqJiyOSKPbVarcMMiw8kX2ro9XqQCODVg4iFe/8fD
	 NbSSivZTtrQT8C7BxFa1r+3wg7vnBfocNEP25TIBX6PPQIUjouhNkLFt5qQDLDZQF3
	 GcrStKGHX+9V3L+8K+veTdS3iX3KgBDOqKjRijz3eaZFMPKLWD5I3S/nUEc7FUtMua
	 OxSJc7LIquZzRfl25m1BfXTbp/+b6CCNX49o01v4+//tf4vZavCs52zR6GK+KOBk1M
	 CMmrYtfB9tmVTYO3ZQfTtEy4GGBumFGc9Ii8TlDcXSOyqbfvndPOB2owY7i6nBe5zb
	 q61eALCQgj6osq0Ey2wjgA75scGAlI46jHRjhfi+3Eml/OR3RND0+0N3t9Koohpr97
	 9b3/yw4hn53CarYV5+2qqXyM14tD7rKlN/IcrMjh55wgT6dN/lJSiUvaXL5B9NMbf+
	 JE3TFAEv3LTJMUaOk4vn/2+DMTrWYpMrgHUwVnC5kLreh3vS5P+EnlK8X0YeFz7mfM
	 MapqpvHY/m07UOKex0RizLW2ykAOU0jdTwauka14ssguCs8KKAs75iH6KxiIHAF2wV
	 ggQIii0tmodflsN7YB/D/WWv8Ci3WR46LazY5XuNEajUAbiv/GEmC6XEodW4IEugwu
	 vYB5DRcBjVXm4N99CMbdoLkc=
Received: from zn.tnic (pd9530f8c.dip0.t-ipconnect.de [217.83.15.140])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange ECDHE (P-256) server-signature ECDSA (P-256) server-digest SHA256)
	(No client certificate requested)
	by mail.alien8.de (SuperMail on ZX Spectrum 128k) with ESMTPSA id 08D6A40E00C5;
	Fri,  5 Jan 2024 16:21:47 +0000 (UTC)
Date: Fri, 5 Jan 2024 17:21:42 +0100
From: Borislav Petkov <bp@alien8.de>
To: Jeremi Piotrowski <jpiotrowski@linux.microsoft.com>
Cc: Michael Roth <michael.roth@amd.com>, x86@kernel.org,
	kvm@vger.kernel.org, linux-coco@lists.linux.dev, linux-mm@kvack.org,
	linux-crypto@vger.kernel.org, linux-kernel@vger.kernel.org,
	tglx@linutronix.de, mingo@redhat.com, jroedel@suse.de,
	thomas.lendacky@amd.com, hpa@zytor.com, ardb@kernel.org,
	pbonzini@redhat.com, seanjc@google.com, vkuznets@redhat.com,
	jmattson@google.com, luto@kernel.org, dave.hansen@linux.intel.com,
	slp@redhat.com, pgonda@google.com, peterz@infradead.org,
	srinivas.pandruvada@linux.intel.com, rientjes@google.com,
	tobin@ibm.com, vbabka@suse.cz, kirill@shutemov.name,
	ak@linux.intel.com, tony.luck@intel.com,
	sathyanarayanan.kuppuswamy@linux.intel.com, alpergun@google.com,
	jarkko@kernel.org, ashish.kalra@amd.com, nikunj.dadhania@amd.com,
	pankaj.gupta@amd.com, liam.merwick@oracle.com, zhi.a.wang@intel.com,
	Brijesh Singh <brijesh.singh@amd.com>
Subject: Re: [PATCH v1 04/26] x86/sev: Add the host SEV-SNP initialization
 support
Message-ID: <20240105162142.GEZZgslgQCQYI7twat@fat_crate.local>
References: <20231230161954.569267-1-michael.roth@amd.com>
 <20231230161954.569267-5-michael.roth@amd.com>
 <f60c5fe0-9909-468d-8160-34d5bae39305@linux.microsoft.com>
 <20240105160916.GDZZgprE8T6xbbHJ9E@fat_crate.local>
Precedence: bulk
X-Mailing-List: linux-crypto@vger.kernel.org
List-Id: <linux-crypto.vger.kernel.org>
List-Subscribe: <mailto:linux-crypto+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-crypto+unsubscribe@vger.kernel.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
In-Reply-To: <20240105160916.GDZZgprE8T6xbbHJ9E@fat_crate.local>

On Fri, Jan 05, 2024 at 05:09:16PM +0100, Borislav Petkov wrote:
> On Thu, Jan 04, 2024 at 12:05:27PM +0100, Jeremi Piotrowski wrote:
> > Is there a really good reason to perform the snp_probe_smptable_info() check at this
> > point (instead of in snp_rmptable_init). snp_rmptable_init will also clear the cap
> > on failure, and bsp_init_amd() runs too early to allow for the kernel to allocate the
> > rmptable itself. I pointed out in the previous review that kernel allocation of rmptable
> > is necessary in SNP-host capable VMs in Azure.
> 
> What does that even mean?
> 
> That function is doing some calculations after reading two MSRs. What
> can possibly go wrong?!

That could be one reason perhaps:

"It needs to be called early enough to allow for AutoIBRS to not be disabled
just because SNP is supported. By calling it where it is currently called, the
SNP feature can be cleared if, even though supported, SNP can't be used,
allowing AutoIBRS to be used as a more performant Spectre mitigation."

https://lore.kernel.org/r/8ec38db1-5ccf-4684-bc0d-d48579ebf0d0@amd.com

-- 
Regards/Gruss,
    Boris.

https://people.kernel.org/tglx/notes-about-netiquette