Re: [PATCH Part1 RFC v4 15/36] x86/mm: Add support to validate memory when... | linux-crypto

[PATCH Part1 RFC v4 00/36] Add AMD Secure Nested Paging (SEV-SNP) Guest Support · Brijesh Singh <hidden> · 2021-07-07
[PATCH Part1 RFC v4 01/36] x86/sev: shorten GHCB terminate macro names · Brijesh Singh <hidden> · 2021-07-07
[PATCH Part1 RFC v4 02/36] x86/sev: Save the negotiated GHCB version · Brijesh Singh <hidden> · 2021-07-07
Re: [PATCH Part1 RFC v4 02/36] x86/sev: Save the negotiated GHCB version · Borislav Petkov <bp@alien8.de> · 2021-08-10
Re: [PATCH Part1 RFC v4 02/36] x86/sev: Save the negotiated GHCB version · Brijesh Singh <hidden> · 2021-08-10
Re: [PATCH Part1 RFC v4 02/36] x86/sev: Save the negotiated GHCB version · Borislav Petkov <bp@alien8.de> · 2021-08-10
Re: [PATCH Part1 RFC v4 02/36] x86/sev: Save the negotiated GHCB version · Brijesh Singh <hidden> · 2021-08-10
[PATCH Part1 RFC v4 03/36] x86/sev: Add support for hypervisor feature VMGEXIT · Brijesh Singh <hidden> · 2021-07-07
Re: [PATCH Part1 RFC v4 03/36] x86/sev: Add support for hypervisor feature VMGEXIT · Borislav Petkov <bp@alien8.de> · 2021-08-10
Re: [PATCH Part1 RFC v4 03/36] x86/sev: Add support for hypervisor feature VMGEXIT · Brijesh Singh <hidden> · 2021-08-10
Re: [PATCH Part1 RFC v4 03/36] x86/sev: Add support for hypervisor feature VMGEXIT · Borislav Petkov <bp@alien8.de> · 2021-08-10
[PATCH Part1 RFC v4 05/36] x86/sev: Define the Linux specific guest termination reasons · Brijesh Singh <hidden> · 2021-07-07
Re: [PATCH Part1 RFC v4 05/36] x86/sev: Define the Linux specific guest termination reasons · Borislav Petkov <bp@alien8.de> · 2021-08-10
Re: [PATCH Part1 RFC v4 05/36] x86/sev: Define the Linux specific guest termination reasons · Brijesh Singh <hidden> · 2021-08-10
Re: [PATCH Part1 RFC v4 05/36] x86/sev: Define the Linux specific guest termination reasons · Tom Lendacky <thomas.lendacky@amd.com> · 2021-08-10
Re: [PATCH Part1 RFC v4 05/36] x86/sev: Define the Linux specific guest termination reasons · Borislav Petkov <bp@alien8.de> · 2021-08-10
[PATCH Part1 RFC v4 04/36] x86/mm: Add sev_feature_enabled() helper · Brijesh Singh <hidden> · 2021-07-07
Re: [PATCH Part1 RFC v4 04/36] x86/mm: Add sev_feature_enabled() helper · Dr. David Alan Gilbert <hidden> · 2021-07-08
Re: [PATCH Part1 RFC v4 04/36] x86/mm: Add sev_feature_enabled() helper · Paolo Bonzini <pbonzini@redhat.com> · 2021-07-08
Re: [PATCH Part1 RFC v4 04/36] x86/mm: Add sev_feature_enabled() helper · Borislav Petkov <bp@alien8.de> · 2021-08-10
Re: [PATCH Part1 RFC v4 04/36] x86/mm: Add sev_feature_enabled() helper · Brijesh Singh <hidden> · 2021-08-10
[PATCH Part1 RFC v4 06/36] x86/sev: check SEV-SNP features support · Brijesh Singh <hidden> · 2021-07-07
[PATCH Part1 RFC v4 07/36] x86/sev: Add a helper for the PVALIDATE instruction · Brijesh Singh <hidden> · 2021-07-07
[PATCH Part1 RFC v4 08/36] x86/sev: check the vmpl level · Brijesh Singh <hidden> · 2021-07-07
Re: [PATCH Part1 RFC v4 08/36] x86/sev: check the vmpl level · Borislav Petkov <bp@alien8.de> · 2021-08-13
Re: [PATCH Part1 RFC v4 08/36] x86/sev: check the vmpl level · Brijesh Singh <hidden> · 2021-08-13
Re: [PATCH Part1 RFC v4 08/36] x86/sev: check the vmpl level · Borislav Petkov <bp@alien8.de> · 2021-08-13
[PATCH Part1 RFC v4 09/36] x86/compressed: Add helper for validating pages in the decompression stage · Brijesh Singh <hidden> · 2021-07-07
Re: [PATCH Part1 RFC v4 09/36] x86/compressed: Add helper for validating pages in the decompression stage · Borislav Petkov <bp@alien8.de> · 2021-08-13
Re: [PATCH Part1 RFC v4 09/36] x86/compressed: Add helper for validating pages in the decompression stage · Brijesh Singh <hidden> · 2021-08-13
Re: [PATCH Part1 RFC v4 09/36] x86/compressed: Add helper for validating pages in the decompression stage · Borislav Petkov <bp@alien8.de> · 2021-08-13
[PATCH Part1 RFC v4 10/36] x86/compressed: Register GHCB memory when SEV-SNP is active · Brijesh Singh <hidden> · 2021-07-07
Re: [PATCH Part1 RFC v4 10/36] x86/compressed: Register GHCB memory when SEV-SNP is active · Borislav Petkov <bp@alien8.de> · 2021-08-13
[PATCH Part1 RFC v4 11/36] x86/sev: Register GHCB memory when SEV-SNP is active · Brijesh Singh <hidden> · 2021-07-07
[PATCH Part1 RFC v4 13/36] x86/kernel: Make the bss.decrypted section shared in RMP table · Brijesh Singh <hidden> · 2021-07-07
Re: [PATCH Part1 RFC v4 13/36] x86/kernel: Make the bss.decrypted section shared in RMP table · Borislav Petkov <bp@alien8.de> · 2021-08-13
[PATCH Part1 RFC v4 12/36] x86/sev: Add helper for validating pages in early enc attribute changes · Brijesh Singh <hidden> · 2021-07-07
Re: [PATCH Part1 RFC v4 12/36] x86/sev: Add helper for validating pages in early enc attribute changes · Borislav Petkov <bp@alien8.de> · 2021-08-13
[PATCH Part1 RFC v4 14/36] x86/kernel: Validate rom memory before accessing when SEV-SNP is active · Brijesh Singh <hidden> · 2021-07-07
[PATCH Part1 RFC v4 17/36] KVM: SVM: Create a separate mapping for the SEV-ES save area · Brijesh Singh <hidden> · 2021-07-07
[PATCH Part1 RFC v4 15/36] x86/mm: Add support to validate memory when changing C-bit · Brijesh Singh <hidden> · 2021-07-07
Re: [PATCH Part1 RFC v4 15/36] x86/mm: Add support to validate memory when changing C-bit · Borislav Petkov <bp@alien8.de> · 2021-08-17
Re: [PATCH Part1 RFC v4 15/36] x86/mm: Add support to validate memory when changing C-bit · Brijesh Singh <hidden> · 2021-08-17
Re: [PATCH Part1 RFC v4 15/36] x86/mm: Add support to validate memory when changing C-bit · Borislav Petkov <bp@alien8.de> · 2021-08-17
Re: [PATCH Part1 RFC v4 15/36] x86/mm: Add support to validate memory when changing C-bit · Brijesh Singh <hidden> · 2021-08-17
Re: [PATCH Part1 RFC v4 15/36] x86/mm: Add support to validate memory when changing C-bit · Brijesh Singh <hidden> · 2021-08-17
Re: [PATCH Part1 RFC v4 15/36] x86/mm: Add support to validate memory when changing C-bit · Borislav Petkov <bp@alien8.de> · 2021-08-17
[PATCH Part1 RFC v4 25/36] x86/boot: Add Confidential Computing type to setup_data · Brijesh Singh <hidden> · 2021-07-07
Re: [PATCH Part1 RFC v4 25/36] x86/boot: Add Confidential Computing type to setup_data · Borislav Petkov <bp@alien8.de> · 2021-08-19
[PATCH Part1 RFC v4 18/36] KVM: SVM: Create a separate mapping for the GHCB save area · Brijesh Singh <hidden> · 2021-07-07
[PATCH Part1 RFC v4 19/36] KVM: SVM: Update the SEV-ES save area mapping · Brijesh Singh <hidden> · 2021-07-07
[PATCH Part1 RFC v4 28/36] x86/compressed/64: store Confidential Computing blob address in bootparams · Brijesh Singh <hidden> · 2021-07-07
[PATCH Part1 RFC v4 27/36] x86/boot: add a pointer to Confidential Computing blob in bootparams · Brijesh Singh <hidden> · 2021-07-07
[PATCH Part1 RFC v4 21/36] x86/head/64: set up a startup %gs for stack protector · Brijesh Singh <hidden> · 2021-07-07
Re: [PATCH Part1 RFC v4 21/36] x86/head/64: set up a startup %gs for stack protector · Borislav Petkov <bp@alien8.de> · 2021-08-19
[PATCH Part1 RFC v4 20/36] x86/sev: Use SEV-SNP AP creation to start secondary CPUs · Brijesh Singh <hidden> · 2021-07-07
Re: [PATCH Part1 RFC v4 20/36] x86/sev: Use SEV-SNP AP creation to start secondary CPUs · Borislav Petkov <bp@alien8.de> · 2021-08-17
Re: [PATCH Part1 RFC v4 20/36] x86/sev: Use SEV-SNP AP creation to start secondary CPUs · Tom Lendacky <thomas.lendacky@amd.com> · 2021-08-17
Re: [PATCH Part1 RFC v4 20/36] x86/sev: Use SEV-SNP AP creation to start secondary CPUs · Borislav Petkov <bp@alien8.de> · 2021-08-18
[PATCH Part1 RFC v4 26/36] x86/compressed/64: enable SEV-SNP-validated CPUID in #VC handler · Brijesh Singh <hidden> · 2021-07-07
[PATCH Part1 RFC v4 16/36] KVM: SVM: define new SEV_FEATURES field in the VMCB Save State Area · Brijesh Singh <hidden> · 2021-07-07
Re: [PATCH Part1 RFC v4 16/36] KVM: SVM: define new SEV_FEATURES field in the VMCB Save State Area · Borislav Petkov <bp@alien8.de> · 2021-08-17
Re: [PATCH Part1 RFC v4 16/36] KVM: SVM: define new SEV_FEATURES field in the VMCB Save State Area · Borislav Petkov <bp@alien8.de> · 2021-08-17
Re: [PATCH Part1 RFC v4 16/36] KVM: SVM: define new SEV_FEATURES field in the VMCB Save State Area · Brijesh Singh <hidden> · 2021-08-17
[PATCH Part1 RFC v4 35/36] virt: sevguest: Add support to derive key · Brijesh Singh <hidden> · 2021-07-07
[PATCH Part1 RFC v4 29/36] x86/compressed/64: add identity mapping for Confidential Computing blob · Brijesh Singh <hidden> · 2021-07-07
[PATCH Part1 RFC v4 22/36] x86/sev: move MSR-based VMGEXITs for CPUID to helper · Brijesh Singh <hidden> · 2021-07-07
Re: [PATCH Part1 RFC v4 22/36] x86/sev: move MSR-based VMGEXITs for CPUID to helper · Borislav Petkov <bp@alien8.de> · 2021-08-19
Re: [PATCH Part1 RFC v4 22/36] x86/sev: move MSR-based VMGEXITs for CPUID to helper · Michael Roth <hidden> · 2021-08-19
Re: [PATCH Part1 RFC v4 22/36] x86/sev: move MSR-based VMGEXITs for CPUID to helper · Borislav Petkov <bp@alien8.de> · 2021-08-19
Re: [PATCH Part1 RFC v4 22/36] x86/sev: move MSR-based VMGEXITs for CPUID to helper · Michael Roth <hidden> · 2021-08-20
Re: [PATCH Part1 RFC v4 22/36] x86/sev: move MSR-based VMGEXITs for CPUID to helper · Borislav Petkov <bp@alien8.de> · 2021-08-23
[PATCH Part1 RFC v4 30/36] x86/sev: enable SEV-SNP-validated CPUID in #VC handlers · Brijesh Singh <hidden> · 2021-07-07
[PATCH Part1 RFC v4 23/36] KVM: x86: move lookup of indexed CPUID leafs to helper · Brijesh Singh <hidden> · 2021-07-07
Re: [PATCH Part1 RFC v4 23/36] KVM: x86: move lookup of indexed CPUID leafs to helper · Borislav Petkov <bp@alien8.de> · 2021-08-19
[PATCH Part1 RFC v4 36/36] virt: sevguest: Add support to get extended report · Brijesh Singh <hidden> · 2021-07-07
[PATCH Part1 RFC v4 24/36] x86/compressed/acpi: move EFI config table access to common code · Brijesh Singh <hidden> · 2021-07-07
Re: [PATCH Part1 RFC v4 24/36] x86/compressed/acpi: move EFI config table access to common code · Borislav Petkov <bp@alien8.de> · 2021-08-19
Re: [PATCH Part1 RFC v4 24/36] x86/compressed/acpi: move EFI config table access to common code · Michael Roth <hidden> · 2021-08-19
Re: [PATCH Part1 RFC v4 24/36] x86/compressed/acpi: move EFI config table access to common code · Borislav Petkov <bp@alien8.de> · 2021-08-19
Re: [PATCH Part1 RFC v4 24/36] x86/compressed/acpi: move EFI config table access to common code · Michael Roth <hidden> · 2021-08-20
Re: [PATCH Part1 RFC v4 24/36] x86/compressed/acpi: move EFI config table access to common code · Borislav Petkov <bp@alien8.de> · 2021-08-23
[PATCH Part1 RFC v4 31/36] x86/sev: Provide support for SNP guest request NAEs · Brijesh Singh <hidden> · 2021-07-07
[PATCH Part1 RFC v4 32/36] x86/sev: Add snp_msg_seqno() helper · Brijesh Singh <hidden> · 2021-07-07
[PATCH Part1 RFC v4 33/36] x86/sev: Register SNP guest request platform device · Brijesh Singh <hidden> · 2021-07-07
[PATCH Part1 RFC v4 34/36] virt: Add SEV-SNP guest driver · Brijesh Singh <hidden> · 2021-07-07

Re: [PATCH Part1 RFC v4 15/36] x86/mm: Add support to validate memory when changing C-bit

From: Brijesh Singh <hidden>
Date: 2021-08-17 20:34:50
Also in: kvm, linux-coco, linux-efi, linux-mm, lkml, platform-driver-x86

Hi Boris,


On 8/17/21 12:27 PM, Borislav Petkov wrote:

quoted

+		/* Lets verify that reserved bit is not set in the header*/
+		if (WARN(hdr->reserved, "Reserved bit is set in the PSC header\n"))

psc_entry has a ->reserved field too and since we're iterating over the
entries...


I am not seeing any strong reason to sanity check the reserved bit in 
the psc_entry. The fields in the psc_entry are input from guest to the 
hypervisor. The hypervisor cannot trick a guest by changing anything in 
the psc_entry because guest does not read the hypervisor filled value. I 
am okay with the psc_hdr because we need to read the current and end 
entry after the PSC completes to determine whether it was successful and 
sanity checking PSC header makes much more sense. Let me know if you are 
okay with it ?

thanks

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help