Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of... | linux-hyperv

[Patch v3 00/14] Add PCI pass-thru support to Hyper-V Confidential VMs · Michael Kelley <hidden> · 2022-11-16
[Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Michael Kelley <hidden> · 2022-11-16
Re: [Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Borislav Petkov <bp@alien8.de> · 2022-11-21
RE: [Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Michael Kelley (LINUX) <hidden> · 2022-11-21
Re: [Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Borislav Petkov <bp@alien8.de> · 2022-11-21
RE: [Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Michael Kelley (LINUX) <hidden> · 2022-11-21
Re: [Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Dave Hansen <hidden> · 2022-11-21
RE: [Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Michael Kelley (LINUX) <hidden> · 2022-11-21
Re: [Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Borislav Petkov <bp@alien8.de> · 2022-11-21
[Patch v3 02/14] x86/ioapic: Gate decrypted mapping on cc_platform_has() attribute · Michael Kelley <hidden> · 2022-11-16
Re: [Patch v3 02/14] x86/ioapic: Gate decrypted mapping on cc_platform_has() attribute · Sathyanarayanan Kuppuswamy <sathyanarayanan.kuppuswamy@linux.intel.com> · 2022-11-17
Re: [Patch v3 02/14] x86/ioapic: Gate decrypted mapping on cc_platform_has() attribute · Borislav Petkov <bp@alien8.de> · 2022-11-21
RE: [Patch v3 02/14] x86/ioapic: Gate decrypted mapping on cc_platform_has() attribute · Michael Kelley (LINUX) <hidden> · 2022-11-21
Re: [Patch v3 02/14] x86/ioapic: Gate decrypted mapping on cc_platform_has() attribute · Borislav Petkov <bp@alien8.de> · 2022-11-21
[Patch v3 03/14] x86/hyperv: Reorder code in prep for subsequent patch · Michael Kelley <hidden> · 2022-11-16
[Patch v3 04/14] Drivers: hv: Explicitly request decrypted in vmap_pfn() calls · Michael Kelley <hidden> · 2022-11-16
[Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Michael Kelley <hidden> · 2022-11-16
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Tom Lendacky <thomas.lendacky@amd.com> · 2022-11-16
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Tom Lendacky <thomas.lendacky@amd.com> · 2022-11-16
RE: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Michael Kelley (LINUX) <hidden> · 2022-11-18
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Sathyanarayanan Kuppuswamy <sathyanarayanan.kuppuswamy@linux.intel.com> · 2022-11-17
RE: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Michael Kelley (LINUX) <hidden> · 2022-11-18
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Borislav Petkov <bp@alien8.de> · 2022-11-21
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Sathyanarayanan Kuppuswamy <sathyanarayanan.kuppuswamy@linux.intel.com> · 2022-11-21
RE: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Michael Kelley (LINUX) <hidden> · 2022-11-22
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Borislav Petkov <bp@alien8.de> · 2022-11-28
RE: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Dexuan Cui <decui@microsoft.com> · 2022-11-28
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Tom Lendacky <thomas.lendacky@amd.com> · 2022-11-28
RE: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Dexuan Cui <decui@microsoft.com> · 2022-11-28
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Borislav Petkov <bp@alien8.de> · 2022-11-21
[Patch v3 09/14] Drivers: hv: vmbus: Remove second mapping of VMBus monitor pages · Michael Kelley <hidden> · 2022-11-16
[Patch v3 10/14] Drivers: hv: vmbus: Remove second way of mapping ring buffers · Michael Kelley <hidden> · 2022-11-16
[Patch v3 12/14] Drivers: hv: Don't remap addresses that are above shared_gpa_boundary · Michael Kelley <hidden> · 2022-11-16
[Patch v3 11/14] hv_netvsc: Remove second mapping of send and recv buffers · Michael Kelley <hidden> · 2022-11-16
[Patch v3 14/14] PCI: hv: Enable PCI pass-thru devices in Confidential VMs · Michael Kelley <hidden> · 2022-11-16
[Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Michael Kelley <hidden> · 2022-11-16
Re: [Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Wei Liu <wei.liu@kernel.org> · 2022-11-17
RE: [Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Michael Kelley (LINUX) <hidden> · 2022-11-17
Re: [Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Wei Liu <wei.liu@kernel.org> · 2022-11-17
Re: [Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Sean Christopherson <seanjc@google.com> · 2022-11-17
Re: [Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Wei Liu <wei.liu@kernel.org> · 2022-11-17
RE: [Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Haiyang Zhang <haiyangz@microsoft.com> · 2022-11-17
RE: [Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Michael Kelley (LINUX) <hidden> · 2022-11-18
[Patch v3 06/14] init: Call mem_encrypt_init() after Hyper-V hypercall init is done · Michael Kelley <hidden> · 2022-11-16
Re: [Patch v3 06/14] init: Call mem_encrypt_init() after Hyper-V hypercall init is done · Tom Lendacky <thomas.lendacky@amd.com> · 2022-11-16
Re: [Patch v3 06/14] init: Call mem_encrypt_init() after Hyper-V hypercall init is done · Borislav Petkov <bp@alien8.de> · 2022-11-21
[Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley <hidden> · 2022-11-16
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Tianyu Lan <hidden> · 2022-11-17
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Borislav Petkov <bp@alien8.de> · 2022-11-21
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-22
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Dave Hansen <hidden> · 2022-11-22
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-22
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Borislav Petkov <bp@alien8.de> · 2022-11-22
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-23
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-28
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Borislav Petkov <bp@alien8.de> · 2022-11-28
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-28
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Borislav Petkov <bp@alien8.de> · 2022-11-28
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-28
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Borislav Petkov <bp@alien8.de> · 2022-11-28
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-29
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Borislav Petkov <bp@alien8.de> · 2022-11-29
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-29
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Borislav Petkov <bp@alien8.de> · 2022-11-29
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-30
[Patch v3 08/14] swiotlb: Remove bounce buffer remapping for Hyper-V · Michael Kelley <hidden> · 2022-11-16

Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently

From: Sathyanarayanan Kuppuswamy <sathyanarayanan.kuppuswamy@linux.intel.com>
Date: 2022-11-21 22:07:21
Also in: linux-arch, linux-iommu, linux-pci, lkml, netdev


On 11/21/22 6:39 AM, Borislav Petkov wrote:

On Fri, Nov 18, 2022 at 02:55:32AM +0000, Michael Kelley (LINUX) wrote:

quoted

But I had not thought about TDX.  In the TDX case, it appears that
sme_postprocess_startup() will not decrypt the bss_decrypted section.
The corresponding mem_encrypt_free_decrypted_mem() is a no-op unless
CONFIG_AMD_MEM_ENCRYPT is set.  But maybe if someone builds a
kernel image that supports both TDX and AMD encryption, it could break

sme_me_mask better be 0 on a kernel with both built in and running as a
TDX guest.

Yes. It will be 0 in TDX. In sme_enable(), AMD code checks for CPUID
support before updating the sme_me_mask.

-- 
Sathyanarayanan Kuppuswamy
Linux Kernel Developer

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help