Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of... | netdev

[Patch v3 00/14] Add PCI pass-thru support to Hyper-V Confidential VMs · Michael Kelley <hidden> · 2022-11-16
[Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Michael Kelley <hidden> · 2022-11-16
Re: [Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Borislav Petkov <bp@alien8.de> · 2022-11-21
RE: [Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Michael Kelley (LINUX) <hidden> · 2022-11-21
Re: [Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Borislav Petkov <bp@alien8.de> · 2022-11-21
RE: [Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Michael Kelley (LINUX) <hidden> · 2022-11-21
Re: [Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Dave Hansen <hidden> · 2022-11-21
RE: [Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Michael Kelley (LINUX) <hidden> · 2022-11-21
Re: [Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Borislav Petkov <bp@alien8.de> · 2022-11-21
[Patch v3 02/14] x86/ioapic: Gate decrypted mapping on cc_platform_has() attribute · Michael Kelley <hidden> · 2022-11-16
Re: [Patch v3 02/14] x86/ioapic: Gate decrypted mapping on cc_platform_has() attribute · Sathyanarayanan Kuppuswamy <sathyanarayanan.kuppuswamy@linux.intel.com> · 2022-11-17
Re: [Patch v3 02/14] x86/ioapic: Gate decrypted mapping on cc_platform_has() attribute · Borislav Petkov <bp@alien8.de> · 2022-11-21
RE: [Patch v3 02/14] x86/ioapic: Gate decrypted mapping on cc_platform_has() attribute · Michael Kelley (LINUX) <hidden> · 2022-11-21
Re: [Patch v3 02/14] x86/ioapic: Gate decrypted mapping on cc_platform_has() attribute · Borislav Petkov <bp@alien8.de> · 2022-11-21
[Patch v3 03/14] x86/hyperv: Reorder code in prep for subsequent patch · Michael Kelley <hidden> · 2022-11-16
[Patch v3 04/14] Drivers: hv: Explicitly request decrypted in vmap_pfn() calls · Michael Kelley <hidden> · 2022-11-16
[Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Michael Kelley <hidden> · 2022-11-16
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Tom Lendacky <thomas.lendacky@amd.com> · 2022-11-16
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Tom Lendacky <thomas.lendacky@amd.com> · 2022-11-16
RE: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Michael Kelley (LINUX) <hidden> · 2022-11-18
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Sathyanarayanan Kuppuswamy <sathyanarayanan.kuppuswamy@linux.intel.com> · 2022-11-17
RE: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Michael Kelley (LINUX) <hidden> · 2022-11-18
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Borislav Petkov <bp@alien8.de> · 2022-11-21
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Sathyanarayanan Kuppuswamy <sathyanarayanan.kuppuswamy@linux.intel.com> · 2022-11-21
RE: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Michael Kelley (LINUX) <hidden> · 2022-11-22
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Borislav Petkov <bp@alien8.de> · 2022-11-28
RE: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Dexuan Cui <decui@microsoft.com> · 2022-11-28
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Tom Lendacky <thomas.lendacky@amd.com> · 2022-11-28
RE: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Dexuan Cui <decui@microsoft.com> · 2022-11-28
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Borislav Petkov <bp@alien8.de> · 2022-11-21
[Patch v3 09/14] Drivers: hv: vmbus: Remove second mapping of VMBus monitor pages · Michael Kelley <hidden> · 2022-11-16
[Patch v3 10/14] Drivers: hv: vmbus: Remove second way of mapping ring buffers · Michael Kelley <hidden> · 2022-11-16
[Patch v3 12/14] Drivers: hv: Don't remap addresses that are above shared_gpa_boundary · Michael Kelley <hidden> · 2022-11-16
[Patch v3 11/14] hv_netvsc: Remove second mapping of send and recv buffers · Michael Kelley <hidden> · 2022-11-16
[Patch v3 14/14] PCI: hv: Enable PCI pass-thru devices in Confidential VMs · Michael Kelley <hidden> · 2022-11-16
[Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Michael Kelley <hidden> · 2022-11-16
Re: [Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Wei Liu <wei.liu@kernel.org> · 2022-11-17
RE: [Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Michael Kelley (LINUX) <hidden> · 2022-11-17
Re: [Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Wei Liu <wei.liu@kernel.org> · 2022-11-17
Re: [Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Sean Christopherson <seanjc@google.com> · 2022-11-17
Re: [Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Wei Liu <wei.liu@kernel.org> · 2022-11-17
RE: [Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Haiyang Zhang <haiyangz@microsoft.com> · 2022-11-17
RE: [Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Michael Kelley (LINUX) <hidden> · 2022-11-18
[Patch v3 06/14] init: Call mem_encrypt_init() after Hyper-V hypercall init is done · Michael Kelley <hidden> · 2022-11-16
Re: [Patch v3 06/14] init: Call mem_encrypt_init() after Hyper-V hypercall init is done · Tom Lendacky <thomas.lendacky@amd.com> · 2022-11-16
Re: [Patch v3 06/14] init: Call mem_encrypt_init() after Hyper-V hypercall init is done · Borislav Petkov <bp@alien8.de> · 2022-11-21
[Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley <hidden> · 2022-11-16
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Tianyu Lan <hidden> · 2022-11-17
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Borislav Petkov <bp@alien8.de> · 2022-11-21
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-22
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Dave Hansen <hidden> · 2022-11-22
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-22
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Borislav Petkov <bp@alien8.de> · 2022-11-22
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-23
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-28
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Borislav Petkov <bp@alien8.de> · 2022-11-28
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-28
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Borislav Petkov <bp@alien8.de> · 2022-11-28
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-28
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Borislav Petkov <bp@alien8.de> · 2022-11-28
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-29
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Borislav Petkov <bp@alien8.de> · 2022-11-29
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-29
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Borislav Petkov <bp@alien8.de> · 2022-11-29
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-30
[Patch v3 08/14] swiotlb: Remove bounce buffer remapping for Hyper-V · Michael Kelley <hidden> · 2022-11-16

Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently

From: Borislav Petkov <bp@alien8.de>
Date: 2022-11-21 14:48:21
Also in: linux-arch, linux-hyperv, linux-iommu, linux-pci, lkml

On Wed, Nov 16, 2022 at 10:41:28AM -0800, Michael Kelley wrote:

Current code in sme_postprocess_startup() decrypts the bss_decrypted
section when sme_me_mask is non-zero.  But code in
mem_encrypt_free_decrytped_mem() re-encrypts the unused portion based

			^^

letters flipped.

quoted hunk ↗ jump to hunk

@@ -513,10 +513,14 @@ void __init mem_encrypt_free_decrypted_mem(void)
 	npages = (vaddr_end - vaddr) >> PAGE_SHIFT;
 
 	/*
-	 * The unused memory range was mapped decrypted, change the encryption
-	 * attribute from decrypted to encrypted before freeing it.
+	 * If the unused memory range was mapped decrypted, change the encryption
+	 * attribute from decrypted to encrypted before freeing it. Base the
+	 * re-encryption on the same condition used for the decryption in
+	 * sme_postprocess_startup(). Higher level abstractions, such as
+	 * CC_ATTR_MEM_ENCRYPT, aren't necessarily equivalent in a Hyper-V VM
+	 * using vTOM, where sme_me_mask is always zero.

Good, an example why one needs to pay attention here.

Thx.

-- 
Regards/Gruss,
    Boris.

https://people.kernel.org/tglx/notes-about-netiquette

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help