Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms

[Patch v3 00/14] Add PCI pass-thru support to Hyper-V Confidential VMs · Michael Kelley <hidden> · 2022-11-16
[Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Michael Kelley <hidden> · 2022-11-16
Re: [Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Borislav Petkov <bp@alien8.de> · 2022-11-21
RE: [Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Michael Kelley (LINUX) <hidden> · 2022-11-21
Re: [Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Borislav Petkov <bp@alien8.de> · 2022-11-21
RE: [Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Michael Kelley (LINUX) <hidden> · 2022-11-21
Re: [Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Dave Hansen <hidden> · 2022-11-21
RE: [Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Michael Kelley (LINUX) <hidden> · 2022-11-21
Re: [Patch v3 01/14] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() · Borislav Petkov <bp@alien8.de> · 2022-11-21
[Patch v3 02/14] x86/ioapic: Gate decrypted mapping on cc_platform_has() attribute · Michael Kelley <hidden> · 2022-11-16
Re: [Patch v3 02/14] x86/ioapic: Gate decrypted mapping on cc_platform_has() attribute · Sathyanarayanan Kuppuswamy <sathyanarayanan.kuppuswamy@linux.intel.com> · 2022-11-17
Re: [Patch v3 02/14] x86/ioapic: Gate decrypted mapping on cc_platform_has() attribute · Borislav Petkov <bp@alien8.de> · 2022-11-21
RE: [Patch v3 02/14] x86/ioapic: Gate decrypted mapping on cc_platform_has() attribute · Michael Kelley (LINUX) <hidden> · 2022-11-21
Re: [Patch v3 02/14] x86/ioapic: Gate decrypted mapping on cc_platform_has() attribute · Borislav Petkov <bp@alien8.de> · 2022-11-21
[Patch v3 03/14] x86/hyperv: Reorder code in prep for subsequent patch · Michael Kelley <hidden> · 2022-11-16
[Patch v3 04/14] Drivers: hv: Explicitly request decrypted in vmap_pfn() calls · Michael Kelley <hidden> · 2022-11-16
[Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Michael Kelley <hidden> · 2022-11-16
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Tom Lendacky <thomas.lendacky@amd.com> · 2022-11-16
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Tom Lendacky <thomas.lendacky@amd.com> · 2022-11-16
RE: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Michael Kelley (LINUX) <hidden> · 2022-11-18
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Sathyanarayanan Kuppuswamy <sathyanarayanan.kuppuswamy@linux.intel.com> · 2022-11-17
RE: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Michael Kelley (LINUX) <hidden> · 2022-11-18
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Borislav Petkov <bp@alien8.de> · 2022-11-21
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Sathyanarayanan Kuppuswamy <sathyanarayanan.kuppuswamy@linux.intel.com> · 2022-11-21
RE: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Michael Kelley (LINUX) <hidden> · 2022-11-22
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Borislav Petkov <bp@alien8.de> · 2022-11-28
RE: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Dexuan Cui <decui@microsoft.com> · 2022-11-28
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Tom Lendacky <thomas.lendacky@amd.com> · 2022-11-28
RE: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Dexuan Cui <decui@microsoft.com> · 2022-11-28
Re: [Patch v3 05/14] x86/mm: Handle decryption/re-encryption of bss_decrypted consistently · Borislav Petkov <bp@alien8.de> · 2022-11-21
[Patch v3 09/14] Drivers: hv: vmbus: Remove second mapping of VMBus monitor pages · Michael Kelley <hidden> · 2022-11-16
[Patch v3 10/14] Drivers: hv: vmbus: Remove second way of mapping ring buffers · Michael Kelley <hidden> · 2022-11-16
[Patch v3 12/14] Drivers: hv: Don't remap addresses that are above shared_gpa_boundary · Michael Kelley <hidden> · 2022-11-16
[Patch v3 11/14] hv_netvsc: Remove second mapping of send and recv buffers · Michael Kelley <hidden> · 2022-11-16
[Patch v3 14/14] PCI: hv: Enable PCI pass-thru devices in Confidential VMs · Michael Kelley <hidden> · 2022-11-16
[Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Michael Kelley <hidden> · 2022-11-16
Re: [Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Wei Liu <wei.liu@kernel.org> · 2022-11-17
RE: [Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Michael Kelley (LINUX) <hidden> · 2022-11-17
Re: [Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Wei Liu <wei.liu@kernel.org> · 2022-11-17
Re: [Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Sean Christopherson <seanjc@google.com> · 2022-11-17
Re: [Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Wei Liu <wei.liu@kernel.org> · 2022-11-17
RE: [Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Haiyang Zhang <haiyangz@microsoft.com> · 2022-11-17
RE: [Patch v3 13/14] PCI: hv: Add hypercalls to read/write MMIO space · Michael Kelley (LINUX) <hidden> · 2022-11-18
[Patch v3 06/14] init: Call mem_encrypt_init() after Hyper-V hypercall init is done · Michael Kelley <hidden> · 2022-11-16
Re: [Patch v3 06/14] init: Call mem_encrypt_init() after Hyper-V hypercall init is done · Tom Lendacky <thomas.lendacky@amd.com> · 2022-11-16
Re: [Patch v3 06/14] init: Call mem_encrypt_init() after Hyper-V hypercall init is done · Borislav Petkov <bp@alien8.de> · 2022-11-21
[Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley <hidden> · 2022-11-16
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Tianyu Lan <hidden> · 2022-11-17
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Borislav Petkov <bp@alien8.de> · 2022-11-21
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-22
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Dave Hansen <hidden> · 2022-11-22
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-22
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Borislav Petkov <bp@alien8.de> · 2022-11-22
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-23
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-28
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Borislav Petkov <bp@alien8.de> · 2022-11-28
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-28
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Borislav Petkov <bp@alien8.de> · 2022-11-28
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-28
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Borislav Petkov <bp@alien8.de> · 2022-11-28
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-29
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Borislav Petkov <bp@alien8.de> · 2022-11-29
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-29
Re: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Borislav Petkov <bp@alien8.de> · 2022-11-29
RE: [Patch v3 07/14] x86/hyperv: Change vTOM handling to use standard coco mechanisms · Michael Kelley (LINUX) <hidden> · 2022-11-30
[Patch v3 08/14] swiotlb: Remove bounce buffer remapping for Hyper-V · Michael Kelley <hidden> · 2022-11-16

From: Borislav Petkov <bp@alien8.de>
Date: 2022-11-28 19:56:41
Also in: linux-arch, linux-hyperv, linux-iommu, linux-pci, lkml

On Mon, Nov 28, 2022 at 05:55:11PM +0000, Michael Kelley (LINUX) wrote:

But vendor AMD effectively offers two different encryption schemes that
could be seen by the guest VM.  The hypervisor chooses which scheme a
particular guest will see.  Hyper-V has chosen to present the vTOM scheme
to guest VMs, including normal Linux and Windows guests, that have been
modestly updated to understand vTOM.

If this is a standard SNP guest then you can detect vTOM support using
SEV_FEATURES. See this thread here:

https://lore.kernel.org/r/20221117044433.244656-1-nikunj@amd.com (local)

Which then means, you don't need any special gunk except extending this
patch above to check SNP has vTOM support.

In the future, Hyper-V may also choose to present original AMD C-bit scheme
in some guest VMs, depending on the use case.  And it will present the Intel
TDX scheme when running on that hardware.

And all those should JustWork(tm) because we already support such guests.

To my knowledge, KVM does not support the AMD vTOM scheme.
Someone from AMD may have a better sense whether adding that
support is likely in the future.

Yah, see above.

Thx.

-- 
Regards/Gruss,
    Boris.

https://people.kernel.org/tglx/notes-about-netiquette

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help