[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [patch] x86/smpboot: Disable parallel bootup if cc_vendor != NONE

To: "Kirill A. Shutemov" <kirill@xxxxxxxxxxxxx>
From: Sean Christopherson <seanjc@xxxxxxxxxx>
Date: Tue, 30 May 2023 10:31:50 -0700
Cc: Thomas Gleixner <tglx@xxxxxxxxxxxxx>, Tom Lendacky <thomas.lendacky@xxxxxxx>, LKML <linux-kernel@xxxxxxxxxxxxxxx>, x86@xxxxxxxxxx, David Woodhouse <dwmw2@xxxxxxxxxxxxx>, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, Brian Gerst <brgerst@xxxxxxxxx>, Arjan van de Veen <arjan@xxxxxxxxxxxxxxx>, Paolo Bonzini <pbonzini@xxxxxxxxxx>, Paul McKenney <paulmck@xxxxxxxxxx>, Oleksandr Natalenko <oleksandr@xxxxxxxxxxxxxx>, Paul Menzel <pmenzel@xxxxxxxxxxxxx>, "Guilherme G. Piccoli" <gpiccoli@xxxxxxxxxx>, Piotr Gorski <lucjan.lucjanov@xxxxxxxxx>, Usama Arif <usama.arif@xxxxxxxxxxxxx>, Juergen Gross <jgross@xxxxxxxx>, Boris Ostrovsky <boris.ostrovsky@xxxxxxxxxx>, xen-devel@xxxxxxxxxxxxxxxxxxxx, Russell King <linux@xxxxxxxxxxxxxxx>, Arnd Bergmann <arnd@xxxxxxxx>, linux-arm-kernel@xxxxxxxxxxxxxxxxxxx, Catalin Marinas <catalin.marinas@xxxxxxx>, Will Deacon <will@xxxxxxxxxx>, Guo Ren <guoren@xxxxxxxxxx>, linux-csky@xxxxxxxxxxxxxxx, Thomas Bogendoerfer <tsbogend@xxxxxxxxxxxxxxxx>, linux-mips@xxxxxxxxxxxxxxx, "James E.J. Bottomley" <James.Bottomley@xxxxxxxxxxxxxxxxxxxxx>, Helge Deller <deller@xxxxxx>, linux-parisc@xxxxxxxxxxxxxxx, Paul Walmsley <paul.walmsley@xxxxxxxxxx>, Palmer Dabbelt <palmer@xxxxxxxxxxx>, linux-riscv@xxxxxxxxxxxxxxxxxxx, Mark Rutland <mark.rutland@xxxxxxx>, Sabin Rapan <sabrapan@xxxxxxxxxx>, "Michael Kelley (LINUX)" <mikelley@xxxxxxxxxxxxx>, Dave Hansen <dave.hansen@xxxxxxxxxxxxxxx>
Delivery-date: Tue, 30 May 2023 17:32:05 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On Tue, May 30, 2023, Kirill A. Shutemov wrote:
> On Tue, May 30, 2023 at 06:00:46PM +0200, Thomas Gleixner wrote:
> > On Tue, May 30 2023 at 15:29, Kirill A. Shutemov wrote:
> > > On Tue, May 30, 2023 at 02:09:17PM +0200, Thomas Gleixner wrote:
> > >> The decision to allow parallel bringup of secondary CPUs checks
> > >> CC_ATTR_GUEST_STATE_ENCRYPT to detect encrypted guests. Those cannot use
> > >> parallel bootup because accessing the local APIC is intercepted and 
> > >> raises
> > >> a #VC or #VE, which cannot be handled at that point.
> > >> 
> > >> The check works correctly, but only for AMD encrypted guests. TDX does 
> > >> not
> > >> set that flag.
> > >> 
> > >> Check for cc_vendor != CC_VENDOR_NONE instead. That might be overbroad, 
> > >> but
> > >> definitely works for both AMD and Intel.
> > >
> > > It boots fine with TDX, but I think it is wrong. cc_get_vendor() will
> > > report CC_VENDOR_AMD even on bare metal if SME is enabled. I don't think
> > > we want it.
> > 
> > Right. Did not think about that.
> > 
> > But the same way is CC_ATTR_GUEST_MEM_ENCRYPT overbroad for AMD. Only
> > SEV-ES traps RDMSR if I'm understandig that maze correctly.
> 
> I don't know difference between SEV flavours that well.
> 
> I see there's that on SEV-SNP access to x2APIC MSR range (MSR 0x800-0x8FF)
> is intercepted regardless if MSR_AMD64_SNP_ALT_INJ feature is present. But
> I'm not sure what the state on SEV or SEV-ES.

With SEV-ES, if the hypervisor intercepts an MSR access, the VM-Exit is instead
morphed to a #VC (except for EFER).  The guest needs to do an explicit VMGEXIT
(i.e. a hypercall) to explicitly request MSR emulation (this *can* be done in 
the
#VC handler, but the guest can also do VMGEXIT directly, e.g. in lieu of a 
RDMSR).

With regular SEV, VM-Exits aren't reflected into the guest.  Register state 
isn't
encrypted so the hypervisor can emulate MSR accesses (and other instructions)
without needing an explicit hypercall from the guest.

References:
- Re: [patch v3 31/36] x86/apic: Provide cpu_primary_thread mask
  - From: Kirill A. Shutemov
- Re: [patch v3 31/36] x86/apic: Provide cpu_primary_thread mask
  - From: Thomas Gleixner
- Re: [patch v3 31/36] x86/apic: Provide cpu_primary_thread mask
  - From: Kirill A. Shutemov
- Re: [patch v3 31/36] x86/apic: Provide cpu_primary_thread mask
  - From: Kirill A. Shutemov
- Re: [patch v3 31/36] x86/apic: Provide cpu_primary_thread mask
  - From: Thomas Gleixner
- Re: [patch v3 31/36] x86/apic: Provide cpu_primary_thread mask
  - From: Thomas Gleixner
- [patch] x86/smpboot: Disable parallel bootup if cc_vendor != NONE
  - From: Thomas Gleixner
- Re: [patch] x86/smpboot: Disable parallel bootup if cc_vendor != NONE
  - From: Kirill A. Shutemov
- Re: [patch] x86/smpboot: Disable parallel bootup if cc_vendor != NONE
  - From: Thomas Gleixner
- Re: [patch] x86/smpboot: Disable parallel bootup if cc_vendor != NONE
  - From: Kirill A. Shutemov

Prev by Date: Re: [PATCH v2 2/3] x86: Expose Automatic IBRS to guests
Next by Date: [PATCH v3 3/6] block/blkio: convert to blk_io_plug_call() API
Previous by thread: Re: [patch] x86/smpboot: Disable parallel bootup if cc_vendor != NONE
Next by thread: Re: [patch v3 31/36] x86/apic: Provide cpu_primary_thread mask
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.