[RFC,v1,21/28] KVM: introduce KVM_SEV_ISSUE_CMD ioctl

Message ID	147190849706.9523.17127624683768628621.stgit@brijesh-build-machine (mailing list archive)
State	New, archived
Headers	show Return-Path: <kvm-owner@kernel.org> Subject: [RFC PATCH v1 21/28] KVM: introduce KVM_SEV_ISSUE_CMD ioctl From: Brijesh Singh <brijesh.singh@amd.com> To: <simon.guinot@sequanux.org>, <linux-efi@vger.kernel.org>, <brijesh.singh@amd.com>, <kvm@vger.kernel.org>, <rkrcmar@redhat.com>, <matt@codeblueprint.co.uk>, <linus.walleij@linaro.org>, <linux-mm@kvack.org>, <paul.gortmaker@windriver.com>, <hpa@zytor.com>, <dan.j.williams@intel.com>, <aarcange@redhat.com>, <sfr@canb.auug.org.au>, <andriy.shevchenko@linux.intel.com>, <herbert@gondor.apana.org.au>, <bhe@redhat.com>, <xemul@parallels.com>, <joro@8bytes.org>, <x86@kernel.org>, <mingo@redhat.com>, <msalter@redhat.com>, <ross.zwisler@linux.intel.com>, <bp@suse.de>, <dyoung@redhat.com>, <thomas.lendacky@amd.com>, <jroedel@suse.de>, <keescook@chromium.org>, <toshi.kani@hpe.com>, <mathieu.desnoyers@efficios.com>, <devel@linuxdriverproject.org>, <tglx@linutronix.de>, <mchehab@kernel.org>, <iamjoonsoo.kim@lge.com>, <labbott@fedoraproject.org>, <tony.luck@intel.com>, <alexandre.bounine@idt.com>, <kuleshovmail@gmail.com>, <linux-kernel@vger.kernel.org>, <mcgrof@kernel.org>, <linux-crypto@vger.kernel.org>, <pbonzini@redhat.com>, <akpm@linux-foundation.org>, <davem@davemloft.net> Date: Mon, 22 Aug 2016 19:28:17 -0400 Message-ID: <147190849706.9523.17127624683768628621.stgit@brijesh-build-machine> In-Reply-To: <147190820782.9523.4967724730957229273.stgit@brijesh-build-machine> References: <147190820782.9523.4967724730957229273.stgit@brijesh-build-machine> User-Agent: StGit/0.17.1-dirty MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit Received-SPF: None (protection.outlook.com: amd.com does not designate permitted sender hosts) X-Microsoft-Exchange-Diagnostics: =?utf-8?B?MTtCTFVQUjEyTUIwNjU4OzIzOjZrcXFaYWtPMGZ6OEtKMHFzUjVtVjE2dlln?= =?utf-8?B?THh0RFlrcndHZXE3RTQ0UEY0eU9jSFVXaER3TWdacW1YdDBqcHRmQXVRL2lD?= =?utf-8?B?cmg1Q09TR0xRQS9Ud3owamtoVnR5M3pJWXVzbk1Dd3B4SXZiME5QSFdzSHM3?= =?utf-8?B?WDBVcjZDTTBJTkVhZ090aDIwTmIvcjl3M0VUZnNrVE9UM1hWajFudXlENWt4?= =?utf-8?B?ZGRPMGcxMVBrTFBLMjVBT3NzRmd6Y3N0eEpUQ0k2by9KVFpQcXprMFA4dEpU?= =?utf-8?B?Z3pPWTl3a2NLUTFoYTRTU0dTYXNBTFJKdmRsNVlmeTVyeEJOeTdQMjBaaUxJ?= =?utf-8?B?eG40L2dKVTZwVzk4aS9XRlgwaS9zYndlc1Y0TWUxVjNTN3JUbzI1WnpiYWtK?= =?utf-8?B?MndBelpheEpWWXpPRW4rc2t3Z2gvdm9vd0lrNnY2NExDVHl6RkRSK1lnVEFw?= =?utf-8?B?TjZzU3JYeWxNbDV6SXM3WXZGeGJtZ3RxK3p6ME1lOEt5NnpjUGxWN0o5U2to?= =?utf-8?B?Q1paNml1YThpRjZzWkIvYU0rWXJueVVvWkdoTkcwQnNqSVdYcmRxMXVFbnhx?= =?utf-8?B?ckNyQVhyL1pSRFprZ09uN2wvdVhKNmpCOXgveTFjeXBVUHNZNHJYQUdZMmhh?= =?utf-8?B?M0IxTkk2ODdBblVYOHd6N3I3MEhSNHdhV0hRVDUwQW8rWVZyM1BUQU0rYjll?= =?utf-8?B?NXBpN3pjYUR6dHM4RkNmZHNzSlJtMi9WTEU3ZG1hUHBpdkNaenNJNWsrNFVw?= =?utf-8?B?K2hYNGVUNGJqWGhueStIUjBTNGVqcktONGNVQTRGL1I1cHIwTWdCZHpIWVVT?= =?utf-8?B?MUQ2MFNSTHZmaVBFRVcrSGNtUUtpV00xNWNlZmFQN0diektLNFRhcThTRVFw?= =?utf-8?B?R29LRzlCS2IwQmJZZ3VwSTlHbmRRL1g3cm8wenVsMkFXdThLTG15N1J3RXRF?= =?utf-8?B?Z2FNVDFZc09NY1hObW1PTUdQZWdDbUhYS01GamEwVDN6dllpMUxrY0Qwa0Uy?= =?utf-8?B?Rm1FQnJ5eFdKSUpiREpIeVdIc0NKb2NqS0owOU4zZlF1c01USHp6S1cwSHdx?= =?utf-8?B?QXpRUllINmZNR1hqM0VOVkNhM21RaHFkTHBQRkVXaWpYMlI1RkF6eDlrWGkz?= =?utf-8?B?UDVXdVNvelBIcnhlWlNBaE5JcDM4M2JZU0RXR3k0b1BwSmZMWCtrTXpsbWxz?= =?utf-8?B?akJtRzVRdksvMThuVis2amIvUnQ2M29jSnloWFdjUmNkdC92eUhzL0NwNXAx?= =?utf-8?B?cHZZc0dCREpqQWhFUHluWlprVngwU3FkaG1lYnl6Y0lWM0ZHRGxROEd6aWtQ?= =?utf-8?B?WWIwM25xb0xrOWUxN3ZOZmo0T1l1MWZQam1GcmtHMjBIU1daN3E1SHY4dFBX?= =?utf-8?B?YzlkN1ZaNUdJa2pNbm1UZFI4Vk5oUk40alBuWi80Q2ZjWC9RTFl2NXpLdnRT?= =?utf-8?B?dFpDbC96SnJtK3VUL2dVOWU5aThoQ3pwOGlDVEwySytpQ2FsRUVCU3ZTUnFt?= =?utf-8?B?cmhVZGttakp3RlUwV2F3MXJqMVIvT0FZTVN1WEhiSHJLYndSaHNVMEF5TnpZ?= =?utf-8?B?S21KTnlqelU2akcyRXYwZlQzdkVDVWd1TDZWK0NPRS94NUxndGN3eW1nQWFr?= =?utf-8?B?aEE2cXZacUx5YnI5YjMrYWVsQXpseVlhNVdueWJoUU9JWERhWnZzREVZM3oz?= =?utf-8?B?em1hMnJrNVNBcHdIUjNWZ1JUaW1PbjRKcEtVNlYvT3BDV3BhTkE5NHh1MGQv?= =?utf-8?B?S0tOcjdvTUwrdlFjYWdtMXMrYTVIL2VBRXl3dUppbWZEVlJPSEVPR09YUzdL?= =?utf-8?B?aTlnNUptOWMxVVZTL0VQcGZpMG9ZclVwQ1Q5dFhDYjFaNldwRXFEd0RTYzlm?= =?utf-8?Q?Hx9/hUl85rY=3D?= X-Microsoft-Exchange-Diagnostics: 1; BLUPR12MB0658; 6:SCfUjcBpvOQUcvhpQf0pUu5HD9vyG6P5+DCDIxqfDucVOQAhZ3w3xXJUbwVmDHU2uerjp/x4Xt5A2IWngrVbIjmux28oJRTizVOGXc1AUv+vSlZo2d9IJvgmxXF89xBwVLFnjMcOkx7/s8SOrMReq64cWtkFSE8VDCRGjkPNY7R6zFdqajFkPTGxNAgN+VUOpkFGki/zdvOA8konDZSTHhw904StArrfTSeCd3o3zhDq+lARrNpVjUZJ82IKFDeI3o00HDnWQ5DI9kdFd6+CSNCiXpfAHkzx4qh9rPLyDqIdNoesw9vH6tfy8nj6v5KlgLPXN1+RsZ/cDDVGE0K7kA==; 5:jX1J6tadgmUEXceV07tJ3+jf+Q2H+X5sCwFxkaG2ENIpvpkwc1E8P8+8Rl1MfK4sj9I4rd+ktuN3kaIP/dN8kjIKYm1ta0t6jBVoy0pMjRRGHs+zb16dfJ5/oRGHKSS76MDkonxXM+6FddSk9ZYjDw==; 24:JHNDv9yoYRM2tWHgGRiHrwdSnWK+Y9jvwXLtyOL53/iUeq3IojtOJeXAffLqyJSJpLEv44g4/IvDao4vN5759WqtzbNZ2BBxSUtzgkIXoXY=; 7:Gt6fFpKT6118fw17hQqAjf+AiPwZiDW/SV+9IsMEDxD0egLay338UjxwdQQzZdK5AT1WQdnowKJqhMCcov/t1o/Sl/OtDrF1cjvKH2BcFTrMXuSlkaYnWz21awETkfQ8vlBouFkpTk84CUs/nJanriWtVP9ZzKCv6kNLy5zkfJJzcZNMzMLrdL11yRZHx1ho2Ih16oAxz8JMJBukNwKjGq/q9hByMh0qWndoWJvoyRv3uaVigoBYKIpVZqKJP0o/ SpamDiagnosticOutput: 1:99 SpamDiagnosticMetadata: NSPM X-Microsoft-Exchange-Diagnostics: 1; BLUPR12MB0658; 20:cz/zdjeberAfGojJ1dCzbQBiEIfj5I7hduB0Ec3Ym/nfMs/cKiVIeaCKOU2OFxItuJXcpB5zEEk42JvN0jaD9H3gibHwq3Tn+JTZ2uL8b1RFEuDWldkOiN/MU+fY094sArPqLen/Rmea6YoMvdhncxQNnGtQpWiyUw+avvFrMMyKsSv69r5mBg+C2D6Lxf9AyOgN1ObXdaNJiVQmDqIFPOxxaP5B0UhtA7g7vQIjPsw8ZMEJJQkiPxbu6Oqrzeas Sender: kvm-owner@vger.kernel.org Precedence: bulk

Brijesh Singh Aug. 22, 2016, 11:28 p.m. UTC

The ioctl will be used by qemu to issue the Secure Encrypted
Virtualization (SEV) guest commands to transition a guest into
into SEV-enabled mode.

a typical usage:

struct kvm_sev_launch_start start;
struct kvm_sev_issue_cmd data;

data.cmd = KVM_SEV_LAUNCH_START;
data.opaque = &start;

ret = ioctl(fd, KVM_SEV_ISSUE_CMD, &data);

On SEV command failure, data.ret_code will contain the firmware error code.

Signed-off-by: Brijesh Singh <brijesh.singh@amd.com>
---
 arch/x86/include/asm/kvm_host.h |    3 +
 arch/x86/kvm/x86.c              |   13 ++++
 include/uapi/linux/kvm.h        |  125 +++++++++++++++++++++++++++++++++++++++
 3 files changed, 141 insertions(+)


--
To unsubscribe from this list: send the line "unsubscribe kvm" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Paolo Bonzini Oct. 13, 2016, 10:45 a.m. UTC | #1

On 23/08/2016 01:28, Brijesh Singh wrote:
> The ioctl will be used by qemu to issue the Secure Encrypted
> Virtualization (SEV) guest commands to transition a guest into
> into SEV-enabled mode.
> 
> a typical usage:
> 
> struct kvm_sev_launch_start start;
> struct kvm_sev_issue_cmd data;
> 
> data.cmd = KVM_SEV_LAUNCH_START;
> data.opaque = &start;
> 
> ret = ioctl(fd, KVM_SEV_ISSUE_CMD, &data);
> 
> On SEV command failure, data.ret_code will contain the firmware error code.

Please modify the ioctl to require the file descriptor for the PSP.  A
program without access to /dev/psp should not be able to use SEV.

> Signed-off-by: Brijesh Singh <brijesh.singh@amd.com>
> ---
>  arch/x86/include/asm/kvm_host.h |    3 +
>  arch/x86/kvm/x86.c              |   13 ++++
>  include/uapi/linux/kvm.h        |  125 +++++++++++++++++++++++++++++++++++++++
>  3 files changed, 141 insertions(+)
> 
> diff --git a/arch/x86/include/asm/kvm_host.h b/arch/x86/include/asm/kvm_host.h
> index 9b885fc..a94e37d 100644
> --- a/arch/x86/include/asm/kvm_host.h
> +++ b/arch/x86/include/asm/kvm_host.h
> @@ -1040,6 +1040,9 @@ struct kvm_x86_ops {
>  	void (*cancel_hv_timer)(struct kvm_vcpu *vcpu);
>  
>  	void (*setup_mce)(struct kvm_vcpu *vcpu);
> +
> +	int (*sev_issue_cmd)(struct kvm *kvm,
> +			     struct kvm_sev_issue_cmd __user *argp);
>  };
>  
>  struct kvm_arch_async_pf {
> diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c
> index d6f2f4b..0c0adad 100644
> --- a/arch/x86/kvm/x86.c
> +++ b/arch/x86/kvm/x86.c
> @@ -3820,6 +3820,15 @@ split_irqchip_unlock:
>  	return r;
>  }
>  
> +static int kvm_vm_ioctl_sev_issue_cmd(struct kvm *kvm,
> +				      struct kvm_sev_issue_cmd __user *argp)
> +{
> +	if (kvm_x86_ops->sev_issue_cmd)
> +		return kvm_x86_ops->sev_issue_cmd(kvm, argp);
> +
> +	return -ENOTTY;
> +}

Please make a more generic vm_ioctl callback.

>  long kvm_arch_vm_ioctl(struct file *filp,
>  		       unsigned int ioctl, unsigned long arg)
>  {
> @@ -4085,6 +4094,10 @@ long kvm_arch_vm_ioctl(struct file *filp,
>  		r = kvm_vm_ioctl_enable_cap(kvm, &cap);
>  		break;
>  	}
> +	case KVM_SEV_ISSUE_CMD: {
> +		r = kvm_vm_ioctl_sev_issue_cmd(kvm, argp);
> +		break;
> +	}
>  	default:
>  		r = kvm_vm_ioctl_assigned_device(kvm, ioctl, arg);
>  	}
> diff --git a/include/uapi/linux/kvm.h b/include/uapi/linux/kvm.h
> index 300ef25..72c18c3 100644
> --- a/include/uapi/linux/kvm.h
> +++ b/include/uapi/linux/kvm.h
> @@ -1274,6 +1274,131 @@ struct kvm_s390_ucas_mapping {
>  /* Available with KVM_CAP_X86_SMM */
>  #define KVM_SMI                   _IO(KVMIO,   0xb7)
>  
> +/* Secure Encrypted Virtualization mode */
> +enum sev_cmd {
> +	KVM_SEV_LAUNCH_START = 0,
> +	KVM_SEV_LAUNCH_UPDATE,
> +	KVM_SEV_LAUNCH_FINISH,
> +	KVM_SEV_GUEST_STATUS,
> +	KVM_SEV_DBG_DECRYPT,
> +	KVM_SEV_DBG_ENCRYPT,
> +	KVM_SEV_RECEIVE_START,
> +	KVM_SEV_RECEIVE_UPDATE,
> +	KVM_SEV_RECEIVE_FINISH,
> +	KVM_SEV_SEND_START,
> +	KVM_SEV_SEND_UPDATE,
> +	KVM_SEV_SEND_FINISH,
> +	KVM_SEV_API_VERSION,
> +	KVM_SEV_NR_MAX,
> +};
> +
> +struct kvm_sev_issue_cmd {
> +	__u32 cmd;
> +	__u64 opaque;
> +	__u32 ret_code;
> +};
> +
> +struct kvm_sev_launch_start {
> +	__u32 handle;
> +	__u32 flags;
> +	__u32 policy;
> +	__u8 nonce[16];
> +	__u8 dh_pub_qx[32];
> +	__u8 dh_pub_qy[32];
> +};
> +
> +struct kvm_sev_launch_update {
> +	__u64	address;
> +	__u32	length;
> +};
> +
> +struct kvm_sev_launch_finish {
> +	__u32 vcpu_count;
> +	__u32 vcpu_length;
> +	__u64 vcpu_mask_addr;
> +	__u32 vcpu_mask_length;
> +	__u8  measurement[32];
> +};
> +
> +struct kvm_sev_guest_status {
> +	__u32 policy;
> +	__u32 state;
> +};
> +
> +struct kvm_sev_dbg_decrypt {
> +	__u64 src_addr;
> +	__u64 dst_addr;
> +	__u32 length;
> +};
> +
> +struct kvm_sev_dbg_encrypt {
> +	__u64 src_addr;
> +	__u64 dst_addr;
> +	__u32 length;
> +};
> +
> +struct kvm_sev_receive_start {
> +	__u32 handle;
> +	__u32 flags;
> +	__u32 policy;
> +	__u8 policy_meas[32];
> +	__u8 wrapped_tek[24];
> +	__u8 wrapped_tik[24];
> +	__u8 ten[16];
> +	__u8 dh_pub_qx[32];
> +	__u8 dh_pub_qy[32];
> +	__u8 nonce[16];
> +};
> +
> +struct kvm_sev_receive_update {
> +	__u8 iv[16];
> +	__u64 address;
> +	__u32 length;
> +};
> +
> +struct kvm_sev_receive_finish {
> +	__u8 measurement[32];
> +};
> +
> +struct kvm_sev_send_start {
> +	__u8 nonce[16];
> +	__u32 policy;
> +	__u8 policy_meas[32];
> +	__u8 wrapped_tek[24];
> +	__u8 wrapped_tik[24];
> +	__u8 ten[16];
> +	__u8 iv[16];
> +	__u32 flags;
> +	__u8 api_major;
> +	__u8 api_minor;
> +	__u32 serial;
> +	__u8 dh_pub_qx[32];
> +	__u8 dh_pub_qy[32];
> +	__u8 pek_sig_r[32];
> +	__u8 pek_sig_s[32];
> +	__u8 cek_sig_r[32];
> +	__u8 cek_sig_s[32];
> +	__u8 cek_pub_qx[32];
> +	__u8 cek_pub_qy[32];
> +	__u8 ask_sig_r[32];
> +	__u8 ask_sig_s[32];
> +	__u32 ncerts;
> +	__u32 cert_length;
> +	__u64 certs_addr;
> +};
> +
> +struct kvm_sev_send_update {
> +	__u32 length;
> +	__u64 src_addr;
> +	__u64 dst_addr;
> +};
> +
> +struct kvm_sev_send_finish {
> +	__u8 measurement[32];
> +};
> +
> +#define KVM_SEV_ISSUE_CMD	_IOWR(KVMIO, 0xb8, struct kvm_sev_issue_cmd)
> +
>  #define KVM_DEV_ASSIGN_ENABLE_IOMMU	(1 << 0)
>  #define KVM_DEV_ASSIGN_PCI_2_3		(1 << 1)
>  #define KVM_DEV_ASSIGN_MASK_INTX	(1 << 2)
> 
> 
--
To unsubscribe from this list: send the line "unsubscribe kvm" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Brijesh Singh Oct. 17, 2016, 5:57 p.m. UTC | #2

Hi Paolo,


On 10/13/2016 05:45 AM, Paolo Bonzini wrote:
>
>
> On 23/08/2016 01:28, Brijesh Singh wrote:
>> The ioctl will be used by qemu to issue the Secure Encrypted
>> Virtualization (SEV) guest commands to transition a guest into
>> into SEV-enabled mode.
>>
>> a typical usage:
>>
>> struct kvm_sev_launch_start start;
>> struct kvm_sev_issue_cmd data;
>>
>> data.cmd = KVM_SEV_LAUNCH_START;
>> data.opaque = &start;
>>
>> ret = ioctl(fd, KVM_SEV_ISSUE_CMD, &data);
>>
>> On SEV command failure, data.ret_code will contain the firmware error code.
>
> Please modify the ioctl to require the file descriptor for the PSP.  A
> program without access to /dev/psp should not be able to use SEV.
>

I am not sure if I fully understand this feedback. Let me summaries what 
we have right now.

At highest level SEV key management commands are divided into two sections:

- platform  management : commands used during platform provisioning. PSP 
drv provides ioctl's for these commands. Qemu will not use these 
ioctl's, i believe these ioctl will be used by other tools.

- guest management: command used during guest life cycle. PSP drv 
exports various function and KVM drv calls these function when it 
receives the SEV_ISSUE_CMD ioctl from qemu.

If I understanding correctly then you are recommending that instead of 
exporting various functions from PSP drv we should expose one function 
for the all the guest command handling (something like this).

int psp_issue_cmd_external_user(struct file *filep,
			    	int cmd, unsigned long addr,
			    	int *psp_ret)
{
	/* here we check to ensure that file->f_ops is a valid
	 * psp instance.
          */
	if (filep->f_ops != &psp_fops)
		return -EINVAL;

	/* handle the command */
	return psp_issue_cmd (cmd, addr, timeout, psp_ret);
}

In KVM driver use something like this to invoke the PSP command handler.

int kvm_sev_psp_cmd (struct kvm_sev_issue_cmd *input,
		     unsigned long data)
{
	int ret;
	struct fd f;

	f = fdget(input->psp_fd);
	if (!f.file)
		return -EBADF;
	....

	psp_issue_cmd_external_user(f.file, input->cmd,
				    data, &input->psp_ret);
	....
}

Please let me know if I understood this correctly.

>> Signed-off-by: Brijesh Singh <brijesh.singh@amd.com>
>> ---
>>  arch/x86/include/asm/kvm_host.h |    3 +
>>  arch/x86/kvm/x86.c              |   13 ++++
>>  include/uapi/linux/kvm.h        |  125 +++++++++++++++++++++++++++++++++++++++
>>  3 files changed, 141 insertions(+)
>>
--
To unsubscribe from this list: send the line "unsubscribe kvm" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Paolo Bonzini Oct. 17, 2016, 8:14 p.m. UTC | #3

> I am not sure if I fully understand this feedback. Let me summaries what
> we have right now.
> 
> At highest level SEV key management commands are divided into two sections:
> 
> - platform  management : commands used during platform provisioning. PSP
> drv provides ioctl's for these commands. Qemu will not use these
> ioctl's, i believe these ioctl will be used by other tools.
> 
> - guest management: command used during guest life cycle. PSP drv
> exports various function and KVM drv calls these function when it
> receives the SEV_ISSUE_CMD ioctl from qemu.
> 
> If I understanding correctly then you are recommending that instead of
> exporting various functions from PSP drv we should expose one function
> for the all the guest command handling (something like this).

My understanding is that a user could exhaust the ASIDs for encrypted
VMs if it was allowed to start an arbitrary number of KVM guests.  So
we would need some kind of control.  Is this correct?

If so, does /dev/psp provide any functionality that you believe is
dangerous for the KVM userspace (which runs in a very confined
environment)?  Is this functionality blocked through capability
checks?

Thanks,

Paolo


> int psp_issue_cmd_external_user(struct file *filep,
> 			    	int cmd, unsigned long addr,
> 			    	int *psp_ret)
> {
> 	/* here we check to ensure that file->f_ops is a valid
> 	 * psp instance.
>           */
> 	if (filep->f_ops != &psp_fops)
> 		return -EINVAL;
> 
> 	/* handle the command */
> 	return psp_issue_cmd (cmd, addr, timeout, psp_ret);
> }
> 
> In KVM driver use something like this to invoke the PSP command handler.
> 
> int kvm_sev_psp_cmd (struct kvm_sev_issue_cmd *input,
> 		     unsigned long data)
> {
> 	int ret;
> 	struct fd f;
> 
> 	f = fdget(input->psp_fd);
> 	if (!f.file)
> 		return -EBADF;
> 	....
> 
> 	psp_issue_cmd_external_user(f.file, input->cmd,
> 				    data, &input->psp_ret);
> 	....
> }
> 
> Please let me know if I understood this correctly.
> 
> >> Signed-off-by: Brijesh Singh <brijesh.singh@amd.com>
> >> ---
> >>  arch/x86/include/asm/kvm_host.h |    3 +
> >>  arch/x86/kvm/x86.c              |   13 ++++
> >>  include/uapi/linux/kvm.h        |  125
> >>  +++++++++++++++++++++++++++++++++++++++
> >>  3 files changed, 141 insertions(+)
> >>
> 
--
To unsubscribe from this list: send the line "unsubscribe kvm" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Brijesh Singh Oct. 18, 2016, 7:32 p.m. UTC | #4

Hi Paolo,

On 10/17/2016 03:14 PM, Paolo Bonzini wrote:
>> I am not sure if I fully understand this feedback. Let me summaries what
>> we have right now.
>>
>> At highest level SEV key management commands are divided into two sections:
>>
>> - platform  management : commands used during platform provisioning. PSP
>> drv provides ioctl's for these commands. Qemu will not use these
>> ioctl's, i believe these ioctl will be used by other tools.
>>
>> - guest management: command used during guest life cycle. PSP drv
>> exports various function and KVM drv calls these function when it
>> receives the SEV_ISSUE_CMD ioctl from qemu.
>>
>> If I understanding correctly then you are recommending that instead of
>> exporting various functions from PSP drv we should expose one function
>> for the all the guest command handling (something like this).
>
> My understanding is that a user could exhaust the ASIDs for encrypted
> VMs if it was allowed to start an arbitrary number of KVM guests.  So
> we would need some kind of control.  Is this correct?
>

Yes, there is limited number of ASIDs for encrypted VMs. Do we need to 
pass the psp_fd into SEV_ISSUE_CMD ioctl or can we handle it from Qemu 
itself ? e.g when user asks to transition a guest into SEV-enabled mode 
then before calling LAUNCH_START Qemu tries to open /dev/psp device. If 
open() returns success then we know user has permission to communicate 
with PSP firmware. Please let me know if I am missing something.

> If so, does /dev/psp provide any functionality that you believe is
> dangerous for the KVM userspace (which runs in a very confined
> environment)?  Is this functionality blocked through capability
> checks?
>

I do not see /dev/psp providing anything which would be dangerous to KVM 
userspace. It should be safe to access /dev/psp into KVM userspace.

> Thanks,
>
> Paolo
>
>
>> int psp_issue_cmd_external_user(struct file *filep,
>> 			    	int cmd, unsigned long addr,
>> 			    	int *psp_ret)
>> {
>> 	/* here we check to ensure that file->f_ops is a valid
>> 	 * psp instance.
>>           */
>> 	if (filep->f_ops != &psp_fops)
>> 		return -EINVAL;
>>
>> 	/* handle the command */
>> 	return psp_issue_cmd (cmd, addr, timeout, psp_ret);
>> }
>>
>> In KVM driver use something like this to invoke the PSP command handler.
>>
>> int kvm_sev_psp_cmd (struct kvm_sev_issue_cmd *input,
>> 		     unsigned long data)
>> {
>> 	int ret;
>> 	struct fd f;
>>
>> 	f = fdget(input->psp_fd);
>> 	if (!f.file)
>> 		return -EBADF;
>> 	....
>>
>> 	psp_issue_cmd_external_user(f.file, input->cmd,
>> 				    data, &input->psp_ret);
>> 	....
>> }
>>
>> Please let me know if I understood this correctly.
>>
>>>> Signed-off-by: Brijesh Singh <brijesh.singh@amd.com>
>>>> ---
>>>>  arch/x86/include/asm/kvm_host.h |    3 +
>>>>  arch/x86/kvm/x86.c              |   13 ++++
>>>>  include/uapi/linux/kvm.h        |  125
>>>>  +++++++++++++++++++++++++++++++++++++++
>>>>  3 files changed, 141 insertions(+)
>>>>
>>
--
To unsubscribe from this list: send the line "unsubscribe kvm" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Paolo Bonzini Oct. 18, 2016, 9:44 p.m. UTC | #5

> > If I understanding correctly then you are recommending that instead of
> > exporting various functions from PSP drv we should expose one function
> > for the all the guest command handling (something like this).
> >
> > My understanding is that a user could exhaust the ASIDs for encrypted
> > VMs if it was allowed to start an arbitrary number of KVM guests.  So
> > we would need some kind of control.  Is this correct?
> 
> Yes, there is limited number of ASIDs for encrypted VMs. Do we need to
> pass the psp_fd into SEV_ISSUE_CMD ioctl or can we handle it from Qemu
> itself ? e.g when user asks to transition a guest into SEV-enabled mode
> then before calling LAUNCH_START Qemu tries to open /dev/psp device. If
> open() returns success then we know user has permission to communicate
> with PSP firmware.

No, this is a stateful mechanism and it's hard to implement.  Passing a
/dev/psp file descriptor is the simplest way to "prove" that you have
access to the device.

Thanks,

Paolo

> > If so, does /dev/psp provide any functionality that you believe is
> > dangerous for the KVM userspace (which runs in a very confined
> > environment)?  Is this functionality blocked through capability
> > checks?
> 
> I do not see /dev/psp providing anything which would be dangerous to KVM
> userspace. It should be safe to access /dev/psp into KVM userspace.
--
To unsubscribe from this list: send the line "unsubscribe kvm" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

[RFC,v1,21/28] KVM: introduce KVM_SEV_ISSUE_CMD ioctl

Commit Message

Comments

Patch