[0/2] Limit memory encryption cpuid pass through

Message ID	20191121203344.156835-1-pgonda@google.com (mailing list archive)
Headers	show Return-Path: <SRS0=EBfH=ZN=vger.kernel.org=kvm-owner@kernel.org> Date: Thu, 21 Nov 2019 12:33:42 -0800 Message-Id: <20191121203344.156835-1-pgonda@google.com> Mime-Version: 1.0 Subject: [PATCH 0/2] Limit memory encryption cpuid pass through From: Peter Gonda <pgonda@google.com> To: Paolo Bonzini <pbonzini@redhat.com>, kvm@vger.kernel.org Cc: Jim Mattson <jmattson@google.com>, Brijesh Singh <brijesh.singh@amd.com>, Tom Lendacky <thomas.lendacky@amd.com>, Peter Gonda <pgonda@google.com>, Sean Christopherson <sean.j.christopherson@intel.com> Content-Type: text/plain; charset="UTF-8" Sender: kvm-owner@vger.kernel.org Precedence: bulk
Series	Limit memory encryption cpuid pass through \| expand [0/2] Limit memory encryption cpuid pass through [1/2] KVM x86: Move kvm cpuid support out of svm [2/2] KVM x86: Mask memory encryption guest cpuid

Message ID

20191121203344.156835-1-pgonda@google.com (mailing list archive)

Headers

Date: Thu, 21 Nov 2019 12:33:42 -0800
Message-Id: <20191121203344.156835-1-pgonda@google.com>
Mime-Version: 1.0
Subject: [PATCH 0/2] Limit memory encryption cpuid pass through
From: Peter Gonda <pgonda@google.com>
To: Paolo Bonzini <pbonzini@redhat.com>, kvm@vger.kernel.org
Cc: Jim Mattson <jmattson@google.com>,
        Brijesh Singh <brijesh.singh@amd.com>,
        Tom Lendacky <thomas.lendacky@amd.com>,
        Peter Gonda <pgonda@google.com>,
        Sean Christopherson <sean.j.christopherson@intel.com>
Content-Type: text/plain; charset="UTF-8"
Sender: kvm-owner@vger.kernel.org
Precedence: bulk

Series

Limit memory encryption cpuid pass through | expand

Message

Peter Gonda Nov. 21, 2019, 8:33 p.m. UTC

KVM_GET_SUPPORTED_CPUID for 0x8000001F currently passes through all data if
X86_FEATURE_SEV is enabled. Guests only need the SEV bit and Cbit location
to work correctly. This series moves handing of this cpuid function out of
svm.c to the general x86 function and masks out host data.

Peter Gonda (2):
  KVM x86: Move kvm cpuid support out of svm
  KVM x86: Mask memory encryption guest cpuid

 arch/x86/kvm/cpuid.c | 11 +++++++++++
 arch/x86/kvm/svm.c   |  7 -------
 2 files changed, 11 insertions(+), 7 deletions(-)

Comments

Brijesh Singh Nov. 22, 2019, 2:34 p.m. UTC | #1

On 11/21/19 2:33 PM, Peter Gonda wrote:
> KVM_GET_SUPPORTED_CPUID for 0x8000001F currently passes through all data if
> X86_FEATURE_SEV is enabled. Guests only need the SEV bit and Cbit location
> to work correctly. This series moves handing of this cpuid function out of
> svm.c to the general x86 function and masks out host data.
> 
> Peter Gonda (2):
>    KVM x86: Move kvm cpuid support out of svm
>    KVM x86: Mask memory encryption guest cpuid
> 
>   arch/x86/kvm/cpuid.c | 11 +++++++++++
>   arch/x86/kvm/svm.c   |  7 -------
>   2 files changed, 11 insertions(+), 7 deletions(-)
> 

Reviewed-by: Brijesh Singh <brijesh.singh@amd.com>