[41/62] x86/sev-es: Handle MSR events

Message ID	20200211135256.24617-42-joro@8bytes.org (mailing list archive)
State	New, archived
Headers	show Return-Path: <SRS0=UyAS=37=vger.kernel.org=kvm-owner@kernel.org> From: Joerg Roedel <joro@8bytes.org> To: x86@kernel.org Cc: hpa@zytor.com, Andy Lutomirski <luto@kernel.org>, Dave Hansen <dave.hansen@linux.intel.com>, Peter Zijlstra <peterz@infradead.org>, Thomas Hellstrom <thellstrom@vmware.com>, Jiri Slaby <jslaby@suse.cz>, Dan Williams <dan.j.williams@intel.com>, Tom Lendacky <thomas.lendacky@amd.com>, Juergen Gross <jgross@suse.com>, Kees Cook <keescook@chromium.org>, linux-kernel@vger.kernel.org, kvm@vger.kernel.org, virtualization@lists.linux-foundation.org, Joerg Roedel <joro@8bytes.org>, Joerg Roedel <jroedel@suse.de> Subject: [PATCH 41/62] x86/sev-es: Handle MSR events Date: Tue, 11 Feb 2020 14:52:35 +0100 Message-Id: <20200211135256.24617-42-joro@8bytes.org> In-Reply-To: <20200211135256.24617-1-joro@8bytes.org> References: <20200211135256.24617-1-joro@8bytes.org> Sender: kvm-owner@vger.kernel.org Precedence: bulk
Series	Linux as SEV-ES Guest Support \| expand [RFC,00/62] Linux as SEV-ES Guest Support [01/62] KVM: SVM: Add GHCB definitions [02/62] KVM: SVM: Add GHCB Accessor functions [03/62] x86/cpufeatures: Add SEV-ES CPU feature [04/62] x86/traps: Move some definitions to <asm/trap_defs.h> [05/62] x86/insn-decoder: Make inat-tables.c suitable for pre-decompression code [06/62] x86/boot/compressed: Fix debug_puthex() parameter type [07/62] x86/boot/compressed/64: Disable red-zone usage [08/62] x86/boot/compressed/64: Add IDT Infrastructure [09/62] x86/boot/compressed/64: Rename kaslr_64.c to ident_map_64.c [10/62] x86/boot/compressed/64: Add page-fault handler [11/62] x86/boot/compressed/64: Always switch to own page-table [12/62] x86/boot/compressed/64: Don't pre-map memory in KASLR code [13/62] x86/boot/compressed/64: Change add_identity_map() to take start and end [14/62] x86/boot/compressed/64: Add stage1 #VC handler [15/62] x86/boot/compressed/64: Call set_sev_encryption_mask earlier [16/62] x86/boot/compressed/64: Check return value of kernel_ident_mapping_init() [17/62] x86/boot/compressed/64: Add function to map a page unencrypted [18/62] x86/boot/compressed/64: Setup GHCB Based VC Exception handler [19/62] x86/sev-es: Add support for handling IOIO exceptions [20/62] x86/fpu: Move xgetbv()/xsetbv() into separate header [21/62] x86/sev-es: Add CPUID handling to #VC handler [22/62] x86/sev-es: Add handler for MMIO events [23/62] x86/idt: Move IDT to data segment [24/62] x86/idt: Split idt_data setup out of set_intr_gate() [25/62] x86/head/64: Install boot GDT [26/62] x86/head/64: Reload GDT after switch to virtual addresses [27/62] x86/head/64: Load segment registers earlier [28/62] x86/head/64: Switch to initial stack earlier [29/62] x86/head/64: Load IDT earlier [30/62] x86/head/64: Move early exception dispatch to C code [31/62] x86/sev-es: Add SEV-ES Feature Detection [32/62] x86/sev-es: Compile early handler code into kernel image [33/62] x86/sev-es: Setup early #VC handler [34/62] x86/sev-es: Setup GHCB based boot #VC handler [35/62] x86/sev-es: Setup per-cpu GHCBs for the runtime handler [36/62] x86/sev-es: Add Runtime #VC Exception Handler [37/62] x86/sev-es: Wire up existing #VC exit-code handlers [38/62] x86/sev-es: Handle instruction fetches from user-space [39/62] x86/sev-es: Harden runtime #VC handler for exceptions from user-space [40/62] x86/sev-es: Filter exceptions not supported from user-space [41/62] x86/sev-es: Handle MSR events [42/62] x86/sev-es: Handle DR7 read/write events [43/62] x86/sev-es: Handle WBINVD Events [44/62] x86/sev-es: Handle RDTSC Events [45/62] x86/sev-es: Handle RDPMC Events [46/62] x86/sev-es: Handle INVD Events [47/62] x86/sev-es: Handle RDTSCP Events [48/62] x86/sev-es: Handle MONITOR/MONITORX Events [49/62] x86/sev-es: Handle MWAIT/MWAITX Events [50/62] x86/sev-es: Handle VMMCALL Events [51/62] x86/sev-es: Handle #AC Events [52/62] x86/sev-es: Handle #DB Events [53/62] x86/paravirt: Allow hypervisor specific VMMCALL handling under SEV-ES [54/62] x86/kvm: Add KVM specific VMMCALL handling under SEV-ES [55/62] x86/vmware: Add VMware specific handling for VMMCALL under SEV-ES [56/62] x86/realmode: Add SEV-ES specific trampoline entry point [57/62] x86/realmode: Setup AP jump table [58/62] x86/head/64: Don't call verify_cpu() on starting APs [59/62] x86/head/64: Rename start_cpu0 [60/62] x86/sev-es: Support CPU offline/online [61/62] x86/cpufeature: Add SEV_ES_GUEST CPU Feature [62/62] x86/sev-es: Add NMI state tracking

Message ID

20200211135256.24617-42-joro@8bytes.org (mailing list archive)

State

New, archived

Headers

From: Joerg Roedel <joro@8bytes.org>
To: x86@kernel.org
Cc: hpa@zytor.com, Andy Lutomirski <luto@kernel.org>,
        Dave Hansen <dave.hansen@linux.intel.com>,
        Peter Zijlstra <peterz@infradead.org>,
        Thomas Hellstrom <thellstrom@vmware.com>,
        Jiri Slaby <jslaby@suse.cz>,
        Dan Williams <dan.j.williams@intel.com>,
        Tom Lendacky <thomas.lendacky@amd.com>,
        Juergen Gross <jgross@suse.com>,
        Kees Cook <keescook@chromium.org>,
        linux-kernel@vger.kernel.org, kvm@vger.kernel.org,
        virtualization@lists.linux-foundation.org,
        Joerg Roedel <joro@8bytes.org>, Joerg Roedel <jroedel@suse.de>
Subject: [PATCH 41/62] x86/sev-es: Handle MSR events
Date: Tue, 11 Feb 2020 14:52:35 +0100
Message-Id: <20200211135256.24617-42-joro@8bytes.org>
In-Reply-To: <20200211135256.24617-1-joro@8bytes.org>
References: <20200211135256.24617-1-joro@8bytes.org>
Sender: kvm-owner@vger.kernel.org
Precedence: bulk

Series

Linux as SEV-ES Guest Support | expand

Commit Message

Joerg Roedel Feb. 11, 2020, 1:52 p.m. UTC

From: Tom Lendacky <thomas.lendacky@amd.com>

Implement a handler for #VC exceptions caused by RDMSR/WRMSR
instructions.

Signed-off-by: Tom Lendacky <thomas.lendacky@amd.com>
[ jroedel@suse.de: Adapt to #VC handling infrastructure ]
Co-developed-by: Joerg Roedel <jroedel@suse.de>
Signed-off-by: Joerg Roedel <jroedel@suse.de>
---
 arch/x86/kernel/sev-es.c | 32 ++++++++++++++++++++++++++++++++
 1 file changed, 32 insertions(+)

Comments

Dave Hansen Feb. 13, 2020, 3:45 p.m. UTC | #1

On 2/11/20 5:52 AM, Joerg Roedel wrote:
> Implement a handler for #VC exceptions caused by RDMSR/WRMSR
> instructions.

As a general comment on all of these event handlers: Why do we bother
having the hypercalls in the interrupt handler as opposed to just
calling them directly.  What you have is:

	wrmsr()
	-> #VC exception
	   hcall()

But we could make our rd/wrmsr() wrappers just do:

	if (running_on_sev_es())
		hcall(HCALL_MSR_WHATEVER...)
	else
		wrmsr()

and then we don't have any of the nastiness of exception handling.

Joerg Roedel Feb. 14, 2020, 7:23 a.m. UTC | #2

On Thu, Feb 13, 2020 at 07:45:00AM -0800, Dave Hansen wrote:
> On 2/11/20 5:52 AM, Joerg Roedel wrote:
> > Implement a handler for #VC exceptions caused by RDMSR/WRMSR
> > instructions.
> 
> As a general comment on all of these event handlers: Why do we bother
> having the hypercalls in the interrupt handler as opposed to just
> calling them directly.  What you have is:
> 
> 	wrmsr()
> 	-> #VC exception
> 	   hcall()
> 
> But we could make our rd/wrmsr() wrappers just do:
> 
> 	if (running_on_sev_es())
> 		hcall(HCALL_MSR_WHATEVER...)
> 	else
> 		wrmsr()
> 
> and then we don't have any of the nastiness of exception handling.

Yes, investigating this is on the list for future optimizations (besides
caching CPUID results). My idea is to use alternatives patching for
this. But the exception handling is needed anyway because #VC
exceptions happen very early already, basically the first thing after
setting up a stack is calling verify_cpu(), which uses CPUID.
The other reason is that things like MMIO and IOIO instructions can't be
easily patched by alternatives. Those would work with the runtime
checking you showed above, though.

Regards,

	Joerg

Dave Hansen Feb. 14, 2020, 4:59 p.m. UTC | #3

On 2/13/20 11:23 PM, Joerg Roedel wrote:
> Yes, investigating this is on the list for future optimizations (besides
> caching CPUID results). My idea is to use alternatives patching for
> this. But the exception handling is needed anyway because #VC
> exceptions happen very early already, basically the first thing after
> setting up a stack is calling verify_cpu(), which uses CPUID.

Ahh, bummer.  How does a guest know that it's running under SEV-ES?
What's the enumeration mechanism if CPUID doesn't "work"?

> The other reason is that things like MMIO and IOIO instructions can't be
> easily patched by alternatives. Those would work with the runtime
> checking you showed above, though.

Is there a reason we can't make a rule that you *must* do MMIO through
an accessor function so we *can* patch them?  I know random drivers
might break the rule, but are SEV-ES guests going to be running random
drivers?  I would think that they mostly if not all want to use virtio.

Joerg Roedel Feb. 15, 2020, 12:45 p.m. UTC | #4

On Fri, Feb 14, 2020 at 08:59:39AM -0800, Dave Hansen wrote:
> On 2/13/20 11:23 PM, Joerg Roedel wrote:
> > Yes, investigating this is on the list for future optimizations (besides
> > caching CPUID results). My idea is to use alternatives patching for
> > this. But the exception handling is needed anyway because #VC
> > exceptions happen very early already, basically the first thing after
> > setting up a stack is calling verify_cpu(), which uses CPUID.
> 
> Ahh, bummer.  How does a guest know that it's running under SEV-ES?
> What's the enumeration mechanism if CPUID doesn't "work"?

There are two ways a guest can find out:

	1) Read the SEV_STATUS_MSR and check for the SEV-ES bit
	2) If a #VC exception is raised it also knows it runs as an
	   SEV-ES guest

This patch-set implements both ways at the appropriate stages of the
boot process. Very early it just installs a #VC handler without checking
whether it is running under SEV-ES and handles the exceptions when they
are raised.

Later in the boot process it also reads the SEV_STATUS_MSR and sets a
cpu_feature flag to do alternative patching based on its value.

> > The other reason is that things like MMIO and IOIO instructions can't be
> > easily patched by alternatives. Those would work with the runtime
> > checking you showed above, though.
> 
> Is there a reason we can't make a rule that you *must* do MMIO through
> an accessor function so we *can* patch them?  I know random drivers
> might break the rule, but are SEV-ES guests going to be running random
> drivers?  I would think that they mostly if not all want to use
> virtio.

Yeah, there are already defined accessor functions for MMIO, like
read/write[bwlq] and memcpy_toio/memcpy_fromio. It is probably worth
testing what performance overhead is involved in overloading these to
call directly into the paravirt path when SEV-ES is enabled. With
alternatives patching it would still add a couple of NOPS for the
non-SEV-ES case.

But all that does not remove the need for the #VC exception handler, as
#VC exceptions can also be triggered by user-space, and the instruction
emulation for MMIO will be needed to allow MMIO in user-space (the
patch-set currently does not allow that, but it could be needed in the
future).

Regards,

	Joerg

diff --git a/arch/x86/kernel/sev-es.c b/arch/x86/kernel/sev-es.c
index 84b5b8f7897a..b27d5b0a8ae1 100644
--- a/arch/x86/kernel/sev-es.c
+++ b/arch/x86/kernel/sev-es.c
@@ -134,6 +134,35 @@  static phys_addr_t es_slow_virt_to_phys(struct ghcb *ghcb, long vaddr)
 /* Include code shared with pre-decompression boot stage */
 #include "sev-es-shared.c"
 
+static enum es_result handle_msr(struct ghcb *ghcb, struct es_em_ctxt *ctxt)
+{
+	struct pt_regs *regs = ctxt->regs;
+	enum es_result ret;
+	bool write;
+	u64 exit_info_1;
+
+	write = (ctxt->insn.opcode.bytes[1] == 0x30);
+
+	ghcb_set_rcx(ghcb, regs->cx);
+	if (write) {
+		ghcb_set_rax(ghcb, regs->ax);
+		ghcb_set_rdx(ghcb, regs->dx);
+		exit_info_1 = 1;
+	} else {
+		exit_info_1 = 0;
+	}
+
+	ret = ghcb_hv_call(ghcb, ctxt, SVM_EXIT_MSR, exit_info_1, 0);
+	if (ret != ES_OK)
+		return ret;
+	else if (!write) {
+		regs->ax = ghcb->save.rax;
+		regs->dx = ghcb->save.rdx;
+	}
+
+	return ret;
+}
+
 /*
  * This function runs on the first #VC exception after the kernel
  * switched to virtual addresses.
@@ -196,6 +225,9 @@  static enum es_result handle_vc_exception(struct es_em_ctxt *ctxt,
 	case SVM_EXIT_IOIO:
 		result = handle_ioio(ghcb, ctxt);
 		break;
+	case SVM_EXIT_MSR:
+		result = handle_msr(ghcb, ctxt);
+		break;
 	case SVM_EXIT_NPF:
 		result = handle_mmio(ghcb, ctxt);
 		break;

[41/62] x86/sev-es: Handle MSR events

Commit Message

Comments

Patch