Re: [PATCHv5 23/30] x86/boot: Avoid #VE during boot for TDX platforms

From: Xiaoyao Li
Date: Mon Mar 07 2022 - 04:43:54 EST

Next message: Greg Kroah-Hartman: "[PATCH 5.10 004/105] ASoC: rt5668: do not block workqueue if card is unbound"
Previous message: Greg Kroah-Hartman: "[PATCH 5.10 011/105] selftests/seccomp: Fix seccomp failure by adding missing headers"
In reply to: Kirill A. Shutemov: "[PATCHv5 23/30] x86/boot: Avoid #VE during boot for TDX platforms"
Next in thread: Kirill A. Shutemov: "Re: [PATCHv5 23/30] x86/boot: Avoid #VE during boot for TDX platforms"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 3/2/2022 10:27 PM, Kirill A. Shutemov wrote:

From: Sean Christopherson <seanjc@xxxxxxxxxx>

There are a few MSRs and control register bits that the kernel
normally needs to modify during boot. But, TDX disallows
modification of these registers to help provide consistent security
guarantees. Fortunately, TDX ensures that these are all in the correct
state before the kernel loads, which means the kernel does not need to
modify them.

The conditions to avoid are:

* Any writes to the EFER MSR
* Clearing CR3.MCE

typo. CR4.MCE

BTW, I remember there was a patch to clear X86_FEATURE_MCE for TDX guest. Why does that get dropped?

Even though CPUID reports MCE is supported, all the access to MCE related MSRs causes #VE. If they are accessed via mce_rdmsrl(), the #VE will be fixed up and goes to ex_handler_msr_mce(). Finally lead to panic().

Next message: Greg Kroah-Hartman: "[PATCH 5.10 004/105] ASoC: rt5668: do not block workqueue if card is unbound"
Previous message: Greg Kroah-Hartman: "[PATCH 5.10 011/105] selftests/seccomp: Fix seccomp failure by adding missing headers"
In reply to: Kirill A. Shutemov: "[PATCHv5 23/30] x86/boot: Avoid #VE during boot for TDX platforms"
Next in thread: Kirill A. Shutemov: "Re: [PATCHv5 23/30] x86/boot: Avoid #VE during boot for TDX platforms"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]