Xen project Mailing List

Re: [PATCH v2 4/4] x86/spec-ctrl: Fix NMI race condition with VT-x MSR_SPEC_CTRL handling

To: Andrew Cooper <amc96@xxxxxxxx>, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>

Date: Thu, 20 Jan 2022 13:11:51 +0100

Arc-authentication-results: i=1; mx.microsoft.com 1; spf=none; dmarc=none; dkim=none; arc=none

Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=czqdFnZttwMubhs8eB3lB+M+pU60vueqHCcOymGIL20=; b=d2f1PHeXNGSKpwgxWpj0Sbhlj9qxQ9TQfxH4u6zKT2dhIaMWkEguxHS0eJ4btD8XyVKhVfRp5n8R0bWPcKCme/RpKj/yrH5y+jXIbM2Vtwkocmhv6zE56Ba5NNmhCBzAJoFSMYLagNOY5ak6g16jUIv0EsEd4Ak0sXiA3ztT5O9mIKX07uMa+X6IfAZZ3jk7zkSJzJd1tfqVEe7WCASyT5WGcywIl99I8DLxCDJq9DBmTZT3++9EnoslpxBUYKNP0LpVIDzhPMllEbFiNzKm7feY/cE2Qj6F+m+iShwawZsoO+xRlHOqQ7msZ4OiqJWcj5l6QqZPYG7cLsMmmeuyYA==

Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=kXGLwOsTsGZ4G6L+v1mT59ezz03Jw3a/OKN1R9ctR6Mw6rTIkwcx5w3km8xuMk2+7qN/PixDgyRO53IXjRAJK7cUykmG9W9lz+a+2aKv5bV861ZOyy0bMp7gzew/SQG2SdmfMV89CGUdA6hOxUtCZe1HYXM7enLhzcvzm/JxOKmJl1phY9Bo4Bw2UYy+3jZI5D7FsYBfF73cmasvwZ0SLyt3DJgeDFfNTFBCpgQWFCg9MXGmZtG1KHMzZqvgSZXoQsmXoEABypx4negb7hTURNksVPhfcuxhQph6XbGNuPR91JDBU9e04AEvudvkm6BezbS0M7j+W3wG9kVz80AKCA==

Authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=suse.com;

Cc: Roger Pau Monné <roger.pau@xxxxxxxxxx>, Wei Liu <wl@xxxxxxx>, Jun Nakajima <jun.nakajima@xxxxxxxxx>, Kevin Tian <kevin.tian@xxxxxxxxx>, Xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxxx>

Delivery-date: Thu, 20 Jan 2022 12:12:05 +0000

List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On 20.01.2022 12:55, Andrew Cooper wrote: > On 20/01/2022 08:14, Jan Beulich wrote: >> On 19.01.2022 18:00, Andrew Cooper wrote: >>> On 19/01/2022 13:42, Jan Beulich wrote: >>>> On 17.01.2022 19:34, Andrew Cooper wrote: >>>>> --- a/xen/arch/x86/hvm/vmx/entry.S >>>>> +++ b/xen/arch/x86/hvm/vmx/entry.S >>>>> @@ -35,7 +35,14 @@ ENTRY(vmx_asm_vmexit_handler) >>>>> >>>>> /* SPEC_CTRL_ENTRY_FROM_VMX Req: b=curr %rsp=regs/cpuinfo, >>>>> Clob: acd */ >>>>> ALTERNATIVE "", DO_OVERWRITE_RSB, X86_FEATURE_SC_RSB_HVM >>>>> - ALTERNATIVE "", DO_SPEC_CTRL_ENTRY_FROM_HVM, >>>>> X86_FEATURE_SC_MSR_HVM >>>>> + >>>>> + .macro restore_spec_ctrl >>>>> + mov $MSR_SPEC_CTRL, %ecx >>>>> + movzbl CPUINFO_xen_spec_ctrl(%rsp), %eax >>>>> + xor %edx, %edx >>>>> + wrmsr >>>>> + .endm >>>>> + ALTERNATIVE "", restore_spec_ctrl, X86_FEATURE_SC_MSR_HVM >>>>> /* WARNING! `ret`, `call *`, `jmp *` not safe before this point. >>>>> */ >>>>> >>>>> /* Hardware clears MSR_DEBUGCTL on VMExit. Reinstate it if >>>>> debugging Xen. */ >>>>> @@ -82,8 +89,7 @@ UNLIKELY_END(realmode) >>>>> mov VCPUMSR_spec_ctrl_raw(%rax), %eax >>>>> >>>>> /* WARNING! `ret`, `call *`, `jmp *` not safe beyond this point. >>>>> */ >>>>> - /* SPEC_CTRL_EXIT_TO_VMX Req: a=spec_ctrl %rsp=regs/cpuinfo, >>>>> Clob: cd */ >>>>> - ALTERNATIVE "", DO_SPEC_CTRL_EXIT_TO_GUEST, >>>>> X86_FEATURE_SC_MSR_HVM >>>>> + /* SPEC_CTRL_EXIT_TO_VMX Req: %rsp=regs/cpuinfo >>>>> Clob: */ >>>>> ALTERNATIVE "", __stringify(verw CPUINFO_verw_sel(%rsp)), >>>>> X86_FEATURE_SC_VERW_HVM >>>> I notice you did update this clobber remark, but what about the one further >>>> up in context? >>> What about it? It still clobbers %eax, %ecx and %edx. >> Oh, sorry - I did look at DO_OVERWRITE_RSB only, not paying attention >> to the now open-coded 2nd part, which - due to the blank line - doesn't >> appear connected to the comment anymore. > > Yeah - it's a little harder now that it isn't a single line. The > req/clob information really is most useful at the start of the block, > because that's where it is important to get the context correct. > > Can I take this as an R-by then? Please do; I should have said so earlier on. Jan

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.