[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [PATCH for-4.17?] x86: support data operand independent timing mode
- To: Marek Marczykowski-Górecki <marmarek@xxxxxxxxxxxxxxxxxxxxxx>
- From: Andrew Cooper <Andrew.Cooper3@xxxxxxxxxx>
- Date: Fri, 30 Sep 2022 17:24:21 +0000
- Accept-language: en-GB, en-US
- Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=citrix.com; dmarc=pass action=none header.from=citrix.com; dkim=pass header.d=citrix.com; arc=none
- Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=C0xqu+XdbbFM/6298Hdd8iGax2hDaPe0NzyWhFnr83I=; b=iMg24y1WfS+6JIrDSaRAgPZ0daC1s0RlvqHMa4+IXcS4g7gKJ96w39day1WFtSgNzFrKgY41qMXiqU5s13mHoazz+FpExIOoLvFJRJJSMLV1c4Pq7xjS8eLXLla6Z7kE/4mi2v8MIydqOJAL7ygWn+85YX34L5VHC3GpBNuEEGjO2vz0eMAj4LDaIfTqOY+GtHP0VLrvnrXJzcDAVJxpEbTHX2MNUvw6o86VB1az/t0vhuWEUogto4Df7+wL6namZuyD1FHHVh7bMVsPG3LD5qBfqUv2VRD2PX4T0rTnLzCjbT01tptpbjgRVMlFydjENMPgry3P8hsEmnRfHijsZw==
- Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=QAxDhf4kVq7DMoAsd60UOk8vW0EyV0d+UZaQ/yOP2NzQ85L+to7Jp2U5EeSIaa4jVS495EqMgCKr6AHaYRtlKK/5Hd5YKB0KZPSRxZq7w/Qp7q41c1IPW6lllOfhI7f4lmLDkQzz2tWEfMpi6iUoCTnSEboLmghU8fNzEBgNP+wAau1Bk0HnFwUY/2Qf17K2iKv2ICOfTJ8yzDCBE55cNDrCSW5xs3lGf5wXoqshjpip8jxK1HlYaos7R8FOfcUJut2LKoskA7ILp3O7YxbsPCrEUQQewRhWGUAk6UM4OY8dxLb7HHhLu70D29dgnQHs7kjCifV6kt7bckS7uPhLag==
- Authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=citrix.com;
- Cc: Jan Beulich <jbeulich@xxxxxxxx>, "xen-devel@xxxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxxx>, George Dunlap <George.Dunlap@xxxxxxxxxx>, Julien Grall <julien@xxxxxxx>, Stefano Stabellini <sstabellini@xxxxxxxxxx>, Wei Liu <wl@xxxxxxx>, Roger Pau Monne <roger.pau@xxxxxxxxxx>, Demi Marie Obenour <demi@xxxxxxxxxxxxxxxxxxxxxx>, Henry Wang <Henry.Wang@xxxxxxx>
- Delivery-date: Fri, 30 Sep 2022 17:24:43 +0000
- Ironport-data: A9a23:4oETwqw9FgLZYM942y56t+evxyrEfRIJ4+MujC+fZmUNrF6WrkUCy WBJXTrQM/3bZDD0f90gaNuz8ExX75HWy9BnGVA9+SAxQypGp/SeCIXCJC8cHc8wwu7rFxs7s ppEOrEsCOhuExcwcz/0auCJQUFUjP3OHPykYAL9EngZbRd+Tys8gg5Ulec8g4p56fC0GArIs t7pyyHlEAbNNwVcbyRFsMpvlDs15K6o4GJD5gRkDRx2lAS2e0c9Xcp3yZ6ZdxMUcqEMdsamS uDKyq2O/2+x13/B3fv8z94X2mVTKlLjFVDmZkh+AsBOsTAbzsAG6Y4pNeJ0VKtio27hc+ada jl6ncfYpQ8BZsUgkQmGOvVSO3kW0aZuoNcrLZUj2CA6IoKvn3bEmp1T4E8K0YIwwMYoGVNhx PohOD0IaBu43/3ny6udVbw57igjBJGD0II3nFhFlGmcJ9B5BJfJTuPN+MNS2yo2ioZWB/HCa sEFaD1pKhPdfxlIPVRRA5U79AuqriCnL3sE9xTK/exuuzi7IA9ZidABNPL8fNCQSNoTtUGfv m/cpEzyAw0ANczZwj2Amp6prr+WxnOiCNxLfFG+3qdPvFe5/lEvNB5ISl6+hcCGsx+MXOsKf iT4/QJr98De7neDS9DnWhSirX2svxgCWsFRGek39AGMzKXP5w+TQGMDS1ZpatYrqcs3TjwCz UKSkpXiAjkHmK2YTzeR+6mZqRu2ODMJNikSaCkcVwwH7tL/5oYpgXrnTMtnEaOzps34H3f32 T/ihDMlm7wZgMoP1qO61VPKmTShot7OVAFdzhrTdnKo6EV+foHNT4Cl7Fnz7PBeLZ2YRF2Mo HgFnceF6OkES5qKkUSlYOgLBqDv2P+DPxXVm1spFJ4knwlB4FamdIFUpTt4e0FgN59cfSezO ReD/wRM+JVUIX2mK7dtZJ68ANgryq6mEsn5UvfTbZxFZZ0ZmBK7wRyCrHW4hwjF+HXAW4lkU XtHWa5A1UonNJk=
- Ironport-hdrordr: A9a23:XXbxxayZlbeFesUNw1ZVKrPxmuskLtp133Aq2lEZdPULSKGlfp GV9sjziyWetN9IYgBapTiBUJPwIk80hqQFm7X5XI3SFjUO3VHFEGgM1/qE/9SNIUzDH6tmpN 9dmstFeZDN5DpB/KDHCWCDer5OruVvsprY/Ns2pE0dLz2CHpsQizuRfTzrd3GeKjMnObMJUL 6nouZXrTupfnoaKu6hAGMeYuTFr9rX0Lr7fB8vHXccmUazpALtzIS/PwmT3x8YXT8K66wl63 L5nwvw4bjmm+2nyyXby3TY4/1t6ZXcI5p4dY2xY/ouW3bRYzWTFcZcsnq5zXUISdSUmRYXeR /30lMd1opImjTslyqO0GbQMkHboUoTAjnZuBOlaDLY0LLErHhRMbs/uatJNhTe8EYup9d6ze ZC2H+YrYNeCVfakD36/MWgbWAiqqOYmwtUrQcotQ0obaIOLLtK6YAP9kJcF5kNWCr89YA8Ce FrSMXR/uxff1+WZ23Q+jAH+q3mYl0jWhOdBkQSsM2c1DZb2Hh/0ksD3cQa2nMN7og0RZVI7/ nNdq5oiLZNRMkLar8VPpZIfeKnTmjWBR7cOmObJlrqUKkBJnLWspbypK444em7EaZ4uKfaWK 6xJW+wmVRCCH4GU/f+raGj2iq9MFmVTHDq1txU4YR/t/n1WKfrWBfzOmwTrw==
- List-id: Xen developer discussion <xen-devel.lists.xenproject.org>
- Thread-index: AQHYyOqg1ICCMP96kUmBwLmrDRKGKa337MYAgABHrwCAAByoAA==
- Thread-topic: [PATCH for-4.17?] x86: support data operand independent timing mode
On 30/09/2022 16:41, Marek Marczykowski-Górecki wrote:
On Fri, Sep 30, 2022 at 11:25:12AM +0000, Andrew Cooper wrote:
On 15/09/2022 11:04, Jan Beulich wrote:
[1] specifies a long list of instructions which are intended to exhibit
timing behavior independent of the data they operate on. On certain
hardware this independence is optional, controlled by a bit in a new
MSR. Provide a command line option to control the mode Xen and its
guests are to operate in, with a build time control over the default.
Longer term we may want to allow guests to control this.
Since Arm64 supposedly also has such a control, put command line option
and Kconfig control in common files.
[1] https://www.intel.com/content/www/us/en/developer/articles/technical/software-security-guidance/best-practices/data-operand-independent-timing-isa-guidance.html
Requested-by: Demi Marie Obenour <demi@xxxxxxxxxxxxxxxxxxxxxx>
Signed-off-by: Jan Beulich <jbeulich@xxxxxxxx>
This patch should not be taken; at least not in this form. The whole
DOITM infrastructure is currently under argument, for being impossible
to use appropriately.
I understand why Qubes want this blanket set, but it is a steep penalty
to pay; It's only code which is already written trying to be constant
time/cache which gains any security from this.
Based on the bit description, I'd say rather "prevent _breaking_
security of the code already written". It is not setting this bit that
change behaviour on new parts, but it's not setting it that breaks
previous guarantees. It's really bizarre design choice from Intel...
On current parts, using
SSBD has the same behaviour, but this isn't expected to remain true in
the future.
Forcing it on behind the back of a VM is mutually exclusive with
enumerating it for VMs to use at some point in the future when we have
the capability to. i.e. specifically, you are not able to maintain the
ABI/API in this patch in the future.
Regarding the current behavior of the hypervisor (without this patch):
will guest see DOITM present but not set? Or will they not see it at
all?
Documentation clearly state:
For Intel® Core™ family processors based on microarchitectures
before Ice Lake and Intel Atom® family processors based on
microarchitectures before Gracemont that do not enumerate
IA32_UARCH_MISC_CTL, developers may assume that the instructions listed
here operate as if DOITM is enabled.
So, if guests will not see the feature at all, it Xen should set it
unconditionally, to remain compliant with expected hardware behaviour.
If guests will see the thing (and see it not enabled), then indeed it's
less clear what should be done right now (but I'd still like to have an
option to enable it).
Hmm. So yes, lets approach the problem from the other side, as "this bit needs setting to unbreak crypto code".
On hardware supporting DOITM, where we do not advertise the feature to guests (all guests right now), the guest kernel would conclude that it is safe, when in fact it is not.
So Xen should set the bit behind the back of a guest which doesn't have the DOITM enumeration presented (which is all guests right now).
But I don't think we want any Kconfig about this, or a dedicated cmdline option. So how about this for a plan which avoids painting ourselves into a corner.
1) Extend cpuid= with a no-doitm option. I know it's not actually a CPUID enumeration, but MSR_ARCH_CAPS should have been CPUID data, and this is the mechanism we have meaning "pretend this feature isn't enumerated".
2) On boot, and S3 resume, if DOITM and availble, set invariant mode.
That should do as a stopgap for now that keeps software safe.
Then, when we've got MSR_ARCH_CAPS working for guests, the internals of
MSR_UARCH_MISC_CTL change to being a context switched thing which, like MSR_SPEC_CTRL, we have options for bits set behind the guest's back. Then we set DOITM behind the guests back if levelling causes the feature to be hidden. We do this for some bits already,
and need to do so for more controls too.
~Andrew
|
