Re: [PATCH v15 01/13] x86/sev: Carve out and export SNP guest messaging init routines

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Re: [PATCH v15 01/13] x86/sev: Carve out and export SNP guest messaging init routines
From: Dionna Amalie Glaze <dionnaglaze@xxxxxxxxxx>
Date: Fri, 6 Dec 2024 16:27:40 -0800
Cc: "Nikunj A. Dadhania" <nikunj@xxxxxxx>, linux-kernel@xxxxxxxxxxxxxxx, thomas.lendacky@xxxxxxx, x86@xxxxxxxxxx, kvm@xxxxxxxxxxxxxxx, mingo@xxxxxxxxxx, tglx@xxxxxxxxxxxxx, dave.hansen@xxxxxxxxxxxxxxx, pgonda@xxxxxxxxxx, seanjc@xxxxxxxxxx, pbonzini@xxxxxxxxxx
In-reply-to: <20241206202752.GCZ1NeSMYTZ4ZDcfGJ@fat_crate.local>
References: <20241203090045.942078-1-nikunj@amd.com> <20241203090045.942078-2-nikunj@amd.com> <20241203141950.GCZ08ThrMOHmDFeaa2@fat_crate.local> <fef7abe1-29ce-4818-b8b5-988e5e6a2027@amd.com> <20241204200255.GCZ1C1b3krGc_4QOeg@fat_crate.local> <8965fa19-8a9b-403e-a542-8566f30f3fee@amd.com> <20241206202752.GCZ1NeSMYTZ4ZDcfGJ@fat_crate.local>

>
> Well, it is unlocked_ioctl() and snp_guest_ioctl() is not taking any locks.
> What's stopping anyone from writing a nasty little program which hammers the
> sev-guest on the ioctl interface until the OOM killer activates?
>

Given sev-guest requires heightened privileges, can we not assume a
reasonable user space? I thought that was an organizing principle.

> IOW, this should probably remain _ACCOUNT AFAICT.
>
> --
> Regards/Gruss,
>     Boris.
>
> https://people.kernel.org/tglx/notes-about-netiquette
>


-- 
-Dionna Glaze, PhD, CISSP, CCSP (she/her)

Follow-Ups:
- Re: [PATCH v15 01/13] x86/sev: Carve out and export SNP guest messaging init routines
  - From: Borislav Petkov

References:
- [PATCH v15 00/13] Add Secure TSC support for SNP guests
  - From: Nikunj A Dadhania
- [PATCH v15 01/13] x86/sev: Carve out and export SNP guest messaging init routines
  - From: Nikunj A Dadhania
- Re: [PATCH v15 01/13] x86/sev: Carve out and export SNP guest messaging init routines
  - From: Borislav Petkov
- Re: [PATCH v15 01/13] x86/sev: Carve out and export SNP guest messaging init routines
  - From: Nikunj A. Dadhania
- Re: [PATCH v15 01/13] x86/sev: Carve out and export SNP guest messaging init routines
  - From: Borislav Petkov
- Re: [PATCH v15 01/13] x86/sev: Carve out and export SNP guest messaging init routines
  - From: Nikunj A. Dadhania
- Re: [PATCH v15 01/13] x86/sev: Carve out and export SNP guest messaging init routines
  - From: Borislav Petkov

Prev by Date: Re: [PATCH 6.6] KVM: x86/mmu: Ensure that kvm_release_pfn_clean() takes exact pfn from kvm_faultin_pfn()
Next by Date: Re: [PATCH v1 13/13] KVM: Documentation: Add KVM_CAP_USERFAULT and KVM_MEM_USERFAULT details
Previous by thread: Re: [PATCH v15 01/13] x86/sev: Carve out and export SNP guest messaging init routines
Next by thread: Re: [PATCH v15 01/13] x86/sev: Carve out and export SNP guest messaging init routines
Index(es):
- Date
- Thread

[Index of Archives] [KVM ARM] [KVM ia64] [KVM ppc] [Virtualization Tools] [Spice Development] [Libvirt] [Libvirt Users] [Linux USB Devel] [Linux Audio Users] [Yosemite Questions] [Linux Kernel] [Linux SCSI] [XFree86]