Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: "Michael S. Tsirkin" <mst@xxxxxxxxxx>
Subject: Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared
From: Andi Kleen <ak@xxxxxxxxxxxxxxx>
Date: Tue, 12 Oct 2021 14:18:01 -0700
Cc: Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@xxxxxxxxxxxxxxx>, Thomas Gleixner <tglx@xxxxxxxxxxxxx>, Ingo Molnar <mingo@xxxxxxxxxx>, Borislav Petkov <bp@xxxxxxxxx>, Peter Zijlstra <peterz@xxxxxxxxxxxxx>, Andy Lutomirski <luto@xxxxxxxxxx>, Bjorn Helgaas <bhelgaas@xxxxxxxxxx>, Richard Henderson <rth@xxxxxxxxxxx>, Thomas Bogendoerfer <tsbogend@xxxxxxxxxxxxxxxx>, James E J Bottomley <James.Bottomley@xxxxxxxxxxxxxxxxxxxxx>, Helge Deller <deller@xxxxxx>, "David S . Miller" <davem@xxxxxxxxxxxxx>, Arnd Bergmann <arnd@xxxxxxxx>, Jonathan Corbet <corbet@xxxxxxx>, Paolo Bonzini <pbonzini@xxxxxxxxxx>, David Hildenbrand <david@xxxxxxxxxx>, Andrea Arcangeli <aarcange@xxxxxxxxxx>, Josh Poimboeuf <jpoimboe@xxxxxxxxxx>, Peter H Anvin <hpa@xxxxxxxxx>, Dave Hansen <dave.hansen@xxxxxxxxx>, Tony Luck <tony.luck@xxxxxxxxx>, Dan Williams <dan.j.williams@xxxxxxxxx>, Kirill Shutemov <kirill.shutemov@xxxxxxxxxxxxxxx>, Sean Christopherson <seanjc@xxxxxxxxxx>, Kuppuswamy Sathyanarayanan <knsathya@xxxxxxxxxx>, x86@xxxxxxxxxx, linux-kernel@xxxxxxxxxxxxxxx, linux-pci@xxxxxxxxxxxxxxx, linux-alpha@xxxxxxxxxxxxxxx, linux-mips@xxxxxxxxxxxxxxx, linux-parisc@xxxxxxxxxxxxxxx, sparclinux@xxxxxxxxxxxxxxx, linux-arch@xxxxxxxxxxxxxxx, linux-doc@xxxxxxxxxxxxxxx, virtualization@xxxxxxxxxxxxxxxxxxxxxxxxxx
In-reply-to: <20211012165705-mutt-send-email-mst@kernel.org>
References: <20211009003711.1390019-1-sathyanarayanan.kuppuswamy@linux.intel.com> <20211009003711.1390019-17-sathyanarayanan.kuppuswamy@linux.intel.com> <20211009070132-mutt-send-email-mst@kernel.org> <8c906de6-5efa-b87a-c800-6f07b98339d0@linux.intel.com> <20211011075945-mutt-send-email-mst@kernel.org> <9d0ac556-6a06-0f2e-c4ff-0c3ce742a382@linux.intel.com> <20211011142330-mutt-send-email-mst@kernel.org> <4fe8d60a-2522-f111-995c-dcbefd0d5e31@linux.intel.com> <20211012165705-mutt-send-email-mst@kernel.org>
User-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:91.0) Gecko/20100101 Thunderbird/91.2.0

Interesting. VT-d tradeoffs ... what are they?


The connection to the device is not encrypted and also not authenticated.

This is different that even talking to the (untrusted) host throughshared memory where you at least still have a common key.

Allowing hypervisor to write into BIOS looks like it will
trivially lead to code execution, won't it?

This is not about BIOS code executing. While the guest firmware runs itis protected of course. This is for BIOS structures like ACPI tablesthat are mapped by Linux. While AML can run byte code it can normallynot write to arbitrary memory.

The risk is more that all the Linux code dealing with this hasn't beenhardened to deal with malicious input.


-Andi

Follow-Ups:
- Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared
  - From: Michael S. Tsirkin

References:
- [PATCH v5 00/16] Add TDX Guest Support (shared-mm support)
  - From: Kuppuswamy Sathyanarayanan
- [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared
  - From: Kuppuswamy Sathyanarayanan
- Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared
  - From: Michael S. Tsirkin
- Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared
  - From: Andi Kleen
- Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared
  - From: Michael S. Tsirkin
- Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared
  - From: Andi Kleen
- Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared
  - From: Michael S. Tsirkin
- Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared
  - From: Andi Kleen
- Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared
  - From: Michael S. Tsirkin

Prev by Date: Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range()
Next by Date: Re: [PATCH v8 09/12] sysfs: fix deadlock race with module removal
Previous by thread: Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared
Next by thread: Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared
Index(es):
- Date
- Thread

[Index of Archives] [Kernel Newbies] [Security] [Netfilter] [Bugtraq] [Linux FS] [Yosemite Forum] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Samba] [Video 4 Linux] [Device Mapper] [Linux Resources]