Re: [RFC PATCH 00/35] SEV-ES hypervisor support

From: Paolo Bonzini
Date: Mon Nov 30 2020 - 15:26:24 EST

Next message: Topi Miettinen: "Re: [PATCH v5] mm: Optional full ASLR for mmap(), mremap(), vdso and stack"
Previous message: Krzysztof Kozlowski: "Re: [PATCH 0/5] drop unused BACKLIGHT_GENERIC option"
In reply to: Sean Christopherson: "Re: [RFC PATCH 00/35] SEV-ES hypervisor support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 30/11/20 20:35, Sean Christopherson wrote:

Delayed interrupts are fine, since they are injected according to RVI and
the posted interrupt descriptor. I'm thinking more of events (exceptions
and interrupts) that caused an EPT violation exit and were recorded in the
IDT-vectored info field.

Ah. As is, I don't believe KVM has access to this information. TDX-Module
handles the actual EPT violation, as well as event reinjection. The EPT
violation reported by SEAMRET is synthesized, and IIRC the IDT-vectoring field
is not readable.

Regardless, is there an actual a problem with having a "pending" exception that
isn't reported to userspace? Obviously the info needs to be migrated, but that
will be taken care of by virtue of migrating the VMCS.

No problem, I suppose we would just have to get used to not being able to look into the state of migrated VMs.

Paolo

Next message: Topi Miettinen: "Re: [PATCH v5] mm: Optional full ASLR for mmap(), mremap(), vdso and stack"
Previous message: Krzysztof Kozlowski: "Re: [PATCH 0/5] drop unused BACKLIGHT_GENERIC option"
In reply to: Sean Christopherson: "Re: [RFC PATCH 00/35] SEV-ES hypervisor support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]