Re: [PATCH v5 08/34] KVM: SVM: Prevent debugging under SEV-ES

From: Tom Lendacky
Date: Mon Dec 14 2020 - 14:12:40 EST

Next message: Ray Jui: "Re: [PATCH v2 1/2] arm64: dts: broadcom: clear the warnings caused by empty dma-ranges"
Previous message: Tom Lendacky: "Re: [PATCH v5 00/34] SEV-ES hypervisor support"
In reply to: Paolo Bonzini: "Re: [PATCH v5 08/34] KVM: SVM: Prevent debugging under SEV-ES"
Next in thread: Tom Lendacky: "[PATCH v5 07/34] KVM: SVM: Add required changes to support intercepts under SEV-ES"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 12/14/20 9:41 AM, Paolo Bonzini wrote:
> On 10/12/20 18:09, Tom Lendacky wrote:
>> Additionally, an SEV-ES guest must only and always intercept DR7 reads and
>> writes. Update set_dr_intercepts() and clr_dr_intercepts() to account for
>> this.
>
> I cannot see it, where is this documented?

That is documented in the GHCB specification, section 4.5 Debug Register
Support:

https://developer.amd.com/wp-content/resources/56421.pdf

Thanks,
Tom

>
> Paolo
>

Next message: Ray Jui: "Re: [PATCH v2 1/2] arm64: dts: broadcom: clear the warnings caused by empty dma-ranges"
Previous message: Tom Lendacky: "Re: [PATCH v5 00/34] SEV-ES hypervisor support"
In reply to: Paolo Bonzini: "Re: [PATCH v5 08/34] KVM: SVM: Prevent debugging under SEV-ES"
Next in thread: Tom Lendacky: "[PATCH v5 07/34] KVM: SVM: Add required changes to support intercepts under SEV-ES"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]