Re: [PATCH v7 2/7] kvm: vmx: Define CET VMCS fields and CPUID flags
On Wed, Oct 02, 2019 at 11:04:07AM -0700, Jim Mattson wrote: > On Thu, Sep 26, 2019 at 7:17 PM Yang Weijiang wrote: > > > > CET(Control-flow Enforcement Technology) is an upcoming Intel(R) > > processor feature that blocks Return/Jump-Oriented Programming(ROP) > > attacks. It provides the following capabilities to defend > > against ROP/JOP style control-flow subversion attacks: > > /* > > diff --git a/arch/x86/kvm/cpuid.c b/arch/x86/kvm/cpuid.c > > index 9d282fec0a62..1aa86b87b6ab 100644 > > --- a/arch/x86/kvm/cpuid.c > > +++ b/arch/x86/kvm/cpuid.c > > @@ -365,13 +365,13 @@ static inline void do_cpuid_7_mask(struct > > kvm_cpuid_entry2 *entry, int index) > > F(AVX512VBMI) | F(LA57) | F(PKU) | 0 /*OSPKE*/ | > > F(AVX512_VPOPCNTDQ) | F(UMIP) | F(AVX512_VBMI2) | F(GFNI) | > > F(VAES) | F(VPCLMULQDQ) | F(AVX512_VNNI) | F(AVX512_BITALG) > > | > > - F(CLDEMOTE) | F(MOVDIRI) | F(MOVDIR64B); > > + F(CLDEMOTE) | F(MOVDIRI) | F(MOVDIR64B) | F(SHSTK); > > > > /* cpuid 7.0.edx*/ > > const u32 kvm_cpuid_7_0_edx_x86_features = > > F(AVX512_4VNNIW) | F(AVX512_4FMAPS) | F(SPEC_CTRL) | > > F(SPEC_CTRL_SSBD) | F(ARCH_CAPABILITIES) | F(INTEL_STIBP) | > > - F(MD_CLEAR); > > + F(MD_CLEAR) | F(IBT); > > Claiming that SHSTK and IBT are supported in the guest seems premature > as of this change, since you haven't actually done anything to > virtualize the features yet. > OK, will put the flags in other patch. > > /* cpuid 7.1.eax */ > > const u32 kvm_cpuid_7_1_eax_x86_features = > > diff --git a/arch/x86/kvm/x86.h b/arch/x86/kvm/x86.h > > index fbffabad0370..a85800b23e6e 100644 > > --- a/arch/x86/kvm/x86.h > > +++ b/arch/x86/kvm/x86.h > > @@ -298,7 +298,8 @@ int x86_emulate_instruction(struct kvm_vcpu *vcpu, > > unsigned long cr2, > > * Right now, no XSS states are used on x86 platform, > > * expand the macro for new features. > > */ > > -#define KVM_SUPPORTED_XSS (0) > > +#define KVM_SUPPORTED_XSS (XFEATURE_MASK_CET_USER \ > > + | XFEATURE_MASK_CET_KERNEL) > > If IA32_XSS can dynamically change within the guest, it will have to > be enumerated by KVM_GET_MSR_INDEX_LIST. thanks for pointing it out, need to add IA32_XSS to msrs_to_save list. >(Note that Aaron Lewis is > working on a series which will include that enumeration, if you'd like > to wait.) I'm also not convinced that there is sufficient > virtualization of these features to allow these bits to be set in the > guest IA32_XSS at this point. > It's true CET is working in guest after I added XSS/XSAVES support in KVM and QEMU, but I'd like to look at Aaron's new patch... > > extern u64 host_xcr0; > > > > -- > > 2.17.2 > >
Re: [PATCH v7 2/7] kvm: vmx: Define CET VMCS fields and CPUID flags
On Thu, Sep 26, 2019 at 7:17 PM Yang Weijiang wrote: > > CET(Control-flow Enforcement Technology) is an upcoming Intel(R) > processor feature that blocks Return/Jump-Oriented Programming(ROP) > attacks. It provides the following capabilities to defend > against ROP/JOP style control-flow subversion attacks: > > Shadow Stack (SHSTK): > A second stack for program which is used exclusively for > control transfer operations. > > Indirect Branch Tracking (IBT): > Code branching protection to defend against jump/call oriented > programming. > > Several new CET MSRs are defined in kernel to support CET: > MSR_IA32_{U,S}_CET: Controls the CET settings for user > mode and suervisor mode respectively. > > MSR_IA32_PL{0,1,2,3}_SSP: Stores shadow stack pointers for > CPL-0,1,2,3 level respectively. > > MSR_IA32_INT_SSP_TAB: Stores base address of shadow stack > pointer table. > > Two XSAVES state bits are introduced for CET: > IA32_XSS:[bit 11]: For saving/restoring user mode CET states > IA32_XSS:[bit 12]: For saving/restoring supervisor mode CET states. > > Six VMCS fields are introduced for CET: > {HOST,GUEST}_S_CET: Stores CET settings for supervisor mode. > {HOST,GUEST}_SSP: Stores shadow stack pointer for supervisor mode. > {HOST,GUEST}_INTR_SSP_TABLE: Stores base address of shadow stack pointer >table. > > If VM_EXIT_LOAD_HOST_CET_STATE = 1, the host's CET MSRs are restored > from below VMCS fields at VM-Exit: > HOST_S_CET > HOST_SSP > HOST_INTR_SSP_TABLE > > If VM_ENTRY_LOAD_GUEST_CET_STATE = 1, the guest's CET MSRs are loaded > from below VMCS fields at VM-Entry: > GUEST_S_CET > GUEST_SSP > GUEST_INTR_SSP_TABLE > > Co-developed-by: Zhang Yi Z > Signed-off-by: Zhang Yi Z > Signed-off-by: Yang Weijiang > --- > arch/x86/include/asm/vmx.h | 8 > arch/x86/kvm/cpuid.c | 4 ++-- > arch/x86/kvm/x86.h | 3 ++- > 3 files changed, 12 insertions(+), 3 deletions(-) > > diff --git a/arch/x86/include/asm/vmx.h b/arch/x86/include/asm/vmx.h > index a39136b0d509..68bca290a203 100644 > --- a/arch/x86/include/asm/vmx.h > +++ b/arch/x86/include/asm/vmx.h > @@ -90,6 +90,7 @@ > #define VM_EXIT_CLEAR_BNDCFGS 0x0080 > #define VM_EXIT_PT_CONCEAL_PIP 0x0100 > #define VM_EXIT_CLEAR_IA32_RTIT_CTL0x0200 > +#define VM_EXIT_LOAD_HOST_CET_STATE 0x1000 > > #define VM_EXIT_ALWAYSON_WITHOUT_TRUE_MSR 0x00036dff > > @@ -103,6 +104,7 @@ > #define VM_ENTRY_LOAD_BNDCFGS 0x0001 > #define VM_ENTRY_PT_CONCEAL_PIP0x0002 > #define VM_ENTRY_LOAD_IA32_RTIT_CTL0x0004 > +#define VM_ENTRY_LOAD_GUEST_CET_STATE 0x0010 > > #define VM_ENTRY_ALWAYSON_WITHOUT_TRUE_MSR 0x11ff > > @@ -321,6 +323,9 @@ enum vmcs_field { > GUEST_PENDING_DBG_EXCEPTIONS= 0x6822, > GUEST_SYSENTER_ESP = 0x6824, > GUEST_SYSENTER_EIP = 0x6826, > + GUEST_S_CET = 0x6828, > + GUEST_SSP = 0x682a, > + GUEST_INTR_SSP_TABLE= 0x682c, > HOST_CR0= 0x6c00, > HOST_CR3= 0x6c02, > HOST_CR4= 0x6c04, > @@ -333,6 +338,9 @@ enum vmcs_field { > HOST_IA32_SYSENTER_EIP = 0x6c12, > HOST_RSP= 0x6c14, > HOST_RIP= 0x6c16, > + HOST_S_CET = 0x6c18, > + HOST_SSP= 0x6c1a, > + HOST_INTR_SSP_TABLE = 0x6c1c > }; > > /* > diff --git a/arch/x86/kvm/cpuid.c b/arch/x86/kvm/cpuid.c > index 9d282fec0a62..1aa86b87b6ab 100644 > --- a/arch/x86/kvm/cpuid.c > +++ b/arch/x86/kvm/cpuid.c > @@ -365,13 +365,13 @@ static inline void do_cpuid_7_mask(struct > kvm_cpuid_entry2 *entry, int index) > F(AVX512VBMI) | F(LA57) | F(PKU) | 0 /*OSPKE*/ | > F(AVX512_VPOPCNTDQ) | F(UMIP) | F(AVX512_VBMI2) | F(GFNI) | > F(VAES) | F(VPCLMULQDQ) | F(AVX512_VNNI) | F(AVX512_BITALG) | > - F(CLDEMOTE) | F(MOVDIRI) | F(MOVDIR64B); > + F(CLDEMOTE) | F(MOVDIRI) | F(MOVDIR64B) | F(SHSTK); > > /* cpuid 7.0.edx*/ > const u32 kvm_cpuid_7_0_edx_x86_features = > F(AVX512_4VNNIW) | F(AVX512_4FMAPS) | F(SPEC_CTRL) | > F(SPEC_CTRL_SSBD) | F(ARCH_CAPABILITIES) | F(INTEL_STIBP) | > - F(MD_CLEAR); > + F(MD_CLEAR) | F(IBT); Claiming that SHSTK and IBT are supported in the guest seems premature as of this change, since you haven't actually done anything to virtualize the features yet. > /* cpuid 7.1.eax */ > const u32
[PATCH v7 2/7] kvm: vmx: Define CET VMCS fields and CPUID flags
CET(Control-flow Enforcement Technology) is an upcoming Intel(R) processor feature that blocks Return/Jump-Oriented Programming(ROP) attacks. It provides the following capabilities to defend against ROP/JOP style control-flow subversion attacks: Shadow Stack (SHSTK): A second stack for program which is used exclusively for control transfer operations. Indirect Branch Tracking (IBT): Code branching protection to defend against jump/call oriented programming. Several new CET MSRs are defined in kernel to support CET: MSR_IA32_{U,S}_CET: Controls the CET settings for user mode and suervisor mode respectively. MSR_IA32_PL{0,1,2,3}_SSP: Stores shadow stack pointers for CPL-0,1,2,3 level respectively. MSR_IA32_INT_SSP_TAB: Stores base address of shadow stack pointer table. Two XSAVES state bits are introduced for CET: IA32_XSS:[bit 11]: For saving/restoring user mode CET states IA32_XSS:[bit 12]: For saving/restoring supervisor mode CET states. Six VMCS fields are introduced for CET: {HOST,GUEST}_S_CET: Stores CET settings for supervisor mode. {HOST,GUEST}_SSP: Stores shadow stack pointer for supervisor mode. {HOST,GUEST}_INTR_SSP_TABLE: Stores base address of shadow stack pointer table. If VM_EXIT_LOAD_HOST_CET_STATE = 1, the host's CET MSRs are restored from below VMCS fields at VM-Exit: HOST_S_CET HOST_SSP HOST_INTR_SSP_TABLE If VM_ENTRY_LOAD_GUEST_CET_STATE = 1, the guest's CET MSRs are loaded from below VMCS fields at VM-Entry: GUEST_S_CET GUEST_SSP GUEST_INTR_SSP_TABLE Co-developed-by: Zhang Yi Z Signed-off-by: Zhang Yi Z Signed-off-by: Yang Weijiang --- arch/x86/include/asm/vmx.h | 8 arch/x86/kvm/cpuid.c | 4 ++-- arch/x86/kvm/x86.h | 3 ++- 3 files changed, 12 insertions(+), 3 deletions(-) diff --git a/arch/x86/include/asm/vmx.h b/arch/x86/include/asm/vmx.h index a39136b0d509..68bca290a203 100644 --- a/arch/x86/include/asm/vmx.h +++ b/arch/x86/include/asm/vmx.h @@ -90,6 +90,7 @@ #define VM_EXIT_CLEAR_BNDCFGS 0x0080 #define VM_EXIT_PT_CONCEAL_PIP 0x0100 #define VM_EXIT_CLEAR_IA32_RTIT_CTL0x0200 +#define VM_EXIT_LOAD_HOST_CET_STATE 0x1000 #define VM_EXIT_ALWAYSON_WITHOUT_TRUE_MSR 0x00036dff @@ -103,6 +104,7 @@ #define VM_ENTRY_LOAD_BNDCFGS 0x0001 #define VM_ENTRY_PT_CONCEAL_PIP0x0002 #define VM_ENTRY_LOAD_IA32_RTIT_CTL0x0004 +#define VM_ENTRY_LOAD_GUEST_CET_STATE 0x0010 #define VM_ENTRY_ALWAYSON_WITHOUT_TRUE_MSR 0x11ff @@ -321,6 +323,9 @@ enum vmcs_field { GUEST_PENDING_DBG_EXCEPTIONS= 0x6822, GUEST_SYSENTER_ESP = 0x6824, GUEST_SYSENTER_EIP = 0x6826, + GUEST_S_CET = 0x6828, + GUEST_SSP = 0x682a, + GUEST_INTR_SSP_TABLE= 0x682c, HOST_CR0= 0x6c00, HOST_CR3= 0x6c02, HOST_CR4= 0x6c04, @@ -333,6 +338,9 @@ enum vmcs_field { HOST_IA32_SYSENTER_EIP = 0x6c12, HOST_RSP= 0x6c14, HOST_RIP= 0x6c16, + HOST_S_CET = 0x6c18, + HOST_SSP= 0x6c1a, + HOST_INTR_SSP_TABLE = 0x6c1c }; /* diff --git a/arch/x86/kvm/cpuid.c b/arch/x86/kvm/cpuid.c index 9d282fec0a62..1aa86b87b6ab 100644 --- a/arch/x86/kvm/cpuid.c +++ b/arch/x86/kvm/cpuid.c @@ -365,13 +365,13 @@ static inline void do_cpuid_7_mask(struct kvm_cpuid_entry2 *entry, int index) F(AVX512VBMI) | F(LA57) | F(PKU) | 0 /*OSPKE*/ | F(AVX512_VPOPCNTDQ) | F(UMIP) | F(AVX512_VBMI2) | F(GFNI) | F(VAES) | F(VPCLMULQDQ) | F(AVX512_VNNI) | F(AVX512_BITALG) | - F(CLDEMOTE) | F(MOVDIRI) | F(MOVDIR64B); + F(CLDEMOTE) | F(MOVDIRI) | F(MOVDIR64B) | F(SHSTK); /* cpuid 7.0.edx*/ const u32 kvm_cpuid_7_0_edx_x86_features = F(AVX512_4VNNIW) | F(AVX512_4FMAPS) | F(SPEC_CTRL) | F(SPEC_CTRL_SSBD) | F(ARCH_CAPABILITIES) | F(INTEL_STIBP) | - F(MD_CLEAR); + F(MD_CLEAR) | F(IBT); /* cpuid 7.1.eax */ const u32 kvm_cpuid_7_1_eax_x86_features = diff --git a/arch/x86/kvm/x86.h b/arch/x86/kvm/x86.h index fbffabad0370..a85800b23e6e 100644 --- a/arch/x86/kvm/x86.h +++ b/arch/x86/kvm/x86.h @@ -298,7 +298,8 @@ int x86_emulate_instruction(struct kvm_vcpu *vcpu, unsigned long cr2, * Right now, no XSS states are used on x86 platform, * expand the macro for new features. */ -#define KVM_SUPPORTED_XSS (0) +#define KVM_SUPPORTED_XSS