[MODERATED] [PATCH v2.1 4/6] [PATCH v2.1 4/6] Patch #4

[MODERATED] [PATCH v2.1 4/6] [PATCH v2.1 4/6] Patch #4

[konrad.wilk]

If the L1TF CPU bug is present we allow the KVM module to be loaded
as the major of users that use Linux and KVM have trusted guests
and do not want a broken setup.

Cloud vendors are the ones that are uncomfortable with CVE 2018-3615
and as such they are the ones that should set disallow_smt to one.

Setting disallow_smt to means that the system administrator also needs
to disable SMT (Hyper-threading) in the BIOS, or via the 'nosmt' command
line parameter, or via the /sys/devices/system/cpu/smt/control
(see commit XYZ).

Signed-off-by: Konrad Rzeszutek Wilk <konrad.wilk@oracle.com>
---
 Documentation/admin-guide/kernel-parameters.txt |  4 ++++
 arch/x86/kvm/x86.c                              | 13 +++++++++++++
 kernel/cpu.c                                    |  1 +
 3 files changed, 18 insertions(+)

diff --git a/Documentation/admin-guide/kernel-parameters.txt b/Documentation/admin-guide/kernel-parameters.txt
index 3a5908cd7ef7..dcc1c0313635 100644
--- a/Documentation/admin-guide/kernel-parameters.txt
+++ b/Documentation/admin-guide/kernel-parameters.txt
@@ -1919,6 +1919,10 @@
 	kvm.enable_vmware_backdoor=[KVM] Support VMware backdoor PV interface.
 				   Default is false (don't support).
 
+	kvm.disallow_smt=[KVM] If the L1TF CPU bug is present and the system has
+			SMT (aka Hyper-Threading) enabled then don't load KVM module.
+			Default is 0 (allow module to be loaded).
+
 	kvm.mmu_audit=	[KVM] This is a R/W parameter which allows audit
 			KVM MMU at runtime.
 			Default is 0 (off)
diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c
index 0046aa70205a..1065d4e7c5fd 100644
--- a/arch/x86/kvm/x86.c
+++ b/arch/x86/kvm/x86.c
@@ -150,6 +150,10 @@ EXPORT_SYMBOL_GPL(enable_vmware_backdoor);
 static bool __read_mostly force_emulation_prefix = false;
 module_param(force_emulation_prefix, bool, S_IRUGO);
 
+static bool __read_mostly disallow_smt = false;
+module_param(disallow_smt, bool, S_IRUGO);
+
+
 #define KVM_NR_SHARED_MSRS 16
 
 struct kvm_shared_msrs_global {
@@ -6555,6 +6559,15 @@ int kvm_arch_init(void *opaque)
 		goto out;
 	}
 
+	if (boot_cpu_has(X86_BUG_L1TF) && (cpu_smt_control == CPU_SMT_ENABLED)) {
+		printk(KERN_ERR "kvm: SMT enabled with L1TF CPU bug present. Refer to CVE-2018-3615 for details.\n");
+		if (disallow_smt) {
+			r = -EOPNOTSUPP;
+			goto out;
+		}
+		printk(KERN_ERR "Without disabling SMT or setting disallow_smt=1 you risk untrusted guests\n"
+				"being able to snoop the host memory!");
+	}
 	r = -ENOMEM;
 	shared_msrs = alloc_percpu(struct kvm_shared_msrs);
 	if (!shared_msrs) {
diff --git a/kernel/cpu.c b/kernel/cpu.c
index 7edf0a5cfeb9..70770308c968 100644
--- a/kernel/cpu.c
+++ b/kernel/cpu.c
@@ -935,6 +935,7 @@ EXPORT_SYMBOL(cpu_down);
 
 #ifdef CONFIG_HOTPLUG_SMT
 enum cpuhp_smt_control cpu_smt_control __read_mostly = CPU_SMT_ENABLED;
+EXPORT_SYMBOL_GPL(cpu_smt_control);
 
 static int __init smt_cmdline_disable(char *str)
 {
-- 
2.14.3

[MODERATED] Re: [PATCH v2.1 4/6] [PATCH v2.1 4/6] Patch #4

[Peter Zijlstra]

On Wed, Jun 20, 2018 at 04:43:00PM -0400, speck for konrad.wilk_at_oracle.com wrote:
> x86/KVM: Warn user if KVM is loaded SMT and L1TF CPU bug being present.
> 
> If the L1TF CPU bug is present we allow the KVM module to be loaded
> as the major of users that use Linux and KVM have trusted guests
> and do not want a broken setup.

Why on module load? Doesn't the module get loaded unconditionally? My
desktop seems to have it loaded and I'm pretty sure i've never used KVM
on it.

Would it not make more sense to do this in kvm_create_vm() ? Then only
people actually using KVM get to deal with it.

[MODERATED] Re: [PATCH v2.1 4/6] [PATCH v2.1 4/6] Patch #4

[Paolo Bonzini]

[-- Attachment #1: Type: text/plain, Size: 656 bytes --]

On 20/06/2018 22:43, speck for konrad.wilk_at_oracle.com wrote:
>  
> +	if (boot_cpu_has(X86_BUG_L1TF) && (cpu_smt_control == CPU_SMT_ENABLED)) {
> +		printk(KERN_ERR "kvm: SMT enabled with L1TF CPU bug present. Refer to CVE-2018-3615 for details.\n");
> +		if (disallow_smt) {
> +			r = -EOPNOTSUPP;
> +			goto out;
> +		}
> +		printk(KERN_ERR "Without disabling SMT or setting disallow_smt=1 you risk untrusted guests\n"
> +				"being able to snoop the host memory!");
> +	}

Here KERN_ERR is too much, it should be a warning at most, and I'm not
sure about that either.

(Also please use pr_* instead of printk).

>  	r = -ENOMEM;

[MODERATED] Re: [PATCH v2.1 4/6] [PATCH v2.1 4/6] Patch #4

[Konrad Rzeszutek Wilk]

On Thu, Jun 21, 2018 at 10:43:10AM +0200, speck for Peter Zijlstra wrote:
> On Wed, Jun 20, 2018 at 04:43:00PM -0400, speck for konrad.wilk_at_oracle.com wrote:
> > x86/KVM: Warn user if KVM is loaded SMT and L1TF CPU bug being present.
> > 
> > If the L1TF CPU bug is present we allow the KVM module to be loaded
> > as the major of users that use Linux and KVM have trusted guests
> > and do not want a broken setup.
> 
> Why on module load? Doesn't the module get loaded unconditionally? My
> desktop seems to have it loaded and I'm pretty sure i've never used KVM
> on it.
> 
> Would it not make more sense to do this in kvm_create_vm() ? Then only
> people actually using KVM get to deal with it.

Excellent suggestion. Let me see about that. Did the text sound scary enough
or should I notch it up with more scary warnings?

[MODERATED] Re: [PATCH v2.1 4/6] [PATCH v2.1 4/6] Patch #4

[Paolo Bonzini]

[-- Attachment #1: Type: text/plain, Size: 895 bytes --]

On 21/06/2018 10:43, speck for Peter Zijlstra wrote:
> On Wed, Jun 20, 2018 at 04:43:00PM -0400, speck for konrad.wilk_at_oracle.com wrote:
>> x86/KVM: Warn user if KVM is loaded SMT and L1TF CPU bug being present.
>>
>> If the L1TF CPU bug is present we allow the KVM module to be loaded
>> as the major of users that use Linux and KVM have trusted guests
>> and do not want a broken setup.
> 
> Why on module load? Doesn't the module get loaded unconditionally? My
> desktop seems to have it loaded and I'm pretty sure i've never used KVM
> on it.

Yes it's loaded based on cpuid.

On non-x86 systems it's only loaded if you actually use /dev/kvm, but
x86 has the complication of having to load exactly one of kvm_intel and
kvm_amd.

Paolo

> Would it not make more sense to do this in kvm_create_vm() ? Then only
> people actually using KVM get to deal with it.
> 

[MODERATED] Re: [PATCH v2.1 4/6] [PATCH v2.1 4/6] Patch #4

[Andi Kleen]

> +	if (boot_cpu_has(X86_BUG_L1TF) && (cpu_smt_control == CPU_SMT_ENABLED)) {
> +		printk(KERN_ERR "kvm: SMT enabled with L1TF CPU bug present. Refer to CVE-2018-3615 for details.\n");

Doesn't make sense if it's mitigated.

> +		if (disallow_smt) {
> +			r = -EOPNOTSUPP;
> +			goto out;
> +		}
> +		printk(KERN_ERR "Without disabling SMT or setting disallow_smt=1 you risk untrusted guests\n"
> +				"being able to snoop the host memory!");

This is not correct because the snooping can be also prevented in other ways,
e.g. using task affinity, cpu sets, interrupt binding etc.

I wouldn't give a specific recipe, it's far too complicated for an kernel
message.

Also all shouldn't be KERN_ERR, just _WARN

-Andi

[MODERATED] Re: [PATCH v2.1 4/6] [PATCH v2.1 4/6] Patch #4

[Paolo Bonzini]

[-- Attachment #1: Type: text/plain, Size: 1170 bytes --]

On 22/06/2018 01:05, speck for Andi Kleen wrote:
>> +	if (boot_cpu_has(X86_BUG_L1TF) && (cpu_smt_control == CPU_SMT_ENABLED)) {
>> +		printk(KERN_ERR "kvm: SMT enabled with L1TF CPU bug present. Refer to CVE-2018-3615 for details.\n");
> Doesn't make sense if it's mitigated.

The SMT case is not being mitigated.  That's the case where one vCPU
knows that the host pCPU sibling is causing a vmexit, and possibly Linux
runs other processes during the vmexit.

KERN_ERR is okay if disallow_smt=1, since you want an explanation for
the failure to load the module.  If it's allowed I agree that it's by
definition not an error...

Paolo

>> +		if (disallow_smt) {
>> +			r = -EOPNOTSUPP;
>> +			goto out;
>> +		}
>> +		printk(KERN_ERR "Without disabling SMT or setting disallow_smt=1 you risk untrusted guests\n"
>> +				"being able to snoop the host memory!");
> This is not correct because the snooping can be also prevented in other ways,
> e.g. using task affinity, cpu sets, interrupt binding etc.
> 
> I wouldn't give a specific recipe, it's far too complicated for an kernel
> message.
> 
> Also all shouldn't be KERN_ERR, just _WARN