From mboxrd@z Thu Jan  1 00:00:00 1970
From: Xiao Guangrong <guangrong.xiao@linux.intel.com>
Subject: Re: [RFC PATCH 0/4] Add support for EPT execute only for nested
 hypervisors
Date: Fri, 24 Jun 2016 15:02:45 +0800
Message-ID: <576CDB15.7090009@linux.intel.com>
References: <1466478746-14153-1-git-send-email-bsd@redhat.com>
 <576A169B.5090608@linux.intel.com> <jpglh1xw5ap.fsf@linux.bootlegged.copy>
 <576B6D9F.9020806@linux.intel.com> <jpg8txv47mh.fsf@linux.bootlegged.copy>
 <1951526417.1647454.1466742172232.JavaMail.zimbra@redhat.com>
 <jpgziqb1975.fsf@linux.bootlegged.copy>
 <1e7fdf15-d3a6-4c85-b8ee-ddb4adc50cc1@redhat.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 7bit
Cc: kvm@vger.kernel.org
To: Paolo Bonzini <pbonzini@redhat.com>, Bandan Das <bsd@redhat.com>
Return-path: <kvm-owner@vger.kernel.org>
Received: from mga04.intel.com ([192.55.52.120]:51100 "EHLO mga04.intel.com"
	rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
	id S1751143AbcFXHGO (ORCPT <rfc822;kvm@vger.kernel.org>);
	Fri, 24 Jun 2016 03:06:14 -0400
In-Reply-To: <1e7fdf15-d3a6-4c85-b8ee-ddb4adc50cc1@redhat.com>
Sender: kvm-owner@vger.kernel.org
List-ID: <kvm.vger.kernel.org>



On 06/24/2016 02:46 PM, Paolo Bonzini wrote:
>
>
> On 24/06/2016 06:50, Bandan Das wrote:
>>>>>> I am tempted to remove the FNAME version altogether and change
>>>>>> is_present_gpte()
>>>>>> to return (pte & PT_PRESENT_MASK) || (shadow_xonly_valid && (pte & 4)). This
>>>>>> will take care of all cases. Hope I am not missing something :)
>>>>
>>>> Please rename the non-FNAME version to pae_is_present_pdpte or just inline
>>>> it in the two callers.
>> I am still not sure why the FNAME version is needed, specifically the PTTYPE_EPT
>> specific check. Why can't we  just check for execonly and the corresponding
>> bit in the non FNAME version ?
>
> The FNAME version encodes the right semantics:
>
> 1) for non-EPT page tables, bit 1 indicates present.
>
> 2) for EPT page tables, setting any bit 0-2 indicates present.
>
> It's perfectly fine to find that a PTE is invalid *after* judging that
> it is present.  There is no difference between setting bit 51 on a PTE,
> and having the invalid -W- combination on an EPT page table entry.  In
> both cases, the page is present but the PTE is invalid.
>
> The SDM is very clear about it: "If bits 2:0 of an EPT paging-structure
> entry are all 0, the entry is not present".  So if bits 2:0 are -W- the
> entry is present but invalid, and causes an EPT misconfiguration vmexit.
>   A non-present entry will cause an EPT violation instead.

Yes, i agree. Actually i have pointed it out in my previous comment:

"
For !shadow_xonly_valid guest, 100b on gpte can not pass FNAME(is_present_gpte)
so that we can get a error code without RSVD, finally a EPT-violation is injected
rather than EPT-misconfig.
"