Add I/O port filtering for AMDs sev module.

Message ID	20250408145225.502757-1-jgl@meta.com (mailing list archive)
State	New
Headers	show Received: from mx0a-00082601.pphosted.com (mx0a-00082601.pphosted.com [67.231.145.42]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 4BAC318FC67 for <kvm@vger.kernel.org>; Tue, 8 Apr 2025 14:52:55 +0000 (UTC) From: Joshua Lilly <jgl@meta.com> To: Tom Lendacky <thomas.lendacky@amd.com>, "Kirill A . Shutemov" <kirill.shutemov@linux.intel.com>, Paolo Bonzini <pbonzini@redhat.com>, Sean Christopherson <seanjc@google.com> CC: <Joshua@devbig286.ash8.facebook.com>, <Lilly@devbig286.ash8.facebook.com>, <jgl@meta.com>, <kvm@vger.kernel.org>, <linux-coco.lists.linux.dev@devbig286.ash8.facebook.com>, Keith Busch <kbusch@kernel.org> Subject: [PATCH] Add I/O port filtering for AMDs sev module. Date: Tue, 8 Apr 2025 07:52:25 -0700 Message-ID: <20250408145225.502757-1-jgl@meta.com> Precedence: bulk MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain
Series	Add I/O port filtering for AMDs sev module. \| expand Add I/O port filtering for AMDs sev module.

Message ID

20250408145225.502757-1-jgl@meta.com (mailing list archive)

State

New

Headers

From: Joshua Lilly <jgl@meta.com>
To: Tom Lendacky <thomas.lendacky@amd.com>,
        "Kirill A . Shutemov"
	<kirill.shutemov@linux.intel.com>,
        Paolo Bonzini <pbonzini@redhat.com>,
        Sean
 Christopherson <seanjc@google.com>
CC: <Joshua@devbig286.ash8.facebook.com>, <Lilly@devbig286.ash8.facebook.com>,
        <jgl@meta.com>, <kvm@vger.kernel.org>,
        <linux-coco.lists.linux.dev@devbig286.ash8.facebook.com>,
        Keith Busch
	<kbusch@kernel.org>
Subject: [PATCH] Add I/O port filtering for AMDs sev module.
Date: Tue, 8 Apr 2025 07:52:25 -0700
Message-ID: <20250408145225.502757-1-jgl@meta.com>
Precedence: bulk
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain

Series

Add I/O port filtering for AMDs sev module. | expand

Commit Message

Joshua Lilly April 8, 2025, 2:52 p.m. UTC

This adds a port allow list to allow PCIE, ACPI, PCI, DMA,
RTC, etc and serial for easy debugging when debugging is enabled.
The port allow list (switch statement) is copied directly from
the tdx code.

Reviewed-by: Keith Busch <kbusch@kernel.org>
Signed-off-by: Joshua Lilly <jgl@meta.com>
---
 arch/x86/coco/sev/core.c   |  3 +++
 arch/x86/coco/sev/shared.c | 41 ++++++++++++++++++++++++++++++++++++++
 2 files changed, 44 insertions(+)

diff --git a/arch/x86/coco/sev/core.c b/arch/x86/coco/sev/core.c
index b0c1a7a57497..b8d62394d355 100644
--- a/arch/x86/coco/sev/core.c
+++ b/arch/x86/coco/sev/core.c
@@ -2638,6 +2638,9 @@  static int __init snp_init_platform_device(void)
 	if (platform_device_register(&sev_guest_device))
 		return -ENODEV;
 
+	if (!sev_cfg.debug)
+		debug_enabled = false;
+
 	pr_info("SNP guest platform device initialized.\n");
 	return 0;
 }
diff --git a/arch/x86/coco/sev/shared.c b/arch/x86/coco/sev/shared.c
index 2e4122f8aa6b..e5409af64203 100644
--- a/arch/x86/coco/sev/shared.c
+++ b/arch/x86/coco/sev/shared.c
@@ -44,6 +44,7 @@  static u64 boot_svsm_caa_pa __ro_after_init;
 static struct svsm_ca *svsm_get_caa(void);
 static u64 svsm_get_caa_pa(void);
 static int svsm_perform_call_protocol(struct svsm_call *call);
+static bool debug_enabled = true;
 
 /* I/O parameters for CPUID-related helpers */
 struct cpuid_leaf {
@@ -870,6 +871,40 @@  static enum es_result vc_insn_string_write(struct es_em_ctxt *ctxt,
 #define IOIO_SEG_ES    (0 << 10)
 #define IOIO_SEG_DS    (3 << 10)
 
+static bool sev_allowed_port(int port)
+{
+	switch (port) {
+	/* MC146818 RTC */
+	case 0x70 ... 0x71:
+	/* i8237A DMA controller */
+	case 0x80 ... 0x8f:
+	/* PCI */
+	case 0xcd8 ... 0xcdf:
+	case 0xcf8 ... 0xcff:
+		return true;
+	/* PCIE hotplug device state for Q35 machine type */
+	case 0xcc4:
+	case 0xcc8:
+		return true;
+	/* ACPI ports list:
+	 * 0600-0603 : ACPI PM1a_EVT_BLK
+	 * 0604-0605 : ACPI PM1a_CNT_BLK
+	 * 0608-060b : ACPI PM_TMR
+	 * 0620-062f : ACPI GPE0_BLK
+	 */
+	case 0x600 ... 0x62f:
+		return true;
+	case 0x2e8 ... 0x2ef:
+	case 0x2f8 ... 0x2ff:
+	case 0x3e8 ... 0x3ef:
+	case 0x3f8 ... 0x3ff:
+		/* 16650 serial ports are not to be enabled in production, but help debugging. */
+		return debug_enabled;
+	default:
+		return false;
+	}
+}
+
 static enum es_result vc_ioio_exitinfo(struct es_em_ctxt *ctxt, u64 *exitinfo)
 {
 	struct insn *insn = &ctxt->insn;
@@ -970,11 +1005,17 @@  static enum es_result vc_handle_ioio(struct ghcb *ghcb, struct es_em_ctxt *ctxt)
 	struct pt_regs *regs = ctxt->regs;
 	u64 exit_info_1, exit_info_2;
 	enum es_result ret;
+	u16 port;
 
 	ret = vc_ioio_exitinfo(ctxt, &exit_info_1);
 	if (ret != ES_OK)
 		return ret;
 
+	/* port number is packed [31, 16] */
+	port = (exit_info_1 >> 16) & 0xffff;
+	if (!sev_allowed_port(port))
+		return ES_OK;
+
 	if (exit_info_1 & IOIO_TYPE_STR) {
 
 		/* (REP) INS/OUTS */

Add I/O port filtering for AMDs sev module.

Commit Message

Patch