From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from NAM12-DM6-obe.outbound.protection.outlook.com (NAM12-DM6-obe.outbound.protection.outlook.com [40.107.243.45])
 by mx.groups.io with SMTP id smtpd.web11.10853.1591363686578943626
 for <devel@edk2.groups.io>;
 Fri, 05 Jun 2020 06:28:06 -0700
Authentication-Results: mx.groups.io;
 dkim=pass header.i=@amdcloud.onmicrosoft.com header.s=selector2-amdcloud-onmicrosoft-com header.b=CBWiIgox;
 spf=none, err=SPF record not found (domain: amd.com, ip: 40.107.243.45, mailfrom: thomas.lendacky@amd.com)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none;
 b=dXPZUeV877JuDVNuk1DFEMEGKrNmUX2b1Tk3pV6mnRpkeNExt6MhL+RuGYpnY6trN8d3ynf+0I3lG+OAe+bxLsmKpk/NDYmcKQHIAFxxGTNS+eQQFSzuCf3yBOVzjblAh69S43tNU9zSxW3ZIofcCug+GlgHbTuyo1sQEiJiL0ofwlW5Zu0ACHwe83xPw2gk8wzsy7zWzjjnPxM3V8F4t542nEvfQzd4WkLXevaxejMXjQSv6ODHqtEWAG8Yk9UYaoCCJEpw9TbPhxM2u6N9DEXX9rCU1S4d3RbOtvNbcvV9BLdvPBLZZH1hE2gGpiIh5mO+00jhgPHNiWZSjtkWkg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;
 s=arcselector9901;
 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
 bh=2U9aU1hSXj5vnUPk6yo/9AnHIThWHqSBqOt5cNAOfHM=;
 b=L388NBNbLUnYFflEyJbgpWKjHnTvsVjeVsTFci1CvHPzYp/MHjRiS9iML60mXUcBsa8yy+Jjd1JY+5hXpVOrKuAfywn1GGLROkUJob4u8XuQT6o87mXpLOsjny/CajQZ7+UgjZ3lr9Mao2kpq0+m7HNaZwZyQcCA0HluMycBcd3yP5RJNq2xswOHykimymuowcYcuJ6s2sGS971esarQHqEzlajUBcOLgTaEVSErKHXR+mRpH7MmFLaLsb8Epl0iXRUshjRIuJbXNfKoezHesABTBCXMbSI77bC4GcrHtFRjppftdJ7mYy2atg7R4lPXH3EmE55Yf9/cbnTWLtz7qg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass
 smtp.mailfrom=amd.com; dmarc=pass action=none header.from=amd.com; dkim=pass
 header.d=amd.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=amdcloud.onmicrosoft.com; s=selector2-amdcloud-onmicrosoft-com;
 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
 bh=2U9aU1hSXj5vnUPk6yo/9AnHIThWHqSBqOt5cNAOfHM=;
 b=CBWiIgoxO8aEFqHNhFwd8uQsVJN899FWpWmHJ0CJVIkYSAomLYAja/W8YC0rMHe7w+tPZrnKKRZVQ2Zjtdon3eOXguu5nhmzJaaGsrQtz3QdalpURx109m8RZRPOXRbgonYJ+n83FLUUoth8l6huEECXw7UR3n3TLyY0tuTL2TE=
Authentication-Results: edk2.groups.io; dkim=none (message not signed)
 header.d=none;edk2.groups.io; dmarc=none action=none header.from=amd.com;
Received: from DM5PR12MB1355.namprd12.prod.outlook.com (2603:10b6:3:6e::7) by
 DM5PR12MB1354.namprd12.prod.outlook.com (2603:10b6:3:7a::17) with Microsoft
 SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id
 15.20.3066.20; Fri, 5 Jun 2020 13:28:05 +0000
Received: from DM5PR12MB1355.namprd12.prod.outlook.com
 ([fe80::4ce1:9947:9681:c8b1]) by DM5PR12MB1355.namprd12.prod.outlook.com
 ([fe80::4ce1:9947:9681:c8b1%10]) with mapi id 15.20.3066.019; Fri, 5 Jun 2020
 13:28:05 +0000
From: "Lendacky, Thomas" <thomas.lendacky@amd.com>
To: devel@edk2.groups.io
Cc: Brijesh Singh <brijesh.singh@amd.com>,
	Ard Biesheuvel <ard.biesheuvel@arm.com>,
	Eric Dong <eric.dong@intel.com>,
	Jordan Justen <jordan.l.justen@intel.com>,
	Laszlo Ersek <lersek@redhat.com>,
	Liming Gao <liming.gao@intel.com>,
	Michael D Kinney <michael.d.kinney@intel.com>,
	Ray Ni <ray.ni@intel.com>
Subject: [PATCH v9 16/46] OvmfPkg/VmgExitLib: Add support for MSR_PROT NAE events
Date: Fri,  5 Jun 2020 08:27:07 -0500
Message-Id: <4755705446e2be236ec262cc47ed59d5fdc112ba.1591363657.git.thomas.lendacky@amd.com>
X-Mailer: git-send-email 2.27.0
In-Reply-To: <cover.1591363657.git.thomas.lendacky@amd.com>
References: <cover.1591363657.git.thomas.lendacky@amd.com>
X-ClientProxiedBy: DM5PR19CA0060.namprd19.prod.outlook.com
 (2603:10b6:3:116::22) To DM5PR12MB1355.namprd12.prod.outlook.com
 (2603:10b6:3:6e::7)
Return-Path: thomas.lendacky@amd.com
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
Received: from tlendack-t1.amd.com (165.204.77.1) by DM5PR19CA0060.namprd19.prod.outlook.com (2603:10b6:3:116::22) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3066.18 via Frontend Transport; Fri, 5 Jun 2020 13:28:04 +0000
X-Mailer: git-send-email 2.27.0
X-Originating-IP: [165.204.77.1]
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-HT: Tenant
X-MS-Office365-Filtering-Correlation-Id: 81abcec6-9155-4498-91bd-08d80954472a
X-MS-TrafficTypeDiagnostic: DM5PR12MB1354:
X-MS-Exchange-Transport-Forked: True
X-Microsoft-Antispam-PRVS: 
	<DM5PR12MB135438BC0F2ECA157278C46BEC860@DM5PR12MB1354.namprd12.prod.outlook.com>
X-MS-Oob-TLC-OOBClassifiers: OLM:6790;
X-Forefront-PRVS: 0425A67DEF
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 
	ebo0+ZRUAmrsUBZ0a4/FJuIdt2+imvoegUKF5zzHEtUBb7KIilTQv1oad65h8z9AYEw+knx3Qw/AwAjYr9exgImWtSUlAwL2nQPyWLYC2AbktNbYfaUf2u/+pFb+hgoH78cDvDwT6YYTs6J/soVI4CB/aYtXObe8FDhTPM7kxgzxZ1YY8D7bclTB2hlWFbfl4obcF79kZSuSFKJ5iG0GmdLM/dVwJ3kQV8pY0V2z1ne6iC0cJkqaThWjpPtXUhGKM/+o/rTmooLHJDNP0nyCHjU65jYuW4xIuL1+ij+0vW3i9NLTS+lpRqOyoRyaQ5YivAyn+zOGtYgfIQCaadRMZ574NOvLpM93gVLjdQ1/Qbz8cA4iu0woCMbHnVDz78tAf2UQwh7KjLubCT2nwbqnAXhhVyGmfqiWmGaS8RsNjoJr8EKKDffjxdB8VphQxA5ZTlyuGv4kSS/88iGuX/EQTQ==
X-Forefront-Antispam-Report: 
	CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:DM5PR12MB1355.namprd12.prod.outlook.com;PTR:;CAT:NONE;SFTY:;SFS:(4636009)(346002)(39860400002)(376002)(366004)(396003)(136003)(52116002)(83380400001)(26005)(316002)(7696005)(54906003)(6486002)(478600001)(956004)(16526019)(86362001)(4326008)(36756003)(2616005)(966005)(6916009)(2906002)(8936002)(5660300002)(8676002)(66476007)(66946007)(66556008)(186003)(136400200001);DIR:OUT;SFP:1101;
X-MS-Exchange-AntiSpam-MessageData: 
	B8dIoauKMEeUR7/FXvd+6k41u4kZJctMvurWhUdgUweOXO5qZ4pWAw6Dfp23LOSNS+UnDQ0CFs6w4rl7iR1OnY43oHeumdqFqdJPSq6C0H8uNEUMwrXLRLrt/PqMF86q9p9iFrGSSR5Ue51oji/MWUX+aIIu9HeUa4qr9lnvllc3rMgH+NrrsjfiJRBMNj3jiZWyY2IlTmwomDpsjpq19cp7h/EUJYgLwkQH4yFPsoHM6+CT0peFdyALZ8LuJH1dNzrIHoRt9p1x+63fN1xK02qcTa8vCnW7OoUx/KOJ2o5BumLKCw0N+243GStEnnGC3Ji1aHwZPXJtPJTtQ+vhD30PfD3LkN2//KhG5NawO0Bg3WpZwUDllfmhuwgokrMPh4THfijY2+cY8AM0ZJUw8qnjc9cVVsHHvbN53sgduUYeFKoeKvGVlv6ZX1199G6srGbYDyy2F2w5HZlFhelMrty6k2dD/3Chf4xaJY6xU6g=
X-OriginatorOrg: amd.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 81abcec6-9155-4498-91bd-08d80954472a
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 05 Jun 2020 13:28:05.1009
 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 3dd8961f-e488-4e60-8e11-a82d994e183d
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: kLYV1nkyRL7ozzNjTRs5yromzcaRjIN5L29CVOvhpUPUhr5ILhbhNmQiN0/4bLVLJPcLP+r9qnF0rWoh/2vfbQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR12MB1354
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain

BZ: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2198

Under SEV-ES, a MSR_PROT intercept generates a #VC exception. VMGEXIT must
be used to allow the hypervisor to handle this intercept.

Add support to construct the required GHCB values to support an MSR_PROT
NAE event. Parse the instruction that generated the #VC exception to
determine whether it is RDMSR or WRMSR, setting the required register
register values in the GHCB and creating the proper SW_EXIT_INFO1 value in
the GHCB.

Cc: Jordan Justen <jordan.l.justen@intel.com>
Cc: Laszlo Ersek <lersek@redhat.com>
Cc: Ard Biesheuvel <ard.biesheuvel@arm.com>
Acked-by: Laszlo Ersek <lersek@redhat.com>
Signed-off-by: Tom Lendacky <thomas.lendacky@amd.com>
---
 OvmfPkg/Library/VmgExitLib/VmgExitVcHandler.c | 65 ++++++++++++++++++++
 1 file changed, 65 insertions(+)

diff --git a/OvmfPkg/Library/VmgExitLib/VmgExitVcHandler.c b/OvmfPkg/Librar=
y/VmgExitLib/VmgExitVcHandler.c
index 1e0b2bf399da..009eb48cd468 100644
--- a/OvmfPkg/Library/VmgExitLib/VmgExitVcHandler.c
+++ b/OvmfPkg/Library/VmgExitLib/VmgExitVcHandler.c
@@ -374,6 +374,67 @@ UnsupportedExit (
   return Status;=0D
 }=0D
 =0D
+/**=0D
+  Handle an MSR event.=0D
+=0D
+  Use the VMGEXIT instruction to handle either a RDMSR or WRMSR event.=0D
+=0D
+  @param[in, out] Ghcb             Pointer to the Guest-Hypervisor Communi=
cation=0D
+                                   Block=0D
+  @param[in, out] Regs             x64 processor context=0D
+  @param[in]      InstructionData  Instruction parsing context=0D
+=0D
+  @return 0                        Event handled successfully=0D
+  @return Others                   New exception value to propagate=0D
+=0D
+**/=0D
+STATIC=0D
+UINT64=0D
+MsrExit (=0D
+  IN OUT GHCB                     *Ghcb,=0D
+  IN OUT EFI_SYSTEM_CONTEXT_X64   *Regs,=0D
+  IN     SEV_ES_INSTRUCTION_DATA  *InstructionData=0D
+  )=0D
+{=0D
+  UINT64  ExitInfo1, Status;=0D
+=0D
+  ExitInfo1 =3D 0;=0D
+=0D
+  switch (*(InstructionData->OpCodes + 1)) {=0D
+  case 0x30: // WRMSR=0D
+    ExitInfo1 =3D 1;=0D
+    Ghcb->SaveArea.Rax =3D Regs->Rax;=0D
+    GhcbSetRegValid (Ghcb, GhcbRax);=0D
+    Ghcb->SaveArea.Rdx =3D Regs->Rdx;=0D
+    GhcbSetRegValid (Ghcb, GhcbRdx);=0D
+    //=0D
+    // fall through=0D
+    //=0D
+  case 0x32: // RDMSR=0D
+    Ghcb->SaveArea.Rcx =3D Regs->Rcx;=0D
+    GhcbSetRegValid (Ghcb, GhcbRcx);=0D
+    break;=0D
+  default:=0D
+    return UnsupportedExit (Ghcb, Regs, InstructionData);=0D
+  }=0D
+=0D
+  Status =3D VmgExit (Ghcb, SVM_EXIT_MSR, ExitInfo1, 0);=0D
+  if (Status !=3D 0) {=0D
+    return Status;=0D
+  }=0D
+=0D
+  if (ExitInfo1 =3D=3D 0) {=0D
+    if (!GhcbIsRegValid (Ghcb, GhcbRax) ||=0D
+        !GhcbIsRegValid (Ghcb, GhcbRdx)) {=0D
+      return UnsupportedExit (Ghcb, Regs, InstructionData);=0D
+    }=0D
+    Regs->Rax =3D Ghcb->SaveArea.Rax;=0D
+    Regs->Rdx =3D Ghcb->SaveArea.Rdx;=0D
+  }=0D
+=0D
+  return 0;=0D
+}=0D
+=0D
 /**=0D
   Build the IOIO event information.=0D
 =0D
@@ -705,6 +766,10 @@ VmgExitHandleVc (
     NaeExit =3D IoioExit;=0D
     break;=0D
 =0D
+  case SVM_EXIT_MSR:=0D
+    NaeExit =3D MsrExit;=0D
+    break;=0D
+=0D
   default:=0D
     NaeExit =3D UnsupportedExit;=0D
   }=0D
--=20
2.27.0