[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests
|
From: |
Michael S. Tsirkin |
|
Subject: |
Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests |
|
Date: |
Wed, 8 Feb 2023 04:50:46 -0500 |
On Wed, Feb 08, 2023 at 09:35:21AM +0000, Daniel P. Berrangé wrote:
> On Tue, Feb 07, 2023 at 04:45:19PM -0500, Michael S. Tsirkin wrote:
> > On Tue, Feb 07, 2023 at 08:41:16AM +0000, Dov Murik wrote:
> > > Recent feature to supply RNG seed to the guest kernel modifies the
> > > kernel command-line by adding extra data at its end; this breaks
> > > measured boot with SEV and OVMF, and possibly signed boot.
> > >
> > > Specifically SEV doesn't miss this feature because it uses UEFI/OVMF
> > > which has its own way of getting random seed (not to mention that
> > > getting the random seed from the untrusted host breaks the confidential
> > > computing trust model).
> >
> > Nope - getting a random seed from an untrusted source should not break
> > anything assuming you also have some other randomness source.
> > If you don't then you have other problems.
> >
> > > Disable the RNG seed feature in SEV guests.
> > >
> > > Fixes: eac7a7791bb6 ("x86: don't let decompressed kernel image clobber
> > > setup_data")
> > > Reported-by: Tom Lendacky <thomas.lendacky@amd.com>
> > > Signed-off-by: Dov Murik <dovmurik@linux.ibm.com>
> > >
> > > ---
> > >
> > > There might be a need for a wider change to the ways setup_data entries
> > > are handled in x86_load_linux(); here I just try to restore the
> > > situation for SEV guests prior to the addition of the SETUP_RNG_SEED
> > > entry.
> > >
> > > Recent discussions on other (safer?) ways to pass this setup_data entry:
> > > [1]
> > > da39abab9785aea2a2e7652ed6403b6268aeb31f.camel@linux.ibm.com/">https://lore.kernel.org/qemu-devel/da39abab9785aea2a2e7652ed6403b6268aeb31f.camel@linux.ibm.com/
> > >
> > > Note that in qemu 7.2.0 this is broken as well -- there the
> > > SETUP_RNG_SEED entry is appended to the Linux kernel data (and therefore
> > > modifies and breaks the measurement of the kernel in SEV measured boot).
> > > A similar fix will be needed there (but I fear this patch cannot be
> > > applied as-is).
> >
> > So it's not a regression, is it?
> >
> > > ---
> > > hw/i386/x86.c | 2 +-
> > > 1 file changed, 1 insertion(+), 1 deletion(-)
> > >
> > > diff --git a/hw/i386/x86.c b/hw/i386/x86.c
> > > index eaff4227bd..e65a83f8df 100644
> > > --- a/hw/i386/x86.c
> > > +++ b/hw/i386/x86.c
> > > @@ -1103,7 +1103,7 @@ void x86_load_linux(X86MachineState *x86ms,
> > > load_image_size(dtb_filename, setup_data->data, dtb_size);
> > > }
> > >
> > > - if (!legacy_no_rng_seed && protocol >= 0x209) {
> > > + if (!legacy_no_rng_seed && protocol >= 0x209 && !sev_enabled()) {
> > > setup_data_offset = cmdline_size;
> > > cmdline_size += sizeof(SetupData) + RNG_SEED_LENGTH;
> > > kernel_cmdline = g_realloc(kernel_cmdline, cmdline_size);
> > >
> > > base-commit: 6661b8c7fe3f8b5687d2d90f7b4f3f23d70e3e8b
> >
> > I am beginning to think we have been hasty here. no rng seed
> > should have been then default and requested with a flag.
> > Then we'd avoid all this heartburn - and SEV might not be the
> > only workload broken.
>
> IMHO the main problem we have here is a lack of automated testing
> coverage. There are too many subtle edge cases to rely on reviewers
> spotting flaws in the code, we need automation.
>
> Obviously our CI platforms don't have SEV hardware support[1], but we
> still could have had an avocado test case in QEMU can be run manually
> to validate things.
>
> Also we should have avocado test case to cover SecureBoot with
> -kernel, and that can be run in CI. And tests for the big kernel
> scenario that this also broke with 7.2
Could we not sign the empty image from bios test and use that with CI?
That signature can stay constant.
> With regards,
> Daniel
>
> [1] Anyone fancy adding SEV(ES|SNP) emulation to QEMU :-) Obviously
> would have to have separate certs/keys at the root of trust, but
> even with such a caveat it'd make life easier for developers and
> maintainers to not have to rely on real hardware all the time.
Yea this last one is what I thought too.
--
MST
- Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests, (continued)
- Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests, Dov Murik, 2023/02/08
- Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests, Tom Lendacky, 2023/02/08
- Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests, Michael S. Tsirkin, 2023/02/08
- Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests, Jason A. Donenfeld, 2023/02/08
- Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests, Dov Murik, 2023/02/08
- Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests, Jason A. Donenfeld, 2023/02/08
- Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests, Dov Murik, 2023/02/08
- Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests, Jason A. Donenfeld, 2023/02/08
- Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests, Dov Murik, 2023/02/08
Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests, Daniel P . Berrangé, 2023/02/08
- Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests,
Michael S. Tsirkin <=
Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests, Daniel P . Berrangé, 2023/02/08