From nobody Thu Oct 2 07:48:34 2025 Received: from mail-pj1-f74.google.com (mail-pj1-f74.google.com [209.85.216.74]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 5F43C3054FC for ; Fri, 19 Sep 2025 22:34:12 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=209.85.216.74 ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1758321253; cv=none; b=YIvqTezNZNnSd/LmcBnGU8vqmZoNyxF+RgDLMgw1IcxGJEU4foa4oZlzMvWea5Gereni7e1xuBz2x07XYca5tIm+W2c+yq0u1S46Oyi18i3WDqlktrWwh/ZCdzqWUxVS66d78HrX09sC1bfDjdhbt72dy2N4Cu4K6G9q6bXU8Gs= ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1758321253; c=relaxed/simple; bh=X20sEQ+xsCLTJe7gE4Qs5AwL/wm1XuF1rIgh80JVcHA=; h=Date:In-Reply-To:Mime-Version:References:Message-ID:Subject:From: To:Cc:Content-Type; b=mLMfnRzW8+i0BG7b7vw6r4YJoqhtFbeNBF9snvg3zp1NcUy2h3JHMueynUugV3IZltVMQBkilPE5wpch8sDOHsYIXDlJeAwfH33jLkUY6y2+m1MJaIKq6lqTYC0adWdZcjlKbESIQLxR1X2uEbeiAEz0k3WMOenI4JRBDqA6Nrk= ARC-Authentication-Results: i=1; smtp.subspace.kernel.org; dmarc=pass (p=reject dis=none) header.from=google.com; spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com; dkim=pass (2048-bit key) header.d=google.com header.i=@google.com header.b=qyaFg7M7; arc=none smtp.client-ip=209.85.216.74 Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=reject dis=none) header.from=google.com Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=google.com header.i=@google.com header.b="qyaFg7M7" Received: by mail-pj1-f74.google.com with SMTP id 98e67ed59e1d1-32ee4998c50so2443466a91.3 for ; Fri, 19 Sep 2025 15:34:12 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20230601; t=1758321252; x=1758926052; darn=vger.kernel.org; h=cc:to:from:subject:message-id:references:mime-version:in-reply-to :date:reply-to:from:to:cc:subject:date:message-id:reply-to; bh=eHR2NLSLCCnmrfYd7kOboVWYopKWMO4BXG1y6UT4JW8=; b=qyaFg7M7riU2wyKee4ZsFrB7unFBf8ILe2bJbHNx8eoIuPcwVDtVGCyosGpoR0UG/a hnNhMuapuhIQVU+NUE3CApxOrn6ABCfmsXUZbTTWjRqSo+0TDtUm7bxxbgiEKLcoWJKY r79tp6HvOo7JyLn+fKiAsJPUcFl1ZGt62+CFjgPCVA5W62zLpcahdgCLP9Qbeexgk8Zy kw/1+Y2ZFYz+QeZI7mo4bFpZI3TDfGZSnYrobe/yK+r42wfP1TjMb5CGvhqAatU+xrDK MXlixHsD29s75g1tGndXJPSunL3CsKk7V2+o67odUEhm6PaJ86lR7raOMNw+ZcnXlKad gCIw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1758321252; x=1758926052; h=cc:to:from:subject:message-id:references:mime-version:in-reply-to :date:reply-to:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=eHR2NLSLCCnmrfYd7kOboVWYopKWMO4BXG1y6UT4JW8=; b=b6YI19l5n3BZqdCj+pPzPskBBU1HuZp9MccAvse9Iha9PHf8OGCErZb/yGkV4FQFLx RCowm+5UJZgJIT9alodgydXBcOBmLqqLFobO6PaiBr/NYrA3wxAcwCVc++FkpzZaVHK3 Yu+hJIwO3NrqtSBYWm15EJl3Q7PgIbWMBNeC3tatl6GvQnggU9rBkxvg0TF2+xHA4rvK OmK0Tu1UGDHvvKk9Fue8IaxW6QCzw5ec00kXXwgHhfI/tZ/e3iNuvgN8i6Fd0PvFp7oZ J34oiO4yRZSEPAQsqq+wLRzTw+42Uo1bjRlwxrRCFUdJq9D+ydfcDDMKuMsC/GcQ5sSY jZKg== X-Forwarded-Encrypted: i=1; AJvYcCVYDFONUy9B5k1XJrBxTTjC3v3R6Gc0I8CfjjQcbQUTawGHVFKtodQZf1RsIv4gx9HQE/46PtAADCXWNEM=@vger.kernel.org X-Gm-Message-State: AOJu0Yzvt1LiFvBiKhaHL8261uzUSGj1gVleaibFzLDb9SmYu++Xkfs2 Fr/xJHZ2QA2M41eLQfEvchu/AHn/lg6kD05IG84IHEe6g6nHq7OqJRvnplqlER4Hk0zeurR5xuC YS7QYCA== X-Google-Smtp-Source: AGHT+IFifa+3ALaHZ5N/ALMtEqJi9pVMuOHdbpWekClGQnveANM6eyoR6/P/Qd3bbbMyzvhBHioRo62qYnU= X-Received: from pjl13.prod.google.com ([2002:a17:90b:2f8d:b0:32d:def7:e60f]) (user=seanjc job=prod-delivery.src-stubby-dispatcher) by 2002:a17:90b:3f87:b0:32e:5d87:8abc with SMTP id 98e67ed59e1d1-3309838e02amr4950519a91.36.1758321251699; Fri, 19 Sep 2025 15:34:11 -0700 (PDT) Reply-To: Sean Christopherson Date: Fri, 19 Sep 2025 15:32:44 -0700 In-Reply-To: <20250919223258.1604852-1-seanjc@google.com> Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: Mime-Version: 1.0 References: <20250919223258.1604852-1-seanjc@google.com> X-Mailer: git-send-email 2.51.0.470.ga7dc726c21-goog Message-ID: <20250919223258.1604852-38-seanjc@google.com> Subject: [PATCH v16 37/51] KVM: SVM: Update dump_vmcb with shadow stack save area additions From: Sean Christopherson To: Paolo Bonzini , Sean Christopherson Cc: kvm@vger.kernel.org, linux-kernel@vger.kernel.org, Tom Lendacky , Mathias Krause , John Allen , Rick Edgecombe , Chao Gao , Binbin Wu , Xiaoyao Li , Maxim Levitsky , Zhang Yi Z , Xin Li Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset="utf-8" From: John Allen Add shadow stack VMCB fields to dump_vmcb. PL0_SSP, PL1_SSP, PL2_SSP, PL3_SSP, and U_CET are part of the SEV-ES save area and are encrypted, but can be decrypted and dumped if the guest policy allows debugging. Reviewed-by: Maxim Levitsky Signed-off-by: John Allen Signed-off-by: Sean Christopherson --- arch/x86/kvm/svm/svm.c | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/arch/x86/kvm/svm/svm.c b/arch/x86/kvm/svm/svm.c index 52d2241d8188..e50e6847fe72 100644 --- a/arch/x86/kvm/svm/svm.c +++ b/arch/x86/kvm/svm/svm.c @@ -3410,6 +3410,10 @@ static void dump_vmcb(struct kvm_vcpu *vcpu) "rip:", save->rip, "rflags:", save->rflags); pr_err("%-15s %016llx %-13s %016llx\n", "rsp:", save->rsp, "rax:", save->rax); + pr_err("%-15s %016llx %-13s %016llx\n", + "s_cet:", save->s_cet, "ssp:", save->ssp); + pr_err("%-15s %016llx\n", + "isst_addr:", save->isst_addr); pr_err("%-15s %016llx %-13s %016llx\n", "star:", save01->star, "lstar:", save01->lstar); pr_err("%-15s %016llx %-13s %016llx\n", @@ -3434,6 +3438,13 @@ static void dump_vmcb(struct kvm_vcpu *vcpu) pr_err("%-15s %016llx\n", "sev_features", vmsa->sev_features); =20 + pr_err("%-15s %016llx %-13s %016llx\n", + "pl0_ssp:", vmsa->pl0_ssp, "pl1_ssp:", vmsa->pl1_ssp); + pr_err("%-15s %016llx %-13s %016llx\n", + "pl2_ssp:", vmsa->pl2_ssp, "pl3_ssp:", vmsa->pl3_ssp); + pr_err("%-15s %016llx\n", + "u_cet:", vmsa->u_cet); + pr_err("%-15s %016llx %-13s %016llx\n", "rax:", vmsa->rax, "rbx:", vmsa->rbx); pr_err("%-15s %016llx %-13s %016llx\n", --=20 2.51.0.470.ga7dc726c21-goog