简体繁体中英

Does the VMX mode have the capability to detect previously non-trappable sensitive instructions?

原文 2017-10-08 02:51:23 4 2 x86/ intel/ cpu-architecture/ processor

VMX模式是否为Virtualisation Systems Architect提供了检测以前不可捕获的敏感指令的功能？

2 answers

No, not in all cases. Instead VMX mode changes the behavior of some of these instructions so that they are not sensitive.

Here are a couple examples of how sensitive instructions behave in VMX non-root mode:

SMSW : it doesn't trap when in VMX mode, but it substitutes values specified by the VMM for the actual values of certain bits.
POPF : the behavior of the instruction doesn't change, but control of interrupts can be overridden by controls in the VMCS, to prevent guest changes to IF from affecting the VMM or other guests.

This reference has a list of sensitive x86 instructions on page 28: https://www.cs.cmu.edu/~410-s14/lectures/L30_Virtualization.pdf . Volume 3, chapter 25 of the Intel SDM has a detailed description of the change in behavior of every instruction.

I'd say yes. According to pages 13 through 17 of this Virtualization and Virtual Machines presentation , hardware virtualization seems to be an attempt to solve that problem.

The pdf @prl posted also says on slide 45:

if a guest kernel runs a sensitive instruction, hardware does a 'VM exit' back to the VMM, indicates which instruction trapped

Combination of VMX and Non VMX in multiple CPU's

Is it possible to use VMX CPU instructions inside VM?

Am I guaranteed to not encounter non-64-bit instructions if there are no compatibility mode switches in x86-64?

How does KVM schedule multiple VMs in Intel VMX?

How does Hypervisor deal with sensitive instructions executed from host process that is not VM-instance?

Does `xchg` encompass `mfence` assuming no non-temporal instructions?

Why does GCC insert seemingly non-essential instructions before a printf call?

Please explain the issue of sensitive instructions in Virtualization and how it is resolved

How does the CPU know how many bytes it should read for the next instruction, considering instructions have different lenghts?

Which value does EDX have after logic NEG and AND instructions?

暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Combination of VMX and Non VMX in multiple CPU's Is it possible to use VMX CPU instructions inside VM? Am I guaranteed to not encounter non-64-bit instructions if there are no compatibility mode switches in x86-64? How does KVM schedule multiple VMs in Intel VMX? How does Hypervisor deal with sensitive instructions executed from host process that is not VM-instance? Does `xchg` encompass `mfence` assuming no non-temporal instructions? Why does GCC insert seemingly non-essential instructions before a printf call? Please explain the issue of sensitive instructions in Virtualization and how it is resolved How does the CPU know how many bytes it should read for the next instruction, considering instructions have different lenghts? Which value does EDX have after logic NEG and AND instructions?

Related Tags

Does the VMX mode have the capability to detect previously non-trappable sensitive instructions?

Question

2 answers

solution1
4 2017-10-08 04:14:43

solution2
1 ACCPTED 2017-10-09 05:34:35

Does the VMX mode have the capability to detect previously non-trappable sensitive instructions?

Question

2 answers

solution1 4 2017-10-08 04:14:43

solution2 1 ACCPTED 2017-10-09 05:34:35

solution1
4 2017-10-08 04:14:43

solution2
1 ACCPTED 2017-10-09 05:34:35