Adding Hyper-V Nested Virt and Guest UEFI Support

[willronchetti]

This patch set integrates nested virtualization and guest UEFI support into OpenXT. These patches have been tested on OpenXT. The following tests have been carried out. Areas where testing can be improved are highlighted.

• Windows Hyper-V VM creation
• Windows UEFI Secure Boot Guest
• XXX: Windows Credential Guard can be run, but appears to cripple the system and exhibit high CPU usage to the point where the OS in unresponsive/unusable. More testing is needed. This appears to be a known issue between Microsoft and Citrix.
• XXX: Linux UEFI Guests tested: Debian, CentOS, Ubuntu, Arch and Fedora. Arch requires some extra work, while Ubuntu appears to place its 'bootx64.efi' file in a spot where OVMF cannot locate it. Both issues should be able to be fixed rather painlessly.

This is a very large patch set that will require thorough testing beyond what I've done before being merged into master.

[jean-edouard]

Why are you removing this header?

[willronchetti]

My mistake - this patch was giving me some trouble. Will add it back in.

[jean-edouard]

Fails to build (xen patchqueue doesn't apply): http://openxt-builder.ainfosec.com:8010/builders/openxt/builds/1042/steps/Build/logs/stdio

[dpsmith]

I have done a cursory read of the change set and will provide those comments later. Before that, I would note that this adds two major features in a single PR that is one commit. The single PR is fine since it is related featues, but I would suggest that this at least gets broken into two commits, one that adds the guest UEFI support and one builds on it to add the nested virtualization support.

[dpsmith]

Instead of just disabling, why not test for DEBUG. That way it is easier to turn on when troubleshooting.

[dpsmith]

Please be consistent with spacing and honor spacing conventions of existing code you are patching.

[dpsmith]

Spacing here as well

[dpsmith]

Nitpick: Is this extra white space needed?

[dpsmith]

Indentation

[dpsmith]

Please don't just turn off code blocks, if replacing then replace. If it is being left to provide understanding, then add a comment within the block to let people know why its still here.

[dpsmith]

Again don't #if out replaced code.

[dpsmith]

Just like #if, if you are leaving for understanding, then explain otherwise just delete the line

[dpsmith]

Is there any way not to have to hard code the device path? Maybe make it a #define variable?

[dpsmith]

If this is wrong, then just replace it.

[dpsmith]

Just delete and if you feel its needed, add a comment that it was removed and why

[dpsmith]

Just delete it

[dpsmith]

I do not like blind accessible global state, they are too easily abused and leaves yourself open to potential exploit. Make it local and export wrappers to set and get that guard for correct values, etc.

[tklengyel]

Seems like it's how QEMU defines a bunch of other Xen variables too in include/hw/xen/xen.h, so I would just place this next to the other ones:

extern uint32_t xen_domid;
extern enum xen_mode xen_mode;
extern bool xen_allowed;

[dpsmith]

I am all about observing 80 char, and this looks like it would have been fine. Please don't unnecessarily split.

[dpsmith]

Indentation consistency

[dpsmith]

Indentation

[dpsmith]

Will this logic trigger for non-uefi guest on xen and if so, is it handled gracefully?

[dpsmith]

indentation

[dpsmith]

Replace, not #if 0

[dpsmith]

I get this for development, but maybe a more meaningful debug augmentation would be better.

[dpsmith]

Just remove, leave comment if necessary

[dpsmith]

again

[dpsmith]

debug again

[dpsmith]

remove

[dpsmith]

remove

[dpsmith]

is returns necessary? would reduce diff churn

[dpsmith]

turned off code you added, should it just not be added?

[dpsmith]

instead of just shorting out this function, can you not go to the invocations of this function and implement a check whether to even call?

[dpsmith]

short out again

[dpsmith]

short out again

[dozylynx]

I'm very pleased to see this progress on nested virtualization -- thanks for the PR.

We need a detailed and clear set of test validation steps for this feature, or set of features, in this PR so that we will be able to verify that the new functionality has been preserved correctly when OpenXT uprevs to a newer version of the Xen hypervisor and toolstack software.

We need to know exactly what software, and what features of that software, this introduces a requirement to remain compatible with, please.

[willronchetti]

A few updates:

• The upstream patch revert should solve the build problem.
• In lieu of working on code review for the moment I'll be working on pushing up some documents detailing how exactly to test out the new features.
• This was all tested with Xen 4.6.5 - now that 4.6.6 has been merged to master, I've been testing today briefly on that. UEFI functionality looks good so far.
• Today is my last (official) day at AIS so much of the work remaining to be done for this to be merged will be done by someone else. With that said, I will still keep an eye on this PR and provide any insight if need be.

[willronchetti]

I have attached two documents here that may be freely distributed that describe how to go about testing out the new features. I hope these documents are helpful. I will be periodically keeping track of this PR and hope to contribute more in the future, but for now the remaining work will be picked up by someone else at AIS.

There is, however, one unfortunate thing to note. In my latest round of testing I've found that enabling Windows Hyper-V causes a triple fault upon boot as both a standard and UEFI guest. Having glanced through the Xen 4.6.6 changeset, I am not convinced that the problem was caused there. It's possible that other changes have come in recently that may have had an effect. Fortunately, the surface where this could have happened is relatively small. In addition, the original document we received suggests that all of this functionality (and more) was working in April 2017, thus the time frame for such a change is relatively small. This is the only issue I've found in my (limited) testing since merging many commits from master today.

openxt_efi_guide.txt
readme.pdf

[openxt-booter]

You may wish to leave the "#if 0"s in place as this functionality is likely to be merged upstream (Citrix are also instrested in q35, ovmf and Credential guard and HVCI), and it will make unpicking your PQ from the the upstream changes easier.

[dpsmith]

Okay, then don't just #if 0 out the code. Use a descriptive flag and possible comments that a) makes the code easily locatable and b) helps reviewers understand why the code is disabled.

[jean-edouard]

Now OVMF won't build. Does it need nasm installed on the host?
http://openxt-builder.ainfosec.com:8010/builders/openxt/builds/1051/steps/Build/logs/stdio

[openxt-booter]

You should obtain the original documentation provided with this patch series, it explains in detail what each part of the patches do and why. How you wish to modify it an maintain them in this PR is entirely up to you: but each modification that diverges significantly from upstream is something you're going to either have to merge in later or for which a PQ must be maintained - eg it's quite likely that xen upstream will implement q35 and ovmf support itself soon.

[willronchetti]

@jean-edouard I did not experience any issues building OVMF, but judging from that error message it looks like nasm is indeed needed to build OVMF. My build machine must've had it, which is why I did not make any note of it. The only original documentation given is the 'readme' posted above, which gives some additional background/details.

[jean-edouard]

Thanks @willronchetti.
The package will have to be added there before merging this PR: https://github.com/OpenXT/openxt/blob/master/build-scripts/setup.sh#L162

In the meantime, I will manually add it to the AIS builders to be able to build and test this PR.

[jean-edouard]

Built here: http://openxt-builder.ainfosec.com:8010/builders/openxt/builds/1064

[jean-edouard]

It also requires adding a device to qemu, which is not covered by this PR:
Aug 9 18:38:52.546306 xenconsoled: win10efi-dm (4): qemu-system-i386: Unknown device 'lsi53c895a' for bus 'PCI'

[jean-edouard]

I ran a build with a qemu fix here: http://openxt-builder.ainfosec.com:8010/builders/openxt/builds/1077

I really feel that this PR should be split into multiple ones.

I was able to smoke-test the guest UEFI support (ovmf), and it actually works pretty well. It's also optional and not enabled by default, so I would be willing to merge it pretty quickly if it was in its own PR.

The nested-virt support is a more important feature that needs more reviewing, and not having guest UEFI support mixed-in would also help.

[eric-ch]

The nesting support is dependent on a work-around in this PR. Quoting readme.pdf that @willronchetti added:

The next patch fixes bit rot in the nesting support [...] we would not recommend using it for production as it does not enforce all the isolation requirements.

See also comments inline:

• https://github.com/OpenXT/xenclient-oe/pull/729/files#diff-427ff5e051c148ba91b84a0424bb413dR20
• https://github.com/OpenXT/xenclient-oe/pull/729/files#diff-427ff5e051c148ba91b84a0424bb413dR121

Until a proper fix is available, this is a -1 from me.

@jean-edouard +1 on Splitting the PR to get the guest UEFI support merged independently.

[stacktrust]

What are the test cases for guest UEFI support and nested virt in this PR?

In today's community call, it was stated that new developers would be working on these features. Should we wait for them to submit a new PR?

[openxt-booter]

@eric-ch the fix is already upstream, and I beleive there's a 4.8 backport.

[tklengyel]

This here should be PCI_DEVICE_ID

[tklengyel]

Relevant discussion on xen-devel https://lists.xenproject.org/archives/html/xen-devel/2018-06/msg00379.html

The same conclusion has been reached about this approach I shared during the meeting we had in the fall: "While Secure Boot can be enabled with this implementation, it is not sufficiently secure because the guest is able to write anything it wants to the emulated flash. KVM solved this problem with SMM mode but I don't like that solution either."

[openxt-booter]

The correct solution is to implement efi variable reads and writes with a hypercall. There are only 3 functions. GetNextVariableName only needs 3 arguments, Get and Set both take 5 arguments,
leaving one register for the hypercall number (or you could pass a structure).

Since the interface is not often used, and performance isn't an issue, you could easily
implement this via a v4v connexion (thus requiring no hypervisor modifications).
Guest EFI would have a statically allocated space for a v4v ring, and then the EFI code
on each call would:

1. take a spinlock
2. walk CR3 to find the pfns of the ring
3. bind the ring
4. send a message to dom0 to do the operation
5. poll the ring, in a busyloop calling pause in between
6. read the reply
7. release the ring
8. release the spinlock.

This would be easy to implement, the only subtlety is that the code needs to register
for the Phys->Virt event so it can adjust the pointer to the ring and the spinlock, all
the other allocations can be from the stack.