Re: Proposal: Delegating Exceptions from VS-mode or VU-mode to U-mode


Phil McCoy
 

If I understand correctly, there is a security issue around the URET instruction.  All the controls for URET are accessible from User mode.  This is OK in the scenario you describe where U-Mode is trusted (the U-Mode code is the UART emulation, which is effectively just a privilege-reduced portion of the hypervisor).

There does not appear to be any way for the hypervisor to prevent untrusted user-mode code from URET'ing into any arbitrary location in the virtualized guest (VS/VU) software by programming uepc and ustatus.

Join tech-privileged@lists.riscv.org to automatically receive all group messages.