From nobody Sat Nov 30 12:38:14 2024 Received: from NAM02-DM3-obe.outbound.protection.outlook.com (mail-dm3nam02on2064.outbound.protection.outlook.com [40.107.95.64]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 30F0C13BC35; Wed, 27 Nov 2024 22:56:51 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=fail smtp.client-ip=40.107.95.64 ARC-Seal: i=2; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1732748213; cv=fail; b=qToWJ3Wo3zifHvkNrEXfjFGRqjSqXmcsQSrO/gRz6DSn+XfSyAnuhbIWoaY4u822dab/wMrBkyQjTElNp/XY9ipV/jlyhX5X/vxk+XnRCo2nhuEj1iWksF4ljLXmjuYKFiStt5oqqMzos/JOS4BFeX3i8c8siSaN3kAuhFy5X6I= ARC-Message-Signature: i=2; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1732748213; c=relaxed/simple; bh=xip+nJAoKbEYFWXuVQEWfiZW5IdFYH3aHqOvAp7sAIc=; h=From:To:CC:Subject:Date:Message-ID:In-Reply-To:References: MIME-Version:Content-Type; b=VT/4SB9ZiWcIcfQr7yP4h5R7Yp/AQ7OdZOWjHZcNaGgt5YHO8e2rUdY1OkVymGt+cY6mmLfWRIMV8fOKFSgt9jVB94daGIbxRHSaoc/f9l7Pre9pUYYRxds7/ODNuAnBke4fIgVElDYFui2tsIQyjnzmt8U4qaHRw55xQ9vtrmw= ARC-Authentication-Results: i=2; smtp.subspace.kernel.org; dmarc=pass (p=quarantine dis=none) header.from=amd.com; spf=fail smtp.mailfrom=amd.com; dkim=pass (1024-bit key) header.d=amd.com header.i=@amd.com header.b=xW61D/oo; arc=fail smtp.client-ip=40.107.95.64 Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=quarantine dis=none) header.from=amd.com Authentication-Results: smtp.subspace.kernel.org; spf=fail smtp.mailfrom=amd.com Authentication-Results: smtp.subspace.kernel.org; dkim=pass (1024-bit key) header.d=amd.com header.i=@amd.com header.b="xW61D/oo" ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=mZdQ8A48txSDt+EXFGxHZmdUy08AiV4vusAx8sg0c4xW+3sbqvvLRZTd/oAzPZma7YzuRJ7eW5PlFjlxKCNiV9NkDM+6z6/boMpdgcn2CRC88z+7kMIYT00eKPN2MJSl+d1UQT3cQwHRVwPjlzWqwW6gYpcSRR4LIRENBCeBkx3mjvCYOOapSG/ABt9Aq0Z5nEokt50yRjzOaEwlEh9vDV3zRMIe0IaV+olukM1Ox2ml4ZPvjpfsLpE0Vey9xmE5YPB/xsk/c7Zgrz+JQfganWewVC11ogNRlagrwfVgkqRZRZjE1XcnoimWP9ciFNG8WJ1WblxTfqZqIU7yzdYycA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=f0LH54jEbq2oagAvJ281mIIieXRjTN4sISx9lTdni8Y=; b=wbRFVEsrFYLAjAq65P8eod+xtPlugaFFx7Lp18s7pagjmVb5sf98ownh8bLRJNdtaA7tBUvuyopZ588f9YJZMddyJsObxtfhLs5k8Yj6SjXwf9WKLXJEtv260V0864P96KloccNfdI7YPNM+7a9AA3w0f8gTqiffipY5t66Ao98fyZFYP4f1pYcgv3L9SaSydGvHMKvYBFBGNhMinRThh9N6ImdU3UoDGCyoGVOS6F3YSRhkhhsHsm/yrVAtVeeLyUXZzpCHSu8G5/PyqMC8la7YJYrIBtB5QsSJWI7sHlKbNoXSKdsUGoit43j5VA9q75K/ms6RgoAfJdswBUkPZg== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass (sender ip is 165.204.84.17) smtp.rcpttodomain=vger.kernel.org smtp.mailfrom=amd.com; dmarc=pass (p=quarantine sp=quarantine pct=100) action=none header.from=amd.com; dkim=none (message not signed); arc=none (0) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=amd.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=f0LH54jEbq2oagAvJ281mIIieXRjTN4sISx9lTdni8Y=; b=xW61D/ooRXM6kebZkKVy73qVSV0B5kgHHzVTYCQ3myNFbopJZ+hMTe0dJRvXMIm/DID1P7EdjNHm/IVZkdUfBgi85v6SCAD8an2IlJFAIiirWoNvJK8CsS4cN0IPK8p5QyZAD5QiFUy45z5QzlaHK6zESTZYD5M002Eh32YSCN8= Received: from BN9P223CA0009.NAMP223.PROD.OUTLOOK.COM (2603:10b6:408:10b::14) by PH8PR12MB6964.namprd12.prod.outlook.com (2603:10b6:510:1bf::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8207.13; Wed, 27 Nov 2024 22:56:45 +0000 Received: from BN2PEPF000055DD.namprd21.prod.outlook.com (2603:10b6:408:10b:cafe::10) by BN9P223CA0009.outlook.office365.com (2603:10b6:408:10b::14) with Microsoft SMTP Server (version=TLS1_3, cipher=TLS_AES_256_GCM_SHA384) id 15.20.8207.13 via Frontend Transport; Wed, 27 Nov 2024 22:56:45 +0000 X-MS-Exchange-Authentication-Results: spf=pass (sender IP is 165.204.84.17) smtp.mailfrom=amd.com; dkim=none (message not signed) header.d=none;dmarc=pass action=none header.from=amd.com; Received-SPF: Pass (protection.outlook.com: domain of amd.com designates 165.204.84.17 as permitted sender) receiver=protection.outlook.com; client-ip=165.204.84.17; helo=SATLEXMB04.amd.com; pr=C Received: from SATLEXMB04.amd.com (165.204.84.17) by BN2PEPF000055DD.mail.protection.outlook.com (10.167.245.7) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.20.8230.0 via Frontend Transport; Wed, 27 Nov 2024 22:56:44 +0000 Received: from ruby-9130host.amd.com (10.180.168.240) by SATLEXMB04.amd.com (10.181.40.145) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.39; Wed, 27 Nov 2024 16:56:43 -0600 From: Melody Wang To: , , CC: Sean Christopherson , Paolo Bonzini , Tom Lendacky , "Neeraj Upadhyay" , Ashish Kalra , Michael Roth , Pankaj Gupta , Melody Wang Subject: [PATCH v3 2/7] KVM: SVM: Add support for the SEV-SNP #HV doorbell page NAE event Date: Wed, 27 Nov 2024 22:55:34 +0000 Message-ID: <20241127225539.5567-3-huibo.wang@amd.com> X-Mailer: git-send-email 2.34.1 In-Reply-To: <20241127225539.5567-1-huibo.wang@amd.com> References: <20241127225539.5567-1-huibo.wang@amd.com> Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable X-ClientProxiedBy: SATLEXMB03.amd.com (10.181.40.144) To SATLEXMB04.amd.com (10.181.40.145) X-EOPAttributedMessage: 0 X-MS-PublicTrafficType: Email X-MS-TrafficTypeDiagnostic: BN2PEPF000055DD:EE_|PH8PR12MB6964:EE_ X-MS-Office365-Filtering-Correlation-Id: 2c5a2035-6ce7-4eb0-4cf0-08dd0f36c42e X-MS-Exchange-SenderADCheck: 1 X-MS-Exchange-AntiSpam-Relay: 0 X-Microsoft-Antispam: BCL:0;ARA:13230040|82310400026|36860700013|1800799024|376014; X-Microsoft-Antispam-Message-Info: =?us-ascii?Q?8OFkjUbmDXXP/zCmEAmkabllrcPpdbZZ0wF3W6BvYDG9KrRyqwKYa8vfgKsP?= =?us-ascii?Q?dUk+JPB2XHfzOS09oNyv+o/qj3aHlXjCB3IJuOEOfN1CxMdDmxsLfh+FZBKE?= =?us-ascii?Q?t09HN9FGuJiGO2jB0K8/dSSDen0lUGwIux0dJwJI13RM/f0bnVLogsD73sXo?= =?us-ascii?Q?pZCob3inQseJkozOdvYsQ6pgP1XMbDzQN9oUiOMFAosBvC+ONrGylkK2/2CB?= =?us-ascii?Q?FueE9D/z89HlwhPyg3PtuZQ9qswVnCi8LdAfst0MKmbr2UO6qcwbIXcsFES1?= =?us-ascii?Q?k+wVSJZN2zVaqT9Uzjq68roCKGPeO++yIGaIn93eXdDodiB4mGIZxT/mDTEn?= =?us-ascii?Q?CyfLhudb8QZGdCZbShAG8vDM+rdkEh9fqoiN6BFRJBzUINWja1aW/ID1wF8h?= =?us-ascii?Q?IVEaFUswg0eTzd/c+N7sCjLZ+YJAA0msWaOqKT2HahukHvM+2YU69JDxp3Gv?= =?us-ascii?Q?eOMB9TfLeO8COwS56uXPGSnu2Mf7gxI6OgZAlcKBULEE+HUwqb1DYZjbnoFB?= =?us-ascii?Q?q/olRUioHTMIf4sQX+Mgy+C//QK2H9fA3rA5sCfOEMf7Sn4RLuUkwGLs9wYS?= =?us-ascii?Q?RfKcgxdGBapDE0BXhP+H+llYaC1MjbC8g8H65dJRMOt9OPrhazYL710QhabV?= =?us-ascii?Q?Tsm/uo7+v1Iu3C3xCIn5GehpYOBtSx6sXuObjOJlDIzaeoIPOJavIKatcEtl?= =?us-ascii?Q?3twsAGByvUONekG1nUf4qu1FdGbg7PEg5O+3xPN/QwXDfDW+QTv/9lffisyr?= =?us-ascii?Q?db9AEsKDULGxHDBhdAbIKZ+91C+P61W96gRIjuG/zVcVriBKOIaMJPVykt7h?= =?us-ascii?Q?oB3RlRLrTltU3au+aNUigMVFjhyKcCpME31tqpdpaoNVOHlBsjm1yhGyEUIC?= =?us-ascii?Q?0ocNBUCkXPlJOxbvlEVHdWBcNPFeU/0Y7OT4/65PeYMRglAMO4fA3A8pNhiy?= =?us-ascii?Q?CEqsvLUfWrWNxhwP7lyM/hd0FpI4xRrlXbkVEMiTeZzGj6KAT16wPoDIEeTF?= =?us-ascii?Q?VNZWe6e2g+SNGwyykrdclEr/QiSHEEpx400N17ZE9m60eecO8/AKriuiJ/sA?= =?us-ascii?Q?Fi0XsKACnGmxJz9xr4WLojczmpNFU8HGIyvwcT9oo+iVqiOubUJ4e34wP4QX?= =?us-ascii?Q?R73wAHOjvIPiE5dhv0fXJsdh0khhxZAW14uufAsvZkkAId3HV49oF1GugoWx?= =?us-ascii?Q?mQSQRojN/xbAitfZ7NUPYIfqmXjSoXp6xf9fYn5zf6NiBDxS2BeMta+U3nSg?= =?us-ascii?Q?+VSSM6fUA1XvdCrJju4NY/sYHbRl+a+pu6EZ9FT+LWhBkxydb7s1uNfVkOgh?= =?us-ascii?Q?vQXhVuD+oFPBaA6ETXTksJoP2nWb6Ij2iaqsfs8byLfXXhoVa/GkafpBruC2?= =?us-ascii?Q?a2x25OQABnBv64aTzDuIuYA6Bc9ZIm8Ht7jy16SOUXy68n5WLehCDdJcorpc?= =?us-ascii?Q?Fj+zvp5mQLFZoD4grvvyClXgks74kAm0?= X-Forefront-Antispam-Report: CIP:165.204.84.17;CTRY:US;LANG:en;SCL:1;SRV:;IPV:CAL;SFV:NSPM;H:SATLEXMB04.amd.com;PTR:InfoDomainNonexistent;CAT:NONE;SFS:(13230040)(82310400026)(36860700013)(1800799024)(376014);DIR:OUT;SFP:1101; X-OriginatorOrg: amd.com X-MS-Exchange-CrossTenant-OriginalArrivalTime: 27 Nov 2024 22:56:44.9872 (UTC) X-MS-Exchange-CrossTenant-Network-Message-Id: 2c5a2035-6ce7-4eb0-4cf0-08dd0f36c42e X-MS-Exchange-CrossTenant-Id: 3dd8961f-e488-4e60-8e11-a82d994e183d X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=3dd8961f-e488-4e60-8e11-a82d994e183d;Ip=[165.204.84.17];Helo=[SATLEXMB04.amd.com] X-MS-Exchange-CrossTenant-AuthSource: BN2PEPF000055DD.namprd21.prod.outlook.com X-MS-Exchange-CrossTenant-AuthAs: Anonymous X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem X-MS-Exchange-Transport-CrossTenantHeadersStamped: PH8PR12MB6964 Content-Type: text/plain; charset="utf-8" To support the SEV-SNP Restricted Injection feature, the SEV-SNP guest must register a #HV doorbell page for use with the #HV. The #HV doorbell page NAE event allows the guest to register a #HV doorbell page. The NAE event consists of four actions: GET_PREFERRED, SET, QUERY, CL= EAR. Implement the NAE event as per GHCB specification. Co-developed-by: Thomas Lendacky Signed-off-by: Thomas Lendacky Signed-off-by: Melody Wang --- arch/x86/include/uapi/asm/svm.h | 5 +++ arch/x86/kvm/svm/sev.c | 73 +++++++++++++++++++++++++++++++++ arch/x86/kvm/svm/svm.h | 2 + 3 files changed, 80 insertions(+) diff --git a/arch/x86/include/uapi/asm/svm.h b/arch/x86/include/uapi/asm/sv= m.h index 1814b413fd57..7905c9be44d1 100644 --- a/arch/x86/include/uapi/asm/svm.h +++ b/arch/x86/include/uapi/asm/svm.h @@ -115,6 +115,11 @@ #define SVM_VMGEXIT_AP_CREATE_ON_INIT 0 #define SVM_VMGEXIT_AP_CREATE 1 #define SVM_VMGEXIT_AP_DESTROY 2 +#define SVM_VMGEXIT_HVDB_PAGE 0x80000014 +#define SVM_VMGEXIT_HVDB_GET_PREFERRED 0 +#define SVM_VMGEXIT_HVDB_SET 1 +#define SVM_VMGEXIT_HVDB_QUERY 2 +#define SVM_VMGEXIT_HVDB_CLEAR 3 #define SVM_VMGEXIT_SNP_RUN_VMPL 0x80000018 #define SVM_VMGEXIT_HV_FEATURES 0x8000fffd #define SVM_VMGEXIT_TERM_REQUEST 0x8000fffe diff --git a/arch/x86/kvm/svm/sev.c b/arch/x86/kvm/svm/sev.c index 72674b8825c4..7cd1c0652d15 100644 --- a/arch/x86/kvm/svm/sev.c +++ b/arch/x86/kvm/svm/sev.c @@ -3413,6 +3413,10 @@ static int sev_es_validate_vmgexit(struct vcpu_svm *= svm) control->exit_info_1 =3D=3D control->exit_info_2) goto vmgexit_err; break; + case SVM_VMGEXIT_HVDB_PAGE: + if (!sev_snp_guest(vcpu->kvm)) + goto vmgexit_err; + break; default: reason =3D GHCB_ERR_INVALID_EVENT; goto vmgexit_err; @@ -4129,6 +4133,66 @@ static int snp_handle_ext_guest_req(struct vcpu_svm = *svm, gpa_t req_gpa, gpa_t r return 1; /* resume guest */ } =20 +static int sev_snp_hv_doorbell_page(struct vcpu_svm *svm) +{ + struct kvm_vcpu *vcpu =3D &svm->vcpu; + struct kvm_host_map hvdb_map; + gpa_t hvdb_gpa; + u64 request; + + if (!sev_snp_guest(vcpu->kvm)) + return -EINVAL; + + request =3D svm->vmcb->control.exit_info_1; + hvdb_gpa =3D svm->vmcb->control.exit_info_2; + + switch (request) { + case SVM_VMGEXIT_HVDB_GET_PREFERRED: + ghcb_set_sw_exit_info_2(svm->sev_es.ghcb, ~0ULL); + break; + case SVM_VMGEXIT_HVDB_SET: + svm->sev_es.hvdb_gpa =3D INVALID_PAGE; + + if (!PAGE_ALIGNED(hvdb_gpa)) { + vcpu_unimpl(vcpu, "vmgexit: unaligned #HV doorbell page address [%#llx]= from guest\n", + hvdb_gpa); + return -EINVAL; + } + + if (!page_address_valid(vcpu, hvdb_gpa)) { + vcpu_unimpl(vcpu, "vmgexit: invalid #HV doorbell page address [%#llx] f= rom guest\n", + hvdb_gpa); + return -EINVAL; + } + + /* Map and unmap the GPA just to be sure the GPA is valid */ + if (kvm_vcpu_map(vcpu, gpa_to_gfn(hvdb_gpa), &hvdb_map)) { + /* Unable to map #HV doorbell page from guest */ + vcpu_unimpl(vcpu, "vmgexit: error mapping #HV doorbell page [%#llx] fro= m guest\n", + hvdb_gpa); + return -EINVAL; + } + kvm_vcpu_unmap(vcpu, &hvdb_map); + + svm->sev_es.hvdb_gpa =3D hvdb_gpa; + fallthrough; + case SVM_VMGEXIT_HVDB_QUERY: + ghcb_set_sw_exit_info_2(svm->sev_es.ghcb, svm->sev_es.hvdb_gpa); + break; + case SVM_VMGEXIT_HVDB_CLEAR: + svm->sev_es.hvdb_gpa =3D INVALID_PAGE; + break; + default: + svm->sev_es.hvdb_gpa =3D INVALID_PAGE; + + vcpu_unimpl(vcpu, "vmgexit: invalid #HV doorbell page request [%#llx] fr= om guest\n", + request); + return -EINVAL; + } + + return 0; +} + static int sev_handle_vmgexit_msr_protocol(struct vcpu_svm *svm) { struct vmcb_control_area *control =3D &svm->vmcb->control; @@ -4409,6 +4473,14 @@ int sev_handle_vmgexit(struct kvm_vcpu *vcpu) case SVM_VMGEXIT_EXT_GUEST_REQUEST: ret =3D snp_handle_ext_guest_req(svm, control->exit_info_1, control->exi= t_info_2); break; + case SVM_VMGEXIT_HVDB_PAGE: + if (sev_snp_hv_doorbell_page(svm)) { + ghcb_set_sw_exit_info_1(svm->sev_es.ghcb, 2); + ghcb_set_sw_exit_info_2(svm->sev_es.ghcb, GHCB_ERR_INVALID_INPUT); + } + + ret =3D 1; + break; case SVM_VMGEXIT_UNSUPPORTED_EVENT: vcpu_unimpl(vcpu, "vmgexit: unsupported event - exit_info_1=3D%#llx, exit_info_2=3D%#= llx\n", @@ -4576,6 +4648,7 @@ void sev_es_vcpu_reset(struct vcpu_svm *svm) sev_enc_bit)); =20 mutex_init(&svm->sev_es.snp_vmsa_mutex); + svm->sev_es.hvdb_gpa =3D INVALID_PAGE; } =20 void sev_es_prepare_switch_to_guest(struct vcpu_svm *svm, struct sev_es_sa= ve_area *hostsa) diff --git a/arch/x86/kvm/svm/svm.h b/arch/x86/kvm/svm/svm.h index 43fa6a16eb19..161bd32b87ad 100644 --- a/arch/x86/kvm/svm/svm.h +++ b/arch/x86/kvm/svm/svm.h @@ -239,6 +239,8 @@ struct vcpu_sev_es_state { gpa_t snp_vmsa_gpa; bool snp_ap_waiting_for_reset; bool snp_has_guest_vmsa; + + gpa_t hvdb_gpa; }; =20 struct vcpu_svm { --=20 2.34.1