From nobody Sat Feb  7 17:09:44 2026
Received: from mail-pj1-f74.google.com (mail-pj1-f74.google.com
 [209.85.216.74])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 8A8B51865FA
	for <linux-kernel@vger.kernel.org>; Sat, 26 Apr 2025 00:10:59 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.216.74
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1745626261; cv=none;
 b=iYvb1vPX+93L8pnLrYnHHJWcicTnWeqH41CmMzIkaFCNl/G3WPC2iqun/JGa1kVnki8sR1i3nFMK/Uf6R92Pe2sC4/ezPiPVEK3b/RslFkmpOP7yE344seXlMm3+LxXCadRkIz5D6Sf8wksQi1uPNydo5X5xgQls6SW3WTZBUgk=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1745626261; c=relaxed/simple;
	bh=Avelv97rIb7+XDqbtGCU1l8O1wt5sW1oyTruiq/tt3E=;
	h=Date:Mime-Version:Message-ID:Subject:From:To:Cc:Content-Type;
 b=T+waUtQdLTdC9pTKnecViUocYzihEr13G/Of6aOPHYV2IIl5lMpciOCGbQM1v4PlxUz3A8LSl9/piLzNU3QeAavnVWB5cuG8gEKohpRBYmT5gPmzSoC5YWCxk6WlPmMN033wSVY/mcIK4NqZs7QoTlv8j2VrhJi9wIFEWIfJ3sQ=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com;
 dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b=rv/fpouL; arc=none smtp.client-ip=209.85.216.74
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b="rv/fpouL"
Received: by mail-pj1-f74.google.com with SMTP id
 98e67ed59e1d1-3086107d023so2552205a91.2
        for <linux-kernel@vger.kernel.org>;
 Fri, 25 Apr 2025 17:10:59 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20230601; t=1745626259; x=1746231059;
 darn=vger.kernel.org;
        h=cc:to:from:subject:message-id:mime-version:date:reply-to:from:to:cc
         :subject:date:message-id:reply-to;
        bh=Nl6mE3UI0wvrR40I9/vu5uuYJQkYp5pTF9U7DAxBDpI=;
        b=rv/fpouLK8aPcy35oZvVI/63bKIFzCgFdvxXaqJ0A6T4NuXk37urYigi50JZ2eqEFD
         MTnrMHpzvSG0UZ4slro0ntVD+Zhf1pDP75xm8s2DDIf3VdVkcvSTdkov0kX9Afk255k6
         Ul2Hba9FJH7bi9RzK5XzB7H46nwtmEEJ81aGbOg4CeBtak1jkQ6lGse/ZJ+ts20Oiu6t
         UdpjJHF1dLPFFcE+F/U5Q/olMDuXkOJfhUwPaSPXYXzHKJXQdUOM2Vc9smgbtmjE3zpj
         TAgUFZzYtdnZMwGH4D94bqJ1+EF9vaHwSrxBhmPZUmWyrH+CgaqMyW9z50b+9cYeL9MN
         vQ8Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1745626259; x=1746231059;
        h=cc:to:from:subject:message-id:mime-version:date:reply-to
         :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;
        bh=Nl6mE3UI0wvrR40I9/vu5uuYJQkYp5pTF9U7DAxBDpI=;
        b=RdSCd2FkT7B0b81nJ1KmGh24OzPMW2h485KVpOlFfsni76pDNd5MzDNbY5QTWB633X
         aeNhIundbAwFyyY2pKlZCw4HEVJBqqsb82SFLXDCKRdpb/UA5Lyv/TysiLnfh5avIfYd
         RHyZJBcq+jVw+KNIjLXXVyorMeX8cOL6JAzeDbSst+DDxYB11J+i3V2hBR13ceRPMBZi
         2EuyUK9IRq7AEFSbcdYneuwielZ3GiqWPNB6TLFYvQfJEBug6wT2OUmD60ebPOdsW0yO
         sZYquJ3ghSQrh8TlqnTp5fbwARElcO+I6XQtVB/VIQzU7K1BfFEWSUlhVwP0qISXlOaF
         JuhQ==
X-Forwarded-Encrypted: i=1;
 AJvYcCVrqpSKHmmR95DexuY1tQcUx/R0DbbvDnK6y+y69Xj0N7Oe2rbK/yK+uzZNxP2dgFexoPemOlRbR+/2tnk=@vger.kernel.org
X-Gm-Message-State: AOJu0YzMWfYyax2wUDPINLVBo/G/04Rcf7xqoT7sa6w6xLjJ3LK1bq9Q
	1id1lc3W3ogq/neJfXOsbcJ7iuukMynjs/XZF3UUURBcNDjz1prPEu9wi1XfDV6cbQh1PiKrarU
	9tQ==
X-Google-Smtp-Source: 
 AGHT+IHfbQHFbqz93GMMPMKs0cmOBBcFd1R66lZeP3m1CeHDWsS397BMJ08LGsYc/3f1gB8dcpav34eDBso=
X-Received: from pjbsm11.prod.google.com
 ([2002:a17:90b:2e4b:b0:301:2a0f:b03d])
 (user=seanjc job=prod-delivery.src-stubby-dispatcher) by
 2002:a17:90b:2dcd:b0:2fe:99cf:f566
 with SMTP id 98e67ed59e1d1-309f7dde70emr5977861a91.13.1745626258881; Fri, 25
 Apr 2025 17:10:58 -0700 (PDT)
Reply-To: Sean Christopherson <seanjc@google.com>
Date: Fri, 25 Apr 2025 17:10:56 -0700
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
Mime-Version: 1.0
X-Mailer: git-send-email 2.49.0.850.g28803427d3-goog
Message-ID: <20250426001056.1025157-1-seanjc@google.com>
Subject: [PATCH] KVM: x86/mmu: Prevent installing hugepages when mem
 attributes are changing
From: Sean Christopherson <seanjc@google.com>
To: Sean Christopherson <seanjc@google.com>,
 Paolo Bonzini <pbonzini@redhat.com>
Cc: kvm@vger.kernel.org, linux-kernel@vger.kernel.org,
	Michael Roth <michael.roth@amd.com>
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

When changing memory attributes on a subset of a potential hugepage, add
the hugepage to the invalidation range tracking to prevent installing a
hugepage until the attributes are fully updated.  Like the actual hugepage
tracking updates in kvm_arch_post_set_memory_attributes(), process only
the head and tail pages, as any potential hugepages that are entirely
covered by the range will already be tracked.

Note, only hugepage chunks whose current attributes are NOT mixed need to
be added to the invalidation set, as mixed attributes already prevent
installing a hugepage, and it's perfectly safe to install a smaller
mapping for a gfn whose attributes aren't changing.

Fixes: 8dd2eee9d526 ("KVM: x86/mmu: Handle page fault for private memory")
Cc: stable@vger.kernel.org
Reported-by: Michael Roth <michael.roth@amd.com>
Tested-by: Michael Roth <michael.roth@amd.com>
Signed-off-by: Sean Christopherson <seanjc@google.com>
---
 arch/x86/kvm/mmu/mmu.c | 68 ++++++++++++++++++++++++++++++++----------
 1 file changed, 52 insertions(+), 16 deletions(-)

diff --git a/arch/x86/kvm/mmu/mmu.c b/arch/x86/kvm/mmu/mmu.c
index 63bb77ee1bb1..218ba866a40e 100644
--- a/arch/x86/kvm/mmu/mmu.c
+++ b/arch/x86/kvm/mmu/mmu.c
@@ -7669,9 +7669,30 @@ void kvm_mmu_pre_destroy_vm(struct kvm *kvm)
 }
=20
 #ifdef CONFIG_KVM_GENERIC_MEMORY_ATTRIBUTES
+static bool hugepage_test_mixed(struct kvm_memory_slot *slot, gfn_t gfn,
+				int level)
+{
+	return lpage_info_slot(gfn, slot, level)->disallow_lpage & KVM_LPAGE_MIXE=
D_FLAG;
+}
+
+static void hugepage_clear_mixed(struct kvm_memory_slot *slot, gfn_t gfn,
+				 int level)
+{
+	lpage_info_slot(gfn, slot, level)->disallow_lpage &=3D ~KVM_LPAGE_MIXED_F=
LAG;
+}
+
+static void hugepage_set_mixed(struct kvm_memory_slot *slot, gfn_t gfn,
+			       int level)
+{
+	lpage_info_slot(gfn, slot, level)->disallow_lpage |=3D KVM_LPAGE_MIXED_FL=
AG;
+}
+
 bool kvm_arch_pre_set_memory_attributes(struct kvm *kvm,
 					struct kvm_gfn_range *range)
 {
+	struct kvm_memory_slot *slot =3D range->slot;
+	int level;
+
 	/*
 	 * Zap SPTEs even if the slot can't be mapped PRIVATE.  KVM x86 only
 	 * supports KVM_MEMORY_ATTRIBUTE_PRIVATE, and so it *seems* like KVM
@@ -7686,6 +7707,37 @@ bool kvm_arch_pre_set_memory_attributes(struct kvm *=
kvm,
 	if (WARN_ON_ONCE(!kvm_arch_has_private_mem(kvm)))
 		return false;
=20
+	if (WARN_ON_ONCE(range->end <=3D range->start))
+		return false;
+
+	/*
+	 * If the head and tail pages of the range currently allow a hugepage,
+	 * i.e. reside fully in the slot and don't have mixed attributes, then
+	 * add each corresponding hugepage range to the ongoing invalidation,
+	 * e.g. to prevent KVM from creating a hugepage in response to a fault
+	 * for a gfn whose attributes aren't changing.  Note, only the range
+	 * of gfns whose attributes are being modified needs to be explicitly
+	 * unmapped, as that will unmap any existing hugepages.
+	 */
+	for (level =3D PG_LEVEL_2M; level <=3D KVM_MAX_HUGEPAGE_LEVEL; level++) {
+		gfn_t start =3D gfn_round_for_level(range->start, level);
+		gfn_t end =3D gfn_round_for_level(range->end - 1, level);
+		gfn_t nr_pages =3D KVM_PAGES_PER_HPAGE(level);
+
+		if ((start !=3D range->start || start + nr_pages > range->end) &&
+		    start >=3D slot->base_gfn &&
+		    start + nr_pages <=3D slot->base_gfn + slot->npages &&
+		    !hugepage_test_mixed(slot, start, level))
+			kvm_mmu_invalidate_range_add(kvm, start, start + nr_pages);
+
+		if (end =3D=3D start)
+			continue;
+
+		if ((end + nr_pages) <=3D (slot->base_gfn + slot->npages) &&
+		    !hugepage_test_mixed(slot, end, level))
+			kvm_mmu_invalidate_range_add(kvm, end, end + nr_pages);
+	}
+
 	/* Unmap the old attribute page. */
 	if (range->arg.attributes & KVM_MEMORY_ATTRIBUTE_PRIVATE)
 		range->attr_filter =3D KVM_FILTER_SHARED;
@@ -7695,23 +7747,7 @@ bool kvm_arch_pre_set_memory_attributes(struct kvm *=
kvm,
 	return kvm_unmap_gfn_range(kvm, range);
 }
=20
-static bool hugepage_test_mixed(struct kvm_memory_slot *slot, gfn_t gfn,
-				int level)
-{
-	return lpage_info_slot(gfn, slot, level)->disallow_lpage & KVM_LPAGE_MIXE=
D_FLAG;
-}
=20
-static void hugepage_clear_mixed(struct kvm_memory_slot *slot, gfn_t gfn,
-				 int level)
-{
-	lpage_info_slot(gfn, slot, level)->disallow_lpage &=3D ~KVM_LPAGE_MIXED_F=
LAG;
-}
-
-static void hugepage_set_mixed(struct kvm_memory_slot *slot, gfn_t gfn,
-			       int level)
-{
-	lpage_info_slot(gfn, slot, level)->disallow_lpage |=3D KVM_LPAGE_MIXED_FL=
AG;
-}
=20
 static bool hugepage_has_attrs(struct kvm *kvm, struct kvm_memory_slot *sl=
ot,
 			       gfn_t gfn, int level, unsigned long attrs)

base-commit: 2d7124941a273c7233849a7a2bbfbeb7e28f1caa
--=20
2.49.0.850.g28803427d3-goog