Merge tag 'for-linus-5.6-rc1-tag' of git://git.kernel.org/pub/scm/linux/kernel/git...

[linux.git] / arch / x86 / kvm / svm.c

diff --git a/arch/x86/kvm/svm.c b/arch/x86/kvm/svm.c
index d399eb7bbff3eb0b22e271042ec7b72ee72e1310..9dbb990c319a7abfa32752a7506a55e681c02290 100644 (file)
--- a/arch/x86/kvm/svm.c
+++ b/arch/x86/kvm/svm.c
@@ -1307,6 +1307,47 @@ static void shrink_ple_window(struct kvm_vcpu *vcpu)
        }
 }
 
+/*
+ * The default MMIO mask is a single bit (excluding the present bit),
+ * which could conflict with the memory encryption bit. Check for
+ * memory encryption support and override the default MMIO mask if
+ * memory encryption is enabled.
+ */
+static __init void svm_adjust_mmio_mask(void)
+{
+       unsigned int enc_bit, mask_bit;
+       u64 msr, mask;
+
+       /* If there is no memory encryption support, use existing mask */
+       if (cpuid_eax(0x80000000) < 0x8000001f)
+               return;
+
+       /* If memory encryption is not enabled, use existing mask */
+       rdmsrl(MSR_K8_SYSCFG, msr);
+       if (!(msr & MSR_K8_SYSCFG_MEM_ENCRYPT))
+               return;
+
+       enc_bit = cpuid_ebx(0x8000001f) & 0x3f;
+       mask_bit = boot_cpu_data.x86_phys_bits;
+
+       /* Increment the mask bit if it is the same as the encryption bit */
+       if (enc_bit == mask_bit)
+               mask_bit++;
+
+       /*
+        * If the mask bit location is below 52, then some bits above the
+        * physical addressing limit will always be reserved, so use the
+        * rsvd_bits() function to generate the mask. This mask, along with
+        * the present bit, will be used to generate a page fault with
+        * PFER.RSV = 1.
+        *
+        * If the mask bit location is 52 (or above), then clear the mask.
+        */
+       mask = (mask_bit < 52) ? rsvd_bits(mask_bit, 51) | PT_PRESENT_MASK : 0;
+
+       kvm_mmu_set_mmio_spte_mask(mask, mask, PT_WRITABLE_MASK | PT_USER_MASK);
+}
+
 static __init int svm_hardware_setup(void)
 {
        int cpu;
@@ -1361,6 +1402,8 @@ static __init int svm_hardware_setup(void)
                }
        }
 
+       svm_adjust_mmio_mask();
+
        for_each_possible_cpu(cpu) {
                r = svm_cpu_init(cpu);
                if (r)
@@ -2144,7 +2187,7 @@ static int avic_init_vcpu(struct vcpu_svm *svm)
        return ret;
 }
 
-static struct kvm_vcpu *svm_create_vcpu(struct kvm *kvm, unsigned int id)
+static int svm_create_vcpu(struct kvm_vcpu *vcpu)
 {
        struct vcpu_svm *svm;
        struct page *page;
@@ -2153,39 +2196,13 @@ static struct kvm_vcpu *svm_create_vcpu(struct kvm *kvm, unsigned int id)
        struct page *nested_msrpm_pages;
        int err;
 
-       BUILD_BUG_ON_MSG(offsetof(struct vcpu_svm, vcpu) != 0,
-               "struct kvm_vcpu must be at offset 0 for arch usercopy region");
-
-       svm = kmem_cache_zalloc(kvm_vcpu_cache, GFP_KERNEL_ACCOUNT);
-       if (!svm) {
-               err = -ENOMEM;
-               goto out;
-       }
-
-       svm->vcpu.arch.user_fpu = kmem_cache_zalloc(x86_fpu_cache,
-                                                    GFP_KERNEL_ACCOUNT);
-       if (!svm->vcpu.arch.user_fpu) {
-               printk(KERN_ERR "kvm: failed to allocate kvm userspace's fpu\n");
-               err = -ENOMEM;
-               goto free_partial_svm;
-       }
-
-       svm->vcpu.arch.guest_fpu = kmem_cache_zalloc(x86_fpu_cache,
-                                                    GFP_KERNEL_ACCOUNT);
-       if (!svm->vcpu.arch.guest_fpu) {
-               printk(KERN_ERR "kvm: failed to allocate vcpu's fpu\n");
-               err = -ENOMEM;
-               goto free_user_fpu;
-       }
-
-       err = kvm_vcpu_init(&svm->vcpu, kvm, id);
-       if (err)
-               goto free_svm;
+       BUILD_BUG_ON(offsetof(struct vcpu_svm, vcpu) != 0);
+       svm = to_svm(vcpu);
 
        err = -ENOMEM;
        page = alloc_page(GFP_KERNEL_ACCOUNT);
        if (!page)
-               goto uninit;
+               goto out;
 
        msrpm_pages = alloc_pages(GFP_KERNEL_ACCOUNT, MSRPM_ALLOC_ORDER);
        if (!msrpm_pages)
@@ -2222,9 +2239,9 @@ static struct kvm_vcpu *svm_create_vcpu(struct kvm *kvm, unsigned int id)
        svm->asid_generation = 0;
        init_vmcb(svm);
 
-       svm_init_osvw(&svm->vcpu);
+       svm_init_osvw(vcpu);
 
-       return &svm->vcpu;
+       return 0;
 
 free_page4:
        __free_page(hsave_page);
@@ -2234,16 +2251,8 @@ static struct kvm_vcpu *svm_create_vcpu(struct kvm *kvm, unsigned int id)
        __free_pages(msrpm_pages, MSRPM_ALLOC_ORDER);
 free_page1:
        __free_page(page);
-uninit:
-       kvm_vcpu_uninit(&svm->vcpu);
-free_svm:
-       kmem_cache_free(x86_fpu_cache, svm->vcpu.arch.guest_fpu);
-free_user_fpu:
-       kmem_cache_free(x86_fpu_cache, svm->vcpu.arch.user_fpu);
-free_partial_svm:
-       kmem_cache_free(kvm_vcpu_cache, svm);
 out:
-       return ERR_PTR(err);
+       return err;
 }
 
 static void svm_clear_current_vmcb(struct vmcb *vmcb)
@@ -2269,10 +2278,6 @@ static void svm_free_vcpu(struct kvm_vcpu *vcpu)
        __free_pages(virt_to_page(svm->msrpm), MSRPM_ALLOC_ORDER);
        __free_page(virt_to_page(svm->nested.hsave));
        __free_pages(virt_to_page(svm->nested.msrpm), MSRPM_ALLOC_ORDER);
-       kvm_vcpu_uninit(vcpu);
-       kmem_cache_free(x86_fpu_cache, svm->vcpu.arch.user_fpu);
-       kmem_cache_free(x86_fpu_cache, svm->vcpu.arch.guest_fpu);
-       kmem_cache_free(kvm_vcpu_cache, svm);
 }
 
 static void svm_vcpu_load(struct kvm_vcpu *vcpu, int cpu)
@@ -4281,12 +4286,10 @@ static int svm_set_msr(struct kvm_vcpu *vcpu, struct msr_data *msr)
                    !guest_cpuid_has(vcpu, X86_FEATURE_AMD_SSBD))
                        return 1;
 
-               /* The STIBP bit doesn't fault even if it's not advertised */
-               if (data & ~(SPEC_CTRL_IBRS | SPEC_CTRL_STIBP | SPEC_CTRL_SSBD))
+               if (data & ~kvm_spec_ctrl_valid_bits(vcpu))
                        return 1;
 
                svm->spec_ctrl = data;
-
                if (!data)
                        break;
 
@@ -4310,13 +4313,12 @@ static int svm_set_msr(struct kvm_vcpu *vcpu, struct msr_data *msr)
 
                if (data & ~PRED_CMD_IBPB)
                        return 1;
-
+               if (!boot_cpu_has(X86_FEATURE_AMD_IBPB))
+                       return 1;
                if (!data)
                        break;
 
                wrmsrl(MSR_IA32_PRED_CMD, PRED_CMD_IBPB);
-               if (is_guest_mode(vcpu))
-                       break;
                set_msr_interception(svm->msrpm, MSR_IA32_PRED_CMD, 0, 1);
                break;
        case MSR_AMD64_VIRT_SPEC_CTRL:
@@ -5929,14 +5931,14 @@ static void svm_cpuid_update(struct kvm_vcpu *vcpu)
        guest_cpuid_clear(vcpu, X86_FEATURE_X2APIC);
 }
 
-#define F(x) bit(X86_FEATURE_##x)
+#define F feature_bit
 
 static void svm_set_supported_cpuid(u32 func, struct kvm_cpuid_entry2 *entry)
 {
        switch (func) {
        case 0x1:
                if (avic)
-                       entry->ecx &= ~bit(X86_FEATURE_X2APIC);
+                       entry->ecx &= ~F(X2APIC);
                break;
        case 0x80000001:
                if (nested)
@@ -6006,6 +6008,11 @@ static bool svm_has_wbinvd_exit(void)
        return true;
 }
 
+static bool svm_pku_supported(void)
+{
+       return false;
+}
+
 #define PRE_EX(exit)  { .exit_code = (exit), \
                        .stage = X86_ICPT_PRE_EXCEPT, }
 #define POST_EX(exit) { .exit_code = (exit), \
@@ -7349,6 +7356,7 @@ static struct kvm_x86_ops svm_x86_ops __ro_after_init = {
        .xsaves_supported = svm_xsaves_supported,
        .umip_emulated = svm_umip_emulated,
        .pt_supported = svm_pt_supported,
+       .pku_supported = svm_pku_supported,
 
        .set_supported_cpuid = svm_set_supported_cpuid,