[v2,10/28] KVM: x86/mmu: Fix TDP MMU zap collapsible SPTEs

Message ID	20210202185734.1680553-11-bgardon@google.com (mailing list archive)
State	New, archived
Headers	show Return-Path: <kvm-owner@kernel.org> Sender: "bgardon via sendgmr" <bgardon@bgardon.sea.corp.google.com> Date: Tue, 2 Feb 2021 10:57:16 -0800 In-Reply-To: <20210202185734.1680553-1-bgardon@google.com> Message-Id: <20210202185734.1680553-11-bgardon@google.com> Mime-Version: 1.0 References: <20210202185734.1680553-1-bgardon@google.com> Subject: [PATCH v2 10/28] KVM: x86/mmu: Fix TDP MMU zap collapsible SPTEs From: Ben Gardon <bgardon@google.com> To: linux-kernel@vger.kernel.org, kvm@vger.kernel.org Cc: Paolo Bonzini <pbonzini@redhat.com>, Peter Xu <peterx@redhat.com>, Sean Christopherson <seanjc@google.com>, Peter Shier <pshier@google.com>, Peter Feiner <pfeiner@google.com>, Junaid Shahid <junaids@google.com>, Jim Mattson <jmattson@google.com>, Yulei Zhang <yulei.kernel@gmail.com>, Wanpeng Li <kernellwp@gmail.com>, Vitaly Kuznetsov <vkuznets@redhat.com>, Xiao Guangrong <xiaoguangrong.eric@gmail.com>, Ben Gardon <bgardon@google.com> Content-Type: text/plain; charset="UTF-8" Precedence: bulk
Series	Allow parallel MMU operations with TDP MMU \| expand [v2,00/28] Allow parallel MMU operations with TDP MMU [v2,01/28] KVM: x86/mmu: change TDP MMU yield function returns to match cond_resched [v2,02/28] KVM: x86/mmu: Add comment on __tdp_mmu_set_spte [v2,03/28] KVM: x86/mmu: Add lockdep when setting a TDP MMU SPTE [v2,04/28] KVM: x86/mmu: Don't redundantly clear TDP MMU pt memory [v2,05/28] KVM: x86/mmu: Factor out handling of removed page tables [v2,06/28] locking/rwlocks: Add contention detection for rwlocks [v2,07/28] sched: Add needbreak for rwlocks [v2,08/28] sched: Add cond_resched_rwlock [v2,09/28] KVM: x86/mmu: Fix braces in kvm_recover_nx_lpages [v2,10/28] KVM: x86/mmu: Fix TDP MMU zap collapsible SPTEs [v2,11/28] KVM: x86/mmu: Merge flush and non-flush tdp_mmu_iter_cond_resched [v2,12/28] KVM: x86/mmu: Rename goal_gfn to next_last_level_gfn [v2,13/28] KVM: x86/mmu: Ensure forward progress when yielding in TDP MMU iter [v2,14/28] KVM: x86/mmu: Yield in TDU MMU iter even if no SPTES changed [v2,15/28] KVM: x86/mmu: Skip no-op changes in TDP MMU functions [v2,16/28] KVM: x86/mmu: Clear dirtied pages mask bit before early break [v2,17/28] KVM: x86/mmu: Protect TDP MMU page table memory with RCU [v2,18/28] KVM: x86/mmu: Use an rwlock for the x86 MMU [v2,19/28] KVM: x86/mmu: Factor out functions to add/remove TDP MMU pages [v2,20/28] KVM: x86/mmu: Use atomic ops to set SPTEs in TDP MMU map [v2,21/28] KVM: x86/mmu: Flush TLBs after zap in TDP MMU PF handler [v2,22/28] KVM: x86/mmu: Mark SPTEs in disconnected pages as removed [v2,23/28] KVM: x86/mmu: Allow parallel page faults for the TDP MMU [v2,24/28] KVM: x86/mmu: Allow zap gfn range to operate under the mmu read lock [v2,25/28] KVM: x86/mmu: Allow zapping collapsible SPTEs to use MMU read lock [v2,26/28] KVM: x86/mmu: Allow enabling / disabling dirty logging under MMU read lock [v2,27/28] KVM: selftests: Add backing src parameter to dirty_log_perf_test [v2,28/28] KVM: selftests: Disable dirty logging with vCPUs running

Message ID

20210202185734.1680553-11-bgardon@google.com (mailing list archive)

State

New, archived

Headers

Sender: "bgardon via sendgmr" <bgardon@bgardon.sea.corp.google.com>
Date: Tue,  2 Feb 2021 10:57:16 -0800
In-Reply-To: <20210202185734.1680553-1-bgardon@google.com>
Message-Id: <20210202185734.1680553-11-bgardon@google.com>
Mime-Version: 1.0
References: <20210202185734.1680553-1-bgardon@google.com>
Subject: [PATCH v2 10/28] KVM: x86/mmu: Fix TDP MMU zap collapsible SPTEs
From: Ben Gardon <bgardon@google.com>
To: linux-kernel@vger.kernel.org, kvm@vger.kernel.org
Cc: Paolo Bonzini <pbonzini@redhat.com>, Peter Xu <peterx@redhat.com>,
        Sean Christopherson <seanjc@google.com>,
        Peter Shier <pshier@google.com>,
        Peter Feiner <pfeiner@google.com>,
        Junaid Shahid <junaids@google.com>,
        Jim Mattson <jmattson@google.com>,
        Yulei Zhang <yulei.kernel@gmail.com>,
        Wanpeng Li <kernellwp@gmail.com>,
        Vitaly Kuznetsov <vkuznets@redhat.com>,
        Xiao Guangrong <xiaoguangrong.eric@gmail.com>,
        Ben Gardon <bgardon@google.com>
Content-Type: text/plain; charset="UTF-8"
Precedence: bulk

Series

Allow parallel MMU operations with TDP MMU | expand

Commit Message

Ben Gardon Feb. 2, 2021, 6:57 p.m. UTC

There is a bug in the TDP MMU function to zap SPTEs which could be
replaced with a larger mapping which prevents the function from doing
anything. Fix this by correctly zapping the last level SPTEs.

Fixes: 14881998566d ("kvm: x86/mmu: Support disabling dirty logging for the tdp MMU")
Signed-off-by: Ben Gardon <bgardon@google.com>
---
 arch/x86/kvm/mmu/tdp_mmu.c | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

Comments

Paolo Bonzini Feb. 3, 2021, 9:43 a.m. UTC | #1

On 02/02/21 19:57, Ben Gardon wrote:
> There is a bug in the TDP MMU function to zap SPTEs which could be
> replaced with a larger mapping which prevents the function from doing
> anything. Fix this by correctly zapping the last level SPTEs.
> 
> Fixes: 14881998566d ("kvm: x86/mmu: Support disabling dirty logging for the tdp MMU")
> Signed-off-by: Ben Gardon <bgardon@google.com>
> ---
>   arch/x86/kvm/mmu/tdp_mmu.c | 6 +++---
>   1 file changed, 3 insertions(+), 3 deletions(-)
> 
> diff --git a/arch/x86/kvm/mmu/tdp_mmu.c b/arch/x86/kvm/mmu/tdp_mmu.c
> index c3075fb568eb..e3066d08c1dc 100644
> --- a/arch/x86/kvm/mmu/tdp_mmu.c
> +++ b/arch/x86/kvm/mmu/tdp_mmu.c
> @@ -1098,8 +1098,8 @@ bool kvm_tdp_mmu_slot_set_dirty(struct kvm *kvm, struct kvm_memory_slot *slot)
>   }
>   
>   /*
> - * Clear non-leaf entries (and free associated page tables) which could
> - * be replaced by large mappings, for GFNs within the slot.
> + * Clear leaf entries which could be replaced by large mappings, for
> + * GFNs within the slot.
>    */
>   static void zap_collapsible_spte_range(struct kvm *kvm,
>   				       struct kvm_mmu_page *root,
> @@ -1111,7 +1111,7 @@ static void zap_collapsible_spte_range(struct kvm *kvm,
>   
>   	tdp_root_for_each_pte(iter, root, start, end) {
>   		if (!is_shadow_present_pte(iter.old_spte) ||
> -		    is_last_spte(iter.old_spte, iter.level))
> +		    !is_last_spte(iter.old_spte, iter.level))
>   			continue;
>   
>   		pfn = spte_to_pfn(iter.old_spte);
> 

Queued for 5.11-rc, thanks.

Paolo

diff --git a/arch/x86/kvm/mmu/tdp_mmu.c b/arch/x86/kvm/mmu/tdp_mmu.c
index c3075fb568eb..e3066d08c1dc 100644
--- a/arch/x86/kvm/mmu/tdp_mmu.c
+++ b/arch/x86/kvm/mmu/tdp_mmu.c
@@ -1098,8 +1098,8 @@  bool kvm_tdp_mmu_slot_set_dirty(struct kvm *kvm, struct kvm_memory_slot *slot)
 }
 
 /*
- * Clear non-leaf entries (and free associated page tables) which could
- * be replaced by large mappings, for GFNs within the slot.
+ * Clear leaf entries which could be replaced by large mappings, for
+ * GFNs within the slot.
  */
 static void zap_collapsible_spte_range(struct kvm *kvm,
 				       struct kvm_mmu_page *root,
@@ -1111,7 +1111,7 @@  static void zap_collapsible_spte_range(struct kvm *kvm,
 
 	tdp_root_for_each_pte(iter, root, start, end) {
 		if (!is_shadow_present_pte(iter.old_spte) ||
-		    is_last_spte(iter.old_spte, iter.level))
+		    !is_last_spte(iter.old_spte, iter.level))
 			continue;
 
 		pfn = spte_to_pfn(iter.old_spte);

[v2,10/28] KVM: x86/mmu: Fix TDP MMU zap collapsible SPTEs

Commit Message

Comments

Patch