[RFC,v1,17/26] KVM: arm64: Do not allow changes to private memory slots

Date: Thu, 22 Feb 2024 16:10:38 +0000
In-Reply-To: <20240222161047.402609-1-tabba@google.com>
Precedence: bulk
Mime-Version: 1.0
References: <20240222161047.402609-1-tabba@google.com>
Message-ID: <20240222161047.402609-18-tabba@google.com>
Subject: [RFC PATCH v1 17/26] KVM: arm64: Do not allow changes to private
 memory slots
From: Fuad Tabba <tabba@google.com>
To: kvm@vger.kernel.org, kvmarm@lists.linux.dev
Cc: pbonzini@redhat.com, chenhuacai@kernel.org, mpe@ellerman.id.au,
	anup@brainfault.org, paul.walmsley@sifive.com, palmer@dabbelt.com,
	aou@eecs.berkeley.edu, seanjc@google.com, viro@zeniv.linux.org.uk,
	brauner@kernel.org, willy@infradead.org, akpm@linux-foundation.org,
	xiaoyao.li@intel.com, yilun.xu@intel.com, chao.p.peng@linux.intel.com,
	jarkko@kernel.org, amoorthy@google.com, dmatlack@google.com,
	yu.c.zhang@linux.intel.com, isaku.yamahata@intel.com, mic@digikod.net,
	vbabka@suse.cz, vannapurve@google.com, ackerleytng@google.com,
	mail@maciej.szmigiero.name, david@redhat.com, michael.roth@amd.com,
	wei.w.wang@intel.com, liam.merwick@oracle.com, isaku.yamahata@gmail.com,
	kirill.shutemov@linux.intel.com, suzuki.poulose@arm.com,
 steven.price@arm.com,
	quic_eberman@quicinc.com, quic_mnalajal@quicinc.com, quic_tsoni@quicinc.com,
	quic_svaddagi@quicinc.com, quic_cvanscha@quicinc.com,
	quic_pderrin@quicinc.com, quic_pheragu@quicinc.com, catalin.marinas@arm.com,
	james.morse@arm.com, yuzenghui@huawei.com, oliver.upton@linux.dev,
	maz@kernel.org, will@kernel.org, qperret@google.com, keirf@google.com,
	tabba@google.com
Content-Type: text/plain; charset="UTF-8"

Message ID	20240222161047.402609-18-tabba@google.com (mailing list archive)
State	New, archived
Headers	show Received: from mail-wr1-f74.google.com (mail-wr1-f74.google.com [209.85.221.74]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id B7240155306 for <kvm@vger.kernel.org>; Thu, 22 Feb 2024 16:11:32 +0000 (UTC) Date: Thu, 22 Feb 2024 16:10:38 +0000 In-Reply-To: <20240222161047.402609-1-tabba@google.com> Precedence: bulk Mime-Version: 1.0 References: <20240222161047.402609-1-tabba@google.com> Message-ID: <20240222161047.402609-18-tabba@google.com> Subject: [RFC PATCH v1 17/26] KVM: arm64: Do not allow changes to private memory slots From: Fuad Tabba <tabba@google.com> To: kvm@vger.kernel.org, kvmarm@lists.linux.dev Cc: pbonzini@redhat.com, chenhuacai@kernel.org, mpe@ellerman.id.au, anup@brainfault.org, paul.walmsley@sifive.com, palmer@dabbelt.com, aou@eecs.berkeley.edu, seanjc@google.com, viro@zeniv.linux.org.uk, brauner@kernel.org, willy@infradead.org, akpm@linux-foundation.org, xiaoyao.li@intel.com, yilun.xu@intel.com, chao.p.peng@linux.intel.com, jarkko@kernel.org, amoorthy@google.com, dmatlack@google.com, yu.c.zhang@linux.intel.com, isaku.yamahata@intel.com, mic@digikod.net, vbabka@suse.cz, vannapurve@google.com, ackerleytng@google.com, mail@maciej.szmigiero.name, david@redhat.com, michael.roth@amd.com, wei.w.wang@intel.com, liam.merwick@oracle.com, isaku.yamahata@gmail.com, kirill.shutemov@linux.intel.com, suzuki.poulose@arm.com, steven.price@arm.com, quic_eberman@quicinc.com, quic_mnalajal@quicinc.com, quic_tsoni@quicinc.com, quic_svaddagi@quicinc.com, quic_cvanscha@quicinc.com, quic_pderrin@quicinc.com, quic_pheragu@quicinc.com, catalin.marinas@arm.com, james.morse@arm.com, yuzenghui@huawei.com, oliver.upton@linux.dev, maz@kernel.org, will@kernel.org, qperret@google.com, keirf@google.com, tabba@google.com Content-Type: text/plain; charset="UTF-8"
Series	KVM: Restricted mapping of guest_memfd at the host and pKVM/arm64 support \| expand [RFC,v1,00/26] KVM: Restricted mapping of guest_memfd at the host and pKVM/arm64 support [RFC,v1,01/26] KVM: Split KVM memory attributes into user and kernel attributes [RFC,v1,02/26] KVM: Introduce kvm_gmem_get_pfn_locked(), which retains the folio lock [RFC,v1,03/26] KVM: Add restricted support for mapping guestmem by the host [RFC,v1,04/26] KVM: Don't allow private attribute to be set if mapped by host [RFC,v1,05/26] KVM: Don't allow private attribute to be removed for unmappable memory [RFC,v1,06/26] KVM: Implement kvm_(read\|/write)_guest_page for private memory slots [RFC,v1,07/26] KVM: arm64: Turn llist of pinned pages into an rb-tree [RFC,v1,08/26] KVM: arm64: Implement MEM_RELINQUISH SMCCC hypercall [RFC,v1,09/26] KVM: arm64: Strictly check page type in MEM_RELINQUISH hypercall [RFC,v1,10/26] KVM: arm64: Avoid unnecessary unmap walk in MEM_RELINQUISH hypercall [RFC,v1,11/26] KVM: arm64: Add initial support for KVM_CAP_EXIT_HYPERCALL [RFC,v1,12/26] KVM: arm64: Allow userspace to receive SHARE and UNSHARE notifications [RFC,v1,13/26] KVM: arm64: Create hypercall return handler [RFC,v1,14/26] KVM: arm64: Refactor code around handling return from host to guest [RFC,v1,15/26] KVM: arm64: Rename kvm_pinned_page to kvm_guest_page [RFC,v1,16/26] KVM: arm64: Add a field to indicate whether the guest page was pinned [RFC,v1,17/26] KVM: arm64: Do not allow changes to private memory slots [RFC,v1,18/26] KVM: arm64: Skip VMA checks for slots without userspace address [RFC,v1,19/26] KVM: arm64: Handle guest_memfd()-backed guest page faults [RFC,v1,20/26] KVM: arm64: Track sharing of memory from protected guest to host [RFC,v1,21/26] KVM: arm64: Mark a protected VM's memory as unmappable at initialization [RFC,v1,22/26] KVM: arm64: Handle unshare on way back to guest entry rather than exit [RFC,v1,23/26] KVM: arm64: Check that host unmaps memory unshared by guest [RFC,v1,24/26] KVM: arm64: Add handlers for kvm_arch_*_set_memory_attributes() [RFC,v1,25/26] KVM: arm64: Enable private memory support when pKVM is enabled [RFC,v1,26/26] KVM: arm64: Enable private memory kconfig for arm64

[RFC,v1,17/26] KVM: arm64: Do not allow changes to private memory slots

Commit Message

Patch