[RFC,02/73] x86/ABI/PVM: Add PVM-specific ABI header file

Message ID	20240226143630.33643-3-jiangshanlai@gmail.com (mailing list archive)
State	New, archived
Headers	show Received: from mail-pl1-f177.google.com (mail-pl1-f177.google.com [209.85.214.177]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id C183112C531; Mon, 26 Feb 2024 14:34:29 +0000 (UTC) From: Lai Jiangshan <jiangshanlai@gmail.com> To: linux-kernel@vger.kernel.org Cc: Lai Jiangshan <jiangshan.ljs@antgroup.com>, Hou Wenlong <houwenlong.hwl@antgroup.com>, Linus Torvalds <torvalds@linux-foundation.org>, Peter Zijlstra <peterz@infradead.org>, Sean Christopherson <seanjc@google.com>, Thomas Gleixner <tglx@linutronix.de>, Borislav Petkov <bp@alien8.de>, Ingo Molnar <mingo@redhat.com>, kvm@vger.kernel.org, Paolo Bonzini <pbonzini@redhat.com>, x86@kernel.org, Kees Cook <keescook@chromium.org>, Juergen Gross <jgross@suse.com>, Dave Hansen <dave.hansen@linux.intel.com>, "H. Peter Anvin" <hpa@zytor.com> Subject: [RFC PATCH 02/73] x86/ABI/PVM: Add PVM-specific ABI header file Date: Mon, 26 Feb 2024 22:35:19 +0800 Message-Id: <20240226143630.33643-3-jiangshanlai@gmail.com> In-Reply-To: <20240226143630.33643-1-jiangshanlai@gmail.com> References: <20240226143630.33643-1-jiangshanlai@gmail.com> Precedence: bulk MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	KVM: x86/PVM: Introduce a new hypervisor \| expand [RFC,00/73] KVM: x86/PVM: Introduce a new hypervisor [RFC,01/73] KVM: Documentation: Add the specification for PVM [RFC,02/73] x86/ABI/PVM: Add PVM-specific ABI header file [RFC,03/73] x86/entry: Implement switcher for PVM VM enter/exit [RFC,04/73] x86/entry: Implement direct switching for the switcher [RFC,05/73] KVM: x86: Set 'vcpu->arch.exception.injected' as true before vendor callback [RFC,06/73] KVM: x86: Move VMX interrupt/nmi handling into kvm.ko [RFC,07/73] KVM: x86/mmu: Adapt shadow MMU for PVM [RFC,08/73] KVM: x86: Allow hypercall handling to not skip the instruction [RFC,09/73] KVM: x86: Add PVM virtual MSRs into emulated_msrs_all[] [RFC,10/73] KVM: x86: Introduce vendor feature to expose vendor-specific CPUID [RFC,11/73] KVM: x86: Implement gpc refresh for guest usage [RFC,12/73] KVM: x86: Add NR_VCPU_SREG in SREG enum [RFC,13/73] KVM: x86/emulator: Reinject #GP if instruction emulation failed for PVM [RFC,14/73] KVM: x86: Create stubs for PVM module as a new vendor [RFC,15/73] mm/vmalloc: Add a helper to reserve a contiguous and aligned kernel virtual area [RFC,16/73] KVM: x86/PVM: Implement host mmu initialization [RFC,17/73] KVM: x86/PVM: Implement module initialization related callbacks [RFC,18/73] KVM: x86/PVM: Implement VM/VCPU initialization related callbacks [RFC,19/73] x86/entry: Export 32-bit ignore syscall entry and __ia32_enabled variable [RFC,20/73] KVM: x86/PVM: Implement vcpu_load()/vcpu_put() related callbacks [RFC,21/73] KVM: x86/PVM: Implement vcpu_run() callbacks [RFC,22/73] KVM: x86/PVM: Handle some VM exits before enable interrupts [RFC,23/73] KVM: x86/PVM: Handle event handling related MSR read/write operation [RFC,24/73] KVM: x86/PVM: Introduce PVM mode switching [RFC,25/73] KVM: x86/PVM: Implement APIC emulation related callbacks [RFC,26/73] KVM: x86/PVM: Implement event delivery flags related callbacks [RFC,27/73] KVM: x86/PVM: Implement event injection related callbacks [RFC,28/73] KVM: x86/PVM: Handle syscall from user mode [RFC,29/73] KVM: x86/PVM: Implement allowed range checking for #PF [RFC,30/73] KVM: x86/PVM: Implement segment related callbacks [RFC,31/73] KVM: x86/PVM: Implement instruction emulation for #UD and #GP [RFC,32/73] KVM: x86/PVM: Enable guest debugging functions [RFC,33/73] KVM: x86/PVM: Handle VM-exit due to hardware exceptions [RFC,34/73] KVM: x86/PVM: Handle ERETU/ERETS synthetic instruction [RFC,35/73] KVM: x86/PVM: Handle PVM_SYNTHETIC_CPUID synthetic instruction [RFC,36/73] KVM: x86/PVM: Handle KVM hypercall [RFC,37/73] KVM: x86/PVM: Use host PCID to reduce guest TLB flushing [RFC,38/73] KVM: x86/PVM: Handle hypercalls for privilege instruction emulation [RFC,39/73] KVM: x86/PVM: Handle hypercall for CR3 switching [RFC,40/73] KVM: x86/PVM: Handle hypercall for loading GS selector [RFC,41/73] KVM: x86/PVM: Allow to load guest TLS in host GDT [RFC,42/73] KVM: x86/PVM: Support for kvm_exit() tracepoint [RFC,43/73] KVM: x86/PVM: Enable direct switching [RFC,44/73] KVM: x86/PVM: Implement TSC related callbacks [RFC,45/73] KVM: x86/PVM: Add dummy PMU related callbacks [RFC,46/73] KVM: x86/PVM: Support for CPUID faulting [RFC,47/73] KVM: x86/PVM: Handle the left supported MSRs in msrs_to_save_base[] [RFC,48/73] KVM: x86/PVM: Implement system registers setting callbacks [RFC,49/73] KVM: x86/PVM: Implement emulation for non-PVM mode [RFC,50/73] x86/tools/relocs: Cleanup cmdline options [RFC,51/73] x86/tools/relocs: Append relocations into input file [RFC,52/73] x86/boot: Allow to do relocation for uncompressed kernel [RFC,53/73] x86/pvm: Add Kconfig option and the CPU feature bit for PVM guest [RFC,54/73] x86/pvm: Detect PVM hypervisor support [RFC,55/73] x86/pvm: Relocate kernel image to specific virtual address range [RFC,56/73] x86/pvm: Relocate kernel image early in PVH entry [RFC,57/73] x86/pvm: Make cpu entry area and vmalloc area variable [RFC,58/73] x86/pvm: Relocate kernel address space layout [RFC,59/73] x86/pti: Force enabling KPTI for PVM guest [RFC,60/73] x86/pvm: Add event entry/exit and dispatch code [RFC,61/73] x86/pvm: Allow to install a system interrupt handler [RFC,62/73] x86/pvm: Add early kernel event entry and dispatch code [RFC,63/73] x86/pvm: Add hypercall support [RFC,64/73] x86/pvm: Enable PVM event delivery [RFC,65/73] x86/kvm: Patch KVM hypercall as PVM hypercall [RFC,66/73] x86/pvm: Use new cpu feature to describe XENPV and PVM [RFC,67/73] x86/pvm: Implement cpu related PVOPS [RFC,68/73] x86/pvm: Implement irq related PVOPS [RFC,69/73] x86/pvm: Implement mmu related PVOPS [RFC,70/73] x86/pvm: Don't use SWAPGS for gsbase read/write [RFC,71/73] x86/pvm: Adapt pushf/popf in this_cpu_cmpxchg16b_emu() [RFC,72/73] x86/pvm: Use RDTSCP as default in vdso_read_cpunode() [RFC,73/73] x86/pvm: Disable some unsupported syscalls and features

Message ID

20240226143630.33643-3-jiangshanlai@gmail.com (mailing list archive)

State

New, archived

Headers

From: Lai Jiangshan <jiangshanlai@gmail.com>
To: linux-kernel@vger.kernel.org
Cc: Lai Jiangshan <jiangshan.ljs@antgroup.com>,
	Hou Wenlong <houwenlong.hwl@antgroup.com>,
	Linus Torvalds <torvalds@linux-foundation.org>,
	Peter Zijlstra <peterz@infradead.org>,
	Sean Christopherson <seanjc@google.com>,
	Thomas Gleixner <tglx@linutronix.de>,
	Borislav Petkov <bp@alien8.de>,
	Ingo Molnar <mingo@redhat.com>,
	kvm@vger.kernel.org,
	Paolo Bonzini <pbonzini@redhat.com>,
	x86@kernel.org,
	Kees Cook <keescook@chromium.org>,
	Juergen Gross <jgross@suse.com>,
	Dave Hansen <dave.hansen@linux.intel.com>,
	"H. Peter Anvin" <hpa@zytor.com>
Subject: [RFC PATCH 02/73] x86/ABI/PVM: Add PVM-specific ABI header file
Date: Mon, 26 Feb 2024 22:35:19 +0800
Message-Id: <20240226143630.33643-3-jiangshanlai@gmail.com>
In-Reply-To: <20240226143630.33643-1-jiangshanlai@gmail.com>
References: <20240226143630.33643-1-jiangshanlai@gmail.com>
Precedence: bulk
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

KVM: x86/PVM: Introduce a new hypervisor | expand

Commit Message

Lai Jiangshan Feb. 26, 2024, 2:35 p.m. UTC

From: Lai Jiangshan <jiangshan.ljs@antgroup.com>

Add a PVM-specific ABI header file to describe the ABI between the guest
and hypervisor, which contains the hypercall numbers, virtual MSRS
index, and event data structure definitions. This is in preparation for
PVM.

Signed-off-by: Lai Jiangshan <jiangshan.ljs@antgroup.com>
Signed-off-by: Hou Wenlong <houwenlong.hwl@antgroup.com>
---
 arch/x86/include/uapi/asm/pvm_para.h | 131 +++++++++++++++++++++++++++
 include/uapi/Kbuild                  |   4 +
 2 files changed, 135 insertions(+)
 create mode 100644 arch/x86/include/uapi/asm/pvm_para.h

diff --git a/arch/x86/include/uapi/asm/pvm_para.h b/arch/x86/include/uapi/asm/pvm_para.h
new file mode 100644
index 000000000000..36aedfa2cabd
--- /dev/null
+++ b/arch/x86/include/uapi/asm/pvm_para.h
@@ -0,0 +1,131 @@ 
+/* SPDX-License-Identifier: GPL-2.0 WITH Linux-syscall-note */
+#ifndef _UAPI_ASM_X86_PVM_PARA_H
+#define _UAPI_ASM_X86_PVM_PARA_H
+
+#include <linux/const.h>
+
+/*
+ * The CPUID instruction in PVM guest can't be trapped and emulated,
+ * so PVM guest should use the following two instructions instead:
+ * "invlpg 0xffffffffff4d5650; cpuid;"
+ *
+ * PVM_SYNTHETIC_CPUID is supposed to not trigger any trap in the real or
+ * virtual x86 kernel mode and is also guaranteed to trigger a trap in the
+ * underlying hardware user mode for the hypervisor emulating it. The
+ * hypervisor emulates both of the basic instructions, while the INVLPG is
+ * often emulated as an NOP since 0xffffffffff4d5650 is normally out of the
+ * allowed linear address ranges.
+ */
+#define PVM_SYNTHETIC_CPUID		0x0f,0x01,0x3c,0x25,0x50, \
+					0x56,0x4d,0xff,0x0f,0xa2
+#define PVM_SYNTHETIC_CPUID_ADDRESS	0xffffffffff4d5650
+
+/*
+ * The vendor signature 'PVM' is returned in ebx. It should be used to
+ * determine that a VM is running under PVM.
+ */
+#define PVM_CPUID_SIGNATURE		0x4d5650
+
+/*
+ * PVM virtual MSRS falls in the range 0x4b564df0-0x4b564dff, and it should not
+ * conflict with KVM, see arch/x86/include/uapi/asm/kvm_para.h
+ */
+#define PVM_VIRTUAL_MSR_MAX_NR		15
+#define PVM_VIRTUAL_MSR_BASE		0x4b564df0
+#define PVM_VIRTUAL_MSR_MAX		(PVM_VIRTUAL_MSR_BASE+PVM_VIRTUAL_MSR_MAX_NR)
+
+#define MSR_PVM_LINEAR_ADDRESS_RANGE	0x4b564df0
+#define MSR_PVM_VCPU_STRUCT		0x4b564df1
+#define MSR_PVM_SUPERVISOR_RSP		0x4b564df2
+#define MSR_PVM_SUPERVISOR_REDZONE	0x4b564df3
+#define MSR_PVM_EVENT_ENTRY		0x4b564df4
+#define MSR_PVM_RETU_RIP		0x4b564df5
+#define MSR_PVM_RETS_RIP		0x4b564df6
+#define MSR_PVM_SWITCH_CR3		0x4b564df7
+
+#define PVM_HC_SPECIAL_MAX_NR		(256)
+#define PVM_HC_SPECIAL_BASE		(0x17088200)
+#define PVM_HC_SPECIAL_MAX		(PVM_HC_SPECIAL_BASE+PVM_HC_SPECIAL_MAX_NR)
+
+#define PVM_HC_LOAD_PGTBL		(PVM_HC_SPECIAL_BASE+0)
+#define PVM_HC_IRQ_WIN			(PVM_HC_SPECIAL_BASE+1)
+#define PVM_HC_IRQ_HALT			(PVM_HC_SPECIAL_BASE+2)
+#define PVM_HC_TLB_FLUSH		(PVM_HC_SPECIAL_BASE+3)
+#define PVM_HC_TLB_FLUSH_CURRENT	(PVM_HC_SPECIAL_BASE+4)
+#define PVM_HC_TLB_INVLPG		(PVM_HC_SPECIAL_BASE+5)
+#define PVM_HC_LOAD_GS			(PVM_HC_SPECIAL_BASE+6)
+#define PVM_HC_RDMSR			(PVM_HC_SPECIAL_BASE+7)
+#define PVM_HC_WRMSR			(PVM_HC_SPECIAL_BASE+8)
+#define PVM_HC_LOAD_TLS			(PVM_HC_SPECIAL_BASE+9)
+
+/*
+ * PVM_EVENT_FLAGS_IP
+ *	- Interrupt enable flag. The flag is set to respond to maskable
+ *	  external interrupts; and cleared to inhibit maskable external
+ *	  interrupts.
+ *
+ * PVM_EVENT_FLAGS_IF
+ *	- interrupt pending flag. The hypervisor sets it if it fails to inject
+ *	  a maskable event to the VCPU due to the interrupt-enable flag being
+ *	  cleared in supervisor mode.
+ */
+#define PVM_EVENT_FLAGS_IP_BIT		8
+#define PVM_EVENT_FLAGS_IP		_BITUL(PVM_EVENT_FLAGS_IP_BIT)
+#define PVM_EVENT_FLAGS_IF_BIT		9
+#define PVM_EVENT_FLAGS_IF		_BITUL(PVM_EVENT_FLAGS_IF_BIT)
+
+#ifndef __ASSEMBLY__
+
+/*
+ * PVM event delivery saves the information about the event and the old context
+ * into the PVCS structure if the event is from user mode or from supervisor
+ * mode with vector >=32. And ERETU synthetic instruction reads the return
+ * state from the PVCS structure to restore the old context.
+ */
+struct pvm_vcpu_struct {
+	/*
+	 * This flag is only used in supervisor mode, with only bit 8 and
+	 * bit 9 being valid. The other bits are reserved.
+	 */
+	u64 event_flags;
+	u32 event_errcode;
+	u32 event_vector;
+	u64 cr2;
+	u64 reserved0[5];
+
+	/*
+	 * For the event from supervisor mode with vector >=32, only eflags,
+	 * rip, rsp, rcx and r11 are saved, and others keep untouched.
+	 */
+	u16 user_cs, user_ss;
+	u32 reserved1;
+	u64 reserved2;
+	u64 user_gsbase;
+	u32 eflags;
+	u32 pkru;
+	u64 rip;
+	u64 rsp;
+	u64 rcx;
+	u64 r11;
+};
+
+/*
+ * PVM event delivery saves the information about the event and the old context
+ * on the stack with the following frame format if the event is from supervisor
+ * mode with vector <32. And ERETS synthetic instruction reads the return state
+ * with the following frame format from the stack to restore the old context.
+ */
+struct pvm_supervisor_event {
+	unsigned long errcode; // vector in high32
+	unsigned long rip;
+	unsigned long cs;
+	unsigned long rflags;
+	unsigned long rsp;
+	unsigned long ss;
+	unsigned long rcx;
+	unsigned long r11;
+};
+
+#endif /* __ASSEMBLY__ */
+
+#endif /* _UAPI_ASM_X86_PVM_PARA_H */
diff --git a/include/uapi/Kbuild b/include/uapi/Kbuild
index 61ee6e59c930..991848db246b 100644
--- a/include/uapi/Kbuild
+++ b/include/uapi/Kbuild
@@ -12,3 +12,7 @@  ifeq ($(wildcard $(objtree)/arch/$(SRCARCH)/include/generated/uapi/asm/kvm_para.
 no-export-headers += linux/kvm_para.h
 endif
 endif
+
+ifeq ($(wildcard $(srctree)/arch/$(SRCARCH)/include/uapi/asm/pvm_para.h),)
+no-export-headers += pvm_para.h
+endif

[RFC,02/73] x86/ABI/PVM: Add PVM-specific ABI header file

Commit Message

Patch