[RFC,46/73] KVM: x86/PVM: Support for CPUID faulting

Message ID	20240226143630.33643-47-jiangshanlai@gmail.com (mailing list archive)
State	New, archived
Headers	show Received: from mail-pl1-f170.google.com (mail-pl1-f170.google.com [209.85.214.170]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 7B51313B2BE; Mon, 26 Feb 2024 14:37:08 +0000 (UTC) From: Lai Jiangshan <jiangshanlai@gmail.com> To: linux-kernel@vger.kernel.org Cc: Hou Wenlong <houwenlong.hwl@antgroup.com>, Lai Jiangshan <jiangshan.ljs@antgroup.com>, Linus Torvalds <torvalds@linux-foundation.org>, Peter Zijlstra <peterz@infradead.org>, Sean Christopherson <seanjc@google.com>, Thomas Gleixner <tglx@linutronix.de>, Borislav Petkov <bp@alien8.de>, Ingo Molnar <mingo@redhat.com>, kvm@vger.kernel.org, Paolo Bonzini <pbonzini@redhat.com>, x86@kernel.org, Kees Cook <keescook@chromium.org>, Juergen Gross <jgross@suse.com>, Dave Hansen <dave.hansen@linux.intel.com>, "H. Peter Anvin" <hpa@zytor.com> Subject: [RFC PATCH 46/73] KVM: x86/PVM: Support for CPUID faulting Date: Mon, 26 Feb 2024 22:36:03 +0800 Message-Id: <20240226143630.33643-47-jiangshanlai@gmail.com> In-Reply-To: <20240226143630.33643-1-jiangshanlai@gmail.com> References: <20240226143630.33643-1-jiangshanlai@gmail.com> Precedence: bulk MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	KVM: x86/PVM: Introduce a new hypervisor \| expand [RFC,00/73] KVM: x86/PVM: Introduce a new hypervisor [RFC,01/73] KVM: Documentation: Add the specification for PVM [RFC,02/73] x86/ABI/PVM: Add PVM-specific ABI header file [RFC,03/73] x86/entry: Implement switcher for PVM VM enter/exit [RFC,04/73] x86/entry: Implement direct switching for the switcher [RFC,05/73] KVM: x86: Set 'vcpu->arch.exception.injected' as true before vendor callback [RFC,06/73] KVM: x86: Move VMX interrupt/nmi handling into kvm.ko [RFC,07/73] KVM: x86/mmu: Adapt shadow MMU for PVM [RFC,08/73] KVM: x86: Allow hypercall handling to not skip the instruction [RFC,09/73] KVM: x86: Add PVM virtual MSRs into emulated_msrs_all[] [RFC,10/73] KVM: x86: Introduce vendor feature to expose vendor-specific CPUID [RFC,11/73] KVM: x86: Implement gpc refresh for guest usage [RFC,12/73] KVM: x86: Add NR_VCPU_SREG in SREG enum [RFC,13/73] KVM: x86/emulator: Reinject #GP if instruction emulation failed for PVM [RFC,14/73] KVM: x86: Create stubs for PVM module as a new vendor [RFC,15/73] mm/vmalloc: Add a helper to reserve a contiguous and aligned kernel virtual area [RFC,16/73] KVM: x86/PVM: Implement host mmu initialization [RFC,17/73] KVM: x86/PVM: Implement module initialization related callbacks [RFC,18/73] KVM: x86/PVM: Implement VM/VCPU initialization related callbacks [RFC,19/73] x86/entry: Export 32-bit ignore syscall entry and __ia32_enabled variable [RFC,20/73] KVM: x86/PVM: Implement vcpu_load()/vcpu_put() related callbacks [RFC,21/73] KVM: x86/PVM: Implement vcpu_run() callbacks [RFC,22/73] KVM: x86/PVM: Handle some VM exits before enable interrupts [RFC,23/73] KVM: x86/PVM: Handle event handling related MSR read/write operation [RFC,24/73] KVM: x86/PVM: Introduce PVM mode switching [RFC,25/73] KVM: x86/PVM: Implement APIC emulation related callbacks [RFC,26/73] KVM: x86/PVM: Implement event delivery flags related callbacks [RFC,27/73] KVM: x86/PVM: Implement event injection related callbacks [RFC,28/73] KVM: x86/PVM: Handle syscall from user mode [RFC,29/73] KVM: x86/PVM: Implement allowed range checking for #PF [RFC,30/73] KVM: x86/PVM: Implement segment related callbacks [RFC,31/73] KVM: x86/PVM: Implement instruction emulation for #UD and #GP [RFC,32/73] KVM: x86/PVM: Enable guest debugging functions [RFC,33/73] KVM: x86/PVM: Handle VM-exit due to hardware exceptions [RFC,34/73] KVM: x86/PVM: Handle ERETU/ERETS synthetic instruction [RFC,35/73] KVM: x86/PVM: Handle PVM_SYNTHETIC_CPUID synthetic instruction [RFC,36/73] KVM: x86/PVM: Handle KVM hypercall [RFC,37/73] KVM: x86/PVM: Use host PCID to reduce guest TLB flushing [RFC,38/73] KVM: x86/PVM: Handle hypercalls for privilege instruction emulation [RFC,39/73] KVM: x86/PVM: Handle hypercall for CR3 switching [RFC,40/73] KVM: x86/PVM: Handle hypercall for loading GS selector [RFC,41/73] KVM: x86/PVM: Allow to load guest TLS in host GDT [RFC,42/73] KVM: x86/PVM: Support for kvm_exit() tracepoint [RFC,43/73] KVM: x86/PVM: Enable direct switching [RFC,44/73] KVM: x86/PVM: Implement TSC related callbacks [RFC,45/73] KVM: x86/PVM: Add dummy PMU related callbacks [RFC,46/73] KVM: x86/PVM: Support for CPUID faulting [RFC,47/73] KVM: x86/PVM: Handle the left supported MSRs in msrs_to_save_base[] [RFC,48/73] KVM: x86/PVM: Implement system registers setting callbacks [RFC,49/73] KVM: x86/PVM: Implement emulation for non-PVM mode [RFC,50/73] x86/tools/relocs: Cleanup cmdline options [RFC,51/73] x86/tools/relocs: Append relocations into input file [RFC,52/73] x86/boot: Allow to do relocation for uncompressed kernel [RFC,53/73] x86/pvm: Add Kconfig option and the CPU feature bit for PVM guest [RFC,54/73] x86/pvm: Detect PVM hypervisor support [RFC,55/73] x86/pvm: Relocate kernel image to specific virtual address range [RFC,56/73] x86/pvm: Relocate kernel image early in PVH entry [RFC,57/73] x86/pvm: Make cpu entry area and vmalloc area variable [RFC,58/73] x86/pvm: Relocate kernel address space layout [RFC,59/73] x86/pti: Force enabling KPTI for PVM guest [RFC,60/73] x86/pvm: Add event entry/exit and dispatch code [RFC,61/73] x86/pvm: Allow to install a system interrupt handler [RFC,62/73] x86/pvm: Add early kernel event entry and dispatch code [RFC,63/73] x86/pvm: Add hypercall support [RFC,64/73] x86/pvm: Enable PVM event delivery [RFC,65/73] x86/kvm: Patch KVM hypercall as PVM hypercall [RFC,66/73] x86/pvm: Use new cpu feature to describe XENPV and PVM [RFC,67/73] x86/pvm: Implement cpu related PVOPS [RFC,68/73] x86/pvm: Implement irq related PVOPS [RFC,69/73] x86/pvm: Implement mmu related PVOPS [RFC,70/73] x86/pvm: Don't use SWAPGS for gsbase read/write [RFC,71/73] x86/pvm: Adapt pushf/popf in this_cpu_cmpxchg16b_emu() [RFC,72/73] x86/pvm: Use RDTSCP as default in vdso_read_cpunode() [RFC,73/73] x86/pvm: Disable some unsupported syscalls and features

Message ID

20240226143630.33643-47-jiangshanlai@gmail.com (mailing list archive)

State

New, archived

Headers

From: Lai Jiangshan <jiangshanlai@gmail.com>
To: linux-kernel@vger.kernel.org
Cc: Hou Wenlong <houwenlong.hwl@antgroup.com>,
	Lai Jiangshan <jiangshan.ljs@antgroup.com>,
	Linus Torvalds <torvalds@linux-foundation.org>,
	Peter Zijlstra <peterz@infradead.org>,
	Sean Christopherson <seanjc@google.com>,
	Thomas Gleixner <tglx@linutronix.de>,
	Borislav Petkov <bp@alien8.de>,
	Ingo Molnar <mingo@redhat.com>,
	kvm@vger.kernel.org,
	Paolo Bonzini <pbonzini@redhat.com>,
	x86@kernel.org,
	Kees Cook <keescook@chromium.org>,
	Juergen Gross <jgross@suse.com>,
	Dave Hansen <dave.hansen@linux.intel.com>,
	"H. Peter Anvin" <hpa@zytor.com>
Subject: [RFC PATCH 46/73] KVM: x86/PVM: Support for CPUID faulting
Date: Mon, 26 Feb 2024 22:36:03 +0800
Message-Id: <20240226143630.33643-47-jiangshanlai@gmail.com>
In-Reply-To: <20240226143630.33643-1-jiangshanlai@gmail.com>
References: <20240226143630.33643-1-jiangshanlai@gmail.com>
Precedence: bulk
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

KVM: x86/PVM: Introduce a new hypervisor | expand

Commit Message

Lai Jiangshan Feb. 26, 2024, 2:36 p.m. UTC

From: Hou Wenlong <houwenlong.hwl@antgroup.com>

For PVM, CPUID faulting relies on hardware, so the guest could access
the host CPUID information if CPUID faulting is not enabled. To enable
the guest to access its own CPUID information, introduce a module
parameter to force enable CPUID faulting for the guest.

Suggested-by: Lai Jiangshan <jiangshan.ljs@antgroup.com>
Signed-off-by: Hou Wenlong <houwenlong.hwl@antgroup.com>
Signed-off-by: Lai Jiangshan <jiangshan.ljs@antgroup.com>
---
 arch/x86/kvm/pvm/pvm.c | 69 ++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 69 insertions(+)

diff --git a/arch/x86/kvm/pvm/pvm.c b/arch/x86/kvm/pvm/pvm.c
index e6464095d40b..fd3d6f7301af 100644
--- a/arch/x86/kvm/pvm/pvm.c
+++ b/arch/x86/kvm/pvm/pvm.c
@@ -29,6 +29,9 @@ 
 MODULE_AUTHOR("AntGroup");
 MODULE_LICENSE("GPL");
 
+static bool __read_mostly enable_cpuid_intercept = 0;
+module_param_named(cpuid_intercept, enable_cpuid_intercept, bool, 0444);
+
 static bool __read_mostly is_intel;
 
 static unsigned long host_idt_base;
@@ -168,6 +171,53 @@  static bool pvm_disallowed_va(struct kvm_vcpu *vcpu, u64 va)
 	return !pvm_guest_allowed_va(vcpu, va);
 }
 
+static void __set_cpuid_faulting(bool on)
+{
+	u64 msrval;
+
+	rdmsrl_safe(MSR_MISC_FEATURES_ENABLES, &msrval);
+	msrval &= ~MSR_MISC_FEATURES_ENABLES_CPUID_FAULT;
+	msrval |= (on << MSR_MISC_FEATURES_ENABLES_CPUID_FAULT_BIT);
+	wrmsrl(MSR_MISC_FEATURES_ENABLES, msrval);
+}
+
+static void reset_cpuid_intercept(struct kvm_vcpu *vcpu)
+{
+	if (test_thread_flag(TIF_NOCPUID))
+		return;
+
+	if (enable_cpuid_intercept || cpuid_fault_enabled(vcpu))
+		__set_cpuid_faulting(false);
+}
+
+static void set_cpuid_intercept(struct kvm_vcpu *vcpu)
+{
+	if (test_thread_flag(TIF_NOCPUID))
+		return;
+
+	if (enable_cpuid_intercept || cpuid_fault_enabled(vcpu))
+		__set_cpuid_faulting(true);
+}
+
+static void pvm_update_guest_cpuid_faulting(struct kvm_vcpu *vcpu, u64 data)
+{
+	bool guest_enabled = cpuid_fault_enabled(vcpu);
+	bool set_enabled = data & MSR_MISC_FEATURES_ENABLES_CPUID_FAULT;
+	struct vcpu_pvm *pvm = to_pvm(vcpu);
+
+	if (!(guest_enabled ^ set_enabled))
+		return;
+	if (enable_cpuid_intercept)
+		return;
+	if (test_thread_flag(TIF_NOCPUID))
+		return;
+
+	preempt_disable();
+	if (pvm->loaded_cpu_state)
+		__set_cpuid_faulting(set_enabled);
+	preempt_enable();
+}
+
 // switch_to_smod() and switch_to_umod() switch the mode (smod/umod) and
 // the CR3.  No vTLB flushing when switching the CR3 per PVM Spec.
 static inline void switch_to_smod(struct kvm_vcpu *vcpu)
@@ -335,6 +385,8 @@  static void pvm_prepare_switch_to_guest(struct kvm_vcpu *vcpu)
 
 	segments_save_host_and_switch_to_guest(pvm);
 
+	set_cpuid_intercept(vcpu);
+
 	kvm_set_user_return_msr(0, (u64)entry_SYSCALL_64_switcher, -1ull);
 	kvm_set_user_return_msr(1, pvm->msr_tsc_aux, -1ull);
 	if (ia32_enabled()) {
@@ -352,6 +404,8 @@  static void pvm_prepare_switch_to_host(struct vcpu_pvm *pvm)
 
 	++pvm->vcpu.stat.host_state_reload;
 
+	reset_cpuid_intercept(&pvm->vcpu);
+
 #ifdef CONFIG_MODIFY_LDT_SYSCALL
 	if (unlikely(current->mm->context.ldt))
 		kvm_load_ldt(GDT_ENTRY_LDT*8);
@@ -937,6 +991,17 @@  static int pvm_set_msr(struct kvm_vcpu *vcpu, struct msr_data *msr_info)
 	case MSR_IA32_DEBUGCTLMSR:
 		/* It is ignored now. */
 		break;
+	case MSR_MISC_FEATURES_ENABLES:
+		ret = kvm_set_msr_common(vcpu, msr_info);
+		if (!ret)
+			pvm_update_guest_cpuid_faulting(vcpu, data);
+		break;
+	case MSR_PLATFORM_INFO:
+		if ((data & MSR_PLATFORM_INFO_CPUID_FAULT) &&
+		     !boot_cpu_has(X86_FEATURE_CPUID_FAULT))
+			return 1;
+		ret = kvm_set_msr_common(vcpu, msr_info);
+		break;
 	case MSR_PVM_VCPU_STRUCT:
 		if (!PAGE_ALIGNED(data))
 			return 1;
@@ -2925,6 +2990,10 @@  static int __init hardware_cap_check(void)
 		pr_warn("CMPXCHG16B is required for guest.\n");
 		return -EOPNOTSUPP;
 	}
+	if (!boot_cpu_has(X86_FEATURE_CPUID_FAULT) && enable_cpuid_intercept) {
+		pr_warn("Host doesn't support cpuid faulting.\n");
+		return -EOPNOTSUPP;
+	}
 
 	return 0;
 }

[RFC,46/73] KVM: x86/PVM: Support for CPUID faulting

Commit Message

Patch