[v5,00/69] KVM: arm64: ARMv8.3/8.4 Nested Virtualization support

Message ID	20211129200150.351436-1-maz@kernel.org (mailing list archive)
Headers	show Return-Path: <kvm-owner@kernel.org> From: Marc Zyngier <maz@kernel.org> To: linux-arm-kernel@lists.infradead.org, kvmarm@lists.cs.columbia.edu, kvm@vger.kernel.org Cc: Andre Przywara <andre.przywara@arm.com>, Christoffer Dall <christoffer.dall@arm.com>, Jintack Lim <jintack@cs.columbia.edu>, Haibo Xu <haibo.xu@linaro.org>, Ganapatrao Kulkarni <gankulkarni@os.amperecomputing.com>, James Morse <james.morse@arm.com>, Suzuki K Poulose <suzuki.poulose@arm.com>, Alexandru Elisei <alexandru.elisei@arm.com>, kernel-team@android.com Subject: [PATCH v5 00/69] KVM: arm64: ARMv8.3/8.4 Nested Virtualization support Date: Mon, 29 Nov 2021 20:00:41 +0000 Message-Id: <20211129200150.351436-1-maz@kernel.org> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Precedence: bulk
Series	KVM: arm64: ARMv8.3/8.4 Nested Virtualization support \| expand [v5,00/69] KVM: arm64: ARMv8.3/8.4 Nested Virtualization support [v5,01/69] KVM: arm64: Save PSTATE early on exit [v5,02/69] KVM: arm64: Move pkvm's special 32bit handling into a generic infrastructure [v5,03/69] KVM: arm64: Add minimal handling for the ARMv8.7 PMU [v5,04/69] KVM: arm64: Rework kvm_pgtable initialisation [v5,05/69] KVM: arm64: Allow preservation of the S2 SW bits [v5,06/69] arm64: Add ARM64_HAS_NESTED_VIRT cpufeature [v5,07/69] KVM: arm64: nv: Introduce nested virtualization VCPU feature [v5,08/69] KVM: arm64: nv: Reset VCPU to EL2 registers if VCPU nested virt is set [v5,09/69] KVM: arm64: nv: Allow userspace to set PSR_MODE_EL2x [v5,10/69] KVM: arm64: nv: Add EL2 system registers to vcpu context [v5,11/69] KVM: arm64: nv: Add nested virt VCPU primitives for vEL2 VCPU state [v5,12/69] KVM: arm64: nv: Handle HCR_EL2.NV system register traps [v5,13/69] KVM: arm64: nv: Reset VMPIDR_EL2 and VPIDR_EL2 to sane values [v5,14/69] KVM: arm64: nv: Support virtual EL2 exceptions [v5,15/69] KVM: arm64: nv: Inject HVC exceptions to the virtual EL2 [v5,16/69] KVM: arm64: nv: Handle trapped ERET from virtual EL2 [v5,17/69] KVM: arm64: nv: Add non-VHE-EL2->EL1 translation helpers [v5,18/69] KVM: arm64: nv: Handle virtual EL2 registers in vcpu_read/write_sys_reg() [v5,19/69] KVM: arm64: nv: Handle SPSR_EL2 specially [v5,20/69] KVM: arm64: nv: Handle HCR_EL2.E2H specially [v5,21/69] KVM: arm64: nv: Save/Restore vEL2 sysregs [v5,22/69] KVM: arm64: nv: Emulate PSTATE.M for a guest hypervisor [v5,23/69] KVM: arm64: nv: Trap EL1 VM register accesses in virtual EL2 [v5,24/69] KVM: arm64: nv: Trap SPSR_EL1, ELR_EL1 and VBAR_EL1 from virtual EL2 [v5,25/69] KVM: arm64: nv: Trap CPACR_EL1 access in virtual EL2 [v5,26/69] KVM: arm64: nv: Handle PSCI call via smc from the guest [v5,27/69] KVM: arm64: nv: Respect virtual HCR_EL2.TWX setting [v5,28/69] KVM: arm64: nv: Respect virtual CPTR_EL2.{TFP,FPEN} settings [v5,29/69] KVM: arm64: nv: Respect the virtual HCR_EL2.NV bit setting [v5,30/69] KVM: arm64: nv: Respect virtual HCR_EL2.TVM and TRVM settings [v5,31/69] KVM: arm64: nv: Respect the virtual HCR_EL2.NV1 bit setting [v5,32/69] KVM: arm64: nv: Emulate EL12 register accesses from the virtual EL2 [v5,33/69] KVM: arm64: nv: Forward debug traps to the nested guest [v5,34/69] KVM: arm64: nv: Configure HCR_EL2 for nested virtualization [v5,35/69] KVM: arm64: nv: Only toggle cache for virtual EL2 when SCTLR_EL2 changes [v5,36/69] KVM: arm64: nv: Filter out unsupported features from ID regs [v5,37/69] KVM: arm64: nv: Hide RAS from nested guests [v5,38/69] KVM: arm64: nv: Support multiple nested Stage-2 mmu structures [v5,39/69] KVM: arm64: nv: Implement nested Stage-2 page table walk logic [v5,40/69] KVM: arm64: nv: Handle shadow stage 2 page faults [v5,41/69] KVM: arm64: nv: Restrict S2 RD/WR permissions to match the guest's [v5,42/69] KVM: arm64: nv: Unmap/flush shadow stage 2 page tables [v5,43/69] KVM: arm64: nv: Introduce sys_reg_desc.forward_trap [v5,44/69] KVM: arm64: nv: Set a handler for the system instruction traps [v5,45/69] KVM: arm64: nv: Trap and emulate AT instructions from virtual EL2 [v5,46/69] KVM: arm64: nv: Trap and emulate TLBI instructions from virtual EL2 [v5,47/69] KVM: arm64: nv: Fold guest's HCR_EL2 configuration into the host's [v5,48/69] KVM: arm64: nv: arch_timer: Support hyp timer emulation [v5,49/69] KVM: arm64: nv: Add handling of EL2-specific timer registers [v5,50/69] KVM: arm64: nv: Load timer before the GIC [v5,51/69] KVM: arm64: nv: Nested GICv3 Support [v5,52/69] KVM: arm64: nv: Don't load the GICv4 context on entering a nested guest [v5,53/69] KVM: arm64: nv: vgic: Emulate the HW bit in software [v5,54/69] KVM: arm64: nv: vgic: Allow userland to set VGIC maintenance IRQ [v5,55/69] KVM: arm64: nv: Implement maintenance interrupt forwarding [v5,56/69] KVM: arm64: nv: Add nested GICv3 tracepoints [v5,57/69] KVM: arm64: nv: Allow userspace to request KVM_ARM_VCPU_NESTED_VIRT [v5,58/69] KVM: arm64: nv: Add handling of ARMv8.4-TTL TLB invalidation [v5,59/69] KVM: arm64: nv: Invalidate TLBs based on shadow S2 TTL-like information [v5,60/69] KVM: arm64: nv: Tag shadow S2 entries with nested level [v5,61/69] KVM: arm64: nv: Add include containing the VNCR_EL2 offsets [v5,62/69] KVM: arm64: nv: Map VNCR-capable registers to a separate page [v5,63/69] KVM: arm64: nv: Move nested vgic state into the sysreg file [v5,64/69] KVM: arm64: Add ARMv8.4 Enhanced Nested Virt cpufeature [v5,65/69] KVM: arm64: nv: Sync nested timer state with ARMv8.4 [v5,66/69] KVM: arm64: nv: Allocate VNCR page when required [v5,67/69] KVM: arm64: nv: Enable ARMv8.4-NV support [v5,68/69] KVM: arm64: nv: Fast-track 'InHost' exception returns [v5,69/69] KVM: arm64: nv: Fast-track EL1 TLBIs for VHE guests

Message ID

20211129200150.351436-1-maz@kernel.org (mailing list archive)

Headers

From: Marc Zyngier <maz@kernel.org>
To: linux-arm-kernel@lists.infradead.org, kvmarm@lists.cs.columbia.edu,
        kvm@vger.kernel.org
Cc: Andre Przywara <andre.przywara@arm.com>,
        Christoffer Dall <christoffer.dall@arm.com>,
        Jintack Lim <jintack@cs.columbia.edu>,
        Haibo Xu <haibo.xu@linaro.org>,
        Ganapatrao Kulkarni <gankulkarni@os.amperecomputing.com>,
        James Morse <james.morse@arm.com>,
        Suzuki K Poulose <suzuki.poulose@arm.com>,
        Alexandru Elisei <alexandru.elisei@arm.com>,
        kernel-team@android.com
Subject: [PATCH v5 00/69] KVM: arm64: ARMv8.3/8.4 Nested Virtualization
 support
Date: Mon, 29 Nov 2021 20:00:41 +0000
Message-Id: <20211129200150.351436-1-maz@kernel.org>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Precedence: bulk

Series

KVM: arm64: ARMv8.3/8.4 Nested Virtualization support | expand

Message

Marc Zyngier Nov. 29, 2021, 8 p.m. UTC

Here the bi-annual drop of the KVM/arm64 NV support code, the least
loved series in the history of KVM!

Not a lot has changed since [1]: a number of bug fixes (wrong MMU
context being selected leading to failing TLB invalidations, fixes
around the handling of nested faults), a complete rewrite of the early
exit handling, a change in the way the NV support is enabled
("kvm-arm.mode=nested"), and a rebase on top of 5.16-rc1.

The first 2 patches are already on their way upstream as fixes, and
the third is a likely candidate too.

As usual, blame me for any bug, and nobody else. It has been tested on
my usual zoo, and nothing caught fire. Which means nothing, of course.
Obviously, it isn't feature complete, and it is quite easy to write a
guest that will not behave as intended. The current goal is to make
sure that non-NV KVM is unaffected by the NV stuff.

It is massively painful to run on the FVP, but if you have a Neoverse
V1 or N2 system (or anything else with ARMv8.4-NV) that is collecting
dust, I have the right stuff to keep it busy.

	M.

[1] https://lore.kernel.org/r/20210510165920.1913477-1-maz@kernel.org

Andre Przywara (1):
  KVM: arm64: nv: vgic: Allow userland to set VGIC maintenance IRQ

Christoffer Dall (15):
  KVM: arm64: nv: Introduce nested virtualization VCPU feature
  KVM: arm64: nv: Reset VCPU to EL2 registers if VCPU nested virt is set
  KVM: arm64: nv: Allow userspace to set PSR_MODE_EL2x
  KVM: arm64: nv: Add nested virt VCPU primitives for vEL2 VCPU state
  KVM: arm64: nv: Reset VMPIDR_EL2 and VPIDR_EL2 to sane values
  KVM: arm64: nv: Handle trapped ERET from virtual EL2
  KVM: arm64: nv: Emulate PSTATE.M for a guest hypervisor
  KVM: arm64: nv: Trap EL1 VM register accesses in virtual EL2
  KVM: arm64: nv: Only toggle cache for virtual EL2 when SCTLR_EL2
    changes
  KVM: arm64: nv: Implement nested Stage-2 page table walk logic
  KVM: arm64: nv: Unmap/flush shadow stage 2 page tables
  KVM: arm64: nv: arch_timer: Support hyp timer emulation
  KVM: arm64: nv: vgic: Emulate the HW bit in software
  KVM: arm64: nv: Add nested GICv3 tracepoints
  KVM: arm64: nv: Sync nested timer state with ARMv8.4

Jintack Lim (18):
  arm64: Add ARM64_HAS_NESTED_VIRT cpufeature
  KVM: arm64: nv: Handle HCR_EL2.NV system register traps
  KVM: arm64: nv: Support virtual EL2 exceptions
  KVM: arm64: nv: Inject HVC exceptions to the virtual EL2
  KVM: arm64: nv: Trap SPSR_EL1, ELR_EL1 and VBAR_EL1 from virtual EL2
  KVM: arm64: nv: Trap CPACR_EL1 access in virtual EL2
  KVM: arm64: nv: Handle PSCI call via smc from the guest
  KVM: arm64: nv: Respect virtual HCR_EL2.TWX setting
  KVM: arm64: nv: Respect virtual CPTR_EL2.{TFP,FPEN} settings
  KVM: arm64: nv: Respect the virtual HCR_EL2.NV bit setting
  KVM: arm64: nv: Respect virtual HCR_EL2.TVM and TRVM settings
  KVM: arm64: nv: Respect the virtual HCR_EL2.NV1 bit setting
  KVM: arm64: nv: Emulate EL12 register accesses from the virtual EL2
  KVM: arm64: nv: Configure HCR_EL2 for nested virtualization
  KVM: arm64: nv: Introduce sys_reg_desc.forward_trap
  KVM: arm64: nv: Set a handler for the system instruction traps
  KVM: arm64: nv: Trap and emulate AT instructions from virtual EL2
  KVM: arm64: nv: Nested GICv3 Support

Marc Zyngier (35):
  KVM: arm64: Save PSTATE early on exit
  KVM: arm64: Move pkvm's special 32bit handling into a generic
    infrastructure
  KVM: arm64: Add minimal handling for the ARMv8.7 PMU
  KVM: arm64: Rework kvm_pgtable initialisation
  KVM: arm64: Allow preservation of the S2 SW bits
  KVM: arm64: nv: Add EL2 system registers to vcpu context
  KVM: arm64: nv: Add non-VHE-EL2->EL1 translation helpers
  KVM: arm64: nv: Handle virtual EL2 registers in
    vcpu_read/write_sys_reg()
  KVM: arm64: nv: Handle SPSR_EL2 specially
  KVM: arm64: nv: Handle HCR_EL2.E2H specially
  KVM: arm64: nv: Save/Restore vEL2 sysregs
  KVM: arm64: nv: Forward debug traps to the nested guest
  KVM: arm64: nv: Filter out unsupported features from ID regs
  KVM: arm64: nv: Hide RAS from nested guests
  KVM: arm64: nv: Support multiple nested Stage-2 mmu structures
  KVM: arm64: nv: Handle shadow stage 2 page faults
  KVM: arm64: nv: Restrict S2 RD/WR permissions to match the guest's
  KVM: arm64: nv: Trap and emulate TLBI instructions from virtual EL2
  KVM: arm64: nv: Fold guest's HCR_EL2 configuration into the host's
  KVM: arm64: nv: Add handling of EL2-specific timer registers
  KVM: arm64: nv: Load timer before the GIC
  KVM: arm64: nv: Don't load the GICv4 context on entering a nested
    guest
  KVM: arm64: nv: Implement maintenance interrupt forwarding
  KVM: arm64: nv: Allow userspace to request KVM_ARM_VCPU_NESTED_VIRT
  KVM: arm64: nv: Add handling of ARMv8.4-TTL TLB invalidation
  KVM: arm64: nv: Invalidate TLBs based on shadow S2 TTL-like
    information
  KVM: arm64: nv: Tag shadow S2 entries with nested level
  KVM: arm64: nv: Add include containing the VNCR_EL2 offsets
  KVM: arm64: nv: Map VNCR-capable registers to a separate page
  KVM: arm64: nv: Move nested vgic state into the sysreg file
  KVM: arm64: Add ARMv8.4 Enhanced Nested Virt cpufeature
  KVM: arm64: nv: Allocate VNCR page when required
  KVM: arm64: nv: Enable ARMv8.4-NV support
  KVM: arm64: nv: Fast-track 'InHost' exception returns
  KVM: arm64: nv: Fast-track EL1 TLBIs for VHE guests

 .../admin-guide/kernel-parameters.txt         |    7 +-
 .../virt/kvm/devices/arm-vgic-v3.rst          |   12 +-
 arch/arm64/include/asm/esr.h                  |    6 +
 arch/arm64/include/asm/kvm_arm.h              |   29 +-
 arch/arm64/include/asm/kvm_asm.h              |    4 +
 arch/arm64/include/asm/kvm_emulate.h          |  145 +-
 arch/arm64/include/asm/kvm_host.h             |  185 ++-
 arch/arm64/include/asm/kvm_hyp.h              |    2 +
 arch/arm64/include/asm/kvm_mmu.h              |   18 +-
 arch/arm64/include/asm/kvm_nested.h           |  152 +++
 arch/arm64/include/asm/kvm_pgtable.h          |    9 +-
 arch/arm64/include/asm/sysreg.h               |  102 +-
 arch/arm64/include/asm/vncr_mapping.h         |   74 +
 arch/arm64/include/uapi/asm/kvm.h             |    2 +
 arch/arm64/kernel/cpufeature.c                |   34 +
 arch/arm64/kvm/Makefile                       |    4 +-
 arch/arm64/kvm/arch_timer.c                   |  202 ++-
 arch/arm64/kvm/arm.c                          |   42 +-
 arch/arm64/kvm/at.c                           |  231 ++++
 arch/arm64/kvm/emulate-nested.c               |  186 +++
 arch/arm64/kvm/guest.c                        |    6 +
 arch/arm64/kvm/handle_exit.c                  |   81 +-
 arch/arm64/kvm/hyp/exception.c                |   45 +-
 arch/arm64/kvm/hyp/include/hyp/switch.h       |   26 +-
 arch/arm64/kvm/hyp/include/hyp/sysreg-sr.h    |   31 +-
 arch/arm64/kvm/hyp/nvhe/mem_protect.c         |    4 +-
 arch/arm64/kvm/hyp/nvhe/switch.c              |   10 +-
 arch/arm64/kvm/hyp/nvhe/sysreg-sr.c           |    2 +-
 arch/arm64/kvm/hyp/pgtable.c                  |   13 +-
 arch/arm64/kvm/hyp/vgic-v3-sr.c               |    2 +-
 arch/arm64/kvm/hyp/vhe/switch.c               |  185 ++-
 arch/arm64/kvm/hyp/vhe/sysreg-sr.c            |  125 +-
 arch/arm64/kvm/hyp/vhe/tlb.c                  |   83 ++
 arch/arm64/kvm/inject_fault.c                 |   68 +-
 arch/arm64/kvm/mmu.c                          |  205 ++-
 arch/arm64/kvm/nested.c                       |  922 +++++++++++++
 arch/arm64/kvm/pmu-emul.c                     |    1 +
 arch/arm64/kvm/reset.c                        |   11 +-
 arch/arm64/kvm/sys_regs.c                     | 1213 ++++++++++++++++-
 arch/arm64/kvm/sys_regs.h                     |    8 +
 arch/arm64/kvm/trace_arm.h                    |   65 +-
 arch/arm64/kvm/vgic/vgic-init.c               |   30 +
 arch/arm64/kvm/vgic/vgic-kvm-device.c         |   22 +
 arch/arm64/kvm/vgic/vgic-nested-trace.h       |  137 ++
 arch/arm64/kvm/vgic/vgic-v3-nested.c          |  240 ++++
 arch/arm64/kvm/vgic/vgic-v3.c                 |   39 +-
 arch/arm64/kvm/vgic/vgic.c                    |   44 +
 arch/arm64/kvm/vgic/vgic.h                    |   10 +
 arch/arm64/tools/cpucaps                      |    2 +
 include/kvm/arm_arch_timer.h                  |    9 +-
 include/kvm/arm_vgic.h                        |   16 +
 include/uapi/linux/kvm.h                      |    1 +
 tools/arch/arm/include/uapi/asm/kvm.h         |    1 +
 53 files changed, 4918 insertions(+), 185 deletions(-)
 create mode 100644 arch/arm64/include/asm/kvm_nested.h
 create mode 100644 arch/arm64/include/asm/vncr_mapping.h
 create mode 100644 arch/arm64/kvm/at.c
 create mode 100644 arch/arm64/kvm/emulate-nested.c
 create mode 100644 arch/arm64/kvm/nested.c
 create mode 100644 arch/arm64/kvm/vgic/vgic-nested-trace.h
 create mode 100644 arch/arm64/kvm/vgic/vgic-v3-nested.c

Comments

Marc Zyngier Dec. 16, 2021, 5:19 p.m. UTC | #1

On Mon, 29 Nov 2021 20:00:41 +0000, Marc Zyngier wrote:
> Here the bi-annual drop of the KVM/arm64 NV support code, the least
> loved series in the history of KVM!
> 
> Not a lot has changed since [1]: a number of bug fixes (wrong MMU
> context being selected leading to failing TLB invalidations, fixes
> around the handling of nested faults), a complete rewrite of the early
> exit handling, a change in the way the NV support is enabled
> ("kvm-arm.mode=nested"), and a rebase on top of 5.16-rc1.
> 
> [...]

Applied to next, thanks!

[04/69] KVM: arm64: Rework kvm_pgtable initialisation
        commit: 9d8604b28575ccab3afd8d6f56cab9a6c0d281ef

Cheers,

	M.