[RFC,v1,27/34] KVM: x86: add .disable_ve()

Message ID	20200722160121.9601-28-alazar@bitdefender.com (mailing list archive)
State	New, archived
Headers	show Return-Path: <SRS0=byMP=BB=vger.kernel.org=kvm-owner@kernel.org> From: =?utf-8?q?Adalbert_Laz=C4=83r?= <alazar@bitdefender.com> To: kvm@vger.kernel.org Cc: virtualization@lists.linux-foundation.org, Paolo Bonzini <pbonzini@redhat.com>, =?utf-8?q?=C8=98tefan_=C8=98icleru?= <ssicleru@bitdefender.com>, =?utf-8?q?Adalbert_Laz=C4=83r?= <alazar@bitdefender.com> Subject: [RFC PATCH v1 27/34] KVM: x86: add .disable_ve() Date: Wed, 22 Jul 2020 19:01:14 +0300 Message-Id: <20200722160121.9601-28-alazar@bitdefender.com> In-Reply-To: <20200722160121.9601-1-alazar@bitdefender.com> References: <20200722160121.9601-1-alazar@bitdefender.com> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Sender: kvm-owner@vger.kernel.org Precedence: bulk
Series	VM introspection - EPT Views and Virtualization Exceptions \| expand [RFC,v1,00/34] VM introspection - EPT Views and Virtualization Exceptions [RFC,v1,01/34] KVM: x86: export .get_vmfunc_status() [RFC,v1,02/34] KVM: x86: export .get_eptp_switching_status() [RFC,v1,03/34] KVM: x86: add kvm_get_ept_view() [RFC,v1,04/34] KVM: x86: mmu: reindent to avoid lines longer than 80 chars [RFC,v1,05/34] KVM: x86: mmu: add EPT view parameter to kvm_mmu_get_page() [RFC,v1,06/34] KVM: x86: mmu: add support for EPT switching [RFC,v1,07/34] KVM: x86: mmu: increase mmu_memory_cache size [RFC,v1,08/34] KVM: x86: add .set_ept_view() [RFC,v1,09/34] KVM: x86: add .control_ept_view() [RFC,v1,10/34] KVM: x86: page track: allow page tracking for different EPT views [RFC,v1,11/34] KVM: x86: mmu: allow zapping shadow pages for specific EPT views [RFC,v1,12/34] KVM: introspection: extend struct kvmi_features with the EPT views status support [RFC,v1,13/34] KVM: introspection: add KVMI_VCPU_GET_EPT_VIEW [RFC,v1,14/34] KVM: introspection: add 'view' field to struct kvmi_event_arch [RFC,v1,15/34] KVM: introspection: add KVMI_VCPU_SET_EPT_VIEW [RFC,v1,16/34] KVM: introspection: add KVMI_VCPU_CONTROL_EPT_VIEW [RFC,v1,17/34] KVM: introspection: extend the access rights database with EPT view info [RFC,v1,18/34] KVM: introspection: extend KVMI_VM_SET_PAGE_ACCESS with EPT view info [RFC,v1,19/34] KVM: introspection: clean non-default EPTs on unhook [RFC,v1,20/34] KVM: x86: vmx: add support for virtualization exceptions [RFC,v1,21/34] KVM: VMX: Define EPT suppress #VE bit (bit 63 in EPT leaf entries) [RFC,v1,22/34] KVM: VMX: Suppress EPT violation #VE by default (when enabled) [RFC,v1,23/34] KVM: x86: mmu: fix: update present_mask in spte_read_protect() [RFC,v1,24/34] KVM: vmx: trigger vm-exits for mmio sptes by default when #VE is enabled [RFC,v1,25/34] KVM: x86: svm: set .clear_page() [RFC,v1,26/34] KVM: x86: add .set_ve_info() [RFC,v1,27/34] KVM: x86: add .disable_ve() [RFC,v1,28/34] KVM: x86: page_track: add support for suppress #VE bit [RFC,v1,29/34] KVM: vmx: make use of EPTP_INDEX in vmx_handle_exit() [RFC,v1,30/34] KVM: vmx: make use of EPTP_INDEX in vmx_set_ept_view() [RFC,v1,31/34] KVM: introspection: add #VE host capability checker [RFC,v1,32/34] KVM: introspection: add KVMI_VCPU_SET_VE_INFO/KVMI_VCPU_DISABLE_VE [RFC,v1,33/34] KVM: introspection: mask out non-rwx flags when reading/writing from/to the internal… [RFC,v1,34/34] KVM: introspection: add KVMI_VM_SET_PAGE_SVE

Message ID

20200722160121.9601-28-alazar@bitdefender.com (mailing list archive)

State

New, archived

Headers

From: =?utf-8?q?Adalbert_Laz=C4=83r?= <alazar@bitdefender.com>
To: kvm@vger.kernel.org
Cc: virtualization@lists.linux-foundation.org,
 Paolo Bonzini <pbonzini@redhat.com>,
 =?utf-8?q?=C8=98tefan_=C8=98icleru?= <ssicleru@bitdefender.com>,
	=?utf-8?q?Adalbert_Laz=C4=83r?= <alazar@bitdefender.com>
Subject: [RFC PATCH v1 27/34] KVM: x86: add .disable_ve()
Date: Wed, 22 Jul 2020 19:01:14 +0300
Message-Id: <20200722160121.9601-28-alazar@bitdefender.com>
In-Reply-To: <20200722160121.9601-1-alazar@bitdefender.com>
References: <20200722160121.9601-1-alazar@bitdefender.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Sender: kvm-owner@vger.kernel.org
Precedence: bulk

Series

VM introspection - EPT Views and Virtualization Exceptions | expand

Commit Message

Adalbert Lazăr July 22, 2020, 4:01 p.m. UTC

From: Ștefan Șicleru <ssicleru@bitdefender.com>

This function is needed for the KVMI_VCPU_DISABLE_VE command.

Signed-off-by: Ștefan Șicleru <ssicleru@bitdefender.com>
Signed-off-by: Adalbert Lazăr <alazar@bitdefender.com>
---
 arch/x86/include/asm/kvm_host.h |  1 +
 arch/x86/kvm/vmx/vmx.c          | 10 ++++++++++
 2 files changed, 11 insertions(+)

diff --git a/arch/x86/include/asm/kvm_host.h b/arch/x86/include/asm/kvm_host.h
index 4cee641af48e..54969c2e804e 100644
--- a/arch/x86/include/asm/kvm_host.h
+++ b/arch/x86/include/asm/kvm_host.h
@@ -1316,6 +1316,7 @@  struct kvm_x86_ops {
 	int (*control_ept_view)(struct kvm_vcpu *vcpu, u16 view, u8 visible);
 	int (*set_ve_info)(struct kvm_vcpu *vcpu, unsigned long ve_info,
 				bool trigger_vmexit);
+	int (*disable_ve)(struct kvm_vcpu *vcpu);
 };
 
 struct kvm_x86_nested_ops {
diff --git a/arch/x86/kvm/vmx/vmx.c b/arch/x86/kvm/vmx/vmx.c
index 871cc49063d8..96aa4b7e2857 100644
--- a/arch/x86/kvm/vmx/vmx.c
+++ b/arch/x86/kvm/vmx/vmx.c
@@ -4464,6 +4464,15 @@  static int vmx_set_ve_info(struct kvm_vcpu *vcpu, unsigned long ve_info,
 	return 0;
 }
 
+static int vmx_disable_ve(struct kvm_vcpu *vcpu)
+{
+	if (kvm_ve_supported)
+		secondary_exec_controls_clearbit(to_vmx(vcpu),
+						 SECONDARY_EXEC_EPT_VE);
+
+	return 0;
+}
+
 #define VMX_XSS_EXIT_BITMAP 0
 
 /*
@@ -8390,6 +8399,7 @@  static struct kvm_x86_ops vmx_x86_ops __initdata = {
 	.set_ept_view = vmx_set_ept_view,
 	.control_ept_view = vmx_control_ept_view,
 	.set_ve_info = vmx_set_ve_info,
+	.disable_ve = vmx_disable_ve,
 };
 
 static __init int hardware_setup(void)

[RFC,v1,27/34] KVM: x86: add .disable_ve()

Commit Message

Patch