[v3,10/49] kvm: Introduce support for memory_attributes

Message ID	20240320083945.991426-11-michael.roth@amd.com (mailing list archive)
State	New, archived
Headers	show Received: from NAM12-BN8-obe.outbound.protection.outlook.com (mail-bn8nam12on2079.outbound.protection.outlook.com [40.107.237.79]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 945FC22079 for <kvm@vger.kernel.org>; Wed, 20 Mar 2024 08:41:32 +0000 (UTC) Received-SPF: Pass (protection.outlook.com: domain of amd.com designates 165.204.84.17 as permitted sender) receiver=protection.outlook.com; client-ip=165.204.84.17; helo=SATLEXMB04.amd.com; pr=C From: Michael Roth <michael.roth@amd.com> To: <qemu-devel@nongnu.org> CC: <kvm@vger.kernel.org>, Tom Lendacky <thomas.lendacky@amd.com>, "Paolo Bonzini" <pbonzini@redhat.com>, =?utf-8?q?Daniel_P_=2E_Berrang=C3=A9?= <berrange@redhat.com>, Markus Armbruster <armbru@redhat.com>, Pankaj Gupta <pankaj.gupta@amd.com>, Xiaoyao Li <xiaoyao.li@intel.com>, Isaku Yamahata <isaku.yamahata@linux.intel.com> Subject: [PATCH v3 10/49] kvm: Introduce support for memory_attributes Date: Wed, 20 Mar 2024 03:39:06 -0500 Message-ID: <20240320083945.991426-11-michael.roth@amd.com> In-Reply-To: <20240320083945.991426-1-michael.roth@amd.com> References: <20240320083945.991426-1-michael.roth@amd.com> Precedence: bulk MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Content-Type: text/plain
Series	Add AMD Secure Nested Paging (SEV-SNP) support \| expand [RFC,v3,00/49] Add AMD Secure Nested Paging (SEV-SNP) support [v3,01/49] Revert "linux-headers hack" from sevinit2 base tree [v3,02/49] scripts/update-linux-headers: Add setup_data.h to import list [v3,03/49] scripts/update-linux-headers: Add bits.h to file imports [v3,04/49,HACK] linux-headers: Update headers for 6.8 + kvm-coco-queue + SNP [v3,05/49,TEMP] hw/i386: Remove redeclaration of struct setup_data [v3,06/49] RAMBlock: Add support of KVM private guest memfd [v3,07/49] HostMem: Add mechanism to opt in kvm guest memfd via MachineState [v3,08/49] trace/kvm: Split address space and slot id in trace_kvm_set_user_memory() [v3,09/49] kvm: Enable KVM_SET_USER_MEMORY_REGION2 for memslot [v3,10/49] kvm: Introduce support for memory_attributes [v3,11/49] physmem: Introduce ram_block_discard_guest_memfd_range() [v3,12/49] kvm: handle KVM_EXIT_MEMORY_FAULT [v3,13/49,FIXUP] "kvm: handle KVM_EXIT_MEMORY_FAULT": drop qemu_host_page_size [v3,14/49] trace/kvm: Add trace for page convertion between shared and private [v3,15/49] kvm/memory: Make memory type private by default if it has guest memfd backend [v3,16/49] memory: Introduce memory_region_init_ram_guest_memfd() [v3,17/49] pci-host/q35: Move PAM initialization above SMRAM initialization [v3,18/49] q35: Introduce smm_ranges property for q35-pci-host [v3,19/49] kvm: Make kvm_convert_memory() obey ram_block_discard_is_enabled() [v3,20/49] trace/kvm: Add trace for KVM_EXIT_MEMORY_FAULT [v3,21/49] i386/sev: Introduce "sev-common" type to encapsulate common SEV state [v3,22/49] i386/sev: Introduce 'sev-snp-guest' object [v3,23/49] i386/sev: Add a sev_snp_enabled() helper [v3,24/49] target/i386: Add handling for KVM_X86_SNP_VM VM type [v3,25/49] i386/sev: Skip RAMBlock notifiers for SNP [v3,26/49] i386/sev: Skip machine-init-done notifiers for SNP [v3,27/49] i386/sev: Set ms->require_guest_memfd for SNP [v3,28/49] i386/sev: Disable SMM for SNP [v3,29/49] i386/sev: Don't disable block discarding for SNP [v3,30/49] i386/cpu: Set SEV-SNP CPUID bit when SNP enabled [v3,31/49] i386/sev: Update query-sev QAPI format to handle SEV-SNP [v3,32/49] i386/sev: Don't return launch measurements for SEV-SNP guests [v3,33/49] kvm: Make kvm_convert_memory() non-static [v3,34/49] i386/sev: Add KVM_EXIT_VMGEXIT handling for Page State Changes [v3,35/49] i386/sev: Add KVM_EXIT_VMGEXIT handling for Page State Changes (MSR-based) [v3,36/49] i386/sev: Add KVM_EXIT_VMGEXIT handling for Extended Guest Requests [v3,37/49] i386/sev: Add the SNP launch start context [v3,38/49] i386/sev: Add handling to encrypt/finalize guest launch data [v3,39/49] i386/sev: Set CPU state to protected once SNP guest payload is finalized [v3,40/49] hw/i386/sev: Add function to get SEV metadata from OVMF header [v3,41/49] i386/sev: Add support for populating OVMF metadata pages [v3,42/49] i386/sev: Add support for SNP CPUID validation [v3,43/49] qapi, i386: Move kernel-hashes to SevCommonProperties [v3,44/49] i386/sev: Extract build_kernel_loader_hashes [v3,45/49] i386/sev: Reorder struct declarations [v3,46/49] i386/sev: Allow measured direct kernel boot on SNP [v3,47/49] hw/i386/sev: Add support to encrypt BIOS when SEV-SNP is enabled [v3,48/49] hw/i386/sev: Use guest_memfd for legacy ROMs [v3,49/49] hw/i386: Add support for loading BIOS using guest_memfd

Message ID

20240320083945.991426-11-michael.roth@amd.com (mailing list archive)

State

New, archived

Headers

Received-SPF: Pass (protection.outlook.com: domain of amd.com designates
 165.204.84.17 as permitted sender) receiver=protection.outlook.com;
 client-ip=165.204.84.17; helo=SATLEXMB04.amd.com; pr=C
From: Michael Roth <michael.roth@amd.com>
To: <qemu-devel@nongnu.org>
CC: <kvm@vger.kernel.org>, Tom Lendacky <thomas.lendacky@amd.com>,
 "Paolo Bonzini" <pbonzini@redhat.com>,
 =?utf-8?q?Daniel_P_=2E_Berrang=C3=A9?= <berrange@redhat.com>,
 Markus Armbruster <armbru@redhat.com>, Pankaj Gupta <pankaj.gupta@amd.com>,
 Xiaoyao Li <xiaoyao.li@intel.com>,
 Isaku Yamahata <isaku.yamahata@linux.intel.com>
Subject: [PATCH v3 10/49] kvm: Introduce support for memory_attributes
Date: Wed, 20 Mar 2024 03:39:06 -0500
Message-ID: <20240320083945.991426-11-michael.roth@amd.com>
In-Reply-To: <20240320083945.991426-1-michael.roth@amd.com>
References: <20240320083945.991426-1-michael.roth@amd.com>
Precedence: bulk
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Content-Type: text/plain
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 20 Mar 2024 08:41:29.4719
 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 
 1a896c60-b326-4287-707b-08dc48b989a9
X-MS-Exchange-CrossTenant-Id: 3dd8961f-e488-4e60-8e11-a82d994e183d
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: 
 TenantId=3dd8961f-e488-4e60-8e11-a82d994e183d;Ip=[165.204.84.17];Helo=[SATLEXMB04.amd.com]
X-MS-Exchange-CrossTenant-AuthSource: 
	SN1PEPF000252A4.namprd05.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: LV8PR12MB9133

Series

Add AMD Secure Nested Paging (SEV-SNP) support | expand

Commit Message

Michael Roth March 20, 2024, 8:39 a.m. UTC

From: Xiaoyao Li <xiaoyao.li@intel.com>

Introduce the helper functions to set the attributes of a range of
memory to private or shared.

This is necessary to notify KVM the private/shared attribute of each gpa
range. KVM needs the information to decide the GPA needs to be mapped at
hva-based shared memory or guest_memfd based private memory.

Signed-off-by: Xiaoyao Li <xiaoyao.li@intel.com>
---
Changes in v4:
- move the check of kvm_supported_memory_attributes to the common
  kvm_set_memory_attributes(); (Wang Wei)
- change warn_report() to error_report() in kvm_set_memory_attributes()
  and drop the __func__; (Daniel)

Signed-off-by: Michael Roth <michael.roth@amd.com>
---
 accel/kvm/kvm-all.c  | 44 ++++++++++++++++++++++++++++++++++++++++++++
 include/sysemu/kvm.h |  3 +++
 2 files changed, 47 insertions(+)

Comments

Paolo Bonzini March 20, 2024, 4 p.m. UTC | #1

On 3/20/24 09:39, Michael Roth wrote:
> From: Xiaoyao Li <xiaoyao.li@intel.com>
> 
> Introduce the helper functions to set the attributes of a range of
> memory to private or shared.
> 
> This is necessary to notify KVM the private/shared attribute of each gpa
> range. KVM needs the information to decide the GPA needs to be mapped at
> hva-based shared memory or guest_memfd based private memory.
> 
> Signed-off-by: Xiaoyao Li <xiaoyao.li@intel.com>
> ---
> Changes in v4:
> - move the check of kvm_supported_memory_attributes to the common
>    kvm_set_memory_attributes(); (Wang Wei)
> - change warn_report() to error_report() in kvm_set_memory_attributes()
>    and drop the __func__; (Daniel)
> 
> Signed-off-by: Michael Roth <michael.roth@amd.com>
> ---
>   accel/kvm/kvm-all.c  | 44 ++++++++++++++++++++++++++++++++++++++++++++
>   include/sysemu/kvm.h |  3 +++
>   2 files changed, 47 insertions(+)
> 
> diff --git a/accel/kvm/kvm-all.c b/accel/kvm/kvm-all.c
> index e83429b31e..df7a32735a 100644
> --- a/accel/kvm/kvm-all.c
> +++ b/accel/kvm/kvm-all.c
> @@ -92,6 +92,7 @@ static bool kvm_has_guest_debug;
>   static int kvm_sstep_flags;
>   static bool kvm_immediate_exit;
>   static bool kvm_guest_memfd_supported;
> +static uint64_t kvm_supported_memory_attributes;
>   static hwaddr kvm_max_slot_size = ~0;
>   
>   static const KVMCapabilityInfo kvm_required_capabilites[] = {
> @@ -1304,6 +1305,46 @@ void kvm_set_max_memslot_size(hwaddr max_slot_size)
>       kvm_max_slot_size = max_slot_size;
>   }
>   
> +static int kvm_set_memory_attributes(hwaddr start, hwaddr size, uint64_t attr)
> +{
> +    struct kvm_memory_attributes attrs;
> +    int r;
> +
> +    if (kvm_supported_memory_attributes == 0) {
> +        error_report("No memory attribute supported by KVM\n");
> +        return -EINVAL;
> +    }
> +
> +    if ((attr & kvm_supported_memory_attributes) != attr) {
> +        error_report("memory attribute 0x%lx not supported by KVM,"
> +                     " supported bits are 0x%lx\n",
> +                     attr, kvm_supported_memory_attributes);
> +        return -EINVAL;
> +    }

This should also be tested at the same time as kvm_guest_memfd_supported.

Paolo

> +    attrs.attributes = attr;
> +    attrs.address = start;
> +    attrs.size = size;
> +    attrs.flags = 0;
> +
> +    r = kvm_vm_ioctl(kvm_state, KVM_SET_MEMORY_ATTRIBUTES, &attrs);
> +    if (r) {
> +        error_report("failed to set memory (0x%lx+%#zx) with attr 0x%lx error '%s'",
> +                     start, size, attr, strerror(errno));
> +    }
> +    return r;
> +}
> +
> +int kvm_set_memory_attributes_private(hwaddr start, hwaddr size)
> +{
> +    return kvm_set_memory_attributes(start, size, KVM_MEMORY_ATTRIBUTE_PRIVATE);
> +}
> +
> +int kvm_set_memory_attributes_shared(hwaddr start, hwaddr size)
> +{
> +    return kvm_set_memory_attributes(start, size, 0);
> +}
> +
>   /* Called with KVMMemoryListener.slots_lock held */
>   static void kvm_set_phys_mem(KVMMemoryListener *kml,
>                                MemoryRegionSection *section, bool add)
> @@ -2439,6 +2480,9 @@ static int kvm_init(MachineState *ms)
>   
>       kvm_guest_memfd_supported = kvm_check_extension(s, KVM_CAP_GUEST_MEMFD);
>   
> +    ret = kvm_check_extension(s, KVM_CAP_MEMORY_ATTRIBUTES);
> +    kvm_supported_memory_attributes = ret > 0 ? ret : 0;
> +
>       if (object_property_find(OBJECT(current_machine), "kvm-type")) {
>           g_autofree char *kvm_type = object_property_get_str(OBJECT(current_machine),
>                                                               "kvm-type",
> diff --git a/include/sysemu/kvm.h b/include/sysemu/kvm.h
> index b4913281e2..2cb3192509 100644
> --- a/include/sysemu/kvm.h
> +++ b/include/sysemu/kvm.h
> @@ -538,4 +538,7 @@ void kvm_mark_guest_state_protected(void);
>   bool kvm_hwpoisoned_mem(void);
>   
>   int kvm_create_guest_memfd(uint64_t size, uint64_t flags, Error **errp);
> +
> +int kvm_set_memory_attributes_private(hwaddr start, hwaddr size);
> +int kvm_set_memory_attributes_shared(hwaddr start, hwaddr size);
>   #endif

This suggests that

diff --git a/accel/kvm/kvm-all.c b/accel/kvm/kvm-all.c
index e83429b31e..df7a32735a 100644
--- a/accel/kvm/kvm-all.c
+++ b/accel/kvm/kvm-all.c
@@ -92,6 +92,7 @@  static bool kvm_has_guest_debug;
 static int kvm_sstep_flags;
 static bool kvm_immediate_exit;
 static bool kvm_guest_memfd_supported;
+static uint64_t kvm_supported_memory_attributes;
 static hwaddr kvm_max_slot_size = ~0;
 
 static const KVMCapabilityInfo kvm_required_capabilites[] = {
@@ -1304,6 +1305,46 @@  void kvm_set_max_memslot_size(hwaddr max_slot_size)
     kvm_max_slot_size = max_slot_size;
 }
 
+static int kvm_set_memory_attributes(hwaddr start, hwaddr size, uint64_t attr)
+{
+    struct kvm_memory_attributes attrs;
+    int r;
+
+    if (kvm_supported_memory_attributes == 0) {
+        error_report("No memory attribute supported by KVM\n");
+        return -EINVAL;
+    }
+
+    if ((attr & kvm_supported_memory_attributes) != attr) {
+        error_report("memory attribute 0x%lx not supported by KVM,"
+                     " supported bits are 0x%lx\n",
+                     attr, kvm_supported_memory_attributes);
+        return -EINVAL;
+    }
+
+    attrs.attributes = attr;
+    attrs.address = start;
+    attrs.size = size;
+    attrs.flags = 0;
+
+    r = kvm_vm_ioctl(kvm_state, KVM_SET_MEMORY_ATTRIBUTES, &attrs);
+    if (r) {
+        error_report("failed to set memory (0x%lx+%#zx) with attr 0x%lx error '%s'",
+                     start, size, attr, strerror(errno));
+    }
+    return r;
+}
+
+int kvm_set_memory_attributes_private(hwaddr start, hwaddr size)
+{
+    return kvm_set_memory_attributes(start, size, KVM_MEMORY_ATTRIBUTE_PRIVATE);
+}
+
+int kvm_set_memory_attributes_shared(hwaddr start, hwaddr size)
+{
+    return kvm_set_memory_attributes(start, size, 0);
+}
+
 /* Called with KVMMemoryListener.slots_lock held */
 static void kvm_set_phys_mem(KVMMemoryListener *kml,
                              MemoryRegionSection *section, bool add)
@@ -2439,6 +2480,9 @@  static int kvm_init(MachineState *ms)
 
     kvm_guest_memfd_supported = kvm_check_extension(s, KVM_CAP_GUEST_MEMFD);
 
+    ret = kvm_check_extension(s, KVM_CAP_MEMORY_ATTRIBUTES);
+    kvm_supported_memory_attributes = ret > 0 ? ret : 0;
+
     if (object_property_find(OBJECT(current_machine), "kvm-type")) {
         g_autofree char *kvm_type = object_property_get_str(OBJECT(current_machine),
                                                             "kvm-type",
diff --git a/include/sysemu/kvm.h b/include/sysemu/kvm.h
index b4913281e2..2cb3192509 100644
--- a/include/sysemu/kvm.h
+++ b/include/sysemu/kvm.h
@@ -538,4 +538,7 @@  void kvm_mark_guest_state_protected(void);
 bool kvm_hwpoisoned_mem(void);
 
 int kvm_create_guest_memfd(uint64_t size, uint64_t flags, Error **errp);
+
+int kvm_set_memory_attributes_private(hwaddr start, hwaddr size);
+int kvm_set_memory_attributes_shared(hwaddr start, hwaddr size);
 #endif

[v3,10/49] kvm: Introduce support for memory_attributes

Commit Message

Comments

Patch