From patchwork Fri Jan 17 16:29:46 2025 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Fuad Tabba X-Patchwork-Id: 13943547 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17]) by smtp.lore.kernel.org (Postfix) with ESMTP id DE3CBC02183 for ; Fri, 17 Jan 2025 16:30:07 +0000 (UTC) Received: by kanga.kvack.org (Postfix) id 3FD076B0085; Fri, 17 Jan 2025 11:30:07 -0500 (EST) Received: by kanga.kvack.org (Postfix, from userid 40) id 3AD026B008A; Fri, 17 Jan 2025 11:30:07 -0500 (EST) X-Delivered-To: int-list-linux-mm@kvack.org Received: by kanga.kvack.org (Postfix, from userid 63042) id 24D586B008C; Fri, 17 Jan 2025 11:30:07 -0500 (EST) X-Delivered-To: linux-mm@kvack.org Received: from relay.hostedemail.com (smtprelay0017.hostedemail.com [216.40.44.17]) by kanga.kvack.org (Postfix) with ESMTP id 05FC86B0085 for ; Fri, 17 Jan 2025 11:30:06 -0500 (EST) Received: from smtpin13.hostedemail.com (a10.router.float.18 [10.200.18.1]) by unirelay06.hostedemail.com (Postfix) with ESMTP id A2202B02B0 for ; Fri, 17 Jan 2025 16:30:06 +0000 (UTC) X-FDA: 83017480812.13.3D58956 Received: from mail-wm1-f73.google.com (mail-wm1-f73.google.com [209.85.128.73]) by imf05.hostedemail.com (Postfix) with ESMTP id D619410000D for ; Fri, 17 Jan 2025 16:30:04 +0000 (UTC) Authentication-Results: imf05.hostedemail.com; dkim=pass header.d=google.com header.s=20230601 header.b=sDTRU9d4; dmarc=pass (policy=reject) header.from=google.com; spf=pass (imf05.hostedemail.com: domain of 3i4WKZwUKCAQxeffeksskpi.gsqpmry1-qqozego.svk@flex--tabba.bounces.google.com designates 209.85.128.73 as permitted sender) smtp.mailfrom=3i4WKZwUKCAQxeffeksskpi.gsqpmry1-qqozego.svk@flex--tabba.bounces.google.com ARC-Seal: i=1; s=arc-20220608; d=hostedemail.com; t=1737131405; a=rsa-sha256; cv=none; b=CE9z3R99TyGdFL+5TfSH1Rb3948tNOJmu8fkmmY1N+tmbmUd0oXAroisuvn4FSI3zE8VID 7ZPdTbo9Bb9SxIgy6TXi6XR/4NCnvTLojqsORXIsrDIIkvVWlPelXScq4jt2E/FqzCAq7q W3KG7tGUeCnI2laOWbT1YV2BmJZ9DS0= ARC-Authentication-Results: i=1; imf05.hostedemail.com; dkim=pass header.d=google.com header.s=20230601 header.b=sDTRU9d4; dmarc=pass (policy=reject) header.from=google.com; spf=pass (imf05.hostedemail.com: domain of 3i4WKZwUKCAQxeffeksskpi.gsqpmry1-qqozego.svk@flex--tabba.bounces.google.com designates 209.85.128.73 as permitted sender) smtp.mailfrom=3i4WKZwUKCAQxeffeksskpi.gsqpmry1-qqozego.svk@flex--tabba.bounces.google.com ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=hostedemail.com; s=arc-20220608; t=1737131405; h=from:from:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:cc:mime-version:mime-version: content-type:content-type:content-transfer-encoding:in-reply-to: references:dkim-signature; bh=EFi/LeK1i1oYmoH0ZXeSnoaGN0kNaricZIbeo5WyKQo=; b=ndwX9IqX+AhG9yK8fAXkIfD8D1n6DNiwSGsYGroOqWPqdjrEIeCJDTQud4+uA94yEtuKxX wY+iGva9chZsV+YQ+Z+cQPRK2cGdSUNy5dlKhvlVLiR7iK8RUhKPSSWKh5tIwiAhum/mwC iufQF9Fwid/KPsKuPjV9AQnlSDl9EHU= Received: by mail-wm1-f73.google.com with SMTP id 5b1f17b1804b1-43582d49dacso16644245e9.2 for ; Fri, 17 Jan 2025 08:30:04 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20230601; t=1737131403; x=1737736203; darn=kvack.org; h=cc:to:from:subject:message-id:mime-version:date:from:to:cc:subject :date:message-id:reply-to; bh=EFi/LeK1i1oYmoH0ZXeSnoaGN0kNaricZIbeo5WyKQo=; b=sDTRU9d4inztR0vUW36LPRDHubuFIuzrx5vDbv3wEXhXEZHa/Fx9P+ZnDq4utLysYG H7VnH8/qv6aMq6sVG5SA5lNbTB76tW1tg2oyKz+sRkb4sY1IxsbzVOUnOV9UZoqQAQJ7 ATKp+ibRYkQVr2Hw83OueYq42HioZhjEAZ7LcGEFHOZFkesakMEZOMrd5+1K8CLJmdIa /ywaiBrqXF6KJC5nBB6d+BCfrIs9Z7ENpQuxGzPoPy1CrKqQZPv8rQ5m/oWmw4k76QQI Oryy1A8wkpx7aQI2xYZloG5ZMZzuw22v1ZzOr3ZNadKl1Op1XRTHB4YNk2qkIkxnGgGD GYxg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1737131403; x=1737736203; h=cc:to:from:subject:message-id:mime-version:date:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=EFi/LeK1i1oYmoH0ZXeSnoaGN0kNaricZIbeo5WyKQo=; b=s7B13tLwKbTs82o7E1QxlpvdrNQSedGmGJMr2ORichvfR20bigaLuyfG/32NLQ4wSL C1fhizMtwIdOfUg1+I3tklILQ/ohTBZggCW0HCQOqdHJl10GWabaY6eIgyv7oUEkomtN rOJcOPYHSjOJbY8FFVDpFDbPd40igijoAAmbFJrMfbCuotxlpFrIOn9GGMDwjQBYtdyc t9i7DohQD9EvKj7/vbraXDK1f9J+Mi8AfSeqKvOu5zXmRf7mt/wkpnex1Do5bmjP5Xoy hI/jEeXLvrhxGk89A5p0AtEVuyd1N9VlZTjmWyqtIlk8bld7nUQon+IkPteZUOIe1jKZ oCow== X-Forwarded-Encrypted: i=1; AJvYcCXUD4zGelSDoC5nvcYFdEeZEupYuVTllse0yhXTefYnVftXgY5SYyv7TTc1sO7vlleQJG8ySHOmRA==@kvack.org X-Gm-Message-State: AOJu0YxQ5xAF65h7lm3KxYNT/X0xccdt23yVjiQ9Z2uSuO0u8UhAfP9a kKZPweIg4pI894vMoi4iW1sBcIbmdyB8elPM982N/17d1/Edl3IY2P19snk2uD3HlhmmC7p2mA= = X-Google-Smtp-Source: AGHT+IHisH8lFtSXqxitsVI8oE1Zn+Lbrl6gn+saOmhLPCojIr7sIXCJwyH321FPy/5mZWRxI8wmsfHN2Q== X-Received: from wmbbe7.prod.google.com ([2002:a05:600c:1e87:b0:436:3ea:c491]) (user=tabba job=prod-delivery.src-stubby-dispatcher) by 2002:adf:cf06:0:b0:385:fc8c:24b6 with SMTP id ffacd0b85a97d-38bf566f406mr2762576f8f.27.1737131403298; Fri, 17 Jan 2025 08:30:03 -0800 (PST) Date: Fri, 17 Jan 2025 16:29:46 +0000 Mime-Version: 1.0 X-Mailer: git-send-email 2.48.0.rc2.279.g1de40edade-goog Message-ID: <20250117163001.2326672-1-tabba@google.com> Subject: [RFC PATCH v5 00/15] KVM: Restricted mapping of guest_memfd at the host and arm64 support From: Fuad Tabba To: kvm@vger.kernel.org, linux-arm-msm@vger.kernel.org, linux-mm@kvack.org Cc: pbonzini@redhat.com, chenhuacai@kernel.org, mpe@ellerman.id.au, anup@brainfault.org, paul.walmsley@sifive.com, palmer@dabbelt.com, aou@eecs.berkeley.edu, seanjc@google.com, viro@zeniv.linux.org.uk, brauner@kernel.org, willy@infradead.org, akpm@linux-foundation.org, xiaoyao.li@intel.com, yilun.xu@intel.com, chao.p.peng@linux.intel.com, jarkko@kernel.org, amoorthy@google.com, dmatlack@google.com, yu.c.zhang@linux.intel.com, isaku.yamahata@intel.com, mic@digikod.net, vbabka@suse.cz, vannapurve@google.com, ackerleytng@google.com, mail@maciej.szmigiero.name, david@redhat.com, michael.roth@amd.com, wei.w.wang@intel.com, liam.merwick@oracle.com, isaku.yamahata@gmail.com, kirill.shutemov@linux.intel.com, suzuki.poulose@arm.com, steven.price@arm.com, quic_eberman@quicinc.com, quic_mnalajal@quicinc.com, quic_tsoni@quicinc.com, quic_svaddagi@quicinc.com, quic_cvanscha@quicinc.com, quic_pderrin@quicinc.com, quic_pheragu@quicinc.com, catalin.marinas@arm.com, james.morse@arm.com, yuzenghui@huawei.com, oliver.upton@linux.dev, maz@kernel.org, will@kernel.org, qperret@google.com, keirf@google.com, roypat@amazon.co.uk, shuah@kernel.org, hch@infradead.org, jgg@nvidia.com, rientjes@google.com, jhubbard@nvidia.com, fvdl@google.com, hughd@google.com, jthoughton@google.com, tabba@google.com X-Rspam-User: X-Rspamd-Server: rspam01 X-Rspamd-Queue-Id: D619410000D X-Stat-Signature: qzjqb9boz8yp665xrfrtu4ssdnm5y1xz X-HE-Tag: 1737131404-877330 X-HE-Meta: U2FsdGVkX1+D5rh6lNBD2Md4Suh7+bHDxe5N3FNZhJ7gt6Kusz5D+G2JFduzvxPlwoUtcGocyqSJpVb8BvR8AF/we9CjUdzBvE8w2Hlk0FAbHW0w6UKF4+UbLlswlkh0q3fxuyHfEpLGgadRKcOFGPSI8A3CIVjwtcuEhXD/ONRrxSexQTKz+Jk0/zYo7o9xI3pibbOhdL5jht012QAb2CrI0tez8e7+MK9MHksOEiYZEwlrCOR4OVKQpOyL2BSukJw4h1kpPsj9umRHxT1nlRQM9OWWgV/bxIlDKS+0eEpzYaGOgjiNbX5saTp2GZQZTw7r3xtMnKlaYOLPxiIgTjqretXDEnRrgAoiU0jZlTwk0wAF2K01jFdkZWD836+YJMbzDyD/gSDH9z+9eEMO+olfObm4MfIVwhflFuxMM+e5aNFpgfJSirXUN7mh/lzbNBJiy4GDflhhl0Nvd2j91flyMxpb2gE7vvQpmTmm79O+2RP836i0vefP4IJoU1uyTrrPKyMf/+rtWI7AwEy3JDmBj9sFsZXt7I/pSU0vNnWFdiZv/2siYE2EPOyb0Vm3DOTEPTxRICkhsVfk68LhXxfc8IJHuRzkqdKNdxoR+vGFw+/mAAC/i+Omeckt4q9BbNSN6Lqmihs1mAqp3gFHiVBE6/BmfelkcnZ3qAJzY7D9KVLv+m3ByeELeJs0hKp3j3Hs5GnZ98gs3QgKZUATjhDQG/XsImwG+D+HNBzU1+lokw+Q07AkkUs/Y/Ycy6VZiqupAWtN68stBR8LO5K/FKt4VYVXu2blIyoAwS5wQ+D2AmqYRP5gISffzRWJI9czTlhFDxCmjfEPFK5YPfNux4575BZa97Af/B76tPpEcK8YiqItS7knwVITb157HJUzQAvg3DRd+T7eJZEfOqv1JXAIA4q+mxya5fRMEFJyTJwjZsXUfcciSZriNDJblsKxuq+HysNWeY/HEGiF0Ag fwluA1AM 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 X-Bogosity: Ham, tests=bogofilter, spamicity=0.000044, version=1.2.4 Sender: owner-linux-mm@kvack.org Precedence: bulk X-Loop: owner-majordomo@kvack.org List-ID: List-Subscribe: List-Unsubscribe: This series adds restricted mmap() support to guest_memfd, as well as support for guest_memfd on arm64. It is based on Linux 6.13-rc7. Please refer to v3 for the context [1]. Main changes since v4 [2]: - Fixed handling of guest_memfd()-backed page faults in arm64 - Rebased on Linux 6.13-rc7 Not a change per se, but I am able to trigger/test the callback on the final __folio_put() using vmsplice to grab a reference without increasing the mapcount. The state diagram that uses the new states in this patch series, and how they would interact with sharing/unsharing in pKVM [3]. Cheers, /fuad [1] https://lore.kernel.org/all/20241010085930.1546800-1-tabba@google.com/ [2] https://lore.kernel.org/all/20241213164811.2006197-1-tabba@google.com/ [3] https://lpc.events/event/18/contributions/1758/attachments/1457/3699/Guestmemfd%20folio%20state%20page_type.pdf Ackerley Tng (2): KVM: guest_memfd: Make guest mem use guest mem inodes instead of anonymous inodes KVM: guest_memfd: Track mappability within a struct kvm_gmem_private Fuad Tabba (13): mm: Consolidate freeing of typed folios on final folio_put() KVM: guest_memfd: Introduce kvm_gmem_get_pfn_locked(), which retains the folio lock KVM: guest_memfd: Folio mappability states and functions that manage their transition KVM: guest_memfd: Handle final folio_put() of guestmem pages KVM: guest_memfd: Allow host to mmap guest_memfd() pages when shared KVM: guest_memfd: Add guest_memfd support to kvm_(read|/write)_guest_page() KVM: guest_memfd: Add KVM capability to check if guest_memfd is host mappable KVM: guest_memfd: Add a guest_memfd() flag to initialize it as mappable KVM: guest_memfd: selftests: guest_memfd mmap() test when mapping is allowed KVM: arm64: Skip VMA checks for slots without userspace address KVM: arm64: Refactor user_mem_abort() calculation of force_pte KVM: arm64: Handle guest_memfd()-backed guest page faults KVM: arm64: Enable guest_memfd private memory when pKVM is enabled Documentation/virt/kvm/api.rst | 4 + arch/arm64/include/asm/kvm_host.h | 3 + arch/arm64/kvm/Kconfig | 1 + arch/arm64/kvm/mmu.c | 98 ++- include/linux/kvm_host.h | 80 +++ include/linux/page-flags.h | 22 + include/uapi/linux/kvm.h | 2 + include/uapi/linux/magic.h | 1 + mm/debug.c | 1 + mm/swap.c | 28 +- tools/testing/selftests/kvm/Makefile | 1 + .../testing/selftests/kvm/guest_memfd_test.c | 64 +- virt/kvm/Kconfig | 4 + virt/kvm/guest_memfd.c | 579 +++++++++++++++++- virt/kvm/kvm_main.c | 234 ++++++- 15 files changed, 1034 insertions(+), 88 deletions(-) base-commit: 5bc55a333a2f7316b58edc7573e8e893f7acb532