| Message ID | 20190822034838.27876-1-cclaudio@linux.ibm.com |
|---|---|
| Headers | show
Return-Path: <kvm-ppc-owner@vger.kernel.org> X-Original-To: incoming@patchwork.ozlabs.org Delivered-To: patchwork-incoming@bilbo.ozlabs.org Authentication-Results: ozlabs.org; spf=none (mailfrom) smtp.mailfrom=vger.kernel.org (client-ip=209.132.180.67; helo=vger.kernel.org; envelope-from=kvm-ppc-owner@vger.kernel.org; receiver=<UNKNOWN>) Authentication-Results: ozlabs.org; dmarc=none (p=none dis=none) header.from=linux.ibm.com Received: from vger.kernel.org (vger.kernel.org [209.132.180.67]) by ozlabs.org (Postfix) with ESMTP id 46DVrP3wh1z9sN1 for <incoming@patchwork.ozlabs.org>; Thu, 22 Aug 2019 13:48:53 +1000 (AEST) Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1727894AbfHVDsw (ORCPT <rfc822;incoming@patchwork.ozlabs.org>); Wed, 21 Aug 2019 23:48:52 -0400 Received: from mx0b-001b2d01.pphosted.com ([148.163.158.5]:59066 "EHLO mx0a-001b2d01.pphosted.com" rhost-flags-OK-OK-OK-FAIL) by vger.kernel.org with ESMTP id S1727843AbfHVDsw (ORCPT <rfc822;kvm-ppc@vger.kernel.org>); Wed, 21 Aug 2019 23:48:52 -0400 Received: from pps.filterd (m0098417.ppops.net [127.0.0.1]) by mx0a-001b2d01.pphosted.com (8.16.0.27/8.16.0.27) with SMTP id x7M3khrV102462; Wed, 21 Aug 2019 23:48:46 -0400 Received: from ppma03dal.us.ibm.com (b.bd.3ea9.ip4.static.sl-reverse.com [169.62.189.11]) by mx0a-001b2d01.pphosted.com with ESMTP id 2uhg2x5pef-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 21 Aug 2019 23:48:46 -0400 Received: from pps.filterd (ppma03dal.us.ibm.com [127.0.0.1]) by ppma03dal.us.ibm.com (8.16.0.27/8.16.0.27) with SMTP id x7M3iRp9030499; Thu, 22 Aug 2019 03:48:45 GMT Received: from b03cxnp08025.gho.boulder.ibm.com (b03cxnp08025.gho.boulder.ibm.com [9.17.130.17]) by ppma03dal.us.ibm.com with ESMTP id 2ue9770nbf-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Thu, 22 Aug 2019 03:48:45 +0000 Received: from b03ledav006.gho.boulder.ibm.com (b03ledav006.gho.boulder.ibm.com [9.17.130.237]) by b03cxnp08025.gho.boulder.ibm.com (8.14.9/8.14.9/NCO v10.0) with ESMTP id x7M3mh0F45744628 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK); Thu, 22 Aug 2019 03:48:43 GMT Received: from b03ledav006.gho.boulder.ibm.com (unknown [127.0.0.1]) by IMSVA (Postfix) with ESMTP id A86F9C6057; Thu, 22 Aug 2019 03:48:43 +0000 (GMT) Received: from b03ledav006.gho.boulder.ibm.com (unknown [127.0.0.1]) by IMSVA (Postfix) with ESMTP id A4305C6055; Thu, 22 Aug 2019 03:48:39 +0000 (GMT) Received: from rino.ibm.com (unknown [9.80.203.17]) by b03ledav006.gho.boulder.ibm.com (Postfix) with ESMTP; Thu, 22 Aug 2019 03:48:39 +0000 (GMT) From: Claudio Carvalho <cclaudio@linux.ibm.com> To: linuxppc-dev@ozlabs.org Cc: kvm-ppc@vger.kernel.org, Paul Mackerras <paulus@ozlabs.org>, Michael Ellerman <mpe@ellerman.id.au>, Madhavan Srinivasan <maddy@linux.vnet.ibm.com>, Michael Anderson <andmike@linux.ibm.com>, Ram Pai <linuxram@us.ibm.com>, Bharata B Rao <bharata@linux.ibm.com>, Sukadev Bhattiprolu <sukadev@linux.vnet.ibm.com>, Thiago Bauermann <bauerman@linux.ibm.com>, Claudio Carvalho <cclaudio@linux.ibm.com>, Ryan Grimm <grimm@linux.ibm.com>, Guerney Hunt <gdhh@linux.ibm.com> Subject: [PATCH v6 0/7] kvmppc: Paravirtualize KVM to support ultravisor Date: Thu, 22 Aug 2019 00:48:31 -0300 Message-Id: <20190822034838.27876-1-cclaudio@linux.ibm.com> X-Mailer: git-send-email 2.20.1 MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-TM-AS-GCONF: 00 X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2019-08-22_03:, , signatures=0 X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 priorityscore=1501 malwarescore=0 suspectscore=1 phishscore=0 bulkscore=0 spamscore=0 clxscore=1015 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=999 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1906280000 definitions=main-1908220037 Sender: kvm-ppc-owner@vger.kernel.org Precedence: bulk List-ID: <kvm-ppc.vger.kernel.org> X-Mailing-List: kvm-ppc@vger.kernel.org |
| Series |
kvmppc: Paravirtualize KVM to support ultravisor
|
expand
|
Protected Execution Facility (PEF) is an architectural change for POWER 9 that enables Secure Virtual Machines (SVMs). When enabled, PEF adds a new higher privileged mode, called Ultravisor mode, to POWER architecture. Along with the new mode there is new firmware called the Protected Execution Ultravisor (or Ultravisor for short). Ultravisor mode is the highest privileged mode in POWER architecture. The Ultravisor calls allow the SVMs and Hypervisor to request services from the Ultravisor such as accessing a register or memory region that can only be accessed when running in Ultravisor-privileged mode. This patch set adds support for Ultravisor calls and do some preparation for running secure guests. --- Changelog: --- v5->v6: - Patch "Documentation/powerpc: Ultravisor API" - Added chip version and PEF RFC number as suggested by mpe. - Applied Fabiano Rosas' suggestions. - Updated the commit message. - Patch "powerpc/kernel: Add ucall_norets() ultravisor call handler" - Dropped CR save/restore from ucall_norets. - Updated the commit message. - Patch "powerpc/mm: Use UV_WRITE_PATE ucall to register a PATE" - Replaced the "old_patb0" arg in flush_partition() by "bool radix". - Better documented mmu_partition_table_set_entry() to address mpe's questions about the copy of the partition table. - Updated the commit message. - Patch "powerpc/mm: Write to PTCR only if ultravisor disabled" - Moved reg.h changes to ultravisor.h. - Replaced the try_set_ptcr macro by static inline set_ptcr_when_no_uv(). - Updated the commit message. - Rebased to powerpc/next v4->v5: - New patch "Documentation/powerpc: Ultravisor API" - Patch "v4: KVM: PPC: Ultravisor: Add generic ultravisor call handler": - Made global the ucall_norets symbol without adding it to the TOC. - Implemented ucall_norets() rather than ucall(). - Defined the ucall_norets in "asm/asm-prototypes.h" for symbol versioning. - Renamed to "powerpc/kernel: Add ucall_norets() ultravisor call handler". - Updated the commit message. - Patch "v4: powerpc: Introduce FW_FEATURE_ULTRAVISOR": - Changed to scan for a node that is compatible with "ibm,ultravisor" - Renamed to "powerpc/powernv: Introduce FW_FEATURE_ULTRAVISOR". - Updated the commit message. - Patch "v4: KVM: PPC: Ultravisor: Restrict flush of the partition tlb cache": - Merged into "v4: ... Use UV_WRITE_PATE ucall to register a PATE". - Patch "v4: KVM: PPC: Ultravisor: Use UV_WRITE_PATE ucall to register a PATE": - Added back the missing "ptesync" instruction in flush_partition(). - Updated source code comments for the partition table creation. - Factored out "powerpc/mm: Write to PTCR only if ultravisor disabled". - Cleaned up the code a bit. - Renamed to "powerpc/mm: Use UV_WRITE_PATE ucall to register a PATE". - Updated the commit message. - Patch "v4: KVM: PPC: Ultravisor: Restrict LDBAR access": - Dropped the change that skips loading the IMC driver if ultravisor enabled because skiboot will remove the IMC devtree nodes if ultravisor enabled. - Dropped the BEGIN_{END_}FW_FTR_SECTION_NESTED in power8 code. - Renamed to "powerpc/powernv: Access LDBAR only if ultravisor disabled". - Updated the commit message. - Patch "v4: KVM: PPC: Ultravisor: Enter a secure guest": - Openned "LOAD_REG_IMMEDIATE(r3, UV_RETURN)" to save instructions - Used R2, rather than R11, to pass synthesized interrupts in UV_RETURN ucall. - Dropped the change that preserves the MSR[S] bit in "kvmppc_msr_interrupt" because that is done by the ultravisor. - Hoisted up the load of R6 and R7 to before "bne ret_to_ultra". - Cleaned up the code a bit. - Renamed to "powerpc/kvm: Use UV_RETURN ucall to return to ultravisor". - Updated the commit message. - Patch "v4: KVM: PPC: Ultravisor: Check for MSR_S during hv_reset_msr": - Dropped from the patch set because "kvm_arch->secure_guest" rather than MSR[S] is used to determine if we need to return to the ultravisor. - Patch "v4: KVM: PPC: Ultravisor: Introduce the MSR_S bit": - Moved to the patch set "Secure Virtual Machine Enablement" posted by Thiago Bauermann. MSR[S] is no longer needed in this patch set. - Rebased to powerpc/next v3->v4: - Patch "KVM: PPC: Ultravisor: Add PPC_UV config option": - Moved to the patchset "kvmppc: HMM driver to manage pages of secure guest" v5 that will be posted by Bharata Rao. - Patch "powerpc: Introduce FW_FEATURE_ULTRAVISOR": - Changed to depend only on CONFIG_PPC_POWERNV. - Patch "KVM: PPC: Ultravisor: Add generic ultravisor call handler": - Fixed whitespaces in ucall.S and in ultravisor-api.h. - Changed to depend only on CONFIG_PPC_POWERNV. - Changed the ucall wrapper to pass the ucall number in R3. - Patch "KVM: PPC: Ultravisor: Use UV_WRITE_PATE ucall to register a PATE: - Changed to depend only on CONFIG_PPC_POWERNV. - Patch "KVM: PPC: Ultravisor: Restrict LDBAR access": - Fixed comment in opal-imc.c to be "Disable IMC devices, when Ultravisor is enabled. - Fixed signed-off-by. - Patch "KVM: PPC: Ultravisor: Enter a secure guest": - Changed the UV_RETURN assembly call to save the actual R3 in R0 for the ultravisor and pass the UV_RETURN call number in R3. - Patch "KVM: PPC: Ultravisor: Check for MSR_S during hv_reset_msr": - Fixed commit message. - Rebased to powerpc/next. Claudio Carvalho (4): powerpc/kernel: Add ucall_norets() ultravisor call handler powerpc/powernv: Introduce FW_FEATURE_ULTRAVISOR powerpc/mm: Write to PTCR only if ultravisor disabled powerpc/powernv: Access LDBAR only if ultravisor disabled Michael Anderson (1): powerpc/mm: Use UV_WRITE_PATE ucall to register a PATE Sukadev Bhattiprolu (2): Documentation/powerpc: Ultravisor API powerpc/kvm: Use UV_RETURN ucall to return to ultravisor Documentation/powerpc/ultravisor.rst | 1057 +++++++++++++++++++ arch/powerpc/include/asm/asm-prototypes.h | 11 + arch/powerpc/include/asm/firmware.h | 5 +- arch/powerpc/include/asm/kvm_host.h | 1 + arch/powerpc/include/asm/ultravisor-api.h | 29 + arch/powerpc/include/asm/ultravisor.h | 34 + arch/powerpc/kernel/Makefile | 1 + arch/powerpc/kernel/asm-offsets.c | 1 + arch/powerpc/kernel/prom.c | 4 + arch/powerpc/kernel/ucall.S | 14 + arch/powerpc/kvm/book3s_hv_rmhandlers.S | 39 +- arch/powerpc/mm/book3s64/hash_utils.c | 5 +- arch/powerpc/mm/book3s64/pgtable.c | 52 +- arch/powerpc/mm/book3s64/radix_pgtable.c | 8 +- arch/powerpc/platforms/powernv/Makefile | 1 + arch/powerpc/platforms/powernv/idle.c | 6 +- arch/powerpc/platforms/powernv/ultravisor.c | 24 + 17 files changed, 1263 insertions(+), 29 deletions(-) create mode 100644 Documentation/powerpc/ultravisor.rst create mode 100644 arch/powerpc/include/asm/ultravisor-api.h create mode 100644 arch/powerpc/include/asm/ultravisor.h create mode 100644 arch/powerpc/kernel/ucall.S create mode 100644 arch/powerpc/platforms/powernv/ultravisor.c