From patchwork Fri Nov  3 04:38:03 2017
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Nicholas Piggin <npiggin@gmail.com>
X-Patchwork-Id: 833651
Return-Path: <kvm-ppc-owner@vger.kernel.org>
X-Original-To: incoming@patchwork.ozlabs.org
Delivered-To: patchwork-incoming@bilbo.ozlabs.org
Authentication-Results: ozlabs.org;
	spf=none (mailfrom) smtp.mailfrom=vger.kernel.org
	(client-ip=209.132.180.67; helo=vger.kernel.org;
	envelope-from=kvm-ppc-owner@vger.kernel.org;
	receiver=<UNKNOWN>)
Authentication-Results: ozlabs.org;
	dkim=fail reason="signature verification failed" (2048-bit key;
	unprotected) header.d=gmail.com header.i=@gmail.com
	header.b="WCc/E4pa"; dkim-atps=neutral
Received: from vger.kernel.org (vger.kernel.org [209.132.180.67])
	by ozlabs.org (Postfix) with ESMTP id 3ySq3P14sxz9sPk
	for <incoming@patchwork.ozlabs.org>;
	Fri,  3 Nov 2017 15:38:57 +1100 (AEDT)
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
	id S1750857AbdKCEi4 (ORCPT <rfc822;incoming@patchwork.ozlabs.org>);
	Fri, 3 Nov 2017 00:38:56 -0400
Received: from mail-pg0-f66.google.com ([74.125.83.66]:56737 "EHLO
	mail-pg0-f66.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
	with ESMTP id S1750794AbdKCEiz (ORCPT
	<rfc822;kvm-ppc@vger.kernel.org>); Fri, 3 Nov 2017 00:38:55 -0400
Received: by mail-pg0-f66.google.com with SMTP id m18so1488835pgd.13
	for <kvm-ppc@vger.kernel.org>; Thu, 02 Nov 2017 21:38:54 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
	d=gmail.com; s=20161025;
	h=from:to:cc:subject:date:message-id;
	bh=jJAv1pMpCbhNjfejTfKTru27/mgM7W8M8BYOc99HZaM=;
	b=WCc/E4paulXJvDgcij1w7jg17411RvlF9taQEFKfAhF0/Cc4z953ACXTRgKZHSF411
	iNdmWkpEZauu8YdV3/xmMUuk+XGB3LhfKKhoFwVULquGZrVL8kzQm5SEt24QMMu79UPd
	9aik3ZJ9LWA/uraLcq8DvyClrEHapntgfv5OvaDgXl7y5mOmH0e1CZb09k/UhPUHSz/I
	EgSEEwj7Ea+mSFiZ9KJ7y4BE/6yMviTyFJnagJpX5NTvzrVvU0NUcNPL975GVKeL0lVD
	j8pPbkkTVKCKGqGr3wNOPqWRAn4QLL7BwLeTt8KLOZuGoOHuL9v72sEW7Q94a5Vkgr6z
	9fuw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
	d=1e100.net; s=20161025;
	h=x-gm-message-state:from:to:cc:subject:date:message-id;
	bh=jJAv1pMpCbhNjfejTfKTru27/mgM7W8M8BYOc99HZaM=;
	b=SezsrfHWNgqI9+t5zRptbjZqes7bMGl1by94Mu0dWHZsbtrhNRS37HqZMkxCgqrX+G
	+T+B+Hf9tzrkwOrP56JD5Zel/vB2d+M1eyg7tT3QIsykJmk/9iCLNP1HdWXQJg3Y3AhO
	22rQh7m8SSXFt/3WRIg2O6fRgQagcHxNaYdZaGiNUzA/51ea4Ge7PYtBMfqDj84Nmj5W
	HsLXOhKhGLMUgD4S6HXmfuZ0arwsBJNKMW+Ydh5kNy7azSibh9FqK0awUdYVgOasg/GH
	iEAgS70vMOomaWngKAt77xzDNUoAot/pcalTQnorEg3F9n4p0uleVUDFUJ/mz8DVNija
	L8Dw==
X-Gm-Message-State: AMCzsaVbhWy5Q0QVKf6cM06kQ3FupmoRcPgRtb6ass6mcglJhLU0zXDj
	PcT0orP2XtPJ+kOeKomNPaA=
X-Google-Smtp-Source: 
 ABhQp+RbzXXtA2mm/PtPMGggbCEQmhDYZ2Bp20l7HkmfD00njVmkuzMWJByX7kQjz1+hMIn3JE+YRQ==
X-Received: by 10.101.77.202 with SMTP id q10mr5864205pgt.306.1509683934435;
	Thu, 02 Nov 2017 21:38:54 -0700 (PDT)
Received: from roar.ozlabs.ibm.com. ([122.99.82.10])
	by smtp.gmail.com with ESMTPSA id
	r22sm9286563pfl.15.2017.11.02.21.38.51
	(version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
	Thu, 02 Nov 2017 21:38:53 -0700 (PDT)
From: Nicholas Piggin <npiggin@gmail.com>
To: Paul Mackerras <paulus@ozlabs.org>
Cc: Nicholas Piggin <npiggin@gmail.com>, kvm-ppc@vger.kernel.org,
	linuxppc-dev@lists.ozlabs.org
Subject: [RFC PATCH] KVM: PPC: Book3S HV: Handle host system reset in guest
	mode
Date: Fri,  3 Nov 2017 15:38:03 +1100
Message-Id: <20171103043803.6126-1-npiggin@gmail.com>
X-Mailer: git-send-email 2.15.0
Sender: kvm-ppc-owner@vger.kernel.org
Precedence: bulk
List-ID: <kvm-ppc.vger.kernel.org>
X-Mailing-List: kvm-ppc@vger.kernel.org

If the host takes a system reset interrupt while a guest is running,
the CPU must exit the guest before processing the host exception
handler.

After this patch, taking a sysrq+x with a CPU running in a guest
gives a trace like this:

   cpu 0x27: Vector: 100 (System Reset) at [c000000fdf5776f0]
       pc: c008000010158b80: kvmppc_run_core+0x16b8/0x1ad0 [kvm_hv]
       lr: c008000010158b80: kvmppc_run_core+0x16b8/0x1ad0 [kvm_hv]
       sp: c000000fdf577850
      msr: 9000000002803033
     current = 0xc000000fdf4b1e00
     paca    = 0xc00000000fd4d680	 softe: 3	 irq_happened: 0x01
       pid   = 6608, comm = qemu-system-ppc
   Linux version 4.14.0-rc7-01489-g47e1893a404a-dirty #26 SMP
   [c000000fdf577a00] c008000010159dd4 kvmppc_vcpu_run_hv+0x3dc/0x12d0 [kvm_hv]
   [c000000fdf577b30] c0080000100a537c kvmppc_vcpu_run+0x44/0x60 [kvm]
   [c000000fdf577b60] c0080000100a1ae0 kvm_arch_vcpu_ioctl_run+0x118/0x310 [kvm]
   [c000000fdf577c00] c008000010093e98 kvm_vcpu_ioctl+0x530/0x7c0 [kvm]
   [c000000fdf577d50] c000000000357bf8 do_vfs_ioctl+0xd8/0x8c0
   [c000000fdf577df0] c000000000358448 SyS_ioctl+0x68/0x100
   [c000000fdf577e30] c00000000000b220 system_call+0x58/0x6c
   --- Exception: c01 (System Call) at 00007fff76868df0
   SP (7fff7069baf0) is in userspace

Fixes: e36d0a2ed5 ("powerpc/powernv: Implement NMI IPI with OPAL_SIGNAL_SYSTEM_RESET")
Signed-off-by: Nicholas Piggin <npiggin@gmail.com>
---

It has always been possible to sreset the host with direct scom
access, but the patch e36d0a2ed5 has significantly expanded this
functionality so in practice this is a required as a fix for it.

For 4.14 I think we will either need to fix this, or disable
e36d0a2ed5, otherwise the host could be exposed to the guest MMU
(at least with hash).

Thanks,
Nick
---
 arch/powerpc/include/asm/hw_irq.h       | 1 +
 arch/powerpc/kernel/exceptions-64s.S    | 2 ++
 arch/powerpc/kernel/irq.c               | 3 ++-
 arch/powerpc/kvm/book3s_hv.c            | 7 ++++++-
 arch/powerpc/kvm/book3s_hv_rmhandlers.S | 4 ++++
 5 files changed, 15 insertions(+), 2 deletions(-)

diff --git a/arch/powerpc/include/asm/hw_irq.h b/arch/powerpc/include/asm/hw_irq.h
index 92a3e9a79cb4..a8bbac425ae6 100644
--- a/arch/powerpc/include/asm/hw_irq.h
+++ b/arch/powerpc/include/asm/hw_irq.h
@@ -40,6 +40,7 @@
 
 #ifndef __ASSEMBLY__
 
+extern void replay_system_reset(void);
 extern void __replay_interrupt(unsigned int vector);
 
 extern void timer_interrupt(struct pt_regs *);
diff --git a/arch/powerpc/kernel/exceptions-64s.S b/arch/powerpc/kernel/exceptions-64s.S
index 651e1a0114ed..bff2ed6e3c3c 100644
--- a/arch/powerpc/kernel/exceptions-64s.S
+++ b/arch/powerpc/kernel/exceptions-64s.S
@@ -113,6 +113,7 @@ EXC_VIRT_NONE(0x4000, 0x100)
 	cmpwi	cr3,r10,2 ;						\
 	BRANCH_TO_C000(r10, system_reset_idle_common) ;			\
 1:									\
+	KVMTEST_PR(n) ;							\
 	END_FTR_SECTION_IFSET(CPU_FTR_HVMODE | CPU_FTR_ARCH_206)
 #else
 #define IDLETEST NOTEST
@@ -129,6 +130,7 @@ EXC_REAL_BEGIN(system_reset, 0x100, 0x100)
 
 EXC_REAL_END(system_reset, 0x100, 0x100)
 EXC_VIRT_NONE(0x4100, 0x100)
+TRAMP_KVM(PACA_EXNMI, 0x100)
 
 #ifdef CONFIG_PPC_P7_NAP
 EXC_COMMON_BEGIN(system_reset_idle_common)
diff --git a/arch/powerpc/kernel/irq.c b/arch/powerpc/kernel/irq.c
index efbadcbbf694..7e8259106944 100644
--- a/arch/powerpc/kernel/irq.c
+++ b/arch/powerpc/kernel/irq.c
@@ -437,7 +437,7 @@ static const u8 srr1_to_lazyirq[0x10] = {
 	PACA_IRQ_HMI,
 	0, 0, 0, 0, 0 };
 
-static noinline void replay_system_reset(void)
+void replay_system_reset(void)
 {
 	struct pt_regs regs;
 
@@ -447,6 +447,7 @@ static noinline void replay_system_reset(void)
 	system_reset_exception(&regs);
 	get_paca()->in_nmi = 0;
 }
+EXPORT_SYMBOL_GPL(replay_system_reset);
 
 void irq_set_pending_from_srr1(unsigned long srr1)
 {
diff --git a/arch/powerpc/kvm/book3s_hv.c b/arch/powerpc/kvm/book3s_hv.c
index 8f34715cfbff..31a362669fea 100644
--- a/arch/powerpc/kvm/book3s_hv.c
+++ b/arch/powerpc/kvm/book3s_hv.c
@@ -47,6 +47,7 @@
 
 #include <asm/reg.h>
 #include <asm/ppc-opcode.h>
+#include <asm/asm-prototypes.h>
 #include <asm/disassemble.h>
 #include <asm/cputable.h>
 #include <asm/cacheflush.h>
@@ -1089,9 +1090,10 @@ static int kvmppc_handle_exit_hv(struct kvm_run *run, struct kvm_vcpu *vcpu,
 		vcpu->stat.ext_intr_exits++;
 		r = RESUME_GUEST;
 		break;
-	/* HMI is hypervisor interrupt and host has handled it. Resume guest.*/
+	/* SR/HMI/PMI are HV interrupts that host has handled. Resume guest.*/
 	case BOOK3S_INTERRUPT_HMI:
 	case BOOK3S_INTERRUPT_PERFMON:
+	case BOOK3S_INTERRUPT_SYSTEM_RESET:
 		r = RESUME_GUEST;
 		break;
 	case BOOK3S_INTERRUPT_MACHINE_CHECK:
@@ -2604,6 +2606,9 @@ static void set_irq_happened(int trap)
 	case BOOK3S_INTERRUPT_HMI:
 		local_paca->irq_happened |= PACA_IRQ_HMI;
 		break;
+	case BOOK3S_INTERRUPT_SYSTEM_RESET:
+		replay_system_reset();
+		break;
 	}
 }
 
diff --git a/arch/powerpc/kvm/book3s_hv_rmhandlers.S b/arch/powerpc/kvm/book3s_hv_rmhandlers.S
index 68bf0f14a962..74958ad5efb9 100644
--- a/arch/powerpc/kvm/book3s_hv_rmhandlers.S
+++ b/arch/powerpc/kvm/book3s_hv_rmhandlers.S
@@ -1427,6 +1427,10 @@ guest_exit_cont:		/* r9 = vcpu, r12 = trap, r13 = paca */
 	/* don't overwrite fault_dar/fault_dsisr if HDSI */
 	cmpwi	r12,BOOK3S_INTERRUPT_H_DATA_STORAGE
 	beq	mc_cont
+
+	cmpwi	r12, BOOK3S_INTERRUPT_SYSTEM_RESET
+	beq	mc_cont
+
 	std	r6, VCPU_FAULT_DAR(r9)
 	stw	r7, VCPU_FAULT_DSISR(r9)