From: Bharata B Rao <bharata@linux.ibm.com>
To: linuxppc-dev@lists.ozlabs.org, kvm-ppc@vger.kernel.org,
linux-mm@kvack.org
Cc: paulus@au1.ibm.com, aneesh.kumar@linux.vnet.ibm.com,
jglisse@redhat.com, cclaudio@linux.ibm.com, linuxram@us.ibm.com,
sukadev@linux.vnet.ibm.com, hch@lst.de,
Bharata B Rao <bharata@linux.ibm.com>
Subject: [PATCH v11 0/7] KVM: PPC: Driver to manage pages of secure guest
Date: Mon, 25 Nov 2019 03:18:24 +0000 [thread overview]
Message-ID: <20191125030631.7716-1-bharata@linux.ibm.com> (raw)
Hi,
This is the next version of the patchset that adds required support
in the KVM hypervisor to run secure guests on PEF-enabled POWER platforms.
This version includes the following changes:
- Ensure that any malicious calls to the 4 hcalls (init_start, init_done,
page_in and page_out) are handled safely by returning appropriate
errors (Paul Mackerras)
- init_start hcall should work for only radix guests.
- Fix the page-size-order argument in uv_page_inval (Ram Pai)
- Don't free up partition scoped page tables in HV when guest
becomes secure (Paul Mackerras)
- During guest reset, when we unpin VPA pages, make sure that no vcpu
is running and fail the SVM_OFF ioctl if any are running (Paul Mackerras)
- Dropped the patch that implemented init_abort hcall as it still has
unresolved questions.
Anshuman Khandual (1):
KVM: PPC: Ultravisor: Add PPC_UV config option
Bharata B Rao (6):
mm: ksm: Export ksm_madvise()
KVM: PPC: Support for running secure guests
KVM: PPC: Shared pages support for secure guests
KVM: PPC: Radix changes for secure guest
KVM: PPC: Handle memory plug/unplug to secure VM
KVM: PPC: Support reset of secure guest
Documentation/virt/kvm/api.txt | 18 +
arch/powerpc/Kconfig | 17 +
arch/powerpc/include/asm/hvcall.h | 9 +
arch/powerpc/include/asm/kvm_book3s_uvmem.h | 74 ++
arch/powerpc/include/asm/kvm_host.h | 6 +
arch/powerpc/include/asm/kvm_ppc.h | 1 +
arch/powerpc/include/asm/ultravisor-api.h | 6 +
arch/powerpc/include/asm/ultravisor.h | 36 +
arch/powerpc/kvm/Makefile | 3 +
arch/powerpc/kvm/book3s_64_mmu_radix.c | 25 +
arch/powerpc/kvm/book3s_hv.c | 143 ++++
arch/powerpc/kvm/book3s_hv_uvmem.c | 774 ++++++++++++++++++++
arch/powerpc/kvm/powerpc.c | 12 +
include/uapi/linux/kvm.h | 1 +
mm/ksm.c | 1 +
15 files changed, 1126 insertions(+)
create mode 100644 arch/powerpc/include/asm/kvm_book3s_uvmem.h
create mode 100644 arch/powerpc/kvm/book3s_hv_uvmem.c
--
2.21.0
WARNING: multiple messages have this Message-ID (diff)
From: Bharata B Rao <bharata@linux.ibm.com>
To: linuxppc-dev@lists.ozlabs.org, kvm-ppc@vger.kernel.org,
linux-mm@kvack.org
Cc: linuxram@us.ibm.com, cclaudio@linux.ibm.com,
Bharata B Rao <bharata@linux.ibm.com>,
jglisse@redhat.com, aneesh.kumar@linux.vnet.ibm.com,
paulus@au1.ibm.com, sukadev@linux.vnet.ibm.com, hch@lst.de
Subject: [PATCH v11 0/7] KVM: PPC: Driver to manage pages of secure guest
Date: Mon, 25 Nov 2019 08:36:24 +0530 [thread overview]
Message-ID: <20191125030631.7716-1-bharata@linux.ibm.com> (raw)
Hi,
This is the next version of the patchset that adds required support
in the KVM hypervisor to run secure guests on PEF-enabled POWER platforms.
This version includes the following changes:
- Ensure that any malicious calls to the 4 hcalls (init_start, init_done,
page_in and page_out) are handled safely by returning appropriate
errors (Paul Mackerras)
- init_start hcall should work for only radix guests.
- Fix the page-size-order argument in uv_page_inval (Ram Pai)
- Don't free up partition scoped page tables in HV when guest
becomes secure (Paul Mackerras)
- During guest reset, when we unpin VPA pages, make sure that no vcpu
is running and fail the SVM_OFF ioctl if any are running (Paul Mackerras)
- Dropped the patch that implemented init_abort hcall as it still has
unresolved questions.
Anshuman Khandual (1):
KVM: PPC: Ultravisor: Add PPC_UV config option
Bharata B Rao (6):
mm: ksm: Export ksm_madvise()
KVM: PPC: Support for running secure guests
KVM: PPC: Shared pages support for secure guests
KVM: PPC: Radix changes for secure guest
KVM: PPC: Handle memory plug/unplug to secure VM
KVM: PPC: Support reset of secure guest
Documentation/virt/kvm/api.txt | 18 +
arch/powerpc/Kconfig | 17 +
arch/powerpc/include/asm/hvcall.h | 9 +
arch/powerpc/include/asm/kvm_book3s_uvmem.h | 74 ++
arch/powerpc/include/asm/kvm_host.h | 6 +
arch/powerpc/include/asm/kvm_ppc.h | 1 +
arch/powerpc/include/asm/ultravisor-api.h | 6 +
arch/powerpc/include/asm/ultravisor.h | 36 +
arch/powerpc/kvm/Makefile | 3 +
arch/powerpc/kvm/book3s_64_mmu_radix.c | 25 +
arch/powerpc/kvm/book3s_hv.c | 143 ++++
arch/powerpc/kvm/book3s_hv_uvmem.c | 774 ++++++++++++++++++++
arch/powerpc/kvm/powerpc.c | 12 +
include/uapi/linux/kvm.h | 1 +
mm/ksm.c | 1 +
15 files changed, 1126 insertions(+)
create mode 100644 arch/powerpc/include/asm/kvm_book3s_uvmem.h
create mode 100644 arch/powerpc/kvm/book3s_hv_uvmem.c
--
2.21.0
WARNING: multiple messages have this Message-ID (diff)
From: Bharata B Rao <bharata@linux.ibm.com>
To: linuxppc-dev@lists.ozlabs.org, kvm-ppc@vger.kernel.org,
linux-mm@kvack.org
Cc: paulus@au1.ibm.com, aneesh.kumar@linux.vnet.ibm.com,
jglisse@redhat.com, cclaudio@linux.ibm.com, linuxram@us.ibm.com,
sukadev@linux.vnet.ibm.com, hch@lst.de,
Bharata B Rao <bharata@linux.ibm.com>
Subject: [PATCH v11 0/7] KVM: PPC: Driver to manage pages of secure guest
Date: Mon, 25 Nov 2019 08:36:24 +0530 [thread overview]
Message-ID: <20191125030631.7716-1-bharata@linux.ibm.com> (raw)
Hi,
This is the next version of the patchset that adds required support
in the KVM hypervisor to run secure guests on PEF-enabled POWER platforms.
This version includes the following changes:
- Ensure that any malicious calls to the 4 hcalls (init_start, init_done,
page_in and page_out) are handled safely by returning appropriate
errors (Paul Mackerras)
- init_start hcall should work for only radix guests.
- Fix the page-size-order argument in uv_page_inval (Ram Pai)
- Don't free up partition scoped page tables in HV when guest
becomes secure (Paul Mackerras)
- During guest reset, when we unpin VPA pages, make sure that no vcpu
is running and fail the SVM_OFF ioctl if any are running (Paul Mackerras)
- Dropped the patch that implemented init_abort hcall as it still has
unresolved questions.
Anshuman Khandual (1):
KVM: PPC: Ultravisor: Add PPC_UV config option
Bharata B Rao (6):
mm: ksm: Export ksm_madvise()
KVM: PPC: Support for running secure guests
KVM: PPC: Shared pages support for secure guests
KVM: PPC: Radix changes for secure guest
KVM: PPC: Handle memory plug/unplug to secure VM
KVM: PPC: Support reset of secure guest
Documentation/virt/kvm/api.txt | 18 +
arch/powerpc/Kconfig | 17 +
arch/powerpc/include/asm/hvcall.h | 9 +
arch/powerpc/include/asm/kvm_book3s_uvmem.h | 74 ++
arch/powerpc/include/asm/kvm_host.h | 6 +
arch/powerpc/include/asm/kvm_ppc.h | 1 +
arch/powerpc/include/asm/ultravisor-api.h | 6 +
arch/powerpc/include/asm/ultravisor.h | 36 +
arch/powerpc/kvm/Makefile | 3 +
arch/powerpc/kvm/book3s_64_mmu_radix.c | 25 +
arch/powerpc/kvm/book3s_hv.c | 143 ++++
arch/powerpc/kvm/book3s_hv_uvmem.c | 774 ++++++++++++++++++++
arch/powerpc/kvm/powerpc.c | 12 +
include/uapi/linux/kvm.h | 1 +
mm/ksm.c | 1 +
15 files changed, 1126 insertions(+)
create mode 100644 arch/powerpc/include/asm/kvm_book3s_uvmem.h
create mode 100644 arch/powerpc/kvm/book3s_hv_uvmem.c
--
2.21.0
next reply other threads:[~2019-11-25 3:18 UTC|newest]
Thread overview: 42+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-11-25 3:06 Bharata B Rao [this message]
2019-11-25 3:18 ` [PATCH v11 0/7] KVM: PPC: Driver to manage pages of secure guest Bharata B Rao
2019-11-25 3:06 ` Bharata B Rao
2019-11-25 3:06 ` [PATCH v11 1/7] mm: ksm: Export ksm_madvise() Bharata B Rao
2019-11-25 3:18 ` Bharata B Rao
2019-11-25 3:06 ` Bharata B Rao
2019-11-25 3:09 ` Bharata B Rao
2019-11-25 3:21 ` Bharata B Rao
2019-11-25 3:09 ` Bharata B Rao
2019-11-27 3:59 ` Hugh Dickins
2019-11-27 3:59 ` Hugh Dickins
2019-11-27 3:59 ` Hugh Dickins
2019-11-27 6:53 ` Bharata B Rao
2019-11-27 6:53 ` Bharata B Rao
2019-11-27 6:53 ` Bharata B Rao
2019-11-25 3:06 ` [PATCH v11 2/7] KVM: PPC: Support for running secure guests Bharata B Rao
2019-11-25 3:18 ` Bharata B Rao
2019-11-25 3:06 ` Bharata B Rao
2019-11-25 3:06 ` [PATCH v11 3/7] KVM: PPC: Shared pages support for " Bharata B Rao
2019-11-25 3:18 ` Bharata B Rao
2019-11-25 3:06 ` Bharata B Rao
2019-11-25 3:06 ` [PATCH v11 4/7] KVM: PPC: Radix changes for secure guest Bharata B Rao
2019-11-25 3:18 ` Bharata B Rao
2019-11-25 3:06 ` Bharata B Rao
2019-11-25 3:06 ` [PATCH v11 5/7] KVM: PPC: Handle memory plug/unplug to secure VM Bharata B Rao
2019-11-25 3:18 ` Bharata B Rao
2019-11-25 3:06 ` Bharata B Rao
2019-11-25 3:06 ` [PATCH v11 6/7] KVM: PPC: Support reset of secure guest Bharata B Rao
2019-11-25 3:18 ` Bharata B Rao
2019-11-25 3:06 ` Bharata B Rao
2019-11-25 3:06 ` [PATCH v11 7/7] KVM: PPC: Ultravisor: Add PPC_UV config option Bharata B Rao
2019-11-25 3:18 ` Bharata B Rao
2019-11-25 3:06 ` Bharata B Rao
2019-11-28 5:04 ` [PATCH v11 0/7] KVM: PPC: Driver to manage pages of secure guest Bharata B Rao
2019-11-28 5:16 ` Bharata B Rao
2019-11-28 5:04 ` Bharata B Rao
2019-12-01 20:24 ` Hugh Dickins
2019-12-01 20:24 ` Hugh Dickins
2019-12-01 20:24 ` Hugh Dickins
2019-12-03 9:44 ` Bharata B Rao
2019-12-03 9:56 ` Bharata B Rao
2019-12-03 9:44 ` Bharata B Rao
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20191125030631.7716-1-bharata@linux.ibm.com \
--to=bharata@linux.ibm.com \
--cc=aneesh.kumar@linux.vnet.ibm.com \
--cc=cclaudio@linux.ibm.com \
--cc=hch@lst.de \
--cc=jglisse@redhat.com \
--cc=kvm-ppc@vger.kernel.org \
--cc=linux-mm@kvack.org \
--cc=linuxppc-dev@lists.ozlabs.org \
--cc=linuxram@us.ibm.com \
--cc=paulus@au1.ibm.com \
--cc=sukadev@linux.vnet.ibm.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.