From: Oliver Upton <oupton@kernel.org>
To: kvmarm@lists.linux.dev
Cc: Marc Zyngier <maz@kernel.org>, Joey Gouly <joey.gouly@arm.com>,
Suzuki K Poulose <suzuki.poulose@arm.com>,
Zenghui Yu <yuzenghui@huawei.com>,
Wei-Lin Chang <weilin.chang@arm.com>,
Steffen Eiden <seiden@linux.ibm.com>,
Oliver Upton <oupton@kernel.org>
Subject: [PATCH 21/22] KVM: arm64: selftests: Test AT emulation for FEAT_HAFT
Date: Tue, 23 Jun 2026 11:42:00 -0700 [thread overview]
Message-ID: <20260623184201.1518871-22-oupton@kernel.org> (raw)
In-Reply-To: <20260623184201.1518871-1-oupton@kernel.org>
Test that KVM's AT emulation sets the access flag on table descriptors
when FEAT_HAFT is enabled at stage-1. Additionally, add test coverage
that asserts the access flag is clear on table/page descriptors when the
AT instruction generates an access flag fault.
Signed-off-by: Oliver Upton <oupton@kernel.org>
---
tools/testing/selftests/kvm/arm64/at.c | 74 +++++++++++++++++++++++---
1 file changed, 66 insertions(+), 8 deletions(-)
diff --git a/tools/testing/selftests/kvm/arm64/at.c b/tools/testing/selftests/kvm/arm64/at.c
index d7289f3df04f..fb7399736f44 100644
--- a/tools/testing/selftests/kvm/arm64/at.c
+++ b/tools/testing/selftests/kvm/arm64/at.c
@@ -13,10 +13,11 @@
enum {
CLEAR_ACCESS_FLAG,
- TEST_ACCESS_FLAG,
+ ASSERT_ACCESS_FLAG_SET,
+ ASSERT_ACCESS_FLAG_CLEAR,
};
-static u64 *ptep_hva;
+static u64 *page_ptep, *table_ptep;
#define copy_el2_to_el1(reg) \
write_sysreg_s(read_sysreg_s(SYS_##reg##_EL1), SYS_##reg##_EL12)
@@ -45,11 +46,12 @@ do { \
__GUEST_ASSERT(fsc == ESR_ELx_FSC_ACCESS_L(3), \
"AT "#op": expected access flag fault (par: %lx)", \
par); \
+ GUEST_SYNC(ASSERT_ACCESS_FLAG_CLEAR); \
} else { \
GUEST_ASSERT_EQ(FIELD_GET(SYS_PAR_EL1_ATTR, par), MAIR_ATTR_NORMAL); \
GUEST_ASSERT_EQ(FIELD_GET(SYS_PAR_EL1_SH, par), PTE_SHARED >> 8); \
GUEST_ASSERT_EQ(par & SYS_PAR_EL1_PA, TEST_ADDR); \
- GUEST_SYNC(TEST_ACCESS_FLAG); \
+ GUEST_SYNC(ASSERT_ACCESS_FLAG_SET); \
} \
} while (0)
@@ -68,6 +70,14 @@ static void test_at(bool expect_fault)
isb();
}
+static bool guest_has_haft(void)
+{
+ u64 mmfr1 = read_sysreg(id_aa64mmfr1_el1);
+
+ return SYS_FIELD_GET(ID_AA64MMFR1_EL1, HAFDBS, mmfr1) >=
+ ID_AA64MMFR1_EL1_HAFDBS_HAFT;
+}
+
static void guest_code(void)
{
/* Reuse the stage-1 MMU context from EL2 at EL1 */
@@ -93,9 +103,43 @@ static void guest_code(void)
isb();
test_at(false);
+ if (!guest_has_haft())
+ GUEST_DONE();
+
+ sysrec_clear_set_s(SYS_HCRX_EL2, 0, HCRX_EL2_TCR2En);
+ sysreg_clear_set_s(SYS_TCR2_EL12, 0, TCR2_EL1_HAFT);
+ isb();
+ test_at(false);
+
+ /* The effective value of HAFT is 0 if HA is 0 */
+ sysreg_clear_set_s(SYS_TCR_EL12, TCR_HA, 0);
+ isb();
+ test_at(true);
+
+ /* The effective value of HAFT is 0 if HCRX_EL2.TCR2En is 0 */
+ sysreg_clear_set_s(SYS_HCRX_EL2, HCRX_EL2_TCR2En, 0);
+ sysreg_clear_set_s(SYS_TCR_EL12, 0, TCR_HA);
+ isb();
+ test_at(false);
+
GUEST_DONE();
}
+static bool vcpu_haft_enabled(struct kvm_vcpu *vcpu)
+{
+ u64 mmfr1 = vcpu_get_reg(vcpu, KVM_ARM64_SYS_REG(SYS_ID_AA64MMFR1_EL1));
+ u8 hafdbs = SYS_FIELD_GET(ID_AA64MMFR1_EL1, HAFDBS, mmfr1);
+ u64 tcr2, hcrx;
+
+ /* FEAT_HAFT implies FEAT_TCRX, FEAT_HCX */
+ if (hafdbs < ID_AA64MMFR1_EL1_HAFDBS_HAFT)
+ return false;
+
+ hcrx = vcpu_get_reg(vcpu, KVM_ARM64_SYS_REG(SYS_HCRX_EL2));
+ tcr2 = vcpu_get_reg(vcpu, KVM_ARM64_SYS_REG(SYS_TCR2_EL1));
+ return hcrx & HCRX_EL2_TCR2En && tcr2 & TCR2_EL1_HAFT;
+}
+
static void handle_sync(struct kvm_vcpu *vcpu, struct ucall *uc)
{
switch (uc->args[1]) {
@@ -109,12 +153,25 @@ static void handle_sync(struct kvm_vcpu *vcpu, struct ucall *uc)
* ensures that the access flag cannot be set speculatively
* and is reliably cleared at the time of the AT instruction.
*/
- clear_bit(__ffs(PTE_AF), ptep_hva);
+ clear_bit(__ffs(PTE_AF), page_ptep);
+ clear_bit(__ffs(PTE_AF), table_ptep);
vm_mem_region_reload(vcpu->vm, vcpu->vm->memslots[MEM_REGION_PT]);
break;
- case TEST_ACCESS_FLAG:
- TEST_ASSERT(test_bit(__ffs(PTE_AF), ptep_hva),
- "Expected access flag to be set (desc: %lu)", *ptep_hva);
+ case ASSERT_ACCESS_FLAG_SET:
+ TEST_ASSERT(test_bit(__ffs(PTE_AF), page_ptep),
+ "Expected access flag to be set (desc: %lu)", *page_ptep);
+ if (!vcpu_haft_enabled(vcpu))
+ TEST_ASSERT(!test_bit(__ffs(PTE_AF), table_ptep),
+ "Expected access flag to be clear (desc: %lu)", *table_ptep);
+ else
+ TEST_ASSERT(test_bit(__ffs(PTE_AF), table_ptep),
+ "Expected access flag to be set (desc: %lu)", *table_ptep);
+ break;
+ case ASSERT_ACCESS_FLAG_CLEAR:
+ TEST_ASSERT(!test_bit(__ffs(PTE_AF), page_ptep),
+ "Expected access flag to be clear (desc: %lu)", *page_ptep);
+ TEST_ASSERT(!test_bit(__ffs(PTE_AF), table_ptep),
+ "Expected access flag to be clear (desc: %lu)", *table_ptep);
break;
default:
TEST_FAIL("Unexpected SYNC arg: %lu", uc->args[1]);
@@ -158,7 +215,8 @@ int main(void)
kvm_arch_vm_finalize_vcpus(vm);
virt_map(vm, TEST_ADDR, TEST_ADDR, 1);
- ptep_hva = virt_get_pte_hva_at_level(vm, TEST_ADDR, 3);
+ page_ptep = virt_get_pte_hva_at_level(vm, TEST_ADDR, 3);
+ table_ptep = virt_get_pte_hva_at_level(vm, TEST_ADDR, 2);
run_test(vcpu);
kvm_vm_free(vm);
--
2.47.3
next prev parent reply other threads:[~2026-06-23 18:42 UTC|newest]
Thread overview: 40+ messages / expand[flat|nested] mbox.gz Atom feed top
2026-06-23 18:41 [PATCH 00/22] KVM: arm64: nv: Implement FEAT_HAFDBS, FEAT_HAFT Oliver Upton
2026-06-23 18:41 ` [PATCH 01/22] KVM: arm64: nv: Introduce struct for stage-2 walk step Oliver Upton
2026-06-23 18:41 ` [PATCH 02/22] KVM: arm64: nv: Consolidate computation of stage-2 permissions Oliver Upton
2026-06-23 18:57 ` sashiko-bot
2026-06-23 18:41 ` [PATCH 03/22] KVM: arm64: nv: Get rid of kvm_s2_trans*() accessors Oliver Upton
2026-06-23 18:41 ` [PATCH 04/22] KVM: arm64: nv: Only shadow writable-dirty guest descs as writable Oliver Upton
2026-06-23 18:58 ` sashiko-bot
2026-06-23 20:05 ` Oliver Upton
2026-06-23 18:41 ` [PATCH 05/22] KVM: arm64: nv: Pass an access descriptor for stage-2 walks Oliver Upton
2026-06-23 19:06 ` sashiko-bot
2026-06-23 18:41 ` [PATCH 06/22] KVM: arm64: nv: Use a helper for stage-2 descriptor updates Oliver Upton
2026-06-23 18:41 ` [PATCH 07/22] KVM: arm64: nv: Set dirty state at stage-2 Oliver Upton
2026-06-23 19:03 ` sashiko-bot
2026-06-23 18:41 ` [PATCH 08/22] KVM: arm64: nv: Treat DBM as writable " Oliver Upton
2026-06-23 18:55 ` sashiko-bot
2026-06-23 20:08 ` Oliver Upton
2026-06-23 18:41 ` [PATCH 09/22] KVM: arm64: Compute S1 permissions as part of s1_walk() Oliver Upton
2026-06-23 18:41 ` [PATCH 10/22] KVM: arm64: Plumb through access descriptor for stage-1 Oliver Upton
2026-06-23 18:41 ` [PATCH 11/22] KVM: arm64: Use a struct for stage-1 walk context Oliver Upton
2026-06-23 18:41 ` [PATCH 12/22] KVM: arm64: Create helper for stage-1 descriptor updates Oliver Upton
2026-06-23 18:55 ` sashiko-bot
2026-06-23 18:41 ` [PATCH 13/22] KVM: arm64: Set dirty state at stage-1 Oliver Upton
2026-06-23 18:54 ` sashiko-bot
2026-06-23 18:41 ` [PATCH 14/22] KVM: arm64: Grant write permission when DBM is set at S1 Oliver Upton
2026-06-23 18:57 ` sashiko-bot
2026-06-23 18:41 ` [PATCH 15/22] KVM: arm64: Don't update descriptors for "non-arch" access Oliver Upton
2026-06-23 18:41 ` [PATCH 16/22] KVM: arm64: nv: Expose FEAT_HAFDBS Oliver Upton
2026-06-23 19:01 ` sashiko-bot
2026-06-23 18:41 ` [PATCH 17/22] KVM: arm64: Set Access flag on table descriptors at stage-1 Oliver Upton
2026-06-23 20:56 ` sashiko-bot
2026-06-23 18:41 ` [PATCH 18/22] KVM: arm64: nv: Set access flag on table descriptors at stage-2 Oliver Upton
2026-06-23 19:05 ` sashiko-bot
2026-06-23 20:14 ` Oliver Upton
2026-06-23 18:41 ` [PATCH 19/22] KVM: arm64: nv: Expose FEAT_HAFT Oliver Upton
2026-06-23 19:05 ` sashiko-bot
2026-06-23 18:41 ` [PATCH 20/22] KVM: arm64: selftests: Only test AF behavior for emulated AT insns Oliver Upton
2026-06-23 18:42 ` Oliver Upton [this message]
2026-06-23 19:05 ` [PATCH 21/22] KVM: arm64: selftests: Test AT emulation for FEAT_HAFT sashiko-bot
2026-06-23 20:17 ` Oliver Upton
2026-06-23 18:42 ` [PATCH 22/22] HACK: KVM: arm64: nv: Set the dirty state for CMOs that fetch for write Oliver Upton
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20260623184201.1518871-22-oupton@kernel.org \
--to=oupton@kernel.org \
--cc=joey.gouly@arm.com \
--cc=kvmarm@lists.linux.dev \
--cc=maz@kernel.org \
--cc=seiden@linux.ibm.com \
--cc=suzuki.poulose@arm.com \
--cc=weilin.chang@arm.com \
--cc=yuzenghui@huawei.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.