From: "Kalra, Ashish" <ashish.kalra@amd.com>
To: Borislav Petkov <bp@alien8.de>
Cc: dave.hansen@linux.intel.com, tglx@linutronix.de,
mingo@redhat.com, x86@kernel.org, hpa@zytor.com,
rafael@kernel.org, peterz@infradead.org, adrian.hunter@intel.com,
sathyanarayanan.kuppuswamy@linux.intel.com,
jun.nakajima@intel.com, kirill.shutemov@linux.intel.com,
rick.p.edgecombe@intel.com, linux-kernel@vger.kernel.org,
thomas.lendacky@amd.com, michael.roth@amd.com, seanjc@google.com,
kai.huang@intel.com, bhe@redhat.com, bdas@redhat.com,
vkuznets@redhat.com, dionnaglaze@google.com, anisinha@redhat.com,
ardb@kernel.org, dyoung@redhat.com, kexec@lists.infradead.org,
linux-coco@lists.linux.dev, jroedel@suse.de
Subject: Re: [PATCH v11 3/3] x86/snp: Convert shared memory back to private on kexec
Date: Wed, 10 Jul 2024 15:12:31 -0500 [thread overview]
Message-ID: <570b2f87-2a0a-4a8b-8781-b9a70a1d87a2@amd.com> (raw)
In-Reply-To: <20240705142958.GCZogDZlbQWU5vHU34@fat_crate.local>
On 7/5/2024 9:29 AM, Borislav Petkov wrote:
> On Tue, Jul 02, 2024 at 07:58:11PM +0000, Ashish Kalra wrote:
>> +static bool make_pte_private(pte_t *pte, unsigned long addr, int pages, int level)
>> +{
>> + struct sev_es_runtime_data *data;
>> + struct ghcb *ghcb;
>> + int cpu;
>> +
>> + /*
>> + * Ensure that all the per-cpu GHCBs are made private
>> + * at the end of unshared loop so that we continue to use the
>> + * optimized GHCB protocol and not force the switch to
>> + * MSR protocol till the very end.
>> + */
>> + for_each_possible_cpu(cpu) {
>> + data = per_cpu(runtime_data, cpu);
>> + ghcb = &data->ghcb_page;
>> + /* Check for GHCB for being part of a PMD range */
>> + if ((unsigned long)ghcb >= addr &&
>> + (unsigned long)ghcb <= (addr + (pages * PAGE_SIZE)))
>> + return true;
>> + }
>> +
>> + set_pte_enc(pte, level, (void *)addr);
>> + snp_set_memory_private(addr, pages);
>> +
>> + return true;
> Zap make_pte_private()
>
> diff --git a/arch/x86/coco/sev/core.c b/arch/x86/coco/sev/core.c
> index f263ceada006..65234ffb1495 100644
> --- a/arch/x86/coco/sev/core.c
> +++ b/arch/x86/coco/sev/core.c
> @@ -1022,39 +1022,14 @@ static void set_pte_enc(pte_t *kpte, int level, void *va)
> set_pte_enc_mask(kpte, d.pfn, d.new_pgprot);
> }
>
> -static bool make_pte_private(pte_t *pte, unsigned long addr, int pages, int level)
> -{
> - struct sev_es_runtime_data *data;
> - struct ghcb *ghcb;
> - int cpu;
> -
> - /*
> - * Ensure that all the per-cpu GHCBs are made private
> - * at the end of unshared loop so that we continue to use the
> - * optimized GHCB protocol and not force the switch to
> - * MSR protocol till the very end.
> - */
> - for_each_possible_cpu(cpu) {
> - data = per_cpu(runtime_data, cpu);
> - ghcb = &data->ghcb_page;
> - /* Check for GHCB for being part of a PMD range */
> - if ((unsigned long)ghcb >= addr &&
> - (unsigned long)ghcb <= (addr + (pages * PAGE_SIZE)))
> - return true;
> - }
> -
> - set_pte_enc(pte, level, (void *)addr);
> - snp_set_memory_private(addr, pages);
> -
> - return true;
> -}
> -
> /* Walk the direct mapping and convert all shared memory back to private. */
> static void unshare_all_memory(void)
> {
> - unsigned long addr, end, size;
> + unsigned long addr, end, size, ghcb;
> + struct sev_es_runtime_data *data;
> unsigned int npages, level;
> pte_t *pte;
> + int cpu;
>
> /* Unshare the direct mapping. */
> addr = PAGE_OFFSET;
> @@ -1063,17 +1038,28 @@ static void unshare_all_memory(void)
> while (addr < end) {
> pte = lookup_address(addr, &level);
> size = page_level_size(level);
> + npages = size / PAGE_SIZE;
>
> if (!pte || !pte_decrypted(*pte) || pte_none(*pte)) {
> addr += size;
> continue;
> }
>
> - npages = size / PAGE_SIZE;
> + /*
> + * Ensure that all the per-cpu GHCBs are made private at the
> + * end of unsharing loop so that the switch to the slower MSR
> + * protocol happens last.
> + */
> + for_each_possible_cpu(cpu) {
> + data = per_cpu(runtime_data, cpu);
> + ghcb = (unsigned long)&data->ghcb_page;
> +
> + if (addr <= ghcb && ghcb <= addr + size)
> + continue;
There is an issue with this implementation, as continue does not skip the inner loop and then after the inner loop is completed makes the ghcb private instead of skipping it, so instead using a jump here.
Thanks, Ashish
> + }
>
> - if (!make_pte_private(pte, addr, npages, level))
> - pr_err("Failed to unshare range %#lx-%#lx\n",
> - addr, addr + size);
> + set_pte_enc(pte, level, (void *)addr);
> + snp_set_memory_private(addr, npages);
> }
>
> /* Unshare all bss decrypted memory. */
>
>
_______________________________________________
kexec mailing list
kexec@lists.infradead.org
http://lists.infradead.org/mailman/listinfo/kexec
next prev parent reply other threads:[~2024-07-10 20:12 UTC|newest]
Thread overview: 37+ messages / expand[flat|nested] mbox.gz Atom feed top
[not found] <20240614095904.1345461-1-kirill.shutemov@linux.intel.com>
2024-06-17 21:13 ` [PATCH v8 0/2] x86/snp: Add kexec support Ashish Kalra
2024-06-17 21:15 ` [PATCH v8 1/2] x86/boot/compressed: Skip Video Memory access in Decompressor for SEV-ES/SNP Ashish Kalra
2024-06-19 10:22 ` Borislav Petkov
2024-06-17 21:15 ` [PATCH v8 2/2] x86/snp: Convert shared memory back to private on kexec Ashish Kalra
2024-06-20 22:22 ` [PATCH v9 0/3] x86/snp: Add kexec support Ashish Kalra
2024-06-20 22:23 ` [PATCH v9 1/3] x86/sev: Move SEV compilation units Ashish Kalra
2024-06-20 22:23 ` [PATCH v9 2/3] x86/boot: Skip video memory access in the decompressor for SEV-ES/SNP Ashish Kalra
2024-06-24 15:03 ` Tom Lendacky
2024-06-20 22:23 ` [PATCH v9 3/3] x86/snp: Convert shared memory back to private on kexec Ashish Kalra
2024-06-24 15:18 ` Tom Lendacky
2024-06-24 18:26 ` Borislav Petkov
2024-06-24 20:57 ` Kalra, Ashish
2024-06-25 3:59 ` Borislav Petkov
2024-06-28 4:27 ` Kalra, Ashish
2024-06-28 14:01 ` Tom Lendacky
2024-06-28 19:14 ` Kalra, Ashish
2024-06-28 20:33 ` Kalra, Ashish
2024-06-24 18:21 ` [PATCH v10 0/2] x86/snp: Add kexec support Ashish Kalra
2024-06-24 18:21 ` [PATCH v10 1/2] x86/boot: Skip video memory access in the decompressor for SEV-ES/SNP Ashish Kalra
2024-06-24 18:22 ` [PATCH v10 2/2] Subject: [PATCH v9 3/3] x86/snp: Convert shared memory back to private on kexec Ashish Kalra
2024-07-02 19:56 ` [PATCH v11 0/3] x86/snp: Add kexec support Ashish Kalra
2024-07-02 19:57 ` [PATCH v11 1/3] x86/boot: Skip video memory access in the decompressor for SEV-ES/SNP Ashish Kalra
2024-07-02 19:57 ` [PATCH v11 2/3] x86/mm: refactor __set_clr_pte_enc() Ashish Kalra
2024-07-05 14:26 ` Borislav Petkov
2024-07-02 19:58 ` [PATCH v11 3/3] x86/snp: Convert shared memory back to private on kexec Ashish Kalra
2024-07-05 14:28 ` Borislav Petkov
2024-07-05 14:29 ` Borislav Petkov
2024-07-10 20:12 ` Kalra, Ashish [this message]
2024-07-30 19:20 ` [PATCH v12 0/3] x86/snp: Add kexec support Ashish Kalra
2024-07-30 19:21 ` [PATCH v12 1/3] x86/boot: Skip video memory access in the decompressor for SEV-ES/SNP Ashish Kalra
2024-07-30 19:21 ` [PATCH v12 2/3] x86/mm: refactor __set_clr_pte_enc() Ashish Kalra
2024-07-30 19:22 ` [PATCH v12 3/3] x86/snp: Convert shared memory back to private on kexec Ashish Kalra
2024-08-01 19:14 ` [PATCH v13 0/3] x86/snp: Add kexec support Ashish Kalra
2024-08-01 19:14 ` [PATCH v13 1/3] x86/boot: Skip video memory access in the decompressor for SEV-ES/SNP Ashish Kalra
2024-08-01 19:14 ` [PATCH v13 2/3] x86/mm: refactor __set_clr_pte_enc() Ashish Kalra
2024-10-28 16:15 ` Tom Lendacky
2024-08-01 19:14 ` [PATCH v13 3/3] x86/snp: Convert shared memory back to private on kexec Ashish Kalra
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=570b2f87-2a0a-4a8b-8781-b9a70a1d87a2@amd.com \
--to=ashish.kalra@amd.com \
--cc=adrian.hunter@intel.com \
--cc=anisinha@redhat.com \
--cc=ardb@kernel.org \
--cc=bdas@redhat.com \
--cc=bhe@redhat.com \
--cc=bp@alien8.de \
--cc=dave.hansen@linux.intel.com \
--cc=dionnaglaze@google.com \
--cc=dyoung@redhat.com \
--cc=hpa@zytor.com \
--cc=jroedel@suse.de \
--cc=jun.nakajima@intel.com \
--cc=kai.huang@intel.com \
--cc=kexec@lists.infradead.org \
--cc=kirill.shutemov@linux.intel.com \
--cc=linux-coco@lists.linux.dev \
--cc=linux-kernel@vger.kernel.org \
--cc=michael.roth@amd.com \
--cc=mingo@redhat.com \
--cc=peterz@infradead.org \
--cc=rafael@kernel.org \
--cc=rick.p.edgecombe@intel.com \
--cc=sathyanarayanan.kuppuswamy@linux.intel.com \
--cc=seanjc@google.com \
--cc=tglx@linutronix.de \
--cc=thomas.lendacky@amd.com \
--cc=vkuznets@redhat.com \
--cc=x86@kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox