| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sat, 24 Feb 2024 20:35:46 +0530 From: <ankita@...dia.com> To: <ankita@...dia.com>, <jgg@...dia.com>, <maz@...nel.org>, <oliver.upton@...ux.dev>, <james.morse@....com>, <suzuki.poulose@....com>, <yuzenghui@...wei.com>, <reinette.chatre@...el.com>, <surenb@...gle.com>, <stefanha@...hat.com>, <brauner@...nel.org>, <catalin.marinas@....com>, <will@...nel.org>, <mark.rutland@....com>, <alex.williamson@...hat.com>, <kevin.tian@...el.com>, <yi.l.liu@...el.com>, <ardb@...nel.org>, <akpm@...ux-foundation.org>, <andreyknvl@...il.com>, <wangjinchao@...sion.com>, <gshan@...hat.com>, <shahuang@...hat.com>, <ricarkol@...gle.com>, <linux-mm@...ck.org>, <lpieralisi@...nel.org>, <rananta@...gle.com>, <ryan.roberts@....com>, <david@...hat.com>, <linus.walleij@...aro.org>, <bhe@...hat.com> CC: <aniketa@...dia.com>, <cjia@...dia.com>, <kwankhede@...dia.com>, <targupta@...dia.com>, <vsethi@...dia.com>, <acurrid@...dia.com>, <apopple@...dia.com>, <jhubbard@...dia.com>, <danw@...dia.com>, <kvmarm@...ts.linux.dev>, <mochs@...dia.com>, <zhiw@...dia.com>, <kvm@...r.kernel.org>, <linux-kernel@...r.kernel.org>, <linux-arm-kernel@...ts.infradead.org> Subject: [PATCH v9 4/4] vfio: Convey kvm that the vfio-pci device is wc safe From: Ankit Agrawal <ankita@...dia.com> The VM_ALLOW_ANY_UNCACHED flag is implemented for ARM64, allowing KVM stage 2 device mapping attributes to use Normal-NC rather than DEVICE_nGnRE, which allows guest mappings supporting write-combining attributes (WC). ARM does not architecturally guarantee this is safe, and indeed some MMIO regions like the GICv2 VCPU interface can trigger uncontained faults if Normal-NC is used. To safely use VFIO in KVM the platform must guarantee full safety in the guest where no action taken against a MMIO mapping can trigger an uncontained failure. The expectation is that most VFIO PCI platforms support this for both mapping types, at least in common flows, based on some expectations of how PCI IP is integrated. So make vfio-pci set the VM_ALLOW_ANY_UNCACHED flag. Suggested-by: Catalin Marinas <catalin.marinas@....com> Acked-by: Jason Gunthorpe <jgg@...dia.com> Acked-by: Catalin Marinas <catalin.marinas@....com> Acked-by: Alex Williamson <alex.williamson@...hat.com> Reviewed-by: David Hildenbrand <david@...hat.com> Reviewed-by: Marc Zyngier <maz@...nel.org> Signed-off-by: Ankit Agrawal <ankita@...dia.com> --- drivers/vfio/pci/vfio_pci_core.c | 19 ++++++++++++++++++- 1 file changed, 18 insertions(+), 1 deletion(-) diff --git a/drivers/vfio/pci/vfio_pci_core.c b/drivers/vfio/pci/vfio_pci_core.c index 1cbc990d42e0..df6f99bdf70d 100644 --- a/drivers/vfio/pci/vfio_pci_core.c +++ b/drivers/vfio/pci/vfio_pci_core.c @@ -1862,8 +1862,25 @@ int vfio_pci_core_mmap(struct vfio_device *core_vdev, struct vm_area_struct *vma /* * See remap_pfn_range(), called from vfio_pci_fault() but we can't * change vm_flags within the fault handler. Set them now. + * + * VM_ALLOW_ANY_UNCACHED: The VMA flag is implemented for ARM64, + * allowing KVM stage 2 device mapping attributes to use Normal-NC + * rather than DEVICE_nGnRE, which allows guest mappings + * supporting write-combining attributes (WC). ARM does not + * architecturally guarantee this is safe, and indeed some MMIO + * regions like the GICv2 VCPU interface can trigger uncontained + * faults if Normal-NC is used. + * + * To safely use VFIO in KVM the platform must guarantee full + * safety in the guest where no action taken against a MMIO + * mapping can trigger an uncontained failure. The assumption is + * that most VFIO PCI platforms support this for both mapping types, + * at least in common flows, based on some expectations of how + * PCI IP is integrated. Hence VM_ALLOW_ANY_UNCACHED is set in + * the VMA flags. */ - vm_flags_set(vma, VM_IO | VM_PFNMAP | VM_DONTEXPAND | VM_DONTDUMP); + vm_flags_set(vma, VM_ALLOW_ANY_UNCACHED | VM_IO | VM_PFNMAP | + VM_DONTEXPAND | VM_DONTDUMP); vma->vm_ops = &vfio_pci_mmap_ops; return 0; -- 2.34.1
Powered by blists - more mailing lists