| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <39081490-cb20-4ec2-8384-1f1ccfdb336b@redhat.com> Date: Thu, 31 Jul 2025 10:06:49 +0200 From: David Hildenbrand <david@...hat.com> To: Xiaoyao Li <xiaoyao.li@...el.com>, Sean Christopherson <seanjc@...gle.com>, Paolo Bonzini <pbonzini@...hat.com>, Marc Zyngier <maz@...nel.org>, Oliver Upton <oliver.upton@...ux.dev> Cc: kvm@...r.kernel.org, linux-arm-kernel@...ts.infradead.org, kvmarm@...ts.linux.dev, linux-kernel@...r.kernel.org, Ira Weiny <ira.weiny@...el.com>, Gavin Shan <gshan@...hat.com>, Shivank Garg <shivankg@....com>, Vlastimil Babka <vbabka@...e.cz>, Fuad Tabba <tabba@...gle.com>, Ackerley Tng <ackerleytng@...gle.com>, Tao Chan <chentao@...inos.cn>, James Houghton <jthoughton@...gle.com> Subject: Re: [PATCH v17 14/24] KVM: x86/mmu: Enforce guest_memfd's max order when recovering hugepages On 30.07.25 09:33, Xiaoyao Li wrote: > On 7/30/2025 6:54 AM, Sean Christopherson wrote: >> Rework kvm_mmu_max_mapping_level() to provide the plumbing to consult >> guest_memfd (and relevant vendor code) when recovering hugepages, e.g. >> after disabling live migration. The flaw has existed since guest_memfd was >> originally added, but has gone unnoticed due to lack of guest_memfd support >> for hugepages or dirty logging. >> >> Don't actually call into guest_memfd at this time, as it's unclear as to >> what the API should be. Ideally, KVM would simply use kvm_gmem_get_pfn(), >> but invoking kvm_gmem_get_pfn() would lead to sleeping in atomic context >> if guest_memfd needed to allocate memory (mmu_lock is held). Luckily, >> the path isn't actually reachable, so just add a TODO and WARN to ensure >> the functionality is added alongisde guest_memfd hugepage support, and >> punt the guest_memfd API design question to the future. >> >> Note, calling kvm_mem_is_private() in the non-fault path is safe, so long >> as mmu_lock is held, as hugepage recovery operates on shadow-present SPTEs, >> i.e. calling kvm_mmu_max_mapping_level() with @fault=NULL is mutually >> exclusive with kvm_vm_set_mem_attributes() changing the PRIVATE attribute >> of the gfn. >> >> Signed-off-by: Sean Christopherson <seanjc@...gle.com> >> --- >> arch/x86/kvm/mmu/mmu.c | 82 +++++++++++++++++++-------------- >> arch/x86/kvm/mmu/mmu_internal.h | 2 +- >> arch/x86/kvm/mmu/tdp_mmu.c | 2 +- >> 3 files changed, 49 insertions(+), 37 deletions(-) >> >> diff --git a/arch/x86/kvm/mmu/mmu.c b/arch/x86/kvm/mmu/mmu.c >> index 20dd9f64156e..61eb9f723675 100644 >> --- a/arch/x86/kvm/mmu/mmu.c >> +++ b/arch/x86/kvm/mmu/mmu.c >> @@ -3302,31 +3302,54 @@ static u8 kvm_max_level_for_order(int order) >> return PG_LEVEL_4K; >> } >> >> -static u8 kvm_max_private_mapping_level(struct kvm *kvm, kvm_pfn_t pfn, >> - u8 max_level, int gmem_order) >> +static u8 kvm_max_private_mapping_level(struct kvm *kvm, struct kvm_page_fault *fault, >> + const struct kvm_memory_slot *slot, gfn_t gfn) > > I don't see why slot and gfn are needed here. Just to keep consistent > with host_pfn_mapping_level()? > I assume as a preparation to implement the TODO. Reviewed-by: David Hildenbrand <david@...hat.com> -- Cheers, David / dhildenb
Powered by blists - more mailing lists