Received: by 10.192.165.148 with SMTP id m20csp2479638imm; Sun, 22 Apr 2018 07:55:32 -0700 (PDT) X-Google-Smtp-Source: AIpwx4/iymFPZwWrgBphw8IyqohS3ABXLeD4EgORoaVVISXLZ+meEs0aZBN9PylnXCJU2MIR/H17 X-Received: by 10.98.201.137 with SMTP id l9mr16474724pfk.221.1524408932224; Sun, 22 Apr 2018 07:55:32 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1524408932; cv=none; d=google.com; s=arc-20160816; b=c0AiWXEjiHUelW1/kAT/G9tQVxBtU+4bUhDL1LZz/aS8sdp5i+5Thk9uIdcv36isv/ KbXmyP31T7yp1/8ntKgdBpRMY4n5LBOAsLCoQaJvOvmSacB/I+jMM/agK9uyWuLWMDdk iUYR/HkIjNpS03Nfd29pnHc6Hj7C9VBpx7SWJB9nSxXqnb/Y4NF8VazPMpxHLsGB0B6e /5P5HVSYZ0nQ6CuCoZNSycIrQlflOXzsGnJDsxCRjWtwi28phB3SelgVPp50fk9SEDQU l7HAxauepvStX+OYfG2pzdtaNPS1neUabHN1e619bEhdqhhy00NHr4YfytBZefd/zuuw 3gxA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:message-id:content-language :content-transfer-encoding:in-reply-to:mime-version:user-agent:date :from:references:cc:to:subject:arc-authentication-results; bh=FzEJM/avflyccJucJm+HeZDQlGNjrCFwFxdy2A9x38c=; b=pwNwqxur8UMUF4eDUDBap+hB0d+jkRovzFEJ8Orm6SAH09BG1En4EUmlS4Cih4HjoC R4C3PNpPQg5rfydTChMED0AOwHB8W/adT6ZXBAAR08D9XwldDQNLqkm2cC6t9hVNF5l0 /+WLrxgghjuWkVHH2rAgYIaHw0S/lG8+X05xH/6Jlxkf5hjVZSUWlCy+l4cq+aUxzj0r nsUDAZkCQeowl8KXkxs9Xy3lqBbb0jXSMtcwMdGGxGbGN1S4rEM/1wu42cznHO7yxBRU oAK9untBmzl3vhfUyAHDSw7A6vc3EoEj8ZikNDIkTifuxHRf92rm0jrFMZI11q7vqRSX jAxQ== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=ibm.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id y9si8463163pgp.525.2018.04.22.07.55.17; Sun, 22 Apr 2018 07:55:32 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=ibm.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1757353AbeDVOyS (ORCPT + 99 others); Sun, 22 Apr 2018 10:54:18 -0400 Received: from mx0a-001b2d01.pphosted.com ([148.163.156.1]:45346 "EHLO mx0a-001b2d01.pphosted.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1756903AbeDVOyP (ORCPT ); Sun, 22 Apr 2018 10:54:15 -0400 Received: from pps.filterd (m0098399.ppops.net [127.0.0.1]) by mx0a-001b2d01.pphosted.com (8.16.0.22/8.16.0.22) with SMTP id w3MEsEQY141100 for ; Sun, 22 Apr 2018 10:54:14 -0400 Received: from e16.ny.us.ibm.com (e16.ny.us.ibm.com [129.33.205.206]) by mx0a-001b2d01.pphosted.com with ESMTP id 2hgk2kejdf-1 (version=TLSv1.2 cipher=AES256-SHA256 bits=256 verify=NOT) for ; Sun, 22 Apr 2018 10:54:14 -0400 Received: from localhost by e16.ny.us.ibm.com with IBM ESMTP SMTP Gateway: Authorized Use Only! Violators will be prosecuted for from ; Sun, 22 Apr 2018 10:54:11 -0400 Received: from b01cxnp22036.gho.pok.ibm.com (9.57.198.26) by e16.ny.us.ibm.com (146.89.104.203) with IBM ESMTP SMTP Gateway: Authorized Use Only! Violators will be prosecuted; Sun, 22 Apr 2018 10:54:07 -0400 Received: from b01ledav005.gho.pok.ibm.com (b01ledav005.gho.pok.ibm.com [9.57.199.110]) by b01cxnp22036.gho.pok.ibm.com (8.14.9/8.14.9/NCO v10.0) with ESMTP id w3MEs5BI55902452; Sun, 22 Apr 2018 14:54:05 GMT Received: from b01ledav005.gho.pok.ibm.com (unknown [127.0.0.1]) by IMSVA (Postfix) with ESMTP id 726E6AE051; Sun, 22 Apr 2018 10:55:55 -0400 (EDT) Received: from oc8043147753.ibm.com (unknown [9.85.166.77]) by b01ledav005.gho.pok.ibm.com (Postfix) with ESMTP id 2CDE3AE04B; Sun, 22 Apr 2018 10:55:54 -0400 (EDT) Subject: Re: [PATCH v4 13/15] KVM: s390: configure the guest's AP devices To: Pierre Morel , linux-s390@vger.kernel.org, linux-kernel@vger.kernel.org, kvm@vger.kernel.org Cc: freude@de.ibm.com, schwidefsky@de.ibm.com, heiko.carstens@de.ibm.com, borntraeger@de.ibm.com, cohuck@redhat.com, kwankhede@nvidia.com, bjsdjshi@linux.vnet.ibm.com, pbonzini@redhat.com, alex.williamson@redhat.com, alifm@linux.vnet.ibm.com, mjrosato@linux.vnet.ibm.com, jjherne@linux.vnet.ibm.com, thuth@redhat.com, pasic@linux.vnet.ibm.com, berrange@redhat.com, fiuczy@linux.vnet.ibm.com, buendgen@de.ibm.com References: <1523827345-11600-1-git-send-email-akrowiak@linux.vnet.ibm.com> <1523827345-11600-14-git-send-email-akrowiak@linux.vnet.ibm.com> From: Tony Krowiak Date: Sun, 22 Apr 2018 10:54:04 -0400 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.2.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit Content-Language: en-US X-TM-AS-GCONF: 00 x-cbid: 18042214-0024-0000-0000-0000034C82CF X-IBM-SpamModules-Scores: X-IBM-SpamModules-Versions: BY=3.00008900; HX=3.00000241; KW=3.00000007; PH=3.00000004; SC=3.00000257; SDB=6.01021655; UDB=6.00521396; IPR=6.00800890; MB=3.00020714; MTD=3.00000008; XFM=3.00000015; UTC=2018-04-22 14:54:09 X-IBM-AV-DETECTION: SAVI=unused REMOTE=unused XFE=unused x-cbparentid: 18042214-0025-0000-0000-000047C179FE Message-Id: <933d29fd-748e-5782-57fc-19e60fbebdd1@linux.vnet.ibm.com> X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:,, definitions=2018-04-22_04:,, signatures=0 X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1015 lowpriorityscore=0 impostorscore=0 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1709140000 definitions=main-1804220169 Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 04/18/2018 07:56 AM, Pierre Morel wrote: > On 15/04/2018 23:22, Tony Krowiak wrote: >> Registers a group notifier during the open of the mediated >> matrix device to get information on KVM presence through the >> VFIO_GROUP_NOTIFY_SET_KVM event. When notified, the pointer >> to the kvm structure is saved inside the mediated matrix >> device. Once the VFIO AP device driver has access to KVM, >> access to the APs can be configured for the guest. >> >> Access to APs is configured when the file descriptor for the >> mediated matrix device is opened by userspace. The items to be >> configured are: >> >> 1. The ECA.28 bit in the SIE state description determines whether >> AP instructions are interpreted by the hardware or intercepted. >> The VFIO AP device driver relies interpretive execution of >> AP instructions so the ECA.28 bit will be set >> >> 2. Guest access to AP adapters, usage domains and control domains >> is controlled by three bit masks referenced from the >> Crypto Control Block (CRYCB) referenced from the guest's SIE state >> description: >> >> * The AP Mask (APM) controls access to the AP adapters. Each bit >> in the APM represents an adapter number - from most significant >> to least significant bit - from 0 to 255. The bits in the APM >> are set according to the adapter numbers assigned to the mediated >> matrix device via its 'assign_adapter' sysfs attribute file. >> >> * The AP Queue (AQM) controls access to the AP queues. Each bit >> in the AQM represents an AP queue index - from most significant >> to least significant bit - from 0 to 255. A queue index references >> a specific domain and is synonymous with the domian number. The >> bits in the AQM are set according to the domain numbers assigned >> to the mediated matrix device via its 'assign_domain' sysfs >> attribute file. >> >> * The AP Domain Mask (ADM) controls access to the AP control >> domains. >> Each bit in the ADM represents a control domain - from most >> significant to least significant bit - from 0-255. The >> bits in the ADM are set according to the domain numbers assigned >> to the mediated matrix device via its 'assign_control_domain' >> sysfs attribute file. >> >> Signed-off-by: Tony Krowiak >> --- >> drivers/s390/crypto/vfio_ap_ops.c | 50 >> +++++++++++++++++++++++++++++++++ >> drivers/s390/crypto/vfio_ap_private.h | 2 + >> 2 files changed, 52 insertions(+), 0 deletions(-) >> >> diff --git a/drivers/s390/crypto/vfio_ap_ops.c >> b/drivers/s390/crypto/vfio_ap_ops.c >> index bc2b05e..e3ff5ab 100644 >> --- a/drivers/s390/crypto/vfio_ap_ops.c >> +++ b/drivers/s390/crypto/vfio_ap_ops.c >> @@ -53,6 +53,54 @@ static int vfio_ap_mdev_remove(struct mdev_device >> *mdev) >> return 0; >> } >> >> +static int vfio_ap_mdev_group_notifier(struct notifier_block *nb, >> + unsigned long action, void *data) >> +{ >> + struct ap_matrix_mdev *matrix_mdev; >> + >> + if (action == VFIO_GROUP_NOTIFY_SET_KVM) { >> + matrix_mdev = container_of(nb, struct ap_matrix_mdev, >> + group_notifier); >> + matrix_mdev->kvm = data; >> + } >> + >> + return NOTIFY_OK; >> +} >> + >> +static int vfio_ap_mdev_open(struct mdev_device *mdev) >> +{ >> + struct ap_matrix_mdev *matrix_mdev = mdev_get_drvdata(mdev); >> + unsigned long events; >> + int ret; >> + >> + matrix_mdev->group_notifier.notifier_call = >> vfio_ap_mdev_group_notifier; >> + events = VFIO_GROUP_NOTIFY_SET_KVM; >> + >> + ret = vfio_register_notifier(mdev_dev(mdev), VFIO_GROUP_NOTIFY, >> + &events, &matrix_mdev->group_notifier); >> + if (ret) >> + return ret; >> + >> + ret = kvm_ap_interpret_instructions(matrix_mdev->kvm, true); >> + if (ret) >> + return ret; >> + >> + ret = kvm_ap_configure_matrix(matrix_mdev->kvm, >> + matrix_mdev->matrix); > > If all went OK, you may want to increase the module reference count > to avoid removing the module while in use by QEMU. Sounds reasonable. > > >> + >> + return ret; >> +} >> + >> +static void vfio_ap_mdev_release(struct mdev_device *mdev) >> +{ >> + struct ap_matrix_mdev *matrix_mdev = mdev_get_drvdata(mdev); >> + >> + kvm_ap_deconfigure_matrix(matrix_mdev->kvm); >> + kvm_ap_interpret_instructions(matrix_mdev->kvm, false); >> + vfio_unregister_notifier(mdev_dev(mdev), VFIO_GROUP_NOTIFY, >> + &matrix_mdev->group_notifier); > > ... and also decrease the reference count. Ditto. > > >> +} >> + >> static ssize_t name_show(struct kobject *kobj, struct device *dev, >> char *buf) >> { >> return sprintf(buf, "%s\n", VFIO_AP_MDEV_NAME_HWVIRT); >> @@ -754,6 +802,8 @@ static ssize_t matrix_show(struct device *dev, >> struct device_attribute *attr, >> .mdev_attr_groups = vfio_ap_mdev_attr_groups, >> .create = vfio_ap_mdev_create, >> .remove = vfio_ap_mdev_remove, >> + .open = vfio_ap_mdev_open, >> + .release = vfio_ap_mdev_release, >> }; >> >> int vfio_ap_mdev_register(struct ap_matrix *ap_matrix) >> diff --git a/drivers/s390/crypto/vfio_ap_private.h >> b/drivers/s390/crypto/vfio_ap_private.h >> index f248faf..48e2806 100644 >> --- a/drivers/s390/crypto/vfio_ap_private.h >> +++ b/drivers/s390/crypto/vfio_ap_private.h >> @@ -31,6 +31,8 @@ struct ap_matrix { >> >> struct ap_matrix_mdev { >> struct kvm_ap_matrix *matrix; >> + struct notifier_block group_notifier; >> + struct kvm *kvm; >> }; >> >> static inline struct ap_matrix *to_ap_matrix(struct device *dev) > >