Received: by 10.192.165.148 with SMTP id m20csp2493153imm; Sun, 22 Apr 2018 08:09:32 -0700 (PDT) X-Google-Smtp-Source: AIpwx4/m0LVZqQ3LM9h6mYqCpt/Z0kKW2a710y3exzlE7YUBdMG5CE8B2xQJnityF1IdfvMM31rx X-Received: by 10.99.177.68 with SMTP id g4mr14398871pgp.253.1524409772092; Sun, 22 Apr 2018 08:09:32 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1524409772; cv=none; d=google.com; s=arc-20160816; b=PqKyQZpFLXB1RqFGtSa/79p3pfh8SdQKl5xzmR5wLlVO7e1SrL/lY2sAQvsk2qMXDU Mj9jw+umZIKz8hKW4GgtefCHxc8CkADYeLr2rnSAMjexfN+rcrzJqcOOGPfm9lgSS6Zm 3RyM9btabyWEATjYgdVEldhZIYY/YsWVhluoKTTiVv5e3aMGA75JGPynsbn22TorFlTj Y4z3i6SDFy075UjIc6NI6qhfhF6FrnJ3/egSxiWHgDmzNoLNQnakV3KsQnQGXOJVYD0d xIWU+JVbFJYQ8Sz1Ybq6VWTd8kz5SDN/YjN+aqXPKObI0/cKOGHmIovgng/s80XPSU3Y Q0fg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:message-id:content-language :content-transfer-encoding:in-reply-to:mime-version:user-agent:date :from:references:cc:to:subject:arc-authentication-results; bh=Wkbm5Kq5nWq/gXn7+tpbnBaM1p4hiNwlc+/9Th4wSPk=; b=G6S2jBsnp04hzrGT0f8dDLIg25pHQIIjG8WTpGcGSxK1d1MP1zqoDt9FgXIFBiT1oE 2FdkYZ60mlsEU3WjNRdMUWgd25h8kw/Cu9jtj5Pz3mBTZviNfDG0l1zkNdEnQGOzR6ku +IXO2FLaaqqfU0P5AT488yJsRiEwp9O4JwXJhrd5Ai6dQKZI0vZVD/K85LJjwhH7GXG4 7S0TRMmgk1jw2Lq3gdm9LfXxfbZYD7o9t4Q/e+PmPlAzzrCrqj/z1NIO9Hc5iVw/7755 egI58aanCesixbWtf2g2OZm2I4fpTX7kyTkBj6QgBD1GGb8wLKFLsMWgrK1Dds8o7eEC nUSg== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=ibm.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id m6-v6si6675781pln.382.2018.04.22.08.09.18; Sun, 22 Apr 2018 08:09:32 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=ibm.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1755686AbeDVPG6 (ORCPT + 99 others); Sun, 22 Apr 2018 11:06:58 -0400 Received: from mx0b-001b2d01.pphosted.com ([148.163.158.5]:44420 "EHLO mx0a-001b2d01.pphosted.com" rhost-flags-OK-OK-OK-FAIL) by vger.kernel.org with ESMTP id S1753836AbeDVPGu (ORCPT ); Sun, 22 Apr 2018 11:06:50 -0400 Received: from pps.filterd (m0098416.ppops.net [127.0.0.1]) by mx0b-001b2d01.pphosted.com (8.16.0.22/8.16.0.22) with SMTP id w3MExJD3063842 for ; Sun, 22 Apr 2018 11:06:50 -0400 Received: from e12.ny.us.ibm.com (e12.ny.us.ibm.com [129.33.205.202]) by mx0b-001b2d01.pphosted.com with ESMTP id 2hgk366sby-1 (version=TLSv1.2 cipher=AES256-SHA256 bits=256 verify=NOT) for ; Sun, 22 Apr 2018 11:06:49 -0400 Received: from localhost by e12.ny.us.ibm.com with IBM ESMTP SMTP Gateway: Authorized Use Only! Violators will be prosecuted for from ; Sun, 22 Apr 2018 11:06:49 -0400 Received: from b01cxnp23033.gho.pok.ibm.com (9.57.198.28) by e12.ny.us.ibm.com (146.89.104.199) with IBM ESMTP SMTP Gateway: Authorized Use Only! Violators will be prosecuted; Sun, 22 Apr 2018 11:06:45 -0400 Received: from b01ledav005.gho.pok.ibm.com (b01ledav005.gho.pok.ibm.com [9.57.199.110]) by b01cxnp23033.gho.pok.ibm.com (8.14.9/8.14.9/NCO v10.0) with ESMTP id w3MF6ibv3932582; Sun, 22 Apr 2018 15:06:44 GMT Received: from b01ledav005.gho.pok.ibm.com (unknown [127.0.0.1]) by IMSVA (Postfix) with ESMTP id 79D12AE03B; Sun, 22 Apr 2018 11:08:34 -0400 (EDT) Received: from oc8043147753.ibm.com (unknown [9.85.166.77]) by b01ledav005.gho.pok.ibm.com (Postfix) with ESMTP id AD772AE03C; Sun, 22 Apr 2018 11:08:33 -0400 (EDT) Subject: Re: [PATCH] KVM: s390: reset crypto attributes for all vcpus To: David Hildenbrand , linux-s390@vger.kernel.org, linux-kernel@vger.kernel.org, kvm@vger.kernel.org Cc: borntraeger@de.ibm.com, cohuck@redhat.com, pmorel@linux.vnet.ibm.com, pasic@linux.vnet.ibm.com, pbonzini@redhat.com, rkrcmar@redhat.com References: <1524172432-26211-1-git-send-email-akrowiak@linux.vnet.ibm.com> From: Tony Krowiak Date: Sun, 22 Apr 2018 11:06:43 -0400 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.2.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit Content-Language: en-US X-TM-AS-GCONF: 00 x-cbid: 18042215-0048-0000-0000-000002613FD3 X-IBM-SpamModules-Scores: X-IBM-SpamModules-Versions: BY=3.00008900; HX=3.00000241; KW=3.00000007; PH=3.00000004; SC=3.00000257; SDB=6.01021660; UDB=6.00521399; IPR=6.00800895; MB=3.00020714; MTD=3.00000008; XFM=3.00000015; UTC=2018-04-22 15:06:47 X-IBM-AV-DETECTION: SAVI=unused REMOTE=unused XFE=unused x-cbparentid: 18042215-0049-0000-0000-000044DE1F9A Message-Id: X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:,, definitions=2018-04-22_04:,, signatures=0 X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1011 lowpriorityscore=0 impostorscore=0 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1709140000 definitions=main-1804220170 Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 04/20/2018 08:26 AM, David Hildenbrand wrote: > On 19.04.2018 23:13, Tony Krowiak wrote: >> Introduces a new function to reset the crypto attributes for all >> vcpus whether they are running or not. Each vcpu in KVM will >> be removed from SIE prior to resetting the crypto attributes in its >> SIE state description. After all vcpus have had their crypto attributes >> reset the vcpus will be restored to SIE. >> >> This function is incorporated into the kvm_s390_vm_set_crypto(kvm) >> function to fix a reported issue whereby the crypto key wrapping >> attributes could potentially get out of synch for running vcpus. >> >> Reported-by: Halil Pasic > A reported-by for a code refactoring is strange. I was asked to include this. > >> Signed-off-by: Tony Krowiak >> --- >> arch/s390/kvm/kvm-s390.c | 18 ++++++++++++++---- >> arch/s390/kvm/kvm-s390.h | 13 +++++++++++++ >> 2 files changed, 27 insertions(+), 4 deletions(-) >> >> diff --git a/arch/s390/kvm/kvm-s390.c b/arch/s390/kvm/kvm-s390.c >> index fa355a6..4fa3037 100644 >> --- a/arch/s390/kvm/kvm-s390.c >> +++ b/arch/s390/kvm/kvm-s390.c >> @@ -789,6 +789,19 @@ static int kvm_s390_set_mem_control(struct kvm *kvm, struct kvm_device_attr *att >> return ret; >> } >> >> +void kvm_s390_vcpu_crypto_reset_all(struct kvm *kvm) >> + { >> + int i; >> + struct kvm_vcpu *vcpu; >> + >> + kvm_s390_vcpu_block_all(kvm); >> + >> + kvm_for_each_vcpu(i, vcpu, kvm) >> + kvm_s390_vcpu_crypto_setup(vcpu); >> + >> + kvm_s390_vcpu_unblock_all(kvm); > This code has to be protected by kvm->lock. Can that be guaranteed by > the caller? I can hold the kvm->lock in this function, but if you look at the function from which it is called, kvm_s390_vm_set_crypto(vcpu) below, the kvm->lock is already held by that function to do other work. I suppose the kvm_s390_vm_set_crypto(vcpu) instruction could have released the lock prior to calling kvm_s390_vcpu_crypto_reset_all(kvm), but since this function is called within a block of crypto work, it made sense to me to place the responsibility for locking in the caller and include a comment in the comments for the function definition: Note: The kvm->lock must be held while calling this function > >> +} >> + >> static void kvm_s390_vcpu_crypto_setup(struct kvm_vcpu *vcpu); >> >> static int kvm_s390_vm_set_crypto(struct kvm *kvm, struct kvm_device_attr *attr) >> @@ -832,10 +845,7 @@ static int kvm_s390_vm_set_crypto(struct kvm *kvm, struct kvm_device_attr *attr) >> return -ENXIO; >> } >> >> - kvm_for_each_vcpu(i, vcpu, kvm) { >> - kvm_s390_vcpu_crypto_setup(vcpu); >> - exit_sie(vcpu); >> - } >> + kvm_s390_vcpu_crypto_reset_all(kvm); >> mutex_unlock(&kvm->lock); >> return 0; >> } >> diff --git a/arch/s390/kvm/kvm-s390.h b/arch/s390/kvm/kvm-s390.h >> index 1b5621f..981e3ba 100644 >> --- a/arch/s390/kvm/kvm-s390.h >> +++ b/arch/s390/kvm/kvm-s390.h >> @@ -410,4 +410,17 @@ static inline int kvm_s390_use_sca_entries(void) >> } >> void kvm_s390_reinject_machine_check(struct kvm_vcpu *vcpu, >> struct mcck_volatile_info *mcck_info); >> + >> +/** >> + * kvm_s390_vcpu_crypto_reset_all >> + * >> + * Reset the crypto attributes for each vcpu. This can be done while the vcpus >> + * are running as each vcpu will be removed from SIE before resetting the crypt >> + * attributes and restored to SIE afterward. >> + * >> + * Note: The kvm->lock must be held while calling this function >> + * >> + * @kvm: the KVM guest >> + */ >> +void kvm_s390_vcpu_crypto_reset_all(struct kvm *kvm); >> #endif >> >