Received: by 2002:a05:6a10:a841:0:0:0:0 with SMTP id d1csp3846025pxy;
        Mon, 26 Apr 2021 11:06:44 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJzHf+12/o72SBK+AognYr2MAMxTFWWKY2ll1tOTjYb3roDjcMUqk2pFHNIIdexOYB64pE9P
X-Received: by 2002:a17:907:9691:: with SMTP id hd17mr8506066ejc.67.1619460404454;
        Mon, 26 Apr 2021 11:06:44 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1619460404; cv=none;
        d=google.com; s=arc-20160816;
        b=Ar95SBKtq4S53QjTTp87wTDLrIo3uYzKuQGGNoE+T4OWRM36Sdz1Mr2sYAq5Lhlb3G
         qDRZehrR01WLg7ddq7LpESfbI2P+nYffimmrjqhp/N3FP7vAcq0QNdZ5o+OmsJIcr9zH
         OZ1K/64owGaQ1uRqQLK0MoUwBEIXAOZOcGsmh4LJhsLC33/dXDkrdz9ESAAf+tPB4cAS
         HWqezsZTApiLdFOnXCvGs0fVEIGzCvrQswRVJtf9jBNYcMDsN+mQewJhThEr4hrUlCJB
         5lGp/Vf0nCpw4RWIo+Y3uHqWW5JSHxJZ7rHZ8lCaQeZtiG/7K8DcMiomMxftdHoI9GDK
         hKwg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:mime-version
         :references:in-reply-to:message-id:date:subject:cc:to:from
         :ironport-sdr:ironport-sdr;
        bh=pBLJx1B3OWa9p5q+srXF9/057slGVLXifAQTA/npAjU=;
        b=xHqLDmMdFletSlzLr4K4bNBhS5Jv4j6MTBgMVdro9IWp7lTuxISUul8BP41gN5GdJ6
         KMqv33gPmwSsdZ4dObe58F7or38jqbegCqINgKwpf8U13F/D8aA0qlT0oICVDZiazFQl
         ZpUKC57OXlzJxaUYlZdNU42s7sYTxrTW5QlUqL2w8s+7+mBHzVd3c3yBMAuzyLwaUo2K
         mJ5tNlGrUm4FACHj18okw3sPEDFqPJ8fmTwLuejYjZ0gKwpsMwPTdfMmc1mxG0TizcMn
         z0mF7IKhuauLZyUYfSyOywudpjgRX2iIkbbs/uTAO49/rSoaxmD+E1u3Kog9+mkWO+QQ
         9I0g==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id g18si14876433ejt.696.2021.04.26.11.06.20;
        Mon, 26 Apr 2021 11:06:44 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S234004AbhDZSFP (ORCPT <rfc822;liujingjun001@gmail.com>
        + 99 others); Mon, 26 Apr 2021 14:05:15 -0400
Received: from mga06.intel.com ([134.134.136.31]:20705 "EHLO mga06.intel.com"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S234427AbhDZSDj (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Mon, 26 Apr 2021 14:03:39 -0400
IronPort-SDR: 7GdcOe91OWgJj46HQNoBL+ZCWykeWxOBKytDKREnM+ix1csSNwtiasU8AucWB35RWg8Kd5s0Qh
 17Zdbw3f9anA==
X-IronPort-AV: E=McAfee;i="6200,9189,9966"; a="257683615"
X-IronPort-AV: E=Sophos;i="5.82,252,1613462400"; 
   d="scan'208";a="257683615"
Received: from fmsmga004.fm.intel.com ([10.253.24.48])
  by orsmga104.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 26 Apr 2021 11:02:56 -0700
IronPort-SDR: NJkW7kEWNsJib9pDt/LXphHRPaBEvht2gdxL5sGWtYmxR3TfmnPfTXopDhY8n+K3x1CIk4bHOR
 R6UVQg9uVJDA==
X-IronPort-AV: E=Sophos;i="5.82,252,1613462400"; 
   d="scan'208";a="447353445"
Received: from ssumanpx-mobl.amr.corp.intel.com (HELO skuppusw-mobl5.amr.corp.intel.com) ([10.254.34.197])
  by fmsmga004-auth.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 26 Apr 2021 11:02:55 -0700
From:   Kuppuswamy Sathyanarayanan 
        <sathyanarayanan.kuppuswamy@linux.intel.com>
To:     Peter Zijlstra <peterz@infradead.org>,
        Andy Lutomirski <luto@kernel.org>,
        Dave Hansen <dave.hansen@intel.com>,
        Dan Williams <dan.j.williams@intel.com>,
        Tony Luck <tony.luck@intel.com>
Cc:     Andi Kleen <ak@linux.intel.com>,
        Kirill Shutemov <kirill.shutemov@linux.intel.com>,
        Kuppuswamy Sathyanarayanan <knsathya@kernel.org>,
        Raj Ashok <ashok.raj@intel.com>,
        Sean Christopherson <seanjc@google.com>,
        linux-kernel@vger.kernel.org,
        Kuppuswamy Sathyanarayanan 
        <sathyanarayanan.kuppuswamy@linux.intel.com>
Subject: [RFC v2 27/32] x86/tdx: Exclude Shared bit from __PHYSICAL_MASK
Date:   Mon, 26 Apr 2021 11:01:54 -0700
Message-Id: <87b31425b79df3cc44d2bdc6a79d6aa36c42d116.1619458733.git.sathyanarayanan.kuppuswamy@linux.intel.com>
X-Mailer: git-send-email 2.25.1
In-Reply-To: <cover.1619458733.git.sathyanarayanan.kuppuswamy@linux.intel.com>
References: <cover.1619458733.git.sathyanarayanan.kuppuswamy@linux.intel.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

From: "Kirill A. Shutemov" <kirill.shutemov@linux.intel.com>

tdx_shared_mask() returns the mask that has to be set in a page
table entry to make page shared with VMM.

Also, note that we cannot club shared mapping configuration between
AMD SME and Intel TDX Guest platforms in common function. SME has
to do it very early in __startup_64() as it sets the bit on all
memory, except what is used for communication. TDX can postpone as
we don't need any shared mapping in very early boot.

Signed-off-by: Kirill A. Shutemov <kirill.shutemov@linux.intel.com>
Reviewed-by: Andi Kleen <ak@linux.intel.com>
Signed-off-by: Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@linux.intel.com>
---
 arch/x86/Kconfig           | 1 +
 arch/x86/include/asm/tdx.h | 6 ++++++
 arch/x86/kernel/tdx.c      | 9 +++++++++
 3 files changed, 16 insertions(+)

diff --git a/arch/x86/Kconfig b/arch/x86/Kconfig
index 67f99bf27729..5f92e8205de2 100644
--- a/arch/x86/Kconfig
+++ b/arch/x86/Kconfig
@@ -882,6 +882,7 @@ config INTEL_TDX_GUEST
 	select PARAVIRT_XL
 	select X86_X2APIC
 	select SECURITY_LOCKDOWN_LSM
+	select X86_MEM_ENCRYPT_COMMON
 	help
 	  Provide support for running in a trusted domain on Intel processors
 	  equipped with Trusted Domain eXtenstions. TDX is an new Intel
diff --git a/arch/x86/include/asm/tdx.h b/arch/x86/include/asm/tdx.h
index b972c6531a53..dc80cf7f7d08 100644
--- a/arch/x86/include/asm/tdx.h
+++ b/arch/x86/include/asm/tdx.h
@@ -111,6 +111,8 @@ unsigned char tdg_inb(unsigned short port);
 unsigned short tdg_inw(unsigned short port);
 unsigned int tdg_inl(unsigned short port);
 
+extern phys_addr_t tdg_shared_mask(void);
+
 #else // !CONFIG_INTEL_TDX_GUEST
 
 static inline bool is_tdx_guest(void)
@@ -149,6 +151,10 @@ static inline long tdx_kvm_hypercall4(unsigned int nr, unsigned long p1,
 	return -ENODEV;
 }
 
+static inline phys_addr_t tdg_shared_mask(void)
+{
+	return 0;
+}
 #endif /* CONFIG_INTEL_TDX_GUEST */
 #endif /* __ASSEMBLY__ */
 #endif /* _ASM_X86_TDX_H */
diff --git a/arch/x86/kernel/tdx.c b/arch/x86/kernel/tdx.c
index 1f1bb98e1d38..7e391cd7aa2b 100644
--- a/arch/x86/kernel/tdx.c
+++ b/arch/x86/kernel/tdx.c
@@ -76,6 +76,12 @@ bool is_tdx_guest(void)
 }
 EXPORT_SYMBOL_GPL(is_tdx_guest);
 
+/* The highest bit of a guest physical address is the "sharing" bit */
+phys_addr_t tdg_shared_mask(void)
+{
+	return 1ULL << (td_info.gpa_width - 1);
+}
+
 static void tdg_get_info(void)
 {
 	u64 ret;
@@ -87,6 +93,9 @@ static void tdg_get_info(void)
 
 	td_info.gpa_width = out.rcx & GENMASK(5, 0);
 	td_info.attributes = out.rdx;
+
+	/* Exclude Shared bit from the __PHYSICAL_MASK */
+	physical_mask &= ~tdg_shared_mask();
 }
 
 static __cpuidle void tdg_halt(void)
-- 
2.25.1