Received: by 2002:a05:6a10:1d13:0:0:0:0 with SMTP id pp19csp461974pxb;
        Wed, 18 Aug 2021 06:29:57 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJy3Yvb/qVUVpe93mhQ7WfQDMC7pHpBRWufzmMH9xOG+FnweSs5TJyqzMlswM9RYH0TY5dG2
X-Received: by 2002:a05:6e02:1be2:: with SMTP id y2mr5625592ilv.293.1629293397168;
        Wed, 18 Aug 2021 06:29:57 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1629293397; cv=none;
        d=google.com; s=arc-20160816;
        b=akKTPUvlSJvZoC/r28GQbNlqxV8At9ZfjGJa3l1Tz6BBweKxHprRTULceRuV8C9Gz6
         L8z3RkpTkNRQFktquSjQ9cAWA4Orcdn5s5L+1la0LGCoaa3lbTzJFAF3bDWQWkIOAeAq
         qjEV71ea+TK9v7yQWPRKD8//TsJdEXSi4zHkv8VtmNu3KjPstn/YXJbHEvpMQ3c61w1y
         ciW8vvz5fiJS65EWrb1LYS/uuEkMbvptQcw7AIwtH/frwMlqWboltz1e8zcUOv0D77NI
         VBOmN+tDnc4uLiRsx6hlC638m68QCHsIjQJDsArv8v9evAYCOjc7PLtsFT6erirZB0G+
         fSFg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:mime-version
         :references:in-reply-to:message-id:date:subject:cc:to:from
         :dkim-signature;
        bh=Hw2W77z6/PD99yD1oIx6PHkg+jw33VvlI2yFLVFYYNk=;
        b=AYx8bNBJQntmyV9r40VDXdfm29I0u88JADh5aUxvQudUdBLjXoi87ShVogC36VorIu
         coEiexo/xApOu62KxRDVrF6enlTSXWvcWPXcFBudSI/R2SS6gqq48iTzPGDhJqWcaCYZ
         W9WFEBZopcoTWXe27N0xkd8KgBNn4nwPoznnAofWFWaAl17FCZWF1tnXnqRuF0PvRME/
         1SnWrgpSIgZ/RoCbwpGHXQpC+ciGNSqvRHah3jhdVZdvgWRdBfKpB5qJMiusyH6PWsn2
         4TdBVxgorG8Hx8H86JWjET6AkCRzgxs+LvFeIvVIvqTZ5A5Ns2ZqsCNnEzIozqa3c8I6
         hNWQ==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@ibm.com header.s=pp1 header.b=LVkRJ3TK;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=ibm.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id y12si5754827jai.84.2021.08.18.06.29.44;
        Wed, 18 Aug 2021 06:29:57 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@ibm.com header.s=pp1 header.b=LVkRJ3TK;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=ibm.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S237269AbhHRN1m (ORCPT <rfc822;liu.h.jason@gmail.com>
        + 99 others); Wed, 18 Aug 2021 09:27:42 -0400
Received: from mx0a-001b2d01.pphosted.com ([148.163.156.1]:61258 "EHLO
        mx0a-001b2d01.pphosted.com" rhost-flags-OK-OK-OK-OK)
        by vger.kernel.org with ESMTP id S236732AbhHRN1I (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Wed, 18 Aug 2021 09:27:08 -0400
Received: from pps.filterd (m0098404.ppops.net [127.0.0.1])
        by mx0a-001b2d01.pphosted.com (8.16.0.43/8.16.0.43) with SMTP id 17ID34KW003999;
        Wed, 18 Aug 2021 09:26:34 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ibm.com; h=from : to : cc : subject
 : date : message-id : in-reply-to : references : mime-version :
 content-transfer-encoding; s=pp1;
 bh=Hw2W77z6/PD99yD1oIx6PHkg+jw33VvlI2yFLVFYYNk=;
 b=LVkRJ3TKv7QcJUNu0Zuc5eCNOWy8bel9U7n1rgY7yB9rQ21rRJ5Estn+JSYzBh59FFXt
 131lv9rn2feKga1iUYFhXj+7jjDlkGAyvOzfvbYTVhc+uPxuNbQx4JIl+MKJpOvMqpef
 /F1KGPlQKbwSLmyYvT+miL9WbIaXpBOyxcyVNncWoByn1uRTKBiJywZUPgxPxCBCSHVq
 93fmGGsC5rxL4imFbwetOn38wUE6UPeckAyNig2MKbDWs8PzPHlm7aLUol8a5QIdg3N0
 2ykwnhZKdv7aoOdgVn4AcETRGzmc0WffUmV4azeqOL+1dC6BHJzDWeats8tnwv7pSDD7 Wg== 
Received: from pps.reinject (localhost [127.0.0.1])
        by mx0a-001b2d01.pphosted.com with ESMTP id 3ah1mt2qqa-1
        (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT);
        Wed, 18 Aug 2021 09:26:33 -0400
Received: from m0098404.ppops.net (m0098404.ppops.net [127.0.0.1])
        by pps.reinject (8.16.0.43/8.16.0.43) with SMTP id 17ID3NVu006649;
        Wed, 18 Aug 2021 09:26:33 -0400
Received: from ppma06ams.nl.ibm.com (66.31.33a9.ip4.static.sl-reverse.com [169.51.49.102])
        by mx0a-001b2d01.pphosted.com with ESMTP id 3ah1mt2qpb-1
        (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT);
        Wed, 18 Aug 2021 09:26:33 -0400
Received: from pps.filterd (ppma06ams.nl.ibm.com [127.0.0.1])
        by ppma06ams.nl.ibm.com (8.16.1.2/8.16.1.2) with SMTP id 17IDDHaq022071;
        Wed, 18 Aug 2021 13:26:31 GMT
Received: from b06cxnps4075.portsmouth.uk.ibm.com (d06relay12.portsmouth.uk.ibm.com [9.149.109.197])
        by ppma06ams.nl.ibm.com with ESMTP id 3ae53hxnv7-1
        (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT);
        Wed, 18 Aug 2021 13:26:31 +0000
Received: from d06av22.portsmouth.uk.ibm.com (d06av22.portsmouth.uk.ibm.com [9.149.105.58])
        by b06cxnps4075.portsmouth.uk.ibm.com (8.14.9/8.14.9/NCO v10.0) with ESMTP id 17IDQQ9N52298022
        (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK);
        Wed, 18 Aug 2021 13:26:26 GMT
Received: from d06av22.portsmouth.uk.ibm.com (unknown [127.0.0.1])
        by IMSVA (Postfix) with ESMTP id 6EA7E4C075;
        Wed, 18 Aug 2021 13:26:26 +0000 (GMT)
Received: from d06av22.portsmouth.uk.ibm.com (unknown [127.0.0.1])
        by IMSVA (Postfix) with ESMTP id DDA904C040;
        Wed, 18 Aug 2021 13:26:25 +0000 (GMT)
Received: from p-imbrenda.bredband2.com (unknown [9.145.14.177])
        by d06av22.portsmouth.uk.ibm.com (Postfix) with ESMTP;
        Wed, 18 Aug 2021 13:26:25 +0000 (GMT)
From:   Claudio Imbrenda <imbrenda@linux.ibm.com>
To:     kvm@vger.kernel.org
Cc:     cohuck@redhat.com, borntraeger@de.ibm.com, frankja@linux.ibm.com,
        thuth@redhat.com, pasic@linux.ibm.com, david@redhat.com,
        linux-s390@vger.kernel.org, linux-kernel@vger.kernel.org,
        Ulrich.Weigand@de.ibm.com
Subject: [PATCH v4 08/14] KVM: s390: pv: handle secure storage exceptions for normal guests
Date:   Wed, 18 Aug 2021 15:26:14 +0200
Message-Id: <20210818132620.46770-9-imbrenda@linux.ibm.com>
X-Mailer: git-send-email 2.31.1
In-Reply-To: <20210818132620.46770-1-imbrenda@linux.ibm.com>
References: <20210818132620.46770-1-imbrenda@linux.ibm.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-TM-AS-GCONF: 00
X-Proofpoint-ORIG-GUID: Irk7J93CZveIGdj4LWcJtkpEmtEymxrQ
X-Proofpoint-GUID: Ne0BHqLwfJQtTeYO7Eccdd--YAu3RS1a
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.391,18.0.790
 definitions=2021-08-18_04:2021-08-17,2021-08-18 signatures=0
X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 clxscore=1015 spamscore=0
 bulkscore=0 mlxscore=0 priorityscore=1501 suspectscore=0 adultscore=0
 lowpriorityscore=0 impostorscore=0 mlxlogscore=738 malwarescore=0
 phishscore=0 classifier=spam adjust=0 reason=mlx scancount=1
 engine=8.12.0-2107140000 definitions=main-2108180082
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

With upcoming patches, normal guests might touch secure pages.

This patch extends the existing exception handler to convert the pages
to non secure also when the exception is triggered by a normal guest.

This can happen for example when a secure guest reboots; the first
stage of a secure guest is non secure, and in general a secure guest
can reboot into non-secure mode.

If the secure memory of the previous boot has not been cleared up
completely yet, a non-secure guest might touch secure memory, which
will need to be handled properly.

Signed-off-by: Claudio Imbrenda <imbrenda@linux.ibm.com>
---
 arch/s390/mm/fault.c | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/arch/s390/mm/fault.c b/arch/s390/mm/fault.c
index eb68b4f36927..74784581f42d 100644
--- a/arch/s390/mm/fault.c
+++ b/arch/s390/mm/fault.c
@@ -767,6 +767,7 @@ void do_secure_storage_access(struct pt_regs *regs)
 	struct vm_area_struct *vma;
 	struct mm_struct *mm;
 	struct page *page;
+	struct gmap *gmap;
 	int rc;
 
 	/*
@@ -796,6 +797,14 @@ void do_secure_storage_access(struct pt_regs *regs)
 	}
 
 	switch (get_fault_type(regs)) {
+	case GMAP_FAULT:
+		gmap = (struct gmap *)S390_lowcore.gmap;
+		addr = __gmap_translate(gmap, addr);
+		if (IS_ERR_VALUE(addr)) {
+			do_fault_error(regs, VM_ACCESS_FLAGS, VM_FAULT_BADMAP);
+			break;
+		}
+		fallthrough;
 	case USER_FAULT:
 		mm = current->mm;
 		mmap_read_lock(mm);
@@ -824,7 +833,6 @@ void do_secure_storage_access(struct pt_regs *regs)
 		if (rc)
 			BUG();
 		break;
-	case GMAP_FAULT:
 	default:
 		do_fault_error(regs, VM_READ | VM_WRITE, VM_FAULT_BADMAP);
 		WARN_ON_ONCE(1);
-- 
2.31.1