Received: by 2002:a05:6a10:413:0:0:0:0 with SMTP id 19csp917835pxp; Wed, 16 Mar 2022 21:15:24 -0700 (PDT) X-Google-Smtp-Source: ABdhPJx3VkhIcPOdNnLAvZascTg3bGt9c7SK3V7VJvRrGXb31A7hMZ4CdwHJ6lcNG7J7NfUfwImk X-Received: by 2002:a17:903:1c8:b0:153:b4bd:3c43 with SMTP id e8-20020a17090301c800b00153b4bd3c43mr2733458plh.114.1647490524236; Wed, 16 Mar 2022 21:15:24 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1647490524; cv=none; d=google.com; s=arc-20160816; b=JTjrMonPxJadS0ZtfY8hhePkatqIjfWKQ6A2sd/w+ZYFeb774Gl5KYVg3zgVEiwq/H KM5+J5S37JBmYbHYACCkpX0pY6jBWERyJrn+180b0K6+fVFRy3qPrTqSj2xSYEiX9wGG mAiB0uHQTCg3+6owPki5cv2dBmxV1o/sPnsfE2Zzbvju9ZI5+O/6BwZPiPOyrqweS7ng rBxMYuGCq+Z0UG8mJAz4khF8kw69p/w6VDJ5YaXCROPjEREYRJ/4Q2VhCk+6YCWr1+tv Ud3SogKD5RgfHdk6yiEhOU0h6MpoTYfheYiXjzNRR0njLhgX6x2fBR0ryfhTdYCD27Bz AQEw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :references:in-reply-to:message-id:date:subject:cc:to:from :dkim-signature; bh=geE0yWXv1Da8oh/odKVboMS2GoAZMMH9WENM+mrZVEk=; b=naRowotXK0KbOTr65RczEI+vYFv+/EIlDMZ5Y/YlsjP740mYol1gzze2SXOOV9Lvup StfP/MqgLBgNzd8fkoJcgNYsGy4jlfuvm7+rELR2vI6NlNn+WQMJCfEA+1qaiZ9CeKsO RafCw5ZzeoBwHUFI0rnHzh26CzHTOjCNGHrEGUWBuAD4XyBNSZAzwLFEEo5ZHyMqecWG B1ywW+P21PBHyKFgFj4FLVNZa8L4lB0IE5olPLoODlYDMtDYmT9YZZ1baMfrStLlo4Zv zcICmXOtHp052s/OKj4ylb8i0H0xLgt0QI3fj6jDTVPPy8OV5Z2+MOvqQ6DeGXWtWzwY BUnQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@intel.com header.s=Intel header.b=QzXmX8dc; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=intel.com Return-Path: Received: from lindbergh.monkeyblade.net (lindbergh.monkeyblade.net. [2620:137:e000::1:18]) by mx.google.com with ESMTPS id t23-20020a63d257000000b003820bd747d5si121882pgi.427.2022.03.16.21.15.23 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 16 Mar 2022 21:15:24 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:18 as permitted sender) client-ip=2620:137:e000::1:18; Authentication-Results: mx.google.com; dkim=pass header.i=@intel.com header.s=Intel header.b=QzXmX8dc; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=intel.com Received: from vger.kernel.org (vger.kernel.org [23.128.96.18]) by lindbergh.monkeyblade.net (Postfix) with ESMTP id B1FC8C12DB; Wed, 16 Mar 2022 20:52:44 -0700 (PDT) Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1353112AbiCPCMS (ORCPT + 99 others); Tue, 15 Mar 2022 22:12:18 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:47202 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1352833AbiCPCL0 (ORCPT ); Tue, 15 Mar 2022 22:11:26 -0400 Received: from mga18.intel.com (mga18.intel.com [134.134.136.126]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 14AD05E77A for ; Tue, 15 Mar 2022 19:10:12 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=intel.com; i=@intel.com; q=dns/txt; s=Intel; t=1647396612; x=1678932612; h=from:to:cc:subject:date:message-id:in-reply-to: references:mime-version:content-transfer-encoding; bh=pA0HpCw5vCCuKBlGX3u3CPWDNR4SBAm2VrJVky13+Aw=; b=QzXmX8dc9hybX8Sw0x71gmJ5HWLtmlFmtNlPne9SgN4VleO9L1+xZ29B dH3qtb6aEa9Q1NZRukRP1WtcXRBMdCCMVzbB/jPzE9wrXHOw/JBzDF0Xf l7/TJMNvOxCUWqG+d1K0YgVmnaUCvD8NlRuA1d0EkK93W/Doo9gE2rih/ PVbs13FxsxwhyBdn9FvFcNUYDGfq/1jGPLWIVScTAeybreIYFaIuVLYqw SFwoq++Jo+fZXJLeDXwlCTZPMNbugsj7xDNiz0WMe3rTuv2lhUbq7TQ/U kCyOUe4gZkVwxDG5OgSHEgoOydI+mtmDaklDaOI7Kj+ifkThUS4+RMdpT w==; X-IronPort-AV: E=McAfee;i="6200,9189,10286"; a="238636675" X-IronPort-AV: E=Sophos;i="5.90,185,1643702400"; d="scan'208";a="238636675" Received: from fmsmga008.fm.intel.com ([10.253.24.58]) by orsmga106.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 15 Mar 2022 19:10:11 -0700 X-ExtLoop1: 1 X-IronPort-AV: E=Sophos;i="5.90,185,1643702400"; d="scan'208";a="598535269" Received: from black.fi.intel.com ([10.237.72.28]) by fmsmga008.fm.intel.com with ESMTP; 15 Mar 2022 19:10:05 -0700 Received: by black.fi.intel.com (Postfix, from userid 1000) id D04B2CE5; Wed, 16 Mar 2022 04:10:10 +0200 (EET) From: "Kirill A. Shutemov" To: tglx@linutronix.de, mingo@redhat.com, bp@alien8.de, dave.hansen@intel.com, luto@kernel.org, peterz@infradead.org Cc: sathyanarayanan.kuppuswamy@linux.intel.com, aarcange@redhat.com, ak@linux.intel.com, dan.j.williams@intel.com, david@redhat.com, hpa@zytor.com, jgross@suse.com, jmattson@google.com, joro@8bytes.org, jpoimboe@redhat.com, knsathya@kernel.org, pbonzini@redhat.com, sdeep@vmware.com, seanjc@google.com, tony.luck@intel.com, vkuznets@redhat.com, wanpengli@tencent.com, thomas.lendacky@amd.com, brijesh.singh@amd.com, x86@kernel.org, linux-kernel@vger.kernel.org, "Kirill A. Shutemov" Subject: [PATCHv6 25/30] x86/tdx: Make pages shared in ioremap() Date: Wed, 16 Mar 2022 05:08:51 +0300 Message-Id: <20220316020856.24435-26-kirill.shutemov@linux.intel.com> X-Mailer: git-send-email 2.35.1 In-Reply-To: <20220316020856.24435-1-kirill.shutemov@linux.intel.com> References: <20220316020856.24435-1-kirill.shutemov@linux.intel.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-Spam-Status: No, score=-3.4 required=5.0 tests=BAYES_00,DKIMWL_WL_HIGH, DKIM_SIGNED,DKIM_VALID,HEADER_FROM_DIFFERENT_DOMAINS, MAILING_LIST_MULTI,RDNS_NONE,SPF_HELO_NONE,T_SCC_BODY_TEXT_LINE autolearn=unavailable autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org In TDX guests, guest memory is protected from host access. If a guest performs I/O, it needs to explicitly share the I/O memory with the host. Make all ioremap()ed pages that are not backed by normal memory (IORES_DESC_NONE or IORES_DESC_RESERVED) mapped as shared. The permissions in PAGE_KERNEL_IO already work for "decrypted" memory on AMD SEV/SME systems. That means that they have no need to make a pgprot_decrypted() call. TDX guests, on the other hand, _need_ change to PAGE_KERNEL_IO for "decrypted" mappings. Add a pgprot_decrypted() for TDX. Co-developed-by: Kuppuswamy Sathyanarayanan Signed-off-by: Kuppuswamy Sathyanarayanan Reviewed-by: Andi Kleen Reviewed-by: Tony Luck Signed-off-by: Kirill A. Shutemov --- arch/x86/mm/ioremap.c | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/arch/x86/mm/ioremap.c b/arch/x86/mm/ioremap.c index 026031b3b782..a5d4ec1afca2 100644 --- a/arch/x86/mm/ioremap.c +++ b/arch/x86/mm/ioremap.c @@ -242,10 +242,15 @@ __ioremap_caller(resource_size_t phys_addr, unsigned long size, * If the page being mapped is in memory and SEV is active then * make sure the memory encryption attribute is enabled in the * resulting mapping. + * In TDX guests, memory is marked private by default. If encryption + * is not requested (using encrypted), explicitly set decrypt + * attribute in all IOREMAPPED memory. */ prot = PAGE_KERNEL_IO; if ((io_desc.flags & IORES_MAP_ENCRYPTED) || encrypted) prot = pgprot_encrypted(prot); + else + prot = pgprot_decrypted(prot); switch (pcm) { case _PAGE_CACHE_MODE_UC: -- 2.34.1