Received: by 2002:a05:7412:d8a:b0:e2:908c:2ebd with SMTP id b10csp2622629rdg;
        Mon, 16 Oct 2023 09:39:26 -0700 (PDT)
X-Google-Smtp-Source: AGHT+IFfQFfF10Msxl9Ie8kdDOlY+cVICNaFltxGLE+fHJGjjozgnkC03GF2vfbJVwafa0xFYVrl
X-Received: by 2002:a05:6830:1e89:b0:6b9:a926:4a12 with SMTP id n9-20020a0568301e8900b006b9a9264a12mr38732037otr.28.1697474365996;
        Mon, 16 Oct 2023 09:39:25 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1697474365; cv=none;
        d=google.com; s=arc-20160816;
        b=nManlsbwl4tLlkhUWiuJNMJVOINGp0nXcpnAhduXsPFR/T2f6Vu6dpm7bJF1UMu+OX
         oIUci9FMYUcpRyVloCCmhi1e2/36Xk3cBjU7IxK3TNWkrqqfnN0VPK4B5lqGhO6fNO9U
         6OZUvvDvduo3AVKSF0M4Qd5qxoewxODIwceR2SXhBczI9pxjcOLX51I5pUr8x2/yOBvt
         KTiZepSlKv/A32MuagszpDNoSFgdNXoBC5Gst/KnqKANrZLjE1nKHy9pL/wrz00b44Ta
         sSo46sNOyOeI86TtYcF5xz8QCiIsuPPoZBWQKOaYX59RHR3uxFwY3xow9oWrvomQeVKR
         uJsQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:mime-version
         :references:in-reply-to:message-id:date:subject:cc:to:from
         :dkim-signature;
        bh=hqJaWjsARxUDXlpbX3RPquJeqzR68S5RStGolMQ401E=;
        fh=lRdU2Q/1zx5DcPdZuWBjshA5VT5Oc9cEhB1tCFiV0Nw=;
        b=xIkJXqjsdtxdekQrOjpg9P7Q2WV20evblb5YJl75dRvNYV4d9AlKvHbYYuIpaeVZPx
         9tna2Td6aqCGNmWM4ht8yuvG2YT3Qyuf4YkPTNH3a3wDk10J7ocYppHAzkB2VjaF8b3x
         1YiJvtQozsmSKArMWw+ahmWlIUApsCi/GeFIMvy9Haza4B8Z82BmaBzeaTXx2ig5dEhX
         f6G8T3wZKKNUisMlPo4W7IuEP66yIFosdglB/ZCFXvbBhItiLrB5GsUQdrDFv0Wr53I7
         169KcWXAyZNgMd0/pqWgmreqj6ZDfjB8yhxB6Nst6AloP2qhvputYDUz+jbWyY3JiYPx
         fyug==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@intel.com header.s=Intel header.b=QBPnH2gB;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.35 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=intel.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from groat.vger.email (groat.vger.email. [23.128.96.35])
        by mx.google.com with ESMTPS id h191-20020a6383c8000000b005b7c45b1f95si2680247pge.555.2023.10.16.09.39.25
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Mon, 16 Oct 2023 09:39:25 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.35 as permitted sender) client-ip=23.128.96.35;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@intel.com header.s=Intel header.b=QBPnH2gB;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.35 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=intel.com
Received: from out1.vger.email (depot.vger.email [IPv6:2620:137:e000::3:0])
	by groat.vger.email (Postfix) with ESMTP id DA6768056A2D;
	Mon, 16 Oct 2023 09:39:05 -0700 (PDT)
X-Virus-Status: Clean
X-Virus-Scanned: clamav-milter 0.103.10 at groat.vger.email
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S234353AbjJPQiX (ORCPT <rfc822;0xff07.lkml@gmail.com>
        + 99 others); Mon, 16 Oct 2023 12:38:23 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:41386 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S234396AbjJPQgL (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Mon, 16 Oct 2023 12:36:11 -0400
Received: from mgamail.intel.com (mgamail.intel.com [192.55.52.151])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 947DF7EC4;
        Mon, 16 Oct 2023 09:23:06 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple;
  d=intel.com; i=@intel.com; q=dns/txt; s=Intel;
  t=1697473386; x=1729009386;
  h=from:to:cc:subject:date:message-id:in-reply-to:
   references:mime-version:content-transfer-encoding;
  bh=gOO5OWSuPx81k59JemybnRMqYrjqM1TQ66zXW0CGJxc=;
  b=QBPnH2gByGb/og8a2ZJ0nS8vj974EDT864XVw4qNe0pWkQtvYsW1l6yC
   VgY5hdgmDduqQ9PVg6FR319ixr5CHKRxLUePL9QLoaTx4DtN/QQBUJqhH
   Hp9fYxkbBoy59q9iaLsw3+Z3V20NTh6l7P4U4RzuQXDYMY9GPgT8vTTLR
   kIFOQsKnF20vmzD3044wvG08rllgpBaa2iGchHYHraUkXyXKdTaxHOlr5
   N9ZHow8gNT1uCWY3x8aUyTYTflwFLPPYePrv5bVldHmibdbk/SWawKTWT
   TxBsO3EFFhwgNIIzNz46NDjxzKbW+Fvq9eVVxFAIscs609AYReAbXnnRt
   w==;
X-IronPort-AV: E=McAfee;i="6600,9927,10865"; a="365826066"
X-IronPort-AV: E=Sophos;i="6.03,229,1694761200"; 
   d="scan'208";a="365826066"
Received: from fmsmga005.fm.intel.com ([10.253.24.32])
  by fmsmga107.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 16 Oct 2023 09:15:40 -0700
X-ExtLoop1: 1
X-IronPort-AV: E=McAfee;i="6600,9927,10865"; a="1087126121"
X-IronPort-AV: E=Sophos;i="6.03,229,1694761200"; 
   d="scan'208";a="1087126121"
Received: from ls.sc.intel.com (HELO localhost) ([172.25.112.31])
  by fmsmga005-auth.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 16 Oct 2023 09:15:37 -0700
From:   isaku.yamahata@intel.com
To:     kvm@vger.kernel.org, linux-kernel@vger.kernel.org
Cc:     isaku.yamahata@intel.com, isaku.yamahata@gmail.com,
        Paolo Bonzini <pbonzini@redhat.com>, erdemaktas@google.com,
        Sean Christopherson <seanjc@google.com>,
        Sagi Shahar <sagis@google.com>,
        David Matlack <dmatlack@google.com>,
        Kai Huang <kai.huang@intel.com>,
        Zhi Wang <zhi.wang.linux@gmail.com>, chen.bo@intel.com,
        hang.yuan@intel.com, tina.zhang@intel.com
Subject: [PATCH v16 036/116] KVM: x86/mmu: Disallow fast page fault on private GPA
Date:   Mon, 16 Oct 2023 09:13:48 -0700
Message-Id: <b8ac8bbed21b3237f4854953aebb03636b1accbd.1697471314.git.isaku.yamahata@intel.com>
X-Mailer: git-send-email 2.25.1
In-Reply-To: <cover.1697471314.git.isaku.yamahata@intel.com>
References: <cover.1697471314.git.isaku.yamahata@intel.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-Spam-Status: No, score=-0.9 required=5.0 tests=DKIMWL_WL_HIGH,DKIM_SIGNED,
	DKIM_VALID,DKIM_VALID_AU,HEADER_FROM_DIFFERENT_DOMAINS,
	MAILING_LIST_MULTI,SPF_HELO_NONE,SPF_PASS autolearn=unavailable
	autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on groat.vger.email
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org
X-Greylist: Sender passed SPF test, not delayed by milter-greylist-4.6.4 (groat.vger.email [0.0.0.0]); Mon, 16 Oct 2023 09:39:06 -0700 (PDT)

From: Isaku Yamahata <isaku.yamahata@intel.com>

TDX requires TDX SEAMCALL to operate Secure EPT instead of direct memory
access and TDX SEAMCALL is heavy operation.  Fast page fault on private GPA
doesn't make sense.  Disallow fast page fault on private GPA.

Signed-off-by: Isaku Yamahata <isaku.yamahata@intel.com>
Reviewed-by: Paolo Bonzini <pbonzini@redhat.com>
---
 arch/x86/kvm/mmu/mmu.c | 12 ++++++++++--
 1 file changed, 10 insertions(+), 2 deletions(-)

diff --git a/arch/x86/kvm/mmu/mmu.c b/arch/x86/kvm/mmu/mmu.c
index 469e73283824..1e3ddf2e7dbf 100644
--- a/arch/x86/kvm/mmu/mmu.c
+++ b/arch/x86/kvm/mmu/mmu.c
@@ -3343,8 +3343,16 @@ static int kvm_handle_noslot_fault(struct kvm_vcpu *vcpu,
 	return RET_PF_CONTINUE;
 }
 
-static bool page_fault_can_be_fast(struct kvm_page_fault *fault)
+static bool page_fault_can_be_fast(struct kvm *kvm, struct kvm_page_fault *fault)
 {
+	/*
+	 * TDX private mapping doesn't support fast page fault because the EPT
+	 * entry is read/written with TDX SEAMCALLs instead of direct memory
+	 * access.
+	 */
+	if (kvm_is_private_gpa(kvm, fault->addr))
+		return false;
+
 	/*
 	 * Page faults with reserved bits set, i.e. faults on MMIO SPTEs, only
 	 * reach the common page fault handler if the SPTE has an invalid MMIO
@@ -3454,7 +3462,7 @@ static int fast_page_fault(struct kvm_vcpu *vcpu, struct kvm_page_fault *fault)
 	u64 *sptep = NULL;
 	uint retry_count = 0;
 
-	if (!page_fault_can_be_fast(fault))
+	if (!page_fault_can_be_fast(vcpu->kvm, fault))
 		return ret;
 
 	walk_shadow_page_lockless_begin(vcpu);
-- 
2.25.1