Re: [PATCH v5 01/16] x86/mm: Move force_dma_unencrypted() to common code

[PATCH v5 00/16] Add TDX Guest Support (shared-mm support) · Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@linux.intel.com> · 2021-10-09
[PATCH v5 01/16] x86/mm: Move force_dma_unencrypted() to common code · Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@linux.intel.com> · 2021-10-09
Re: [PATCH v5 01/16] x86/mm: Move force_dma_unencrypted() to common code · Tom Lendacky <thomas.lendacky@amd.com> · 2021-10-20
Re: [PATCH v5 01/16] x86/mm: Move force_dma_unencrypted() to common code · Sathyanarayanan Kuppuswamy <sathyanarayanan.kuppuswamy@linux.intel.com> · 2021-10-20
[PATCH v5 02/16] x86/tdx: Get TD execution environment information via TDINFO · Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@linux.intel.com> · 2021-10-09
[PATCH v5 03/16] x86/tdx: Exclude Shared bit from physical_mask · Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@linux.intel.com> · 2021-10-09
Re: [PATCH v5 03/16] x86/tdx: Exclude Shared bit from physical_mask · Sean Christopherson <seanjc@google.com> · 2021-11-05
Re: [PATCH v5 03/16] x86/tdx: Exclude Shared bit from physical_mask · Kirill A. Shutemov <hidden> · 2021-11-08
[PATCH v5 04/16] x86/tdx: Make pages shared in ioremap() · Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@linux.intel.com> · 2021-10-09
Re: [PATCH v5 04/16] x86/tdx: Make pages shared in ioremap() · Tom Lendacky <thomas.lendacky@amd.com> · 2021-10-20
Re: [PATCH v5 04/16] x86/tdx: Make pages shared in ioremap() · Sathyanarayanan Kuppuswamy <sathyanarayanan.kuppuswamy@linux.intel.com> · 2021-10-20
[PATCH v5 05/16] x86/tdx: Add helper to do MapGPA hypercall · Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@linux.intel.com> · 2021-10-09
[PATCH v5 06/16] x86/tdx: Make DMA pages shared · Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@linux.intel.com> · 2021-10-09
Re: [PATCH v5 06/16] x86/tdx: Make DMA pages shared · Tom Lendacky <thomas.lendacky@amd.com> · 2021-10-20
Re: [PATCH v5 06/16] x86/tdx: Make DMA pages shared · Sathyanarayanan Kuppuswamy <sathyanarayanan.kuppuswamy@linux.intel.com> · 2021-10-20
Re: [PATCH v5 06/16] x86/tdx: Make DMA pages shared · Tom Lendacky <thomas.lendacky@amd.com> · 2021-10-20
Re: [PATCH v5 06/16] x86/tdx: Make DMA pages shared · Sathyanarayanan Kuppuswamy <sathyanarayanan.kuppuswamy@linux.intel.com> · 2021-10-20
[PATCH v5 08/16] x86/tdx: ioapic: Add shared bit for IOAPIC base address · Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@linux.intel.com> · 2021-10-09
[PATCH v5 09/16] x86/tdx: Enable shared memory confidential guest flags for TDX guest · Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@linux.intel.com> · 2021-10-09
[PATCH v5 07/16] x86/kvm: Use bounce buffers for TD guest · Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@linux.intel.com> · 2021-10-09
Re: [PATCH v5 07/16] x86/kvm: Use bounce buffers for TD guest · Tom Lendacky <thomas.lendacky@amd.com> · 2021-10-20
Re: [PATCH v5 07/16] x86/kvm: Use bounce buffers for TD guest · Sathyanarayanan Kuppuswamy <sathyanarayanan.kuppuswamy@linux.intel.com> · 2021-10-20
Re: [PATCH v5 07/16] x86/kvm: Use bounce buffers for TD guest · Tom Lendacky <thomas.lendacky@amd.com> · 2021-10-20
[PATCH v5 10/16] PCI: Consolidate pci_iomap_range(), pci_iomap_wc_range() · Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@linux.intel.com> · 2021-10-09
[PATCH v5 11/16] asm/io.h: Add ioremap_host_shared fallback · Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@linux.intel.com> · 2021-10-09
[PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@linux.intel.com> · 2021-10-09
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · "Michael S. Tsirkin" <mst@redhat.com> · 2021-10-09
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Dan Williams <hidden> · 2021-10-09
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Andi Kleen <hidden> · 2021-10-10
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Dan Williams <hidden> · 2021-10-12
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Andi Kleen <hidden> · 2021-10-12
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Dan Williams <hidden> · 2021-10-12
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · "Michael S. Tsirkin" <mst@redhat.com> · 2021-10-12
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Andi Kleen <hidden> · 2021-10-12
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Andi Kleen <hidden> · 2021-10-12
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Dan Williams <hidden> · 2021-10-12
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Greg KH <gregkh@linuxfoundation.org> · 2021-10-18
RE: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · "Reshetova, Elena" <elena.reshetova@intel.com> · 2021-10-12
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Andi Kleen <hidden> · 2021-10-12
RE: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · "Reshetova, Elena" <elena.reshetova@intel.com> · 2021-10-12
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Dan Williams <hidden> · 2021-10-12
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Andi Kleen <hidden> · 2021-10-12
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · "Michael S. Tsirkin" <mst@redhat.com> · 2021-10-12
RE: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · "Reshetova, Elena" <elena.reshetova@intel.com> · 2021-10-14
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · "Michael S. Tsirkin" <mst@redhat.com> · 2021-10-14
RE: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · "Reshetova, Elena" <elena.reshetova@intel.com> · 2021-10-14
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · "Michael S. Tsirkin" <mst@redhat.com> · 2021-10-14
RE: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · "Reshetova, Elena" <elena.reshetova@intel.com> · 2021-10-14
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · "Michael S. Tsirkin" <mst@redhat.com> · 2021-10-17
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · "Michael S. Tsirkin" <mst@redhat.com> · 2021-10-14
RE: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Thomas Gleixner <hidden> · 2021-10-17
RE: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · "Reshetova, Elena" <elena.reshetova@intel.com> · 2021-10-18
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Thomas Gleixner <hidden> · 2021-10-18
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Thomas Gleixner <hidden> · 2021-10-18
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Greg KH <gregkh@linuxfoundation.org> · 2021-10-18
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Andi Kleen <hidden> · 2021-10-10
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · "Michael S. Tsirkin" <mst@redhat.com> · 2021-10-11
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Andi Kleen <hidden> · 2021-10-11
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · "Michael S. Tsirkin" <mst@redhat.com> · 2021-10-11
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Greg KH <gregkh@linuxfoundation.org> · 2021-10-18
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · "Michael S. Tsirkin" <mst@redhat.com> · 2021-10-18
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Christoph Hellwig <hch@infradead.org> · 2021-10-11
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Andi Kleen <hidden> · 2021-10-11
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · "Michael S. Tsirkin" <mst@redhat.com> · 2021-10-11
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Christoph Hellwig <hch@infradead.org> · 2021-10-12
Re: [PATCH v5 12/16] PCI: Add pci_iomap_host_shared(), pci_iomap_host_shared_range() · Andi Kleen <hidden> · 2021-10-12
[PATCH v5 13/16] PCI: Mark MSI data shared · Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@linux.intel.com> · 2021-10-09
[PATCH v5 14/16] virtio: Use shared mappings for virtio PCI devices · Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@linux.intel.com> · 2021-10-09
[PATCH v5 15/16] x86/tdx: Implement ioremap_host_shared for x86 · Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@linux.intel.com> · 2021-10-09
[PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared · Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@linux.intel.com> · 2021-10-09
Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared · Randy Dunlap <hidden> · 2021-10-09
Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared · "Kuppuswamy, Sathyanarayanan" <sathyanarayanan.kuppuswamy@linux.intel.com> · 2021-10-09
Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared · "Michael S. Tsirkin" <mst@redhat.com> · 2021-10-09
Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared · Andi Kleen <hidden> · 2021-10-11
Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared · "Michael S. Tsirkin" <mst@redhat.com> · 2021-10-11
Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared · Andi Kleen <hidden> · 2021-10-11
Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared · "Michael S. Tsirkin" <mst@redhat.com> · 2021-10-11
Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared · Andi Kleen <hidden> · 2021-10-12
Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared · "Michael S. Tsirkin" <mst@redhat.com> · 2021-10-12
Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared · Andi Kleen <hidden> · 2021-10-12
Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared · "Michael S. Tsirkin" <mst@redhat.com> · 2021-10-12
Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared · Andi Kleen <hidden> · 2021-10-15
Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared · "Michael S. Tsirkin" <mst@redhat.com> · 2021-10-15

From: Sathyanarayanan Kuppuswamy <sathyanarayanan.kuppuswamy@linux.intel.com>
Date: 2021-10-20 16:43:51
Also in: linux-alpha, linux-arch, linux-mips, linux-pci, lkml, sparclinux


On 10/20/21 9:11 AM, Tom Lendacky wrote:

quoted

Intel TDX doesn't allow VMM to access guest private memory. Any memory
that is required for communication with VMM must be shared explicitly
by setting the bit in page table entry. After setting the shared bit,
the conversion must be completed with MapGPA hypercall. Details about
MapGPA hypercall can be found in [1], sec 3.2.

The call informs VMM about the conversion between private/shared
mappings. The shared memory is similar to unencrypted memory in AMD
SME/SEV terminology but the underlying process of sharing/un-sharing
the memory is different for Intel TDX guest platform.

SEV assumes that I/O devices can only do DMA to "decrypted" physical
addresses without the C-bit set. In order for the CPU to interact with
this memory, the CPU needs a decrypted mapping. To add this support,
AMD SME code forces force_dma_unencrypted() to return true for
platforms that support AMD SEV feature. It will be used for DMA memory
allocation API to trigger set_memory_decrypted() for platforms that
support AMD SEV feature.

TDX is similar. So, to communicate with I/O devices, related pages need
to be marked as shared. As mentioned above, shared memory in TDX
architecture is similar to decrypted memory in AMD SME/SEV. So similar
to AMD SEV, force_dma_unencrypted() has to forced to return true. This
support is added in other patches in this series.

So move force_dma_unencrypted() out of AMD specific code and call AMD
specific (amd_force_dma_unencrypted()) initialization function from it.
force_dma_unencrypted() will be modified by later patches to include
Intel TDX guest platform specific initialization.

Also, introduce new config option X86_MEM_ENCRYPT_COMMON that has to be
selected by all x86 memory encryption features. This will be selected
by both AMD SEV and Intel TDX guest config options.

This is preparation for TDX changes in DMA code and it has no
functional change.

Can force_dma_unencrypted() be moved to arch/x86/kernel/cc_platform.c, 
instead of creating a new file? It might fit better with patch #6.

Please check the final version of mem_encrypt_common.c

https://github.com/intel/tdx/blob/guest/arch/x86/mm/mem_encrypt_common.c

I am not sure whether it is alright to move mem_encrypt_init() and
arch_has_restricted_virtio_memory_access() to cc_platform.c

If this is fine, I can get rid of mem_encrypt_common.c

-- 
Sathyanarayanan Kuppuswamy
Linux Kernel Developer

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help