Merge tag 'for-linus' of git://git.kernel.org/pub/scm/virt/kvm/kvm
Pull kvm fixes from Paolo Bonzini:
"KVM GUEST_MEMFD fixes for 6.8:
- Make KVM_MEM_GUEST_MEMFD mutually exclusive with KVM_MEM_READONLY
to avoid creating an inconsistent ABI (KVM_MEM_GUEST_MEMFD is not
writable from userspace, so there would be no way to write to a
read-only guest_memfd).
- Update documentation for KVM_SW_PROTECTED_VM to make it abundantly
clear that such VMs are purely for development and testing.
- Limit KVM_SW_PROTECTED_VM guests to the TDP MMU, as the long term
plan is to support confidential VMs with deterministic private
memory (SNP and TDX) only in the TDP MMU.
- Fix a bug in a GUEST_MEMFD dirty logging test that caused false
passes.
x86 fixes:
- Fix missing marking of a guest page as dirty when emulating an
atomic access.
- Check for mmu_notifier invalidation events before faulting in the
pfn, and before acquiring mmu_lock, to avoid unnecessary work and
lock contention with preemptible kernels (including
CONFIG_PREEMPT_DYNAMIC in non-preemptible mode).
- Disable AMD DebugSwap by default, it breaks VMSA signing and will
be re-enabled with a better VM creation API in 6.10.
- Do the cache flush of converted pages in svm_register_enc_region()
before dropping kvm->lock, to avoid a race with unregistering of
the same region and the consequent use-after-free issue"
* tag 'for-linus' of git://git.kernel.org/pub/scm/virt/kvm/kvm:
SEV: disable SEV-ES DebugSwap by default
KVM: x86/mmu: Retry fault before acquiring mmu_lock if mapping is changing
KVM: SVM: Flush pages under kvm->lock to fix UAF in svm_register_enc_region()
KVM: selftests: Add a testcase to verify GUEST_MEMFD and READONLY are exclusive
KVM: selftests: Create GUEST_MEMFD for relevant invalid flags testcases
KVM: x86/mmu: Restrict KVM_SW_PROTECTED_VM to the TDP MMU
KVM: x86: Update KVM_SW_PROTECTED_VM docs to make it clear they're a WIP
KVM: Make KVM_MEM_GUEST_MEMFD mutually exclusive with KVM_MEM_READONLY
KVM: x86: Mark target gfn of emulated atomic instruction as dirty
No related branches found
No related tags found
Showing
- Documentation/virt/kvm/api.rst 5 additions, 0 deletionsDocumentation/virt/kvm/api.rst
- arch/x86/kvm/Kconfig 4 additions, 3 deletionsarch/x86/kvm/Kconfig
- arch/x86/kvm/mmu/mmu.c 42 additions, 0 deletionsarch/x86/kvm/mmu/mmu.c
- arch/x86/kvm/svm/sev.c 14 additions, 9 deletionsarch/x86/kvm/svm/sev.c
- arch/x86/kvm/x86.c 11 additions, 1 deletionarch/x86/kvm/x86.c
- include/linux/kvm_host.h 26 additions, 0 deletionsinclude/linux/kvm_host.h
- tools/testing/selftests/kvm/set_memory_region_test.c 11 additions, 1 deletiontools/testing/selftests/kvm/set_memory_region_test.c
- virt/kvm/kvm_main.c 7 additions, 1 deletionvirt/kvm/kvm_main.c
Loading
Please register or sign in to comment