gaccess.h 13 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368
  1. /*
  2. * access guest memory
  3. *
  4. * Copyright IBM Corp. 2008, 2014
  5. *
  6. * This program is free software; you can redistribute it and/or modify
  7. * it under the terms of the GNU General Public License (version 2 only)
  8. * as published by the Free Software Foundation.
  9. *
  10. * Author(s): Carsten Otte <cotte@de.ibm.com>
  11. */
  12. #ifndef __KVM_S390_GACCESS_H
  13. #define __KVM_S390_GACCESS_H
  14. #include <linux/compiler.h>
  15. #include <linux/kvm_host.h>
  16. #include <linux/uaccess.h>
  17. #include <linux/ptrace.h>
  18. #include "kvm-s390.h"
  19. /**
  20. * kvm_s390_real_to_abs - convert guest real address to guest absolute address
  21. * @vcpu - guest virtual cpu
  22. * @gra - guest real address
  23. *
  24. * Returns the guest absolute address that corresponds to the passed guest real
  25. * address @gra of a virtual guest cpu by applying its prefix.
  26. */
  27. static inline unsigned long kvm_s390_real_to_abs(struct kvm_vcpu *vcpu,
  28. unsigned long gra)
  29. {
  30. unsigned long prefix = kvm_s390_get_prefix(vcpu);
  31. if (gra < 2 * PAGE_SIZE)
  32. gra += prefix;
  33. else if (gra >= prefix && gra < prefix + 2 * PAGE_SIZE)
  34. gra -= prefix;
  35. return gra;
  36. }
  37. /**
  38. * kvm_s390_logical_to_effective - convert guest logical to effective address
  39. * @vcpu: guest virtual cpu
  40. * @ga: guest logical address
  41. *
  42. * Convert a guest vcpu logical address to a guest vcpu effective address by
  43. * applying the rules of the vcpu's addressing mode defined by PSW bits 31
  44. * and 32 (extendended/basic addressing mode).
  45. *
  46. * Depending on the vcpu's addressing mode the upper 40 bits (24 bit addressing
  47. * mode), 33 bits (31 bit addressing mode) or no bits (64 bit addressing mode)
  48. * of @ga will be zeroed and the remaining bits will be returned.
  49. */
  50. static inline unsigned long kvm_s390_logical_to_effective(struct kvm_vcpu *vcpu,
  51. unsigned long ga)
  52. {
  53. psw_t *psw = &vcpu->arch.sie_block->gpsw;
  54. if (psw_bits(*psw).eaba == PSW_AMODE_64BIT)
  55. return ga;
  56. if (psw_bits(*psw).eaba == PSW_AMODE_31BIT)
  57. return ga & ((1UL << 31) - 1);
  58. return ga & ((1UL << 24) - 1);
  59. }
  60. /*
  61. * put_guest_lc, read_guest_lc and write_guest_lc are guest access functions
  62. * which shall only be used to access the lowcore of a vcpu.
  63. * These functions should be used for e.g. interrupt handlers where no
  64. * guest memory access protection facilities, like key or low address
  65. * protection, are applicable.
  66. * At a later point guest vcpu lowcore access should happen via pinned
  67. * prefix pages, so that these pages can be accessed directly via the
  68. * kernel mapping. All of these *_lc functions can be removed then.
  69. */
  70. /**
  71. * put_guest_lc - write a simple variable to a guest vcpu's lowcore
  72. * @vcpu: virtual cpu
  73. * @x: value to copy to guest
  74. * @gra: vcpu's destination guest real address
  75. *
  76. * Copies a simple value from kernel space to a guest vcpu's lowcore.
  77. * The size of the variable may be 1, 2, 4 or 8 bytes. The destination
  78. * must be located in the vcpu's lowcore. Otherwise the result is undefined.
  79. *
  80. * Returns zero on success or -EFAULT on error.
  81. *
  82. * Note: an error indicates that either the kernel is out of memory or
  83. * the guest memory mapping is broken. In any case the best solution
  84. * would be to terminate the guest.
  85. * It is wrong to inject a guest exception.
  86. */
  87. #define put_guest_lc(vcpu, x, gra) \
  88. ({ \
  89. struct kvm_vcpu *__vcpu = (vcpu); \
  90. __typeof__(*(gra)) __x = (x); \
  91. unsigned long __gpa; \
  92. \
  93. __gpa = (unsigned long)(gra); \
  94. __gpa += kvm_s390_get_prefix(__vcpu); \
  95. kvm_write_guest(__vcpu->kvm, __gpa, &__x, sizeof(__x)); \
  96. })
  97. /**
  98. * write_guest_lc - copy data from kernel space to guest vcpu's lowcore
  99. * @vcpu: virtual cpu
  100. * @gra: vcpu's source guest real address
  101. * @data: source address in kernel space
  102. * @len: number of bytes to copy
  103. *
  104. * Copy data from kernel space to guest vcpu's lowcore. The entire range must
  105. * be located within the vcpu's lowcore, otherwise the result is undefined.
  106. *
  107. * Returns zero on success or -EFAULT on error.
  108. *
  109. * Note: an error indicates that either the kernel is out of memory or
  110. * the guest memory mapping is broken. In any case the best solution
  111. * would be to terminate the guest.
  112. * It is wrong to inject a guest exception.
  113. */
  114. static inline __must_check
  115. int write_guest_lc(struct kvm_vcpu *vcpu, unsigned long gra, void *data,
  116. unsigned long len)
  117. {
  118. unsigned long gpa = gra + kvm_s390_get_prefix(vcpu);
  119. return kvm_write_guest(vcpu->kvm, gpa, data, len);
  120. }
  121. /**
  122. * read_guest_lc - copy data from guest vcpu's lowcore to kernel space
  123. * @vcpu: virtual cpu
  124. * @gra: vcpu's source guest real address
  125. * @data: destination address in kernel space
  126. * @len: number of bytes to copy
  127. *
  128. * Copy data from guest vcpu's lowcore to kernel space. The entire range must
  129. * be located within the vcpu's lowcore, otherwise the result is undefined.
  130. *
  131. * Returns zero on success or -EFAULT on error.
  132. *
  133. * Note: an error indicates that either the kernel is out of memory or
  134. * the guest memory mapping is broken. In any case the best solution
  135. * would be to terminate the guest.
  136. * It is wrong to inject a guest exception.
  137. */
  138. static inline __must_check
  139. int read_guest_lc(struct kvm_vcpu *vcpu, unsigned long gra, void *data,
  140. unsigned long len)
  141. {
  142. unsigned long gpa = gra + kvm_s390_get_prefix(vcpu);
  143. return kvm_read_guest(vcpu->kvm, gpa, data, len);
  144. }
  145. enum gacc_mode {
  146. GACC_FETCH,
  147. GACC_STORE,
  148. GACC_IFETCH,
  149. };
  150. int guest_translate_address(struct kvm_vcpu *vcpu, unsigned long gva,
  151. ar_t ar, unsigned long *gpa, enum gacc_mode mode);
  152. int check_gva_range(struct kvm_vcpu *vcpu, unsigned long gva, ar_t ar,
  153. unsigned long length, enum gacc_mode mode);
  154. int access_guest(struct kvm_vcpu *vcpu, unsigned long ga, ar_t ar, void *data,
  155. unsigned long len, enum gacc_mode mode);
  156. int access_guest_real(struct kvm_vcpu *vcpu, unsigned long gra,
  157. void *data, unsigned long len, enum gacc_mode mode);
  158. /**
  159. * write_guest - copy data from kernel space to guest space
  160. * @vcpu: virtual cpu
  161. * @ga: guest address
  162. * @ar: access register
  163. * @data: source address in kernel space
  164. * @len: number of bytes to copy
  165. *
  166. * Copy @len bytes from @data (kernel space) to @ga (guest address).
  167. * In order to copy data to guest space the PSW of the vcpu is inspected:
  168. * If DAT is off data will be copied to guest real or absolute memory.
  169. * If DAT is on data will be copied to the address space as specified by
  170. * the address space bits of the PSW:
  171. * Primary, secondary, home space or access register mode.
  172. * The addressing mode of the PSW is also inspected, so that address wrap
  173. * around is taken into account for 24-, 31- and 64-bit addressing mode,
  174. * if the to be copied data crosses page boundaries in guest address space.
  175. * In addition also low address and DAT protection are inspected before
  176. * copying any data (key protection is currently not implemented).
  177. *
  178. * This function modifies the 'struct kvm_s390_pgm_info pgm' member of @vcpu.
  179. * In case of an access exception (e.g. protection exception) pgm will contain
  180. * all data necessary so that a subsequent call to 'kvm_s390_inject_prog_vcpu()'
  181. * will inject a correct exception into the guest.
  182. * If no access exception happened, the contents of pgm are undefined when
  183. * this function returns.
  184. *
  185. * Returns: - zero on success
  186. * - a negative value if e.g. the guest mapping is broken or in
  187. * case of out-of-memory. In this case the contents of pgm are
  188. * undefined. Also parts of @data may have been copied to guest
  189. * space.
  190. * - a positive value if an access exception happened. In this case
  191. * the returned value is the program interruption code and the
  192. * contents of pgm may be used to inject an exception into the
  193. * guest. No data has been copied to guest space.
  194. *
  195. * Note: in case an access exception is recognized no data has been copied to
  196. * guest space (this is also true, if the to be copied data would cross
  197. * one or more page boundaries in guest space).
  198. * Therefore this function may be used for nullifying and suppressing
  199. * instruction emulation.
  200. * It may also be used for terminating instructions, if it is undefined
  201. * if data has been changed in guest space in case of an exception.
  202. */
  203. static inline __must_check
  204. int write_guest(struct kvm_vcpu *vcpu, unsigned long ga, ar_t ar, void *data,
  205. unsigned long len)
  206. {
  207. return access_guest(vcpu, ga, ar, data, len, GACC_STORE);
  208. }
  209. /**
  210. * read_guest - copy data from guest space to kernel space
  211. * @vcpu: virtual cpu
  212. * @ga: guest address
  213. * @ar: access register
  214. * @data: destination address in kernel space
  215. * @len: number of bytes to copy
  216. *
  217. * Copy @len bytes from @ga (guest address) to @data (kernel space).
  218. *
  219. * The behaviour of read_guest is identical to write_guest, except that
  220. * data will be copied from guest space to kernel space.
  221. */
  222. static inline __must_check
  223. int read_guest(struct kvm_vcpu *vcpu, unsigned long ga, ar_t ar, void *data,
  224. unsigned long len)
  225. {
  226. return access_guest(vcpu, ga, ar, data, len, GACC_FETCH);
  227. }
  228. /**
  229. * read_guest_instr - copy instruction data from guest space to kernel space
  230. * @vcpu: virtual cpu
  231. * @data: destination address in kernel space
  232. * @len: number of bytes to copy
  233. *
  234. * Copy @len bytes from the current psw address (guest space) to @data (kernel
  235. * space).
  236. *
  237. * The behaviour of read_guest_instr is identical to read_guest, except that
  238. * instruction data will be read from primary space when in home-space or
  239. * address-space mode.
  240. */
  241. static inline __must_check
  242. int read_guest_instr(struct kvm_vcpu *vcpu, void *data, unsigned long len)
  243. {
  244. return access_guest(vcpu, vcpu->arch.sie_block->gpsw.addr, 0, data, len,
  245. GACC_IFETCH);
  246. }
  247. /**
  248. * write_guest_abs - copy data from kernel space to guest space absolute
  249. * @vcpu: virtual cpu
  250. * @gpa: guest physical (absolute) address
  251. * @data: source address in kernel space
  252. * @len: number of bytes to copy
  253. *
  254. * Copy @len bytes from @data (kernel space) to @gpa (guest absolute address).
  255. * It is up to the caller to ensure that the entire guest memory range is
  256. * valid memory before calling this function.
  257. * Guest low address and key protection are not checked.
  258. *
  259. * Returns zero on success or -EFAULT on error.
  260. *
  261. * If an error occurs data may have been copied partially to guest memory.
  262. */
  263. static inline __must_check
  264. int write_guest_abs(struct kvm_vcpu *vcpu, unsigned long gpa, void *data,
  265. unsigned long len)
  266. {
  267. return kvm_write_guest(vcpu->kvm, gpa, data, len);
  268. }
  269. /**
  270. * read_guest_abs - copy data from guest space absolute to kernel space
  271. * @vcpu: virtual cpu
  272. * @gpa: guest physical (absolute) address
  273. * @data: destination address in kernel space
  274. * @len: number of bytes to copy
  275. *
  276. * Copy @len bytes from @gpa (guest absolute address) to @data (kernel space).
  277. * It is up to the caller to ensure that the entire guest memory range is
  278. * valid memory before calling this function.
  279. * Guest key protection is not checked.
  280. *
  281. * Returns zero on success or -EFAULT on error.
  282. *
  283. * If an error occurs data may have been copied partially to kernel space.
  284. */
  285. static inline __must_check
  286. int read_guest_abs(struct kvm_vcpu *vcpu, unsigned long gpa, void *data,
  287. unsigned long len)
  288. {
  289. return kvm_read_guest(vcpu->kvm, gpa, data, len);
  290. }
  291. /**
  292. * write_guest_real - copy data from kernel space to guest space real
  293. * @vcpu: virtual cpu
  294. * @gra: guest real address
  295. * @data: source address in kernel space
  296. * @len: number of bytes to copy
  297. *
  298. * Copy @len bytes from @data (kernel space) to @gra (guest real address).
  299. * It is up to the caller to ensure that the entire guest memory range is
  300. * valid memory before calling this function.
  301. * Guest low address and key protection are not checked.
  302. *
  303. * Returns zero on success or -EFAULT on error.
  304. *
  305. * If an error occurs data may have been copied partially to guest memory.
  306. */
  307. static inline __must_check
  308. int write_guest_real(struct kvm_vcpu *vcpu, unsigned long gra, void *data,
  309. unsigned long len)
  310. {
  311. return access_guest_real(vcpu, gra, data, len, 1);
  312. }
  313. /**
  314. * read_guest_real - copy data from guest space real to kernel space
  315. * @vcpu: virtual cpu
  316. * @gra: guest real address
  317. * @data: destination address in kernel space
  318. * @len: number of bytes to copy
  319. *
  320. * Copy @len bytes from @gra (guest real address) to @data (kernel space).
  321. * It is up to the caller to ensure that the entire guest memory range is
  322. * valid memory before calling this function.
  323. * Guest key protection is not checked.
  324. *
  325. * Returns zero on success or -EFAULT on error.
  326. *
  327. * If an error occurs data may have been copied partially to kernel space.
  328. */
  329. static inline __must_check
  330. int read_guest_real(struct kvm_vcpu *vcpu, unsigned long gra, void *data,
  331. unsigned long len)
  332. {
  333. return access_guest_real(vcpu, gra, data, len, 0);
  334. }
  335. void ipte_lock(struct kvm_vcpu *vcpu);
  336. void ipte_unlock(struct kvm_vcpu *vcpu);
  337. int ipte_lock_held(struct kvm_vcpu *vcpu);
  338. int kvm_s390_check_low_addr_prot_real(struct kvm_vcpu *vcpu, unsigned long gra);
  339. int kvm_s390_shadow_fault(struct kvm_vcpu *vcpu, struct gmap *shadow,
  340. unsigned long saddr);
  341. #endif /* __KVM_S390_GACCESS_H */