Merge tag 'for-linus' of git://git.kernel.org/pub/scm/virt/kvm/kvm

R:	James Morse <james.morse@arm.com>

R:	Alexandru Elisei <alexandru.elisei@arm.com>

R:	Suzuki K Poulose <suzuki.poulose@arm.com>

R:	Oliver Upton <oliver.upton@linux.dev>

L:	linux-arm-kernel@lists.infradead.org (moderated for non-subscribers)

L:	kvmarm@lists.cs.columbia.edu (moderated for non-subscribers)

S:	Maintained

F:	tools/testing/selftests/kvm/s390x/

KERNEL VIRTUAL MACHINE FOR X86 (KVM/x86)

M:	Sean Christopherson <seanjc@google.com>

M:	Paolo Bonzini <pbonzini@redhat.com>

R:	Sean Christopherson <seanjc@google.com>

R:	Vitaly Kuznetsov <vkuznets@redhat.com>

R:	Wanpeng Li <wanpengli@tencent.com>

R:	Jim Mattson <jmattson@google.com>

R:	Joerg Roedel <joro@8bytes.org>

L:	kvm@vger.kernel.org

S:	Supported

W:	http://www.linux-kvm.org

T:	git git://git.kernel.org/pub/scm/virt/kvm/kvm.git

F:	arch/x86/include/asm/kvm*

F:	arch/x86/include/asm/pvclock-abi.h

F:	arch/x86/include/asm/svm.h

F:	arch/x86/include/asm/vmx*.h

F:	arch/x86/include/uapi/asm/kvm*

F:	arch/x86/include/uapi/asm/svm.h

F:	arch/x86/include/uapi/asm/vmx.h

F:	arch/x86/kernel/kvm.c

F:	arch/x86/kernel/kvmclock.c

F:	arch/x86/kvm/

F:	arch/x86/kvm/*/

KVM PARAVIRT (KVM/paravirt)

M:	Paolo Bonzini <pbonzini@redhat.com>

R:	Wanpeng Li <wanpengli@tencent.com>

R:	Vitaly Kuznetsov <vkuznets@redhat.com>

L:	kvm@vger.kernel.org

S:	Supported

T:	git git://git.kernel.org/pub/scm/virt/kvm/kvm.git

F:	arch/x86/kernel/kvm.c

F:	arch/x86/kernel/kvmclock.c

F:	arch/x86/include/asm/pvclock-abi.h

F:	include/linux/kvm_para.h

F:	include/uapi/linux/kvm_para.h

F:	include/uapi/asm-generic/kvm_para.h

F:	include/asm-generic/kvm_para.h

F:	arch/um/include/asm/kvm_para.h

F:	arch/x86/include/asm/kvm_para.h

F:	arch/x86/include/uapi/asm/kvm_para.h

KVM X86 HYPER-V (KVM/hyper-v)

M:	Vitaly Kuznetsov <vkuznets@redhat.com>

M:	Sean Christopherson <seanjc@google.com>

M:	Paolo Bonzini <pbonzini@redhat.com>

L:	kvm@vger.kernel.org

S:	Supported

T:	git git://git.kernel.org/pub/scm/virt/kvm/kvm.git

F:	arch/x86/kvm/hyperv.*

F:	arch/x86/kvm/kvm_onhyperv.*

F:	arch/x86/kvm/svm/hyperv.*

F:	arch/x86/kvm/svm/svm_onhyperv.*

F:	arch/x86/kvm/vmx/evmcs.*

KERNFS

M:	Greg Kroah-Hartman <gregkh@linuxfoundation.org>

M:	Tejun Heo <tj@kernel.org>

		return 0;

	/*

	 * Exclude HYP BSS from kmemleak so that it doesn't get peeked

	 * at, which would end badly once the section is inaccessible.

	 * None of other sections should ever be introspected.

	 * Exclude HYP sections from kmemleak so that they don't get peeked

	 * at, which would end badly once inaccessible.

	 */

	kmemleak_free_part(__hyp_bss_start, __hyp_bss_end - __hyp_bss_start);

	kmemleak_free_part(__va(hyp_mem_base), hyp_mem_size);

	return pkvm_drop_host_privileges();

}

	/* If source buffer is not aligned then use an intermediate buffer */

	if (!IS_ALIGNED((unsigned long)vaddr, 16)) {

		src_tpage = alloc_page(GFP_KERNEL);

		src_tpage = alloc_page(GFP_KERNEL_ACCOUNT);

		if (!src_tpage)

			return -ENOMEM;

	if (!IS_ALIGNED((unsigned long)dst_vaddr, 16) || !IS_ALIGNED(size, 16)) {

		int dst_offset;

		dst_tpage = alloc_page(GFP_KERNEL);

		dst_tpage = alloc_page(GFP_KERNEL_ACCOUNT);

		if (!dst_tpage) {

			ret = -ENOMEM;

			goto e_free;

{

	struct kvm_sev_info *dst = &to_kvm_svm(dst_kvm)->sev_info;

	struct kvm_sev_info *src = &to_kvm_svm(src_kvm)->sev_info;

	struct kvm_vcpu *dst_vcpu, *src_vcpu;

	struct vcpu_svm *dst_svm, *src_svm;

	struct kvm_sev_info *mirror;

	unsigned long i;

	dst->active = true;

	dst->asid = src->asid;

	dst->handle = src->handle;

	dst->pages_locked = src->pages_locked;

	dst->enc_context_owner = src->enc_context_owner;

	dst->es_active = src->es_active;

	src->asid = 0;

	src->active = false;

	src->handle = 0;

	src->pages_locked = 0;

	src->enc_context_owner = NULL;

	src->es_active = false;

	list_cut_before(&dst->regions_list, &src->regions_list, &src->regions_list);

		list_del(&src->mirror_entry);

		list_add_tail(&dst->mirror_entry, &owner_sev_info->mirror_vms);

	}

}

static int sev_es_migrate_from(struct kvm *dst, struct kvm *src)

{

	unsigned long i;

	struct kvm_vcpu *dst_vcpu, *src_vcpu;

	struct vcpu_svm *dst_svm, *src_svm;

	kvm_for_each_vcpu(i, dst_vcpu, dst_kvm) {

		dst_svm = to_svm(dst_vcpu);

	if (atomic_read(&src->online_vcpus) != atomic_read(&dst->online_vcpus))

		return -EINVAL;

		sev_init_vmcb(dst_svm);

	kvm_for_each_vcpu(i, src_vcpu, src) {

		if (!src_vcpu->arch.guest_state_protected)

			return -EINVAL;

	}

		if (!dst->es_active)

			continue;

	kvm_for_each_vcpu(i, src_vcpu, src) {

		/*

		 * Note, the source is not required to have the same number of

		 * vCPUs as the destination when migrating a vanilla SEV VM.

		 */

		src_vcpu = kvm_get_vcpu(dst_kvm, i);

		src_svm = to_svm(src_vcpu);

		dst_vcpu = kvm_get_vcpu(dst, i);

		dst_svm = to_svm(dst_vcpu);

		/*

		 * Transfer VMSA and GHCB state to the destination.  Nullify and

		src_svm->vmcb->control.vmsa_pa = INVALID_PAGE;

		src_vcpu->arch.guest_state_protected = false;

	}

	to_kvm_svm(src)->sev_info.es_active = false;

	to_kvm_svm(dst)->sev_info.es_active = true;

}

static int sev_check_source_vcpus(struct kvm *dst, struct kvm *src)

{

	struct kvm_vcpu *src_vcpu;

	unsigned long i;

	if (!sev_es_guest(src))

		return 0;

	if (atomic_read(&src->online_vcpus) != atomic_read(&dst->online_vcpus))

		return -EINVAL;

	kvm_for_each_vcpu(i, src_vcpu, src) {

		if (!src_vcpu->arch.guest_state_protected)

			return -EINVAL;

	}

	return 0;

}

	if (ret)

		goto out_dst_vcpu;

	if (sev_es_guest(source_kvm)) {

		ret = sev_es_migrate_from(kvm, source_kvm);

	ret = sev_check_source_vcpus(kvm, source_kvm);

	if (ret)

		goto out_source_vcpu;

	}

	sev_migrate_from(kvm, source_kvm);

	kvm_vm_dead(source_kvm);

				    count, in);

}

void sev_es_init_vmcb(struct vcpu_svm *svm)

static void sev_es_init_vmcb(struct vcpu_svm *svm)

{

	struct kvm_vcpu *vcpu = &svm->vcpu;

	}

}

void sev_init_vmcb(struct vcpu_svm *svm)

{

	svm->vmcb->control.nested_ctl |= SVM_NESTED_CTL_SEV_ENABLE;

	clr_exception_intercept(svm, UD_VECTOR);

	if (sev_es_guest(svm->vcpu.kvm))

		sev_es_init_vmcb(svm);

}

void sev_es_vcpu_reset(struct vcpu_svm *svm)

{

	/*

		svm->vmcb->control.int_ctl |= V_GIF_ENABLE_MASK;

	}

	if (sev_guest(vcpu->kvm)) {

		svm->vmcb->control.nested_ctl |= SVM_NESTED_CTL_SEV_ENABLE;

		clr_exception_intercept(svm, UD_VECTOR);

		if (sev_es_guest(vcpu->kvm)) {

			/* Perform SEV-ES specific VMCB updates */

			sev_es_init_vmcb(svm);

		}

	}

	if (sev_guest(vcpu->kvm))

		sev_init_vmcb(svm);

	svm_hv_init_vmcb(vmcb);

	init_vmcb_after_set_cpuid(vcpu);

void __init sev_hardware_setup(void);

void sev_hardware_unsetup(void);

int sev_cpu_init(struct svm_cpu_data *sd);

void sev_init_vmcb(struct vcpu_svm *svm);

void sev_free_vcpu(struct kvm_vcpu *vcpu);

int sev_handle_vmgexit(struct kvm_vcpu *vcpu);

int sev_es_string_io(struct vcpu_svm *svm, int size, unsigned int port, int in);

void sev_es_init_vmcb(struct vcpu_svm *svm);

void sev_es_vcpu_reset(struct vcpu_svm *svm);

void sev_vcpu_deliver_sipi_vector(struct kvm_vcpu *vcpu, u8 vector);

void sev_es_prepare_switch_to_guest(struct sev_es_save_area *hostsa);