Merge tag 'kvmarm-6.2' of https://git.kernel.org/pub/scm/linux/kernel/git/kvmarm/kvmarm into HEAD

tags as appropriate if the VM is migrated.

When this capability is enabled all memory in memslots must be mapped as

not-shareable (no MAP_SHARED), attempts to create a memslot with a

MAP_SHARED mmap will result in an -EINVAL return.

``MAP_ANONYMOUS`` or with a RAM-based file mapping (``tmpfs``, ``memfd``),

attempts to create a memslot with an invalid mmap will result in an

-EINVAL return.

When enabled the VMM may make use of the ``KVM_ARM_MTE_COPY_TAGS`` ioctl to

perform a bulk copy of tags to/from the guest.

8.29 KVM_CAP_DIRTY_LOG_RING/KVM_CAP_DIRTY_LOG_RING_ACQ_REL

----------------------------------------------------------

:Architectures: x86

:Architectures: x86, arm64

:Parameters: args[0] - size of the dirty log ring

KVM is capable of tracking dirty memory using ring buffers that are

needs to kick the vcpu out of KVM_RUN using a signal.  The resulting

vmexit ensures that all dirty GFNs are flushed to the dirty rings.

NOTE: the capability KVM_CAP_DIRTY_LOG_RING and the corresponding

ioctl KVM_RESET_DIRTY_RINGS are mutual exclusive to the existing ioctls

KVM_GET_DIRTY_LOG and KVM_CLEAR_DIRTY_LOG.  After enabling

KVM_CAP_DIRTY_LOG_RING with an acceptable dirty ring size, the virtual

machine will switch to ring-buffer dirty page tracking and further

KVM_GET_DIRTY_LOG or KVM_CLEAR_DIRTY_LOG ioctls will fail.

NOTE: KVM_CAP_DIRTY_LOG_RING_ACQ_REL is the only capability that

should be exposed by weakly ordered architecture, in order to indicate

the additional memory ordering requirements imposed on userspace when

expose both KVM_CAP_DIRTY_LOG_RING and KVM_CAP_DIRTY_LOG_RING_ACQ_REL

to userspace.

After enabling the dirty rings, the userspace needs to detect the

capability of KVM_CAP_DIRTY_LOG_RING_WITH_BITMAP to see whether the

ring structures can be backed by per-slot bitmaps. With this capability

advertised, it means the architecture can dirty guest pages without

vcpu/ring context, so that some of the dirty information will still be

maintained in the bitmap structure. KVM_CAP_DIRTY_LOG_RING_WITH_BITMAP

can't be enabled if the capability of KVM_CAP_DIRTY_LOG_RING_ACQ_REL

hasn't been enabled, or any memslot has been existing.

Note that the bitmap here is only a backup of the ring structure. The

use of the ring and bitmap combination is only beneficial if there is

only a very small amount of memory that is dirtied out of vcpu/ring

context. Otherwise, the stand-alone per-slot bitmap mechanism needs to

be considered.

To collect dirty bits in the backup bitmap, userspace can use the same

KVM_GET_DIRTY_LOG ioctl. KVM_CLEAR_DIRTY_LOG isn't needed as long as all

the generation of the dirty bits is done in a single pass. Collecting

the dirty bitmap should be the very last thing that the VMM does before

considering the state as complete. VMM needs to ensure that the dirty

state is final and avoid missing dirty pages from another ioctl ordered

after the bitmap collection.

NOTE: One example of using the backup bitmap is saving arm64 vgic/its

tables through KVM_DEV_ARM_{VGIC_GRP_CTRL, ITS_SAVE_TABLES} command on

KVM device "kvm-arm-vgic-its" when dirty ring is enabled.

8.30 KVM_CAP_XEN_HVM

--------------------

ARCH_FEATURES mechanism before calling it.

PV_TIME_FEATURES

    ============= ========    ==========

    ============= ========    =================================================

    Function ID:  (uint32)    0xC5000020

    PV_call_id:   (uint32)    The function to query for support.

                              Currently only PV_TIME_ST is supported.

    Return value: (int64)     NOT_SUPPORTED (-1) or SUCCESS (0) if the relevant

                              PV-time feature is supported by the hypervisor.

    ============= ========    ==========

    ============= ========    =================================================

PV_TIME_ST

    ============= ========    ==========

    ============= ========    ==============================================

    Function ID:  (uint32)    0xC5000021

    Return value: (int64)     IPA of the stolen time data structure for this

                              VCPU. On failure:

                              NOT_SUPPORTED (-1)

    ============= ========    ==========

    ============= ========    ==============================================

The IPA returned by PV_TIME_ST should be mapped by the guest as normal memory

with inner and outer write back caching attributes, in the inner shareable

these structures and not used for other purposes, this enables the guest to map

the region using 64k pages and avoids conflicting attributes with other memory.

For the user space interface see Documentation/virt/kvm/devices/vcpu.rst

section "3. GROUP: KVM_ARM_VCPU_PVTIME_CTRL".

For the user space interface see

:ref:`Documentation/virt/kvm/devices/vcpu.rst <kvm_arm_vcpu_pvtime_ctrl>`.

 No newline at end of file

    KVM_DEV_ARM_ITS_SAVE_TABLES

      save the ITS table data into guest RAM, at the location provisioned

      by the guest in corresponding registers/table entries.

      by the guest in corresponding registers/table entries. Should userspace

      require a form of dirty tracking to identify which pages are modified

      by the saving process, it should use a bitmap even if using another

      mechanism to track the memory dirtied by the vCPUs.

      The layout of the tables in guest memory defines an ABI. The entries

      are laid out in little endian format as described in the last paragraph.

numbers on at least one VCPU after creating all VCPUs and before running any

VCPUs.

.. _kvm_arm_vcpu_pvtime_ctrl:

3. GROUP: KVM_ARM_VCPU_PVTIME_CTRL

==================================

	depends on ARM64_PAN

	select ARCH_HAS_SUBPAGE_FAULTS

	select ARCH_USES_HIGH_VMA_FLAGS

	select ARCH_USES_PG_ARCH_X

	help

	  Memory Tagging (part of the ARMv8.5 Extensions) provides

	  architectural support for run-time, always-on detection of