2 * This program is free software; you can redistribute it and/or modify
3 * it under the terms of the GNU General Public License, version 2, as
4 * published by the Free Software Foundation.
6 * Copyright 2010-2011 Paul Mackerras, IBM Corp. <paulus@au1.ibm.com>
9 #include <linux/types.h>
10 #include <linux/string.h>
11 #include <linux/kvm.h>
12 #include <linux/kvm_host.h>
13 #include <linux/hugetlb.h>
14 #include <linux/module.h>
16 #include <asm/tlbflush.h>
17 #include <asm/kvm_ppc.h>
18 #include <asm/kvm_book3s.h>
19 #include <asm/mmu-hash64.h>
20 #include <asm/hvcall.h>
21 #include <asm/synch.h>
22 #include <asm/ppc-opcode.h>
24 /* Translate address of a vmalloc'd thing to a linear map address */
25 static void *real_vmalloc_addr(void *x)
27 unsigned long addr = (unsigned long) x;
30 p = find_linux_pte(swapper_pg_dir, addr);
31 if (!p || !pte_present(*p))
33 /* assume we don't have huge pages in vmalloc space... */
34 addr = (pte_pfn(*p) << PAGE_SHIFT) | (addr & ~PAGE_MASK);
38 /* Return 1 if we need to do a global tlbie, 0 if we can use tlbiel */
39 static int global_invalidates(struct kvm *kvm, unsigned long flags)
44 * If there is only one vcore, and it's currently running,
45 * we can use tlbiel as long as we mark all other physical
46 * cores as potentially having stale TLB entries for this lpid.
47 * If we're not using MMU notifiers, we never take pages away
48 * from the guest, so we can use tlbiel if requested.
49 * Otherwise, don't use tlbiel.
51 if (kvm->arch.online_vcores == 1 && local_paca->kvm_hstate.kvm_vcore)
53 else if (kvm->arch.using_mmu_notifiers)
56 global = !(flags & H_LOCAL);
59 /* any other core might now have stale TLB entries... */
61 cpumask_setall(&kvm->arch.need_tlb_flush);
62 cpumask_clear_cpu(local_paca->kvm_hstate.kvm_vcore->pcpu,
63 &kvm->arch.need_tlb_flush);
70 * Add this HPTE into the chain for the real page.
71 * Must be called with the chain locked; it unlocks the chain.
73 void kvmppc_add_revmap_chain(struct kvm *kvm, struct revmap_entry *rev,
74 unsigned long *rmap, long pte_index, int realmode)
76 struct revmap_entry *head, *tail;
79 if (*rmap & KVMPPC_RMAP_PRESENT) {
80 i = *rmap & KVMPPC_RMAP_INDEX;
81 head = &kvm->arch.revmap[i];
83 head = real_vmalloc_addr(head);
84 tail = &kvm->arch.revmap[head->back];
86 tail = real_vmalloc_addr(tail);
88 rev->back = head->back;
89 tail->forw = pte_index;
90 head->back = pte_index;
92 rev->forw = rev->back = pte_index;
93 *rmap = (*rmap & ~KVMPPC_RMAP_INDEX) |
94 pte_index | KVMPPC_RMAP_PRESENT;
98 EXPORT_SYMBOL_GPL(kvmppc_add_revmap_chain);
101 * Note modification of an HPTE; set the HPTE modified bit
102 * if anyone is interested.
104 static inline void note_hpte_modification(struct kvm *kvm,
105 struct revmap_entry *rev)
107 if (atomic_read(&kvm->arch.hpte_mod_interest))
108 rev->guest_rpte |= HPTE_GR_MODIFIED;
111 /* Remove this HPTE from the chain for a real page */
112 static void remove_revmap_chain(struct kvm *kvm, long pte_index,
113 struct revmap_entry *rev,
114 unsigned long hpte_v, unsigned long hpte_r)
116 struct revmap_entry *next, *prev;
117 unsigned long gfn, ptel, head;
118 struct kvm_memory_slot *memslot;
120 unsigned long rcbits;
122 rcbits = hpte_r & (HPTE_R_R | HPTE_R_C);
123 ptel = rev->guest_rpte |= rcbits;
124 gfn = hpte_rpn(ptel, hpte_page_size(hpte_v, ptel));
125 memslot = __gfn_to_memslot(kvm_memslots(kvm), gfn);
129 rmap = real_vmalloc_addr(&memslot->arch.rmap[gfn - memslot->base_gfn]);
132 head = *rmap & KVMPPC_RMAP_INDEX;
133 next = real_vmalloc_addr(&kvm->arch.revmap[rev->forw]);
134 prev = real_vmalloc_addr(&kvm->arch.revmap[rev->back]);
135 next->back = rev->back;
136 prev->forw = rev->forw;
137 if (head == pte_index) {
139 if (head == pte_index)
140 *rmap &= ~(KVMPPC_RMAP_PRESENT | KVMPPC_RMAP_INDEX);
142 *rmap = (*rmap & ~KVMPPC_RMAP_INDEX) | head;
144 *rmap |= rcbits << KVMPPC_RMAP_RC_SHIFT;
148 static pte_t lookup_linux_pte(pgd_t *pgdir, unsigned long hva,
149 int writing, unsigned long *pte_sizep)
152 unsigned long ps = *pte_sizep;
155 ptep = find_linux_pte_or_hugepte(pgdir, hva, &shift);
159 *pte_sizep = 1ul << shift;
161 *pte_sizep = PAGE_SIZE;
164 if (!pte_present(*ptep))
166 return kvmppc_read_update_linux_pte(ptep, writing);
169 static inline void unlock_hpte(unsigned long *hpte, unsigned long hpte_v)
171 asm volatile(PPC_RELEASE_BARRIER "" : : : "memory");
175 long kvmppc_do_h_enter(struct kvm *kvm, unsigned long flags,
176 long pte_index, unsigned long pteh, unsigned long ptel,
177 pgd_t *pgdir, bool realmode, unsigned long *pte_idx_ret)
179 unsigned long i, pa, gpa, gfn, psize;
180 unsigned long slot_fn, hva;
182 struct revmap_entry *rev;
183 unsigned long g_ptel;
184 struct kvm_memory_slot *memslot;
185 unsigned long *physp, pte_size;
189 unsigned int writing;
190 unsigned long mmu_seq;
191 unsigned long rcbits;
193 psize = hpte_page_size(pteh, ptel);
196 writing = hpte_is_writable(ptel);
197 pteh &= ~(HPTE_V_HVLOCK | HPTE_V_ABSENT | HPTE_V_VALID);
198 ptel &= ~HPTE_GR_RESERVED;
201 /* used later to detect if we might have been invalidated */
202 mmu_seq = kvm->mmu_notifier_seq;
205 /* Find the memslot (if any) for this address */
206 gpa = (ptel & HPTE_R_RPN) & ~(psize - 1);
207 gfn = gpa >> PAGE_SHIFT;
208 memslot = __gfn_to_memslot(kvm_memslots(kvm), gfn);
212 if (!(memslot && !(memslot->flags & KVM_MEMSLOT_INVALID))) {
213 /* PPC970 can't do emulated MMIO */
214 if (!cpu_has_feature(CPU_FTR_ARCH_206))
216 /* Emulated MMIO - mark this with key=31 */
217 pteh |= HPTE_V_ABSENT;
218 ptel |= HPTE_R_KEY_HI | HPTE_R_KEY_LO;
222 /* Check if the requested page fits entirely in the memslot. */
223 if (!slot_is_aligned(memslot, psize))
225 slot_fn = gfn - memslot->base_gfn;
226 rmap = &memslot->arch.rmap[slot_fn];
228 if (!kvm->arch.using_mmu_notifiers) {
229 physp = memslot->arch.slot_phys;
234 physp = real_vmalloc_addr(physp);
238 is_io = pa & (HPTE_R_I | HPTE_R_W);
239 pte_size = PAGE_SIZE << (pa & KVMPPC_PAGE_ORDER_MASK);
242 /* Translate to host virtual address */
243 hva = __gfn_to_hva_memslot(memslot, gfn);
245 /* Look up the Linux PTE for the backing page */
247 pte = lookup_linux_pte(pgdir, hva, writing, &pte_size);
248 if (pte_present(pte)) {
249 if (writing && !pte_write(pte))
250 /* make the actual HPTE be read-only */
251 ptel = hpte_make_readonly(ptel);
252 is_io = hpte_cache_bits(pte_val(pte));
253 pa = pte_pfn(pte) << PAGE_SHIFT;
257 if (pte_size < psize)
259 if (pa && pte_size > psize)
260 pa |= gpa & (pte_size - 1);
262 ptel &= ~(HPTE_R_PP0 - psize);
266 pteh |= HPTE_V_VALID;
268 pteh |= HPTE_V_ABSENT;
271 if (is_io != ~0ul && !hpte_cache_flags_ok(ptel, is_io)) {
275 * Allow guest to map emulated device memory as
276 * uncacheable, but actually make it cacheable.
278 ptel &= ~(HPTE_R_W|HPTE_R_I|HPTE_R_G);
282 /* Find and lock the HPTEG slot to use */
284 if (pte_index >= kvm->arch.hpt_npte)
286 if (likely((flags & H_EXACT) == 0)) {
288 hpte = (unsigned long *)(kvm->arch.hpt_virt + (pte_index << 4));
289 for (i = 0; i < 8; ++i) {
290 if ((*hpte & HPTE_V_VALID) == 0 &&
291 try_lock_hpte(hpte, HPTE_V_HVLOCK | HPTE_V_VALID |
298 * Since try_lock_hpte doesn't retry (not even stdcx.
299 * failures), it could be that there is a free slot
300 * but we transiently failed to lock it. Try again,
301 * actually locking each slot and checking it.
304 for (i = 0; i < 8; ++i) {
305 while (!try_lock_hpte(hpte, HPTE_V_HVLOCK))
307 if (!(*hpte & (HPTE_V_VALID | HPTE_V_ABSENT)))
309 *hpte &= ~HPTE_V_HVLOCK;
317 hpte = (unsigned long *)(kvm->arch.hpt_virt + (pte_index << 4));
318 if (!try_lock_hpte(hpte, HPTE_V_HVLOCK | HPTE_V_VALID |
320 /* Lock the slot and check again */
321 while (!try_lock_hpte(hpte, HPTE_V_HVLOCK))
323 if (*hpte & (HPTE_V_VALID | HPTE_V_ABSENT)) {
324 *hpte &= ~HPTE_V_HVLOCK;
330 /* Save away the guest's idea of the second HPTE dword */
331 rev = &kvm->arch.revmap[pte_index];
333 rev = real_vmalloc_addr(rev);
335 rev->guest_rpte = g_ptel;
336 note_hpte_modification(kvm, rev);
339 /* Link HPTE into reverse-map chain */
340 if (pteh & HPTE_V_VALID) {
342 rmap = real_vmalloc_addr(rmap);
344 /* Check for pending invalidations under the rmap chain lock */
345 if (kvm->arch.using_mmu_notifiers &&
346 mmu_notifier_retry(kvm, mmu_seq)) {
347 /* inval in progress, write a non-present HPTE */
348 pteh |= HPTE_V_ABSENT;
349 pteh &= ~HPTE_V_VALID;
352 kvmppc_add_revmap_chain(kvm, rev, rmap, pte_index,
354 /* Only set R/C in real HPTE if already set in *rmap */
355 rcbits = *rmap >> KVMPPC_RMAP_RC_SHIFT;
356 ptel &= rcbits | ~(HPTE_R_R | HPTE_R_C);
362 /* Write the first HPTE dword, unlocking the HPTE and making it valid */
365 asm volatile("ptesync" : : : "memory");
367 *pte_idx_ret = pte_index;
370 EXPORT_SYMBOL_GPL(kvmppc_do_h_enter);
372 long kvmppc_h_enter(struct kvm_vcpu *vcpu, unsigned long flags,
373 long pte_index, unsigned long pteh, unsigned long ptel)
375 return kvmppc_do_h_enter(vcpu->kvm, flags, pte_index, pteh, ptel,
376 vcpu->arch.pgdir, true, &vcpu->arch.gpr[4]);
379 #define LOCK_TOKEN (*(u32 *)(&get_paca()->lock_token))
381 static inline int try_lock_tlbie(unsigned int *lock)
383 unsigned int tmp, old;
384 unsigned int token = LOCK_TOKEN;
386 asm volatile("1:lwarx %1,0,%2\n"
393 : "=&r" (tmp), "=&r" (old)
394 : "r" (lock), "r" (token)
399 long kvmppc_do_h_remove(struct kvm *kvm, unsigned long flags,
400 unsigned long pte_index, unsigned long avpn,
401 unsigned long *hpret)
404 unsigned long v, r, rb;
405 struct revmap_entry *rev;
407 if (pte_index >= kvm->arch.hpt_npte)
409 hpte = (unsigned long *)(kvm->arch.hpt_virt + (pte_index << 4));
410 while (!try_lock_hpte(hpte, HPTE_V_HVLOCK))
412 if ((hpte[0] & (HPTE_V_ABSENT | HPTE_V_VALID)) == 0 ||
413 ((flags & H_AVPN) && (hpte[0] & ~0x7fUL) != avpn) ||
414 ((flags & H_ANDCOND) && (hpte[0] & avpn) != 0)) {
415 hpte[0] &= ~HPTE_V_HVLOCK;
419 rev = real_vmalloc_addr(&kvm->arch.revmap[pte_index]);
420 v = hpte[0] & ~HPTE_V_HVLOCK;
421 if (v & HPTE_V_VALID) {
422 hpte[0] &= ~HPTE_V_VALID;
423 rb = compute_tlbie_rb(v, hpte[1], pte_index);
424 if (global_invalidates(kvm, flags)) {
425 while (!try_lock_tlbie(&kvm->arch.tlbie_lock))
427 asm volatile("ptesync" : : : "memory");
428 asm volatile(PPC_TLBIE(%1,%0)"; eieio; tlbsync"
429 : : "r" (rb), "r" (kvm->arch.lpid));
430 asm volatile("ptesync" : : : "memory");
431 kvm->arch.tlbie_lock = 0;
433 asm volatile("ptesync" : : : "memory");
434 asm volatile("tlbiel %0" : : "r" (rb));
435 asm volatile("ptesync" : : : "memory");
437 /* Read PTE low word after tlbie to get final R/C values */
438 remove_revmap_chain(kvm, pte_index, rev, v, hpte[1]);
440 r = rev->guest_rpte & ~HPTE_GR_RESERVED;
441 note_hpte_modification(kvm, rev);
442 unlock_hpte(hpte, 0);
448 EXPORT_SYMBOL_GPL(kvmppc_do_h_remove);
450 long kvmppc_h_remove(struct kvm_vcpu *vcpu, unsigned long flags,
451 unsigned long pte_index, unsigned long avpn)
453 return kvmppc_do_h_remove(vcpu->kvm, flags, pte_index, avpn,
457 long kvmppc_h_bulk_remove(struct kvm_vcpu *vcpu)
459 struct kvm *kvm = vcpu->kvm;
460 unsigned long *args = &vcpu->arch.gpr[4];
461 unsigned long *hp, *hptes[4], tlbrb[4];
462 long int i, j, k, n, found, indexes[4];
463 unsigned long flags, req, pte_index, rcbits;
465 long int ret = H_SUCCESS;
466 struct revmap_entry *rev, *revs[4];
468 if (atomic_read(&kvm->online_vcpus) == 1)
470 for (i = 0; i < 4 && ret == H_SUCCESS; ) {
475 flags = pte_index >> 56;
476 pte_index &= ((1ul << 56) - 1);
479 if (req == 3) { /* no more requests */
483 if (req != 1 || flags == 3 ||
484 pte_index >= kvm->arch.hpt_npte) {
485 /* parameter error */
486 args[j] = ((0xa0 | flags) << 56) + pte_index;
490 hp = (unsigned long *)
491 (kvm->arch.hpt_virt + (pte_index << 4));
492 /* to avoid deadlock, don't spin except for first */
493 if (!try_lock_hpte(hp, HPTE_V_HVLOCK)) {
496 while (!try_lock_hpte(hp, HPTE_V_HVLOCK))
500 if (hp[0] & (HPTE_V_ABSENT | HPTE_V_VALID)) {
502 case 0: /* absolute */
505 case 1: /* andcond */
506 if (!(hp[0] & args[j + 1]))
510 if ((hp[0] & ~0x7fUL) == args[j + 1])
516 hp[0] &= ~HPTE_V_HVLOCK;
517 args[j] = ((0x90 | flags) << 56) + pte_index;
521 args[j] = ((0x80 | flags) << 56) + pte_index;
522 rev = real_vmalloc_addr(&kvm->arch.revmap[pte_index]);
523 note_hpte_modification(kvm, rev);
525 if (!(hp[0] & HPTE_V_VALID)) {
526 /* insert R and C bits from PTE */
527 rcbits = rev->guest_rpte & (HPTE_R_R|HPTE_R_C);
528 args[j] |= rcbits << (56 - 5);
533 hp[0] &= ~HPTE_V_VALID; /* leave it locked */
534 tlbrb[n] = compute_tlbie_rb(hp[0], hp[1], pte_index);
544 /* Now that we've collected a batch, do the tlbies */
546 while(!try_lock_tlbie(&kvm->arch.tlbie_lock))
548 asm volatile("ptesync" : : : "memory");
549 for (k = 0; k < n; ++k)
550 asm volatile(PPC_TLBIE(%1,%0) : :
552 "r" (kvm->arch.lpid));
553 asm volatile("eieio; tlbsync; ptesync" : : : "memory");
554 kvm->arch.tlbie_lock = 0;
556 asm volatile("ptesync" : : : "memory");
557 for (k = 0; k < n; ++k)
558 asm volatile("tlbiel %0" : : "r" (tlbrb[k]));
559 asm volatile("ptesync" : : : "memory");
562 /* Read PTE low words after tlbie to get final R/C values */
563 for (k = 0; k < n; ++k) {
565 pte_index = args[j] & ((1ul << 56) - 1);
568 remove_revmap_chain(kvm, pte_index, rev, hp[0], hp[1]);
569 rcbits = rev->guest_rpte & (HPTE_R_R|HPTE_R_C);
570 args[j] |= rcbits << (56 - 5);
578 long kvmppc_h_protect(struct kvm_vcpu *vcpu, unsigned long flags,
579 unsigned long pte_index, unsigned long avpn,
582 struct kvm *kvm = vcpu->kvm;
584 struct revmap_entry *rev;
585 unsigned long v, r, rb, mask, bits;
587 if (pte_index >= kvm->arch.hpt_npte)
590 hpte = (unsigned long *)(kvm->arch.hpt_virt + (pte_index << 4));
591 while (!try_lock_hpte(hpte, HPTE_V_HVLOCK))
593 if ((hpte[0] & (HPTE_V_ABSENT | HPTE_V_VALID)) == 0 ||
594 ((flags & H_AVPN) && (hpte[0] & ~0x7fUL) != avpn)) {
595 hpte[0] &= ~HPTE_V_HVLOCK;
600 bits = (flags << 55) & HPTE_R_PP0;
601 bits |= (flags << 48) & HPTE_R_KEY_HI;
602 bits |= flags & (HPTE_R_PP | HPTE_R_N | HPTE_R_KEY_LO);
604 /* Update guest view of 2nd HPTE dword */
605 mask = HPTE_R_PP0 | HPTE_R_PP | HPTE_R_N |
606 HPTE_R_KEY_HI | HPTE_R_KEY_LO;
607 rev = real_vmalloc_addr(&kvm->arch.revmap[pte_index]);
609 r = (rev->guest_rpte & ~mask) | bits;
611 note_hpte_modification(kvm, rev);
613 r = (hpte[1] & ~mask) | bits;
616 if (v & HPTE_V_VALID) {
617 rb = compute_tlbie_rb(v, r, pte_index);
618 hpte[0] = v & ~HPTE_V_VALID;
619 if (global_invalidates(kvm, flags)) {
620 while(!try_lock_tlbie(&kvm->arch.tlbie_lock))
622 asm volatile("ptesync" : : : "memory");
623 asm volatile(PPC_TLBIE(%1,%0)"; eieio; tlbsync"
624 : : "r" (rb), "r" (kvm->arch.lpid));
625 asm volatile("ptesync" : : : "memory");
626 kvm->arch.tlbie_lock = 0;
628 asm volatile("ptesync" : : : "memory");
629 asm volatile("tlbiel %0" : : "r" (rb));
630 asm volatile("ptesync" : : : "memory");
633 * If the host has this page as readonly but the guest
634 * wants to make it read/write, reduce the permissions.
635 * Checking the host permissions involves finding the
636 * memslot and then the Linux PTE for the page.
638 if (hpte_is_writable(r) && kvm->arch.using_mmu_notifiers) {
639 unsigned long psize, gfn, hva;
640 struct kvm_memory_slot *memslot;
641 pgd_t *pgdir = vcpu->arch.pgdir;
644 psize = hpte_page_size(v, r);
645 gfn = ((r & HPTE_R_RPN) & ~(psize - 1)) >> PAGE_SHIFT;
646 memslot = __gfn_to_memslot(kvm_memslots(kvm), gfn);
648 hva = __gfn_to_hva_memslot(memslot, gfn);
649 pte = lookup_linux_pte(pgdir, hva, 1, &psize);
650 if (pte_present(pte) && !pte_write(pte))
651 r = hpte_make_readonly(r);
657 hpte[0] = v & ~HPTE_V_HVLOCK;
658 asm volatile("ptesync" : : : "memory");
662 long kvmppc_h_read(struct kvm_vcpu *vcpu, unsigned long flags,
663 unsigned long pte_index)
665 struct kvm *kvm = vcpu->kvm;
666 unsigned long *hpte, v, r;
668 struct revmap_entry *rev = NULL;
670 if (pte_index >= kvm->arch.hpt_npte)
672 if (flags & H_READ_4) {
676 rev = real_vmalloc_addr(&kvm->arch.revmap[pte_index]);
677 for (i = 0; i < n; ++i, ++pte_index) {
678 hpte = (unsigned long *)(kvm->arch.hpt_virt + (pte_index << 4));
679 v = hpte[0] & ~HPTE_V_HVLOCK;
681 if (v & HPTE_V_ABSENT) {
685 if (v & HPTE_V_VALID) {
686 r = rev[i].guest_rpte | (r & (HPTE_R_R | HPTE_R_C));
687 r &= ~HPTE_GR_RESERVED;
689 vcpu->arch.gpr[4 + i * 2] = v;
690 vcpu->arch.gpr[5 + i * 2] = r;
695 void kvmppc_invalidate_hpte(struct kvm *kvm, unsigned long *hptep,
696 unsigned long pte_index)
700 hptep[0] &= ~HPTE_V_VALID;
701 rb = compute_tlbie_rb(hptep[0], hptep[1], pte_index);
702 while (!try_lock_tlbie(&kvm->arch.tlbie_lock))
704 asm volatile("ptesync" : : : "memory");
705 asm volatile(PPC_TLBIE(%1,%0)"; eieio; tlbsync"
706 : : "r" (rb), "r" (kvm->arch.lpid));
707 asm volatile("ptesync" : : : "memory");
708 kvm->arch.tlbie_lock = 0;
710 EXPORT_SYMBOL_GPL(kvmppc_invalidate_hpte);
712 void kvmppc_clear_ref_hpte(struct kvm *kvm, unsigned long *hptep,
713 unsigned long pte_index)
718 rb = compute_tlbie_rb(hptep[0], hptep[1], pte_index);
719 rbyte = (hptep[1] & ~HPTE_R_R) >> 8;
720 /* modify only the second-last byte, which contains the ref bit */
721 *((char *)hptep + 14) = rbyte;
722 while (!try_lock_tlbie(&kvm->arch.tlbie_lock))
724 asm volatile(PPC_TLBIE(%1,%0)"; eieio; tlbsync"
725 : : "r" (rb), "r" (kvm->arch.lpid));
726 asm volatile("ptesync" : : : "memory");
727 kvm->arch.tlbie_lock = 0;
729 EXPORT_SYMBOL_GPL(kvmppc_clear_ref_hpte);
731 static int slb_base_page_shift[4] = {
735 20, /* 1M, unsupported */
738 long kvmppc_hv_find_lock_hpte(struct kvm *kvm, gva_t eaddr, unsigned long slb_v,
743 unsigned long somask;
744 unsigned long vsid, hash;
747 unsigned long mask, val;
750 /* Get page shift, work out hash and AVPN etc. */
751 mask = SLB_VSID_B | HPTE_V_AVPN | HPTE_V_SECONDARY;
754 if (slb_v & SLB_VSID_L) {
755 mask |= HPTE_V_LARGE;
757 pshift = slb_base_page_shift[(slb_v & SLB_VSID_LP) >> 4];
759 if (slb_v & SLB_VSID_B_1T) {
760 somask = (1UL << 40) - 1;
761 vsid = (slb_v & ~SLB_VSID_B) >> SLB_VSID_SHIFT_1T;
764 somask = (1UL << 28) - 1;
765 vsid = (slb_v & ~SLB_VSID_B) >> SLB_VSID_SHIFT;
767 hash = (vsid ^ ((eaddr & somask) >> pshift)) & kvm->arch.hpt_mask;
768 avpn = slb_v & ~(somask >> 16); /* also includes B */
769 avpn |= (eaddr & somask) >> 16;
772 avpn &= ~((1UL << (pshift - 16)) - 1);
778 hpte = (unsigned long *)(kvm->arch.hpt_virt + (hash << 7));
780 for (i = 0; i < 16; i += 2) {
781 /* Read the PTE racily */
782 v = hpte[i] & ~HPTE_V_HVLOCK;
784 /* Check valid/absent, hash, segment size and AVPN */
785 if (!(v & valid) || (v & mask) != val)
788 /* Lock the PTE and read it under the lock */
789 while (!try_lock_hpte(&hpte[i], HPTE_V_HVLOCK))
791 v = hpte[i] & ~HPTE_V_HVLOCK;
795 * Check the HPTE again, including large page size
796 * Since we don't currently allow any MPSS (mixed
797 * page-size segment) page sizes, it is sufficient
798 * to check against the actual page size.
800 if ((v & valid) && (v & mask) == val &&
801 hpte_page_size(v, r) == (1ul << pshift))
802 /* Return with the HPTE still locked */
803 return (hash << 3) + (i >> 1);
805 /* Unlock and move on */
809 if (val & HPTE_V_SECONDARY)
811 val |= HPTE_V_SECONDARY;
812 hash = hash ^ kvm->arch.hpt_mask;
816 EXPORT_SYMBOL(kvmppc_hv_find_lock_hpte);
819 * Called in real mode to check whether an HPTE not found fault
820 * is due to accessing a paged-out page or an emulated MMIO page,
821 * or if a protection fault is due to accessing a page that the
822 * guest wanted read/write access to but which we made read-only.
823 * Returns a possibly modified status (DSISR) value if not
824 * (i.e. pass the interrupt to the guest),
825 * -1 to pass the fault up to host kernel mode code, -2 to do that
826 * and also load the instruction word (for MMIO emulation),
827 * or 0 if we should make the guest retry the access.
829 long kvmppc_hpte_hv_fault(struct kvm_vcpu *vcpu, unsigned long addr,
830 unsigned long slb_v, unsigned int status, bool data)
832 struct kvm *kvm = vcpu->kvm;
834 unsigned long v, r, gr;
837 struct revmap_entry *rev;
838 unsigned long pp, key;
840 /* For protection fault, expect to find a valid HPTE */
841 valid = HPTE_V_VALID;
842 if (status & DSISR_NOHPTE)
843 valid |= HPTE_V_ABSENT;
845 index = kvmppc_hv_find_lock_hpte(kvm, addr, slb_v, valid);
847 if (status & DSISR_NOHPTE)
848 return status; /* there really was no HPTE */
849 return 0; /* for prot fault, HPTE disappeared */
851 hpte = (unsigned long *)(kvm->arch.hpt_virt + (index << 4));
852 v = hpte[0] & ~HPTE_V_HVLOCK;
854 rev = real_vmalloc_addr(&kvm->arch.revmap[index]);
855 gr = rev->guest_rpte;
857 unlock_hpte(hpte, v);
859 /* For not found, if the HPTE is valid by now, retry the instruction */
860 if ((status & DSISR_NOHPTE) && (v & HPTE_V_VALID))
863 /* Check access permissions to the page */
864 pp = gr & (HPTE_R_PP0 | HPTE_R_PP);
865 key = (vcpu->arch.shregs.msr & MSR_PR) ? SLB_VSID_KP : SLB_VSID_KS;
866 status &= ~DSISR_NOHPTE; /* DSISR_NOHPTE == SRR1_ISI_NOPT */
868 if (gr & (HPTE_R_N | HPTE_R_G))
869 return status | SRR1_ISI_N_OR_G;
870 if (!hpte_read_permission(pp, slb_v & key))
871 return status | SRR1_ISI_PROT;
872 } else if (status & DSISR_ISSTORE) {
873 /* check write permission */
874 if (!hpte_write_permission(pp, slb_v & key))
875 return status | DSISR_PROTFAULT;
877 if (!hpte_read_permission(pp, slb_v & key))
878 return status | DSISR_PROTFAULT;
881 /* Check storage key, if applicable */
882 if (data && (vcpu->arch.shregs.msr & MSR_DR)) {
883 unsigned int perm = hpte_get_skey_perm(gr, vcpu->arch.amr);
884 if (status & DSISR_ISSTORE)
887 return status | DSISR_KEYFAULT;
890 /* Save HPTE info for virtual-mode handler */
891 vcpu->arch.pgfault_addr = addr;
892 vcpu->arch.pgfault_index = index;
893 vcpu->arch.pgfault_hpte[0] = v;
894 vcpu->arch.pgfault_hpte[1] = r;
896 /* Check the storage key to see if it is possibly emulated MMIO */
897 if (data && (vcpu->arch.shregs.msr & MSR_IR) &&
898 (r & (HPTE_R_KEY_HI | HPTE_R_KEY_LO)) ==
899 (HPTE_R_KEY_HI | HPTE_R_KEY_LO))
900 return -2; /* MMIO emulation - load instr word */
902 return -1; /* send fault up to host kernel mode */
projects / ~andy / linux / blob