KVM: PVM: Introduce ASID to manage host PCID for guest

bysui · bysui · commit 4af0b13d302e · 2025-07-31T16:25:29.000+08:00
ntroduce ASID to manage the host PCID for the guest, where an ASID is a group of host PCIDs. Each vCPU will be assigned an ASID when it is loaded onto a pCPU, and each guest PCID on this vCPU is directly mapped to its host PCID by adding the ASID of the vCPU. This approach can improve direct switching and reduce the complexity of host PCID allocation for the guest. However, this conflicts with the global ASID allocation in the upstream, which will be addressed later. Signed-off-by: Hou Wenlong <houwenlong.hwl@antgroup.com> Link: #20
diff --git a/arch/x86/kvm/pvm/pvm.c b/arch/x86/kvm/pvm/pvm.c
@@ -540,155 +540,57 @@ static void pvm_switch_to_host(struct vcpu_pvm *pvm)
 	preempt_enable();
 }
 
-struct host_pcid_one {
-	/*
-	 * It is struct vcpu_pvm *pvm, but it is not allowed to be
-	 * dereferenced since it might be freed.
-	 */
-	void *pvm;
-	u64 root_hpa;
+struct pvm_asid_data {
+	u64 asid_generation;
+	u32 max_asid;
+	u32 next_asid;
+	u32 min_asid;
 };
 
-struct host_pcid_state {
-	struct host_pcid_one pairs[NUM_HOST_PCID_FOR_GUEST];
-	int evict_next_round_robin;
-};
-
-static DEFINE_PER_CPU(struct host_pcid_state, pvm_tlb_state);
-
-static void host_pcid_flush_all(struct vcpu_pvm *pvm)
-{
-	struct host_pcid_state *tlb_state = this_cpu_ptr(&pvm_tlb_state);
-	int i;
-
-	for (i = 0; i < NUM_HOST_PCID_FOR_GUEST; i++) {
-		if (tlb_state->pairs[i].pvm == pvm)
-			tlb_state->pairs[i].pvm = NULL;
-	}
-}
-
-static inline unsigned int host_pcid_to_index(unsigned int host_pcid)
-{
-	return host_pcid & ~HOST_PCID_TAG_FOR_GUEST;
-}
+static DEFINE_PER_CPU(struct pvm_asid_data, pvm_asid);
 
-static inline int index_to_host_pcid(int index)
-{
-	return index | HOST_PCID_TAG_FOR_GUEST;
-}
-
-/*
- * Free the uncached guest pcid (not in mmu->root nor mmu->prev_root), so
- * that the next allocation would not evict a clean one.
- *
- * It would be better if kvm.ko notifies us when a root_pgd is freed
- * from the cache.
- *
- * Returns a freed index or -1 if nothing is freed.
- */
-static int host_pcid_free_uncached(struct vcpu_pvm *pvm)
+static void __pvm_hwtlb_flush_all(void)
 {
-	/* It is allowed to do nothing. */
-	return -1;
+	__flush_tlb_all();
 }
 
-static int host_pcid_find(struct vcpu_pvm *pvm, u64 root_hpa)
+static void update_asid(struct vcpu_pvm *pvm)
 {
-	struct host_pcid_state *tlb_state = this_cpu_ptr(&pvm_tlb_state);
-	int i;
+	struct pvm_asid_data *asid_data = this_cpu_ptr(&pvm_asid);
 
-	/* find if it is allocated. */
-	for (i = 0; i < NUM_HOST_PCID_FOR_GUEST; i++) {
-		struct host_pcid_one *tlb = &tlb_state->pairs[i];
+	if (pvm->asid_generation == asid_data->asid_generation)
+		return;
 
-		if (tlb->root_hpa == root_hpa && tlb->pvm == pvm)
-			return index_to_host_pcid(i);
+	if (asid_data->next_asid > asid_data->max_asid) {
+		++asid_data->asid_generation;
+		if (!asid_data->asid_generation)
+			asid_data->asid_generation = PVM_ASID_GEN_INIT;
+		asid_data->next_asid = asid_data->min_asid;
+		__pvm_hwtlb_flush_all();
 	}
 
-	return 0;
+	pvm->asid_generation = asid_data->asid_generation;
+	pvm->asid = asid_data->next_asid++;
 }
 
-/*
- * Get a host pcid of the current pCPU for the specific guest pgd.
- * PVM vTLB is guest pgd tagged.
- */
-static int host_pcid_get(struct vcpu_pvm *pvm, u64 root_hpa, bool *flush)
+static inline u32 guest_pcid_to_host_pcid(struct vcpu_pvm *pvm, u32 guest_pcid, bool is_smod)
 {
-	struct host_pcid_state *tlb_state = this_cpu_ptr(&pvm_tlb_state);
-	int i, j = -1;
-
-	/* find if it is allocated. */
-	for (i = 0; i < NUM_HOST_PCID_FOR_GUEST; i++) {
-		struct host_pcid_one *tlb = &tlb_state->pairs[i];
-
-		if (tlb->root_hpa == root_hpa && tlb->pvm == pvm)
-			return index_to_host_pcid(i);
+	u32 pcid;
 
-		/* if it has no owner, allocate it if not found. */
-		if (!tlb->pvm)
-			j = i;
-	}
-
-	/*
-	 * Fallback to:
-	 *    use the fallback recorded in the above loop.
-	 *    use a freed uncached.
-	 *    evict one (which might be still usable) by round-robin policy.
-	 */
-	if (j < 0)
-		j = host_pcid_free_uncached(pvm);
-	if (j < 0) {
-		j = tlb_state->evict_next_round_robin;
-		if (++tlb_state->evict_next_round_robin == NUM_HOST_PCID_FOR_GUEST)
-			tlb_state->evict_next_round_robin = 0;
-	}
+	if (guest_pcid & ~PVM_GUEST_PCID_MASK)
+		guest_pcid = 0;
+	pcid = (pvm->asid << PVM_ASID_SHIFT) | (guest_pcid & PVM_GUEST_PCID_MASK);
+	if (!is_smod)
+		pcid |= PVM_GUEST_PTI_PCID_MASK;
 
-	/* associate the host pcid to the guest */
-	tlb_state->pairs[j].pvm = pvm;
-	tlb_state->pairs[j].root_hpa = root_hpa;
-
-	*flush = true;
-	return index_to_host_pcid(j);
-}
-
-static void host_pcid_free(struct vcpu_pvm *pvm, u64 root_hpa)
-{
-	struct host_pcid_state *tlb_state = this_cpu_ptr(&pvm_tlb_state);
-	int i;
-
-	for (i = 0; i < NUM_HOST_PCID_FOR_GUEST; i++) {
-		struct host_pcid_one *tlb = &tlb_state->pairs[i];
-
-		if (tlb->root_hpa == root_hpa && tlb->pvm == pvm) {
-			tlb->pvm = NULL;
-			return;
-		}
-	}
-}
-
-static inline void *host_pcid_owner(int host_pcid)
-{
-	return this_cpu_read(pvm_tlb_state.pairs[host_pcid_to_index(host_pcid)].pvm);
-}
-
-static inline u64 host_pcid_root(int host_pcid)
-{
-	return this_cpu_read(pvm_tlb_state.pairs[host_pcid_to_index(host_pcid)].root_hpa);
-}
-
-static void __pvm_hwtlb_flush_all(struct vcpu_pvm *pvm)
-{
-	if (static_cpu_has(X86_FEATURE_PCID))
-		host_pcid_flush_all(pvm);
+	return pcid;
 }
 
 static void pvm_flush_hwtlb(struct kvm_vcpu *vcpu)
 {
 	struct vcpu_pvm *pvm = to_pvm(vcpu);
 
-	get_cpu();
-	__pvm_hwtlb_flush_all(pvm);
-	put_cpu();
+	pvm->asid_generation = PVM_ASID_GEN_RESERVED;
 }
 
 static void pvm_flush_hwtlb_guest(struct kvm_vcpu *vcpu)
@@ -706,37 +608,50 @@ static void pvm_flush_hwtlb_guest(struct kvm_vcpu *vcpu)
 
 static void pvm_flush_hwtlb_current(struct kvm_vcpu *vcpu)
 {
+	struct vcpu_pvm *pvm = to_pvm(vcpu);
+
 	/* No flush required if the current context is invalid. */
 	if (!VALID_PAGE(vcpu->arch.mmu->root.hpa))
 		return;
 
 	if (static_cpu_has(X86_FEATURE_PCID)) {
 		get_cpu();
-		host_pcid_free(to_pvm(vcpu), vcpu->arch.mmu->root.hpa);
+		if (this_cpu_has(X86_FEATURE_INVPCID)) {
+			u32 pcid = kvm_get_pcid(vcpu, vcpu->arch.cr3);
+
+			pcid = guest_pcid_to_host_pcid(pvm, pcid, true);
+			invpcid_flush_single_context(pcid);
+			invpcid_flush_single_context(pcid ^ PVM_GUEST_PTI_PCID_MASK);
+		} else {
+			pvm_flush_hwtlb(vcpu);
+		}
 		put_cpu();
 	}
 }
 
 static void pvm_flush_hwtlb_gva(struct kvm_vcpu *vcpu, gva_t addr)
 {
+	struct kvm_mmu *mmu = vcpu->arch.mmu;
 	struct vcpu_pvm *pvm = to_pvm(vcpu);
-	int max = MIN_HOST_PCID_FOR_GUEST + NUM_HOST_PCID_FOR_GUEST;
 	int i;
 
 	if (!static_cpu_has(X86_FEATURE_PCID))
 		return;
 
 	get_cpu();
 	if (!this_cpu_has(X86_FEATURE_INVPCID)) {
-		host_pcid_flush_all(pvm);
+		pvm_flush_hwtlb(vcpu);
 		put_cpu();
 		return;
 	}
 
-	host_pcid_free_uncached(pvm);
-	for (i = MIN_HOST_PCID_FOR_GUEST; i < max; i++) {
-		if (host_pcid_owner(i) == pvm)
-			invpcid_flush_one(i, addr);
+	for (i = 0; i < KVM_MMU_NUM_PREV_ROOTS; i++) {
+		if (VALID_PAGE(mmu->prev_roots[i].hpa)) {
+			u32 pcid = kvm_get_pcid(vcpu, mmu->prev_roots[i].pgd);
+			bool is_smod = root_to_sp(mmu->prev_roots[i].hpa)->role.word & ACC_USER_MASK;
+
+			invpcid_flush_one(guest_pcid_to_host_pcid(pvm, pcid, is_smod), addr);
+		}
 	}
 
 	put_cpu();
@@ -753,7 +668,7 @@ static u64 get_switch_hw_cr3(struct vcpu_pvm *pvm)
 		if (is_root_usable(&mmu->prev_roots[i], pvm->vcpu.arch.cr3, switch_role)) {
 			if (i != 0)
 				swap(mmu->prev_roots[0], mmu->prev_roots[i]);
-			return mmu->prev_roots[0].hpa;
+			return __sme_set(mmu->prev_roots[0].hpa);
 		}
 	}
 
@@ -762,29 +677,31 @@ static u64 get_switch_hw_cr3(struct vcpu_pvm *pvm)
 
 static void pvm_set_host_cr3_for_guest(struct vcpu_pvm *pvm)
 {
-	u64 hw_cr3 = pvm->vcpu.arch.mmu->root.hpa;
-	u64 enter_hw_cr3 = hw_cr3;
+	u64 hw_cr3 = __sme_set(pvm->vcpu.arch.mmu->root.hpa);
 	u64 switch_hw_cr3 = get_switch_hw_cr3(pvm);
 
 	if (static_cpu_has(X86_FEATURE_PCID)) {
-		bool flush = false;
-		u32 host_pcid = host_pcid_get(pvm, hw_cr3, &flush);
-
-		enter_hw_cr3 |= host_pcid;
-		if (!flush)
-			enter_hw_cr3 |= CR3_NOFLUSH;
-		hw_cr3 |= host_pcid | CR3_NOFLUSH;
-
-		if (switch_hw_cr3 != INVALID_PAGE) {
-			host_pcid = host_pcid_find(pvm, switch_hw_cr3);
-			if (!host_pcid)
-				switch_hw_cr3 = INVALID_PAGE;
-			else
-				switch_hw_cr3 |= host_pcid | CR3_NOFLUSH;
+		u32 pcid = pvm->vcpu.arch.cr3 & X86_CR3_PCID_MASK;
+
+		update_asid(pvm);
+
+		pcid = guest_pcid_to_host_pcid(pvm, pcid, is_smod(pvm));
+		hw_cr3 |= pcid | CR3_NOFLUSH;
+		if (switch_hw_cr3 != INVALID_PAGE)
+			switch_hw_cr3 |= (pcid ^ PVM_GUEST_PTI_PCID_MASK) | CR3_NOFLUSH;
+
+		/*
+		 * if guest PCID is bigger than 7, use the fallback guest PCID
+		 * 0, which is assumed to always be force flushed.
+		 */
+		if (unlikely(!(pcid & PVM_GUEST_PCID_INDEX_MASK))) {
+			hw_cr3 &= ~CR3_NOFLUSH;
+			if (switch_hw_cr3 != INVALID_PAGE)
+				switch_hw_cr3 &= ~CR3_NOFLUSH;
 		}
 	}
 
-	this_cpu_write(cpu_tss_rw.tss_ex.enter_cr3, enter_hw_cr3);
+	this_cpu_write(cpu_tss_rw.tss_ex.enter_cr3, hw_cr3);
 
 	if (is_smod(pvm)) {
 		this_cpu_write(cpu_tss_rw.tss_ex.smod_cr3, hw_cr3);
@@ -845,7 +762,7 @@ static void pvm_vcpu_load(struct kvm_vcpu *vcpu, int cpu)
 	__this_cpu_write(active_pvm_vcpu, pvm);
 
 	if (vcpu->cpu != cpu)
-		__pvm_hwtlb_flush_all(pvm);
+		pvm_flush_hwtlb(vcpu);
 
 	indirect_branch_prediction_barrier();
 }
@@ -854,7 +771,6 @@ static void pvm_vcpu_put(struct kvm_vcpu *vcpu)
 {
 	struct vcpu_pvm *pvm = to_pvm(vcpu);
 
-	host_pcid_free_uncached(pvm);
 	pvm_prepare_switch_to_host(pvm);
 }
 
@@ -2869,9 +2785,20 @@ static int pvm_vm_init(struct kvm *kvm)
 	return 0;
 }
 
+static void pvm_asid_data_init(void)
+{
+	struct pvm_asid_data *asid_data = this_cpu_ptr(&pvm_asid);
+
+	asid_data->asid_generation = PVM_ASID_GEN_INIT;
+	asid_data->max_asid = PVM_ASID_MAX;
+	asid_data->next_asid = PVM_ASID_MIN;
+	asid_data->min_asid = PVM_ASID_MIN;
+	__pvm_hwtlb_flush_all();
+}
+
 static int hardware_enable(void)
 {
-	/* Nothing to do */
+	pvm_asid_data_init();
 	return 0;
 }
 
@@ -3222,10 +3149,9 @@ module_exit(pvm_exit);
 
 static int __init hardware_cap_check(void)
 {
-	BUILD_BUG_ON(MIN_HOST_PCID_FOR_GUEST <= TLB_NR_DYN_ASIDS);
+	BUILD_BUG_ON(NUM_PVM_GUEST_PCID_INDEX <= TLB_NR_DYN_ASIDS);
 #ifdef CONFIG_PAGE_TABLE_ISOLATION
-	BUILD_BUG_ON((MIN_HOST_PCID_FOR_GUEST + NUM_HOST_PCID_FOR_GUEST) >=
-		     (1 << X86_CR3_PTI_PCID_USER_BIT));
+	BUILD_BUG_ON(PVM_GUEST_PTI_PCID_BIT != X86_CR3_PTI_PCID_USER_BIT);
 #endif
 
 	/*
diff --git a/arch/x86/kvm/pvm/pvm.h b/arch/x86/kvm/pvm/pvm.h
@@ -76,10 +76,17 @@ extern u64 *host_mmu_root_pgd;
 void host_mmu_destroy(void);
 int host_mmu_init(void);
 
-#define HOST_PCID_TAG_FOR_GUEST			(32)
-
-#define MIN_HOST_PCID_FOR_GUEST			HOST_PCID_TAG_FOR_GUEST
-#define NUM_HOST_PCID_FOR_GUEST			HOST_PCID_TAG_FOR_GUEST
+#define PVM_ASID_SHIFT			3
+#define NUM_PVM_GUEST_PCID_INDEX	(1U << PVM_ASID_SHIFT)
+#define PVM_GUEST_PTI_PCID_BIT		11
+#define PVM_GUEST_PTI_PCID_MASK		(1U << PVM_GUEST_PTI_PCID_BIT)
+#define PVM_GUEST_PCID_INDEX_MASK	(NUM_PVM_GUEST_PCID_INDEX - 1)
+#define PVM_GUEST_PCID_MASK		(PVM_GUEST_PCID_INDEX_MASK | PVM_GUEST_PTI_PCID_MASK)
+
+#define PVM_ASID_MIN			1
+#define PVM_ASID_MAX			(((1U << PVM_GUEST_PTI_PCID_BIT) - 1) / NUM_PVM_GUEST_PCID_INDEX)
+#define PVM_ASID_GEN_RESERVED		0
+#define PVM_ASID_GEN_INIT		1
 
 struct vcpu_pvm {
 	struct kvm_vcpu vcpu;
@@ -111,6 +118,9 @@ struct vcpu_pvm {
 
 	struct gfn_to_pfn_cache pvcs_gpc;
 
+	u32 asid;
+	u64 asid_generation;
+
 	// emulated x86 msrs
 	u64 msr_lstar;
 	u64 msr_syscall_mask;
