KVM: arm64: BUG on failure to drop host privileges In pKVM mode we should never fail to drop host privileges but, if we do, we could be in an inconsistent state: 1. static key is flipped but we haven't completed initialisation 2. only a subset of CPUs may have dropped host privileges In this scenario, BUG is the only sensible action. Signed-off-by: Keir Fraser <keirf@google.com>

commit: e70ed753680b65fee4a5dd9f9427642896d10035 [log] [tgz]
author: Keir Fraser <keirf@google.com> Thu May 16 12:59:16 2024 +0000
committer: Fuad Tabba <tabba@google.com> Thu Sep 05 11:24:07 2024 +0100
tree: 2aaebcf2ac8cee9845b7fc80763e6050cc5ee8be
parent: 388e8165f30321c891413ba52d19610951c41167 [diff]
diff --git a/arch/arm64/kvm/pkvm.c b/arch/arm64/kvm/pkvm.c
index 9b52ca9..d69f784 100644
--- a/arch/arm64/kvm/pkvm.c
+++ b/arch/arm64/kvm/pkvm.c

@@ -334,10 +334,10 @@ static int __init finalize_pkvm(void)
 	ret = pkvm_drop_host_privileges();
 	if (ret) {
 		pr_err("Failed to finalize Hyp protection: %d\n", ret);
-		pkvm_firmware_rmem_clear();
+		BUG();
 	}
 
-	return ret;
+	return 0;
 }
 device_initcall_sync(finalize_pkvm);
commit	e70ed753680b65fee4a5dd9f9427642896d10035	[log] [tgz]
author	Keir Fraser <keirf@google.com>	Thu May 16 12:59:16 2024 +0000
committer	Fuad Tabba <tabba@google.com>	Thu Sep 05 11:24:07 2024 +0100
tree	2aaebcf2ac8cee9845b7fc80763e6050cc5ee8be
parent	388e8165f30321c891413ba52d19610951c41167 [diff]