Xen project Mailing List

Re: [PATCH for-4.19 v3 2/3] xen: enable altp2m at create domain domctl

To: Roger Pau Monné <roger.pau@xxxxxxxxxx>

Date: Thu, 23 May 2024 08:54:49 +0200

Autocrypt: addr=jbeulich@xxxxxxxx; keydata= xsDiBFk3nEQRBADAEaSw6zC/EJkiwGPXbWtPxl2xCdSoeepS07jW8UgcHNurfHvUzogEq5xk hu507c3BarVjyWCJOylMNR98Yd8VqD9UfmX0Hb8/BrA+Hl6/DB/eqGptrf4BSRwcZQM32aZK 7Pj2XbGWIUrZrd70x1eAP9QE3P79Y2oLrsCgbZJfEwCgvz9JjGmQqQkRiTVzlZVCJYcyGGsD /0tbFCzD2h20ahe8rC1gbb3K3qk+LpBtvjBu1RY9drYk0NymiGbJWZgab6t1jM7sk2vuf0Py O9Hf9XBmK0uE9IgMaiCpc32XV9oASz6UJebwkX+zF2jG5I1BfnO9g7KlotcA/v5ClMjgo6Gl MDY4HxoSRu3i1cqqSDtVlt+AOVBJBACrZcnHAUSuCXBPy0jOlBhxPqRWv6ND4c9PH1xjQ3NP nxJuMBS8rnNg22uyfAgmBKNLpLgAGVRMZGaGoJObGf72s6TeIqKJo/LtggAS9qAUiuKVnygo 3wjfkS9A3DRO+SpU7JqWdsveeIQyeyEJ/8PTowmSQLakF+3fote9ybzd880fSmFuIEJldWxp Y2ggPGpiZXVsaWNoQHN1c2UuY29tPsJgBBMRAgAgBQJZN5xEAhsDBgsJCAcDAgQVAggDBBYC AwECHgECF4AACgkQoDSui/t3IH4J+wCfQ5jHdEjCRHj23O/5ttg9r9OIruwAn3103WUITZee e7Sbg12UgcQ5lv7SzsFNBFk3nEQQCACCuTjCjFOUdi5Nm244F+78kLghRcin/awv+IrTcIWF hUpSs1Y91iQQ7KItirz5uwCPlwejSJDQJLIS+QtJHaXDXeV6NI0Uef1hP20+y8qydDiVkv6l IreXjTb7DvksRgJNvCkWtYnlS3mYvQ9NzS9PhyALWbXnH6sIJd2O9lKS1Mrfq+y0IXCP10eS FFGg+Av3IQeFatkJAyju0PPthyTqxSI4lZYuJVPknzgaeuJv/2NccrPvmeDg6Coe7ZIeQ8Yj t0ARxu2xytAkkLCel1Lz1WLmwLstV30g80nkgZf/wr+/BXJW/oIvRlonUkxv+IbBM3dX2OV8 AmRv1ySWPTP7AAMFB/9PQK/VtlNUJvg8GXj9ootzrteGfVZVVT4XBJkfwBcpC/XcPzldjv+3 HYudvpdNK3lLujXeA5fLOH+Z/G9WBc5pFVSMocI71I8bT8lIAzreg0WvkWg5V2WZsUMlnDL9 mpwIGFhlbM3gfDMs7MPMu8YQRFVdUvtSpaAs8OFfGQ0ia3LGZcjA6Ik2+xcqscEJzNH+qh8V m5jjp28yZgaqTaRbg3M/+MTbMpicpZuqF4rnB0AQD12/3BNWDR6bmh+EkYSMcEIpQmBM51qM EKYTQGybRCjpnKHGOxG0rfFY1085mBDZCH5Kx0cl0HVJuQKC+dV2ZY5AqjcKwAxpE75MLFkr wkkEGBECAAkFAlk3nEQCGwwACgkQoDSui/t3IH7nnwCfcJWUDUFKdCsBH/E5d+0ZnMQi+G0A nAuWpQkjM1ASeQwSHEeAWPgskBQL

Cc: Anthony PERARD <anthony@xxxxxxxxxxxxxx>, Juergen Gross <jgross@xxxxxxxx>, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, George Dunlap <george.dunlap@xxxxxxxxxx>, Julien Grall <julien@xxxxxxx>, Stefano Stabellini <sstabellini@xxxxxxxxxx>, Christian Lindig <christian.lindig@xxxxxxxxxx>, David Scott <dave@xxxxxxxxxx>, Bertrand Marquis <bertrand.marquis@xxxxxxx>, Michal Orzel <michal.orzel@xxxxxxx>, Volodymyr Babchuk <Volodymyr_Babchuk@xxxxxxxx>, "Daniel P. Smith" <dpsmith@xxxxxxxxxxxxxxxxxxxx>, xen-devel@xxxxxxxxxxxxxxxxxxxx

Delivery-date: Thu, 23 May 2024 06:55:00 +0000

List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On 22.05.2024 18:21, Roger Pau Monné wrote: > On Wed, May 22, 2024 at 03:34:29PM +0200, Jan Beulich wrote: >> On 22.05.2024 15:16, Roger Pau Monné wrote: >>> On Tue, May 21, 2024 at 12:30:32PM +0200, Jan Beulich wrote: >>>> On 17.05.2024 15:33, Roger Pau Monne wrote: >>>>> Enabling it using an HVM param is fragile, and complicates the logic when >>>>> deciding whether options that interact with altp2m can also be enabled. >>>>> >>>>> Leave the HVM param value for consumption by the guest, but prevent it >>>>> from >>>>> being set. Enabling is now done using and additional altp2m specific >>>>> field in >>>>> xen_domctl_createdomain. >>>>> >>>>> Note that albeit only currently implemented in x86, altp2m could be >>>>> implemented >>>>> in other architectures, hence why the field is added to >>>>> xen_domctl_createdomain >>>>> instead of xen_arch_domainconfig. >>>>> >>>>> Signed-off-by: Roger Pau Monné <roger.pau@xxxxxxxxxx> >>>> >>>> Reviewed-by: Jan Beulich <jbeulich@xxxxxxxx> # hypervisor >>>> albeit with one question: >>>> >>>>> --- a/xen/arch/x86/domain.c >>>>> +++ b/xen/arch/x86/domain.c >>>>> @@ -637,6 +637,8 @@ int arch_sanitise_domain_config(struct >>>>> xen_domctl_createdomain *config) >>>>> bool hap = config->flags & XEN_DOMCTL_CDF_hap; >>>>> bool nested_virt = config->flags & XEN_DOMCTL_CDF_nested_virt; >>>>> unsigned int max_vcpus; >>>>> + unsigned int altp2m_mode = MASK_EXTR(config->altp2m_opts, >>>>> + XEN_DOMCTL_ALTP2M_mode_mask); >>>>> >>>>> if ( hvm ? !hvm_enabled : !IS_ENABLED(CONFIG_PV) ) >>>>> { >>>>> @@ -715,6 +717,26 @@ int arch_sanitise_domain_config(struct >>>>> xen_domctl_createdomain *config) >>>>> return -EINVAL; >>>>> } >>>>> >>>>> + if ( config->altp2m_opts & ~XEN_DOMCTL_ALTP2M_mode_mask ) >>>>> + { >>>>> + dprintk(XENLOG_INFO, "Invalid altp2m options selected: %#x\n", >>>>> + config->flags); >>>>> + return -EINVAL; >>>>> + } >>>>> + >>>>> + if ( altp2m_mode && nested_virt ) >>>>> + { >>>>> + dprintk(XENLOG_INFO, >>>>> + "Nested virt and altp2m are not supported together\n"); >>>>> + return -EINVAL; >>>>> + } >>>>> + >>>>> + if ( altp2m_mode && !hap ) >>>>> + { >>>>> + dprintk(XENLOG_INFO, "altp2m is only supported with HAP\n"); >>>>> + return -EINVAL; >>>>> + } >>>> >>>> Should this last one perhaps be further extended to permit altp2m with EPT >>>> only? >>> >>> Hm, yes, that would be more accurate as: >>> >>> if ( altp2m_mode && (!hap || !hvm_altp2m_supported()) ) >> >> Wouldn't >> >> if ( altp2m_mode && !hvm_altp2m_supported() ) >> >> suffice? hvm_funcs.caps.altp2m is not supposed to be set when no HAP, >> as long as HAP continues to be a pre-condition? > > No, `hap` here signals whether the domain is using HAP, and we need to > take this int account, otherwise we would allow enabling altp2m for > domains using shadow. Oh, right. But then the original for is good enough HAP-wise, as a request to use HAP when HAP isn't available is deal with elsewhere. The !hvm_altp2m_supported() is still wanted imo (for there potentially being other restrictions), but then in a separate check, not resulting in a HAP- specific log message. I'll commit the patch in its original form, and that further addition can then be an incremental change. Jan

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.