From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17]) by smtp.lore.kernel.org (Postfix) with ESMTP id 1D588C5475B for ; Fri, 8 Mar 2024 16:25:38 +0000 (UTC) Received: by kanga.kvack.org (Postfix) id 728898D000C; Fri, 8 Mar 2024 11:25:38 -0500 (EST) Received: by kanga.kvack.org (Postfix, from userid 40) id 6D8558D0002; Fri, 8 Mar 2024 11:25:38 -0500 (EST) X-Delivered-To: int-list-linux-mm@kvack.org Received: by kanga.kvack.org (Postfix, from userid 63042) id 5A05F8D000C; Fri, 8 Mar 2024 11:25:38 -0500 (EST) X-Delivered-To: linux-mm@kvack.org Received: from relay.hostedemail.com (smtprelay0016.hostedemail.com [216.40.44.16]) by kanga.kvack.org (Postfix) with ESMTP id 4C6488D0002 for ; Fri, 8 Mar 2024 11:25:38 -0500 (EST) Received: from smtpin17.hostedemail.com (a10.router.float.18 [10.200.18.1]) by unirelay08.hostedemail.com (Postfix) with ESMTP id AC8C3140AAE for ; Fri, 8 Mar 2024 16:25:37 +0000 (UTC) X-FDA: 81874397514.17.995DB60 Received: from mail-qt1-f176.google.com (mail-qt1-f176.google.com [209.85.160.176]) by imf04.hostedemail.com (Postfix) with ESMTP id D360740009 for ; Fri, 8 Mar 2024 16:25:35 +0000 (UTC) Authentication-Results: imf04.hostedemail.com; dkim=pass header.d=google.com header.s=20230601 header.b=Alq+eie0; spf=pass (imf04.hostedemail.com: domain of jackmanb@google.com designates 209.85.160.176 as permitted sender) smtp.mailfrom=jackmanb@google.com; dmarc=pass (policy=reject) header.from=google.com ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=hostedemail.com; s=arc-20220608; t=1709915135; h=from:from:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:cc:mime-version:mime-version: content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references:dkim-signature; bh=bNKllj7mYvx/xxkLemA0fJHMcGlcVpU323BzoEH+uFQ=; b=GCYKpp8gc20nBJWS8G2k8bxIFCMXkEeW2sEt26UZBLCoiGFL9uMT5tNhR4T7UOs7p9yNcb sqO6uhkMG0DMARA4gJfYDPZhIJbV3z37SNe/3oL24GRqqe9qJc5mD/hFXr2xzelE60H1y8 LRPrtevYN8YzChqVDI/MlBPHbzAelxs= ARC-Seal: i=1; s=arc-20220608; d=hostedemail.com; t=1709915135; a=rsa-sha256; cv=none; b=S4+2XSe3DPTSagtkFvvcbSXP9ZDA+FNfrW0pNnC4laf25FZW4PfkUq+WQel+ep1GmlRD31 vCLo4uO6QPE/c9FFLN+dxcK320KkN8/pfwHCZ1eR3v2krIP1HJ+IPgHiXHUlDd6GLG/uRb uOrcXSNChSl9ag79B0uP4Q0y+KI76yU= ARC-Authentication-Results: i=1; imf04.hostedemail.com; dkim=pass header.d=google.com header.s=20230601 header.b=Alq+eie0; spf=pass (imf04.hostedemail.com: domain of jackmanb@google.com designates 209.85.160.176 as permitted sender) smtp.mailfrom=jackmanb@google.com; dmarc=pass (policy=reject) header.from=google.com Received: by mail-qt1-f176.google.com with SMTP id d75a77b69052e-428405a0205so326961cf.1 for ; Fri, 08 Mar 2024 08:25:35 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20230601; t=1709915135; x=1710519935; darn=kvack.org; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=bNKllj7mYvx/xxkLemA0fJHMcGlcVpU323BzoEH+uFQ=; b=Alq+eie0sSH6JAI1QSEEI5FOLuiBE97m65yR8pYdP2dGWzPbrrxOErS9fDNYeg0Ye2 tyWTaRGOgcWd/it1TylyyuVaDD8d7DW4/TAYRhQItRmrx59ePoJsIu++ForGY/CSCLPu K2kxuyMV3pNv85Kxfgj0xsZlU0Nc9qkhdv49jbAJBks/TK55Zr11W/Vdo5QHVljeKNiV ZK52YNeg9rSj+wDl378YDMVWJ+88/ZJwvwKnNRzrkavrL3shTVtvrtq+oVahY2RRstGr 3Q429PGysc+RwufR2HwtcBe8LDPtwUWYyDRiWbJzdlLxgj8ndclc57eBi1Fyorn0mZ9U 97+g== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1709915135; x=1710519935; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=bNKllj7mYvx/xxkLemA0fJHMcGlcVpU323BzoEH+uFQ=; b=RrJqAP2KkUjplgKNX/FxIZp9LPIscXp5RgJ/G9Ok4e1jrIFeVTMRpIimFgB9PfSfFX OjAUvE2BMH9dPhYKfuEpjvIjTGlSERA/mp84c5CPAMfj1fCY2+P4CcUcjiQwm/xbL/ep opGn/1BJJBy289mCMc6xO4LtUv3RuY/LgsKe3ljXKj6Dgrk7gEmf5qEGz6IToQkWusSO wchnuILiVZojJBhvZNdBsY4pY3bq8/pg8TPkWqeJq4KgXz4kBm5ElckLT509MmdkM6G0 NsWXgX7S1rxbDpmKl9IfA+/aIGAf5PRlCc6hN8lNR+RqVGPgpCUDRAUwkpthNChhxLSb Srag== X-Forwarded-Encrypted: i=1; AJvYcCX0g5qN1IfDuQt6e5v4U4EkIGYipTa9IRqg8jo4S+Qcu9SwdbIBE8k/5JdYbGixn8j7SPoaqCPvWjwOJUsBDtHDnLo= X-Gm-Message-State: AOJu0Yxfddpr8aHUkCDdxTOtf0M1gppEfeRuqXoWJztdJ5UTFeLUAesJ C4DtTaxPZzxQrpUjd0Y1jN9l7QOFiHHhi+NlBPVTcge6MCOXsHwVslVCDqrNPaAyD6yh+1dBREU TUcbqMIMYD//p5n4KzXmVUgcT9b+1ruhPojXW X-Google-Smtp-Source: AGHT+IElQ3xjmycZ+6ORMpUoTkFmduy8rLaNpVKLnGA7x+Z+sC1aXJ1BEUZ5RKJmqqEgd0tD5BJWRtLMqwd9EMqbzds= X-Received: by 2002:ac8:7d41:0:b0:42f:a3c:2d53 with SMTP id h1-20020ac87d41000000b0042f0a3c2d53mr675497qtb.20.1709915134720; Fri, 08 Mar 2024 08:25:34 -0800 (PST) MIME-Version: 1.0 References: In-Reply-To: From: Brendan Jackman Date: Fri, 8 Mar 2024 17:25:21 +0100 Message-ID: Subject: Re: Unmapping KVM Guest Memory from Host Kernel To: "Gowans, James" Cc: "seanjc@google.com" , "akpm@linux-foundation.org" , "Roy, Patrick" , "chao.p.peng@linux.intel.com" , "Manwaring, Derek" , "rppt@kernel.org" , "pbonzini@redhat.com" , "Woodhouse, David" , "Kalyazin, Nikita" , "lstoakes@gmail.com" , "Liam.Howlett@oracle.com" , "linux-mm@kvack.org" , "qemu-devel@nongnu.org" , "kirill.shutemov@linux.intel.com" , "vbabka@suse.cz" , "mst@redhat.com" , "somlo@cmu.edu" , "Graf (AWS), Alexander" , "kvm@vger.kernel.org" , "linux-coco@lists.linux.dev" Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Stat-Signature: c7rzn3hmdmxanaettsod5q39xsdcwyzx X-Rspamd-Server: rspam10 X-Rspamd-Queue-Id: D360740009 X-Rspam-User: X-HE-Tag: 1709915135-518306 X-HE-Meta: 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 eShyYoOf FCYFA+PySu6ndDYDXprj4Jbv7/HMJQ7LpxRYl0g4L8Z1pVjDieH9mAsUQl0BwE+XC/T9FrVLrOMxr7ogHUxXY2US1I9e49zMK8Gon97M7cOr1NfCIyproZfV/Oe0BS7Dr3HLsuZPoQevhNZyxS5T113JcHmB+DHVqltRPD97E2/Sb1iKdv94gZVc9YNo/TPVQWPtSuPia0MhnMNqMRDtP27DgQzE+f7FndYI3siUjo7sFm5nTU0X8INifLB5XwYdE5C3Aw1qNeOTNwvRXniwoU4UQNoOTzpRE4SPagJU2A8QjQJ5jMjrJsPfemcaiZQXoRMQMelrvnlwoM8M8+gcnLnbIqDtsQAYnX/h2e56LgFQ394wb3cj363omWA== X-Bogosity: Ham, tests=bogofilter, spamicity=0.000046, version=1.2.4 Sender: owner-linux-mm@kvack.org Precedence: bulk X-Loop: owner-majordomo@kvack.org List-ID: List-Subscribe: List-Unsubscribe: Hi James On Fri, 8 Mar 2024 at 16:50, Gowans, James wrote: > Our goal is to more completely address the class of issues whose leak > origin is categorized as "Mapped memory" [1]. Did you forget a link below? I'm interested in hearing about that categorisation. > ... what=E2=80=99s the best way to solve getting guest RAM out of > the direct map? It's perhaps a bigger hammer than you are looking for, but the solution we're working on at Google is "Address Space Isolation" (ASI) - the latest posting about that is [2]. The sense in which it's a bigger hammer is that it doesn't only support removing guest memory from the direct map, but rather arbitrary data from arbitrary kernel mappings. [2] https://lore.kernel.org/linux-mm/CA+i-1C169s8pyqZDx+iSnFmftmGfssdQA29+p= Ym-gqySAYWgpg@mail.gmail.com/