From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <owner-linux-mm@kvack.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17])
	by smtp.lore.kernel.org (Postfix) with ESMTP id 08FADC0219B
	for <linux-mm@archiver.kernel.org>; Tue, 11 Feb 2025 16:32:48 +0000 (UTC)
Received: by kanga.kvack.org (Postfix)
	id 7DE946B0099; Tue, 11 Feb 2025 11:32:48 -0500 (EST)
Received: by kanga.kvack.org (Postfix, from userid 40)
	id 76773280001; Tue, 11 Feb 2025 11:32:48 -0500 (EST)
X-Delivered-To: int-list-linux-mm@kvack.org
Received: by kanga.kvack.org (Postfix, from userid 63042)
	id 5E1156B009B; Tue, 11 Feb 2025 11:32:48 -0500 (EST)
X-Delivered-To: linux-mm@kvack.org
Received: from relay.hostedemail.com (smtprelay0012.hostedemail.com [216.40.44.12])
	by kanga.kvack.org (Postfix) with ESMTP id 3D64D6B0099
	for <linux-mm@kvack.org>; Tue, 11 Feb 2025 11:32:48 -0500 (EST)
Received: from smtpin13.hostedemail.com (a10.router.float.18 [10.200.18.1])
	by unirelay09.hostedemail.com (Postfix) with ESMTP id E89DA80572
	for <linux-mm@kvack.org>; Tue, 11 Feb 2025 16:32:47 +0000 (UTC)
X-FDA: 83108207574.13.342F741
Received: from smtp-fw-52004.amazon.com (smtp-fw-52004.amazon.com [52.119.213.154])
	by imf12.hostedemail.com (Postfix) with ESMTP id B670D4000C
	for <linux-mm@kvack.org>; Tue, 11 Feb 2025 16:32:45 +0000 (UTC)
Authentication-Results: imf12.hostedemail.com;
	dkim=pass header.d=amazon.co.uk header.s=amazon201209 header.b=MxybRrHG;
	spf=pass (imf12.hostedemail.com: domain of "prvs=13098b684=roypat@amazon.co.uk" designates 52.119.213.154 as permitted sender) smtp.mailfrom="prvs=13098b684=roypat@amazon.co.uk";
	dmarc=pass (policy=quarantine) header.from=amazon.co.uk
ARC-Seal: i=1; s=arc-20220608; d=hostedemail.com; t=1739291565; a=rsa-sha256;
	cv=none;
	b=8OlPhx5yLpJCwrftdKie9sFpNjg6onPu8NZLhwe9+y9ly7RTOa0uKWm7tMPrbo01/okANc
	79py82Kgbi8gkvDOQAKe8180eoznoFcd5YTKDZHO2dNXoPZ56XiR1tMx1WBMeC2cX3gSYU
	vgf3y7i5cO/qnITarofjHtDEup1kawU=
ARC-Authentication-Results: i=1;
	imf12.hostedemail.com;
	dkim=pass header.d=amazon.co.uk header.s=amazon201209 header.b=MxybRrHG;
	spf=pass (imf12.hostedemail.com: domain of "prvs=13098b684=roypat@amazon.co.uk" designates 52.119.213.154 as permitted sender) smtp.mailfrom="prvs=13098b684=roypat@amazon.co.uk";
	dmarc=pass (policy=quarantine) header.from=amazon.co.uk
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=hostedemail.com;
	s=arc-20220608; t=1739291565;
	h=from:from:sender:reply-to:subject:subject:date:date:
	 message-id:message-id:to:to:cc:cc:mime-version:mime-version:
	 content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:
	 in-reply-to:in-reply-to:references:references:dkim-signature;
	bh=ygKk6wEbpUicyoqA5WJDKNaCGBqqq7EW/hGr67EMYIE=;
	b=114xHHR2jfyiI3dsrSnlnZvJ2rT2ZC06mbeUUWL+zFRpAv26LDAUuMtNoq032VkJ+/EG/d
	s+3X8Ye26VcaLkhpdjxP9fSUuoRauVQF6ZiTUvJDrFrXNpdZJVa9qUawvW4+nXX+a2kz8R
	q3D+9CFT23IYXifO2CV1kBiMeCKf1uI=
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
  d=amazon.co.uk; i=@amazon.co.uk; q=dns/txt;
  s=amazon201209; t=1739291565; x=1770827565;
  h=message-id:date:mime-version:subject:to:cc:references:
   from:in-reply-to:content-transfer-encoding;
  bh=ygKk6wEbpUicyoqA5WJDKNaCGBqqq7EW/hGr67EMYIE=;
  b=MxybRrHGGm/A2vTOLcKz8jP1pcG2CDZN7x5qP1GonO8SQV1MHTTcghWX
   n6QdMzk5cHk70yO7UVywqY3eErXOha0Sod0i4OSIYOD/+g+b4u05iubDL
   /d0OX/B63q1dDxnpSDlkZZRE3C3H1lNuIOJGoSGZ9gPbbgDh/GxHs+uzN
   E=;
X-IronPort-AV: E=Sophos;i="6.13,278,1732579200"; 
   d="scan'208";a="270273053"
Received: from iad12-co-svc-p1-lb1-vlan2.amazon.com (HELO smtpout.prod.us-east-1.prod.farcaster.email.amazon.dev) ([10.43.8.2])
  by smtp-border-fw-52004.iad7.amazon.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 11 Feb 2025 16:32:42 +0000
Received: from EX19MTAUEC002.ant.amazon.com [10.0.0.204:63338]
 by smtpin.naws.us-east-1.prod.farcaster.email.amazon.dev [10.0.50.35:2525] with esmtp (Farcaster)
 id 53f80aeb-d9b5-4731-adf8-308303f95e04; Tue, 11 Feb 2025 16:32:41 +0000 (UTC)
X-Farcaster-Flow-ID: 53f80aeb-d9b5-4731-adf8-308303f95e04
Received: from EX19EXOUEA002.ant.amazon.com (10.252.134.207) by
 EX19MTAUEC002.ant.amazon.com (10.252.135.253) with Microsoft SMTP Server
 (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA) id 15.2.1258.39;
 Tue, 11 Feb 2025 16:32:41 +0000
Received: from EX19MTAUEB001.ant.amazon.com (10.252.135.35) by
 EX19EXOUEA002.ant.amazon.com (10.252.134.207) with Microsoft SMTP Server
 (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA) id 15.2.1258.39;
 Tue, 11 Feb 2025 16:32:41 +0000
Received: from email-imr-corp-prod-iad-all-1b-3ae3de11.us-east-1.amazon.com
 (10.43.8.2) by mail-relay.amazon.com (10.252.135.35) with Microsoft SMTP
 Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA) id
 15.2.1258.39 via Frontend Transport; Tue, 11 Feb 2025 16:32:41 +0000
Received: from [127.0.0.1] (dev-dsk-roypat-1c-dbe2a224.eu-west-1.amazon.com [172.19.88.180])
	by email-imr-corp-prod-iad-all-1b-3ae3de11.us-east-1.amazon.com (Postfix) with ESMTPS id 62730A0434;
	Tue, 11 Feb 2025 16:32:32 +0000 (UTC)
Message-ID: <d9645330-3a0d-4950-a50b-ce82b428e08c@amazon.co.uk>
Date: Tue, 11 Feb 2025 16:32:31 +0000
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
Subject: Re: [PATCH v3 09/11] KVM: arm64: Introduce
 KVM_VM_TYPE_ARM_SW_PROTECTED machine type
To: Quentin Perret <qperret@google.com>, Fuad Tabba <tabba@google.com>
CC: <kvm@vger.kernel.org>, <linux-arm-msm@vger.kernel.org>,
	<linux-mm@kvack.org>, <pbonzini@redhat.com>, <chenhuacai@kernel.org>,
	<mpe@ellerman.id.au>, <anup@brainfault.org>, <paul.walmsley@sifive.com>,
	<palmer@dabbelt.com>, <aou@eecs.berkeley.edu>, <seanjc@google.com>,
	<viro@zeniv.linux.org.uk>, <brauner@kernel.org>, <willy@infradead.org>,
	<akpm@linux-foundation.org>, <xiaoyao.li@intel.com>, <yilun.xu@intel.com>,
	<chao.p.peng@linux.intel.com>, <jarkko@kernel.org>, <amoorthy@google.com>,
	<dmatlack@google.com>, <yu.c.zhang@linux.intel.com>,
	<isaku.yamahata@intel.com>, <mic@digikod.net>, <vbabka@suse.cz>,
	<vannapurve@google.com>, <ackerleytng@google.com>,
	<mail@maciej.szmigiero.name>, <david@redhat.com>, <michael.roth@amd.com>,
	<wei.w.wang@intel.com>, <liam.merwick@oracle.com>,
	<isaku.yamahata@gmail.com>, <kirill.shutemov@linux.intel.com>,
	<suzuki.poulose@arm.com>, <steven.price@arm.com>, <quic_eberman@quicinc.com>,
	<quic_mnalajal@quicinc.com>, <quic_tsoni@quicinc.com>,
	<quic_svaddagi@quicinc.com>, <quic_cvanscha@quicinc.com>,
	<quic_pderrin@quicinc.com>, <quic_pheragu@quicinc.com>,
	<catalin.marinas@arm.com>, <james.morse@arm.com>, <yuzenghui@huawei.com>,
	<oliver.upton@linux.dev>, <maz@kernel.org>, <will@kernel.org>,
	<keirf@google.com>, <shuah@kernel.org>, <hch@infradead.org>,
	<jgg@nvidia.com>, <rientjes@google.com>, <jhubbard@nvidia.com>,
	<fvdl@google.com>, <hughd@google.com>, <jthoughton@google.com>
References: <20250211121128.703390-1-tabba@google.com>
 <20250211121128.703390-10-tabba@google.com> <Z6t227f31unTnQQt@google.com>
 <CA+EHjTweTLDzhcCoEZYP4iyuti+8TU3HbtLHh+u5ark6WDjbsA@mail.gmail.com>
 <Z6t6_M8un1Cf3nmk@google.com>
From: Patrick Roy <roypat@amazon.co.uk>
Content-Language: en-US
Autocrypt: addr=roypat@amazon.co.uk; keydata=
 xjMEY0UgYhYJKwYBBAHaRw8BAQdA7lj+ADr5b96qBcdINFVJSOg8RGtKthL5x77F2ABMh4PN
 NVBhdHJpY2sgUm95IChHaXRodWIga2V5IGFtYXpvbikgPHJveXBhdEBhbWF6b24uY28udWs+
 wpMEExYKADsWIQQ5DAcjaM+IvmZPLohVg4tqeAbEAgUCY0UgYgIbAwULCQgHAgIiAgYVCgkI
 CwIEFgIDAQIeBwIXgAAKCRBVg4tqeAbEAmQKAQC1jMl/KT9pQHEdALF7SA1iJ9tpA5ppl1J9
 AOIP7Nr9SwD/fvIWkq0QDnq69eK7HqW14CA7AToCF6NBqZ8r7ksi+QLOOARjRSBiEgorBgEE
 AZdVAQUBAQdAqoMhGmiXJ3DMGeXrlaDA+v/aF/ah7ARbFV4ukHyz+CkDAQgHwngEGBYKACAW
 IQQ5DAcjaM+IvmZPLohVg4tqeAbEAgUCY0UgYgIbDAAKCRBVg4tqeAbEAtjHAQDkh5jZRIsZ
 7JMNkPMSCd5PuSy0/Gdx8LGgsxxPMZwePgEAn5Tnh4fVbf00esnoK588bYQgJBioXtuXhtom
 8hlxFQM=
In-Reply-To: <Z6t6_M8un1Cf3nmk@google.com>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: 7bit
X-Rspamd-Queue-Id: B670D4000C
X-Stat-Signature: oo5wtaj8de8e5fududbcne7shh53t8in
X-Rspam-User: 
X-Rspamd-Server: rspam10
X-HE-Tag: 1739291565-997534
X-HE-Meta: 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
 mA402Tz9
 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
X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4
Sender: owner-linux-mm@kvack.org
Precedence: bulk
X-Loop: owner-majordomo@kvack.org
List-ID: <linux-mm.kvack.org>
List-Subscribe: <mailto:majordomo@kvack.org>
List-Unsubscribe: <mailto:majordomo@kvack.org>

Hi Quentin,

On Tue, 2025-02-11 at 16:29 +0000, Quentin Perret wrote:> On Tuesday 11 Feb 2025 at 16:17:25 (+0000), Fuad Tabba wrote:
>> Hi Quentin,
>>
>> On Tue, 11 Feb 2025 at 16:12, Quentin Perret <qperret@google.com> wrote:
>>>
>>> Hi Fuad,
>>>
>>> On Tuesday 11 Feb 2025 at 12:11:25 (+0000), Fuad Tabba wrote:
>>>> diff --git a/include/uapi/linux/kvm.h b/include/uapi/linux/kvm.h
>>>> index 117937a895da..f155d3781e08 100644
>>>> --- a/include/uapi/linux/kvm.h
>>>> +++ b/include/uapi/linux/kvm.h
>>>> @@ -652,6 +652,12 @@ struct kvm_enable_cap {
>>>>  #define KVM_VM_TYPE_ARM_IPA_SIZE_MASK        0xffULL
>>>>  #define KVM_VM_TYPE_ARM_IPA_SIZE(x)          \
>>>>       ((x) & KVM_VM_TYPE_ARM_IPA_SIZE_MASK)
>>>> +
>>>> +#define KVM_VM_TYPE_ARM_SW_PROTECTED (1UL << 9)
>>>
>>> FWIW, the downstream Android code has used bit 31 since forever
>>> for that.
>>>
>>> Although I very much believe that upstream should not care about the
>>> downstream mess in general, in this particular instance bit 9 really
>>> isn't superior in any way, and there's a bunch of existing userspace
>>> code that uses bit 31 today as we speak. It is very much Android's
>>> problem to update these userspace programs if we do go with bit 9
>>> upstream, but I don't really see how that would benefit upstream
>>> either.
>>>
>>> So, given that there is no maintenance cost for upstream to use bit 31
>>> instead of 9, I'd vote for using bit 31 and ease the landing with
>>> existing userspace code, unless folks are really opinionated with this
>>> stuff :)
>>
>> My thinking is that this bit does _not_ mean pKVM. It means an
>> experimental software VM that is similar to the x86
>> KVM_X86_SW_PROTECTED_VM. Hence why I didn't choose bit 31.
>>
>> From Documentation/virt/kvm/api.rst (for x86):
>>
>> '''
>> Note, KVM_X86_SW_PROTECTED_VM is currently only for development and testing.
>> Do not use KVM_X86_SW_PROTECTED_VM for "real" VMs, and especially not in
>> production.  The behavior and effective ABI for software-protected VMs is
>> unstable.
>> '''
>>
>> which is similar to the documentation I added here.
> 
> Aha, I see, but are we going to allocate _another_ bit for protected VMs
> proper once they're supported? Or just update the doc for the existing
> bit? If the latter, then I guess this discussion can still happen :)

I was hoping that SW_PROTECTED_VM will be the VM type that something
like Firecracker could use, e.g. an interface to guest_memfd specifically
_without_ pKVM, as Fuad was saying.

> Thanks,
> Quentin

Best, 
Patrick