From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <owner-linux-mm@kvack.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17])
	by smtp.lore.kernel.org (Postfix) with ESMTP id D80AED68BCD
	for <linux-mm@archiver.kernel.org>; Fri, 15 Nov 2024 16:59:37 +0000 (UTC)
Received: by kanga.kvack.org (Postfix)
	id 0EA756B00B4; Fri, 15 Nov 2024 11:59:37 -0500 (EST)
Received: by kanga.kvack.org (Postfix, from userid 40)
	id 09B696B00B5; Fri, 15 Nov 2024 11:59:37 -0500 (EST)
X-Delivered-To: int-list-linux-mm@kvack.org
Received: by kanga.kvack.org (Postfix, from userid 63042)
	id E565F6B00B6; Fri, 15 Nov 2024 11:59:36 -0500 (EST)
X-Delivered-To: linux-mm@kvack.org
Received: from relay.hostedemail.com (smtprelay0011.hostedemail.com [216.40.44.11])
	by kanga.kvack.org (Postfix) with ESMTP id C18446B00B4
	for <linux-mm@kvack.org>; Fri, 15 Nov 2024 11:59:36 -0500 (EST)
Received: from smtpin13.hostedemail.com (a10.router.float.18 [10.200.18.1])
	by unirelay08.hostedemail.com (Postfix) with ESMTP id 4F413141987
	for <linux-mm@kvack.org>; Fri, 15 Nov 2024 16:59:36 +0000 (UTC)
X-FDA: 82788938400.13.9A3B360
Received: from smtp-fw-52003.amazon.com (smtp-fw-52003.amazon.com [52.119.213.152])
	by imf04.hostedemail.com (Postfix) with ESMTP id 7276F4001F
	for <linux-mm@kvack.org>; Fri, 15 Nov 2024 16:58:36 +0000 (UTC)
Authentication-Results: imf04.hostedemail.com;
	dkim=pass header.d=amazon.co.uk header.s=amazon201209 header.b=gvrCnqD3;
	dmarc=pass (policy=quarantine) header.from=amazon.co.uk;
	spf=pass (imf04.hostedemail.com: domain of "prvs=0425cf9e9=roypat@amazon.co.uk" designates 52.119.213.152 as permitted sender) smtp.mailfrom="prvs=0425cf9e9=roypat@amazon.co.uk"
ARC-Seal: i=1; s=arc-20220608; d=hostedemail.com; t=1731689842; a=rsa-sha256;
	cv=none;
	b=506A6EtBUw3i5SmKpbCJFgONOilVu4TC1VBU5Pd6QiSLn8NydFI+zSueClzKPcjDLDc5wH
	eA4S8srjH1PcA+2dOVQ9Ej9P0a2vn3g1uNQqmVvmM1N51igzrcQyuF1rvAQZxv3TbhBaTU
	UWpsmDG3GM337j133Kqu6MFCT8kxRAk=
ARC-Authentication-Results: i=1;
	imf04.hostedemail.com;
	dkim=pass header.d=amazon.co.uk header.s=amazon201209 header.b=gvrCnqD3;
	dmarc=pass (policy=quarantine) header.from=amazon.co.uk;
	spf=pass (imf04.hostedemail.com: domain of "prvs=0425cf9e9=roypat@amazon.co.uk" designates 52.119.213.152 as permitted sender) smtp.mailfrom="prvs=0425cf9e9=roypat@amazon.co.uk"
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=hostedemail.com;
	s=arc-20220608; t=1731689842;
	h=from:from:sender:reply-to:subject:subject:date:date:
	 message-id:message-id:to:to:cc:cc:mime-version:mime-version:
	 content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:
	 in-reply-to:in-reply-to:references:references:dkim-signature;
	bh=r+ZYPqHoQHDHwa2VIgKNI6m+YZlhrBPHGnCuiE8lbJI=;
	b=glwmq1XWdG6uBMSbDiDgamxXJ75WPfDKJNhsAqboYp/QYRN7D4ybyrFn5TTV2i/emp9C2F
	NjTHgk17UtYpZvxeNmI5tgW6AHfJRp7uZolQ9f/RHICtfpTWwNToiDu+/HssVbkNKh7h/m
	UpraJ4EKUjrPu+CLCu6pXl2Yv3CGKUY=
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
  d=amazon.co.uk; i=@amazon.co.uk; q=dns/txt;
  s=amazon201209; t=1731689974; x=1763225974;
  h=message-id:date:mime-version:subject:to:cc:references:
   from:in-reply-to:content-transfer-encoding;
  bh=r+ZYPqHoQHDHwa2VIgKNI6m+YZlhrBPHGnCuiE8lbJI=;
  b=gvrCnqD3eZYkc5dEk7ZFPicbxuLuRRxMc7Xa6E9BBBuvLt3Yn3cAzLYY
   BPIBs1w7hSxoFfrgnxey5yr3BoerrHs0BlNWFQmuwLS4cm5haNn0pSTOn
   axNLJjK/cZS2sHm+XT35me5pULiZ+RTQqNIuUuvIoBbIGEBWJtXQzR9c3
   w=;
X-IronPort-AV: E=Sophos;i="6.12,157,1728950400"; 
   d="scan'208";a="41628339"
Received: from iad6-co-svc-p1-lb1-vlan3.amazon.com (HELO smtpout.prod.us-west-2.prod.farcaster.email.amazon.dev) ([10.124.125.6])
  by smtp-border-fw-52003.iad7.amazon.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 15 Nov 2024 16:59:29 +0000
Received: from EX19MTAUWA001.ant.amazon.com [10.0.38.20:9599]
 by smtpin.naws.us-west-2.prod.farcaster.email.amazon.dev [10.0.61.54:2525] with esmtp (Farcaster)
 id 2d14af0a-2929-4c9e-8d1e-34cbf239d5b8; Fri, 15 Nov 2024 16:59:28 +0000 (UTC)
X-Farcaster-Flow-ID: 2d14af0a-2929-4c9e-8d1e-34cbf239d5b8
Received: from EX19D003UWB004.ant.amazon.com (10.13.138.24) by
 EX19MTAUWA001.ant.amazon.com (10.250.64.217) with Microsoft SMTP Server
 (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA) id 15.2.1258.34;
 Fri, 15 Nov 2024 16:59:20 +0000
Received: from EX19MTAUWB001.ant.amazon.com (10.250.64.248) by
 EX19D003UWB004.ant.amazon.com (10.13.138.24) with Microsoft SMTP Server
 (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA) id 15.2.1258.35;
 Fri, 15 Nov 2024 16:59:20 +0000
Received: from email-imr-corp-prod-iad-all-1b-85daddd1.us-east-1.amazon.com
 (10.25.36.214) by mail-relay.amazon.com (10.250.64.254) with Microsoft SMTP
 Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA) id
 15.2.1258.34 via Frontend Transport; Fri, 15 Nov 2024 16:59:19 +0000
Received: from [127.0.0.1] (dev-dsk-roypat-1c-dbe2a224.eu-west-1.amazon.com [172.19.88.180])
	by email-imr-corp-prod-iad-all-1b-85daddd1.us-east-1.amazon.com (Postfix) with ESMTPS id 3F35B404E4;
	Fri, 15 Nov 2024 16:59:14 +0000 (UTC)
Message-ID: <f1f34ac0-d505-4982-aad9-86a0db9f4a35@amazon.co.uk>
Date: Fri, 15 Nov 2024 16:59:13 +0000
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
Subject: Re: [RFC PATCH v3 0/6] Direct Map Removal for guest_memfd
To: David Hildenbrand <david@redhat.com>, <tabba@google.com>,
	<quic_eberman@quicinc.com>, <seanjc@google.com>, <pbonzini@redhat.com>,
	<jthoughton@google.com>, <ackerleytng@google.com>, <vannapurve@google.com>,
	<rppt@kernel.org>
CC: <graf@amazon.com>, <jgowans@amazon.com>, <derekmn@amazon.com>,
	<kalyazin@amazon.com>, <xmarcalx@amazon.com>, <linux-mm@kvack.org>,
	<corbet@lwn.net>, <catalin.marinas@arm.com>, <will@kernel.org>,
	<chenhuacai@kernel.org>, <kernel@xen0n.name>, <paul.walmsley@sifive.com>,
	<palmer@dabbelt.com>, <aou@eecs.berkeley.edu>, <hca@linux.ibm.com>,
	<gor@linux.ibm.com>, <agordeev@linux.ibm.com>, <borntraeger@linux.ibm.com>,
	<svens@linux.ibm.com>, <gerald.schaefer@linux.ibm.com>, <tglx@linutronix.de>,
	<mingo@redhat.com>, <bp@alien8.de>, <dave.hansen@linux.intel.com>,
	<x86@kernel.org>, <hpa@zytor.com>, <luto@kernel.org>, <peterz@infradead.org>,
	<rostedt@goodmis.org>, <mhiramat@kernel.org>,
	<mathieu.desnoyers@efficios.com>, <shuah@kernel.org>, <kvm@vger.kernel.org>,
	<linux-doc@vger.kernel.org>, <linux-kernel@vger.kernel.org>,
	<linux-arm-kernel@lists.infradead.org>, <loongarch@lists.linux.dev>,
	<linux-riscv@lists.infradead.org>, <linux-s390@vger.kernel.org>,
	<linux-trace-kernel@vger.kernel.org>, <linux-kselftest@vger.kernel.org>,
	<faresx@amazon.com>
References: <20241030134912.515725-1-roypat@amazon.co.uk>
 <4aa0ccf4-ebbe-4244-bc85-8bc8dcd14e74@redhat.com>
 <27646c08-f724-49f7-9f45-d03bad500219@amazon.co.uk>
 <d1a69eb7-85d5-4ffa-88e2-f4841713c1d7@redhat.com>
 <90c9d8c0-814e-4c86-86ef-439cb5552cb6@amazon.co.uk>
 <10e4d078-3cdb-4d1c-a1a3-80e91b247217@redhat.com>
 <02f77d32-e2a1-431b-bb67-33d36c06acd3@amazon.co.uk>
 <f4c5d0a6-a582-44e3-8949-c199cc0bfba7@redhat.com>
From: Patrick Roy <roypat@amazon.co.uk>
Content-Language: en-US
Autocrypt: addr=roypat@amazon.co.uk; keydata=
 xjMEY0UgYhYJKwYBBAHaRw8BAQdA7lj+ADr5b96qBcdINFVJSOg8RGtKthL5x77F2ABMh4PN
 NVBhdHJpY2sgUm95IChHaXRodWIga2V5IGFtYXpvbikgPHJveXBhdEBhbWF6b24uY28udWs+
 wpMEExYKADsWIQQ5DAcjaM+IvmZPLohVg4tqeAbEAgUCY0UgYgIbAwULCQgHAgIiAgYVCgkI
 CwIEFgIDAQIeBwIXgAAKCRBVg4tqeAbEAmQKAQC1jMl/KT9pQHEdALF7SA1iJ9tpA5ppl1J9
 AOIP7Nr9SwD/fvIWkq0QDnq69eK7HqW14CA7AToCF6NBqZ8r7ksi+QLOOARjRSBiEgorBgEE
 AZdVAQUBAQdAqoMhGmiXJ3DMGeXrlaDA+v/aF/ah7ARbFV4ukHyz+CkDAQgHwngEGBYKACAW
 IQQ5DAcjaM+IvmZPLohVg4tqeAbEAgUCY0UgYgIbDAAKCRBVg4tqeAbEAtjHAQDkh5jZRIsZ
 7JMNkPMSCd5PuSy0/Gdx8LGgsxxPMZwePgEAn5Tnh4fVbf00esnoK588bYQgJBioXtuXhtom
 8hlxFQM=
In-Reply-To: <f4c5d0a6-a582-44e3-8949-c199cc0bfba7@redhat.com>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: 7bit
X-Rspamd-Queue-Id: 7276F4001F
X-Stat-Signature: 6xk87qj9k3q1g6w6efzi7n4wsws1pnx9
X-Rspam-User: 
X-Rspamd-Server: rspam05
X-HE-Tag: 1731689916-378099
X-HE-Meta: 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
 0+jKDxBK
 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
X-Bogosity: Ham, tests=bogofilter, spamicity=0.000004, version=1.2.4
Sender: owner-linux-mm@kvack.org
Precedence: bulk
X-Loop: owner-majordomo@kvack.org
List-ID: <linux-mm.kvack.org>
List-Subscribe: <mailto:majordomo@kvack.org>
List-Unsubscribe: <mailto:majordomo@kvack.org>



On Tue, 2024-11-12 at 14:52 +0000, David Hildenbrand wrote:
> On 12.11.24 15:40, Patrick Roy wrote:
>> I remember talking to someone at some point about whether we could reuse
>> the proc-local stuff for guest memory, but I cannot remember the outcome
>> of that discussion... (or maybe I just wanted to have a discussion about
>> it, but forgot to follow up on that thought?).  I guess we wouldn't use
>> proc-local _allocations_, but rather just set up proc-local mappings of
>> the gmem allocations that have been removed from the direct map.
> 
> Yes. And likely only for memory we really access / try access, if possible.

Well, if we start on-demand mm-local mapping the things we want to
access, we're back in TLB flush hell, no? And we can't know
ahead-of-time what needs to be mapped, so everything would need to be
mapped (unless we do something like mm-local mapping a page on first
access, and then just never unmapping it again, under the assumption
that establishing the mapping won't be expensive)

>>
>> I'm wondering, where exactly would be the differences to Sean's idea
>> about messing with the CR3 register inside KVM to temporarily install
>> page tables that contain all the gmem stuff, conceptually? Wouldn't we
>> run into the same interrupt problems that Sean foresaw for the CR3
>> stuff? (which, admittedly, I still don't quite follow what these are :(
>> ).
> 
> I'd need some more details on that. If anything would rely on the direct
> mapping (from IRQ context?) than ... we obviously cannot remove the
> direct mapping :)

I've talked to Fares internally, and it seems that generally doing
mm-local mappings of guest memory would work for us. We also figured out
what the "interrupt problem" is, namely that if we receive an interrupt
while executing in a context that has mm-local mappings available, those
mappings will continue to be available while the interrupt is being
handled. I'm talking to my security folks to see how much of a concern
this is for the speculation hardening we're trying to achieve. Will keep
you in the loop there :)

> -- 
> Cheers,
> 
> David / dhildenb
> 

Best, 
Patrick