| Message ID | 20240110003938.490206-3-seanjc@google.com |
|---|---|
| State | New |
| Headers |
Return-Path: <linux-kernel+bounces-21589-ouuuleilei=gmail.com@vger.kernel.org>
Delivered-To: ouuuleilei@gmail.com
Received: by 2002:a05:7300:2411:b0:101:2151:f287 with SMTP id m17csp498406dyi;
Tue, 9 Jan 2024 16:41:00 -0800 (PST)
X-Google-Smtp-Source:
AGHT+IHsG/PaWpc/iIx0sVGoNt4K6OzzdjxVZOSJIBnLGV9v+KXOHPz96DaKy649b7kg9QuEzTPh
X-Received: by 2002:a05:6358:904c:b0:175:649f:ebc4 with SMTP id
f12-20020a056358904c00b00175649febc4mr214157rwf.12.1704847260127;
Tue, 09 Jan 2024 16:41:00 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1704847260; cv=none;
d=google.com; s=arc-20160816;
b=CujWJDq7ByEAObNnLuN9J7Zf4GS+Fdhr69RonnOVr9Nov0Q8Wrlrhd1kNDxtqPNa8Z
UUrQpVtdk6Fh7dOfvt+GjuBCQ+58OQcLLIB3MPjiLUgoaqwFAAkyPyNN63yos2JP7808
DKqrXiStFgO+O/hQ3kQLRh3kVDH09+/VSOy872+GQYVLAL+PEn1/EtQB1tmgqoCeidzA
p/HRcKi2yoNGFDizZRIRrs0l8AsQZSONDsAHd3xhyQ2yrCTxk96hW7bJ30Rc1nhm9iik
6REQ45LN4iz22atOCSPGKL1ILg68uS/dIfRHJ6lCXfnDLVyEIklP3xPGk+1dpvn+hHMk
qemw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com;
s=arc-20160816;
h=cc:to:from:subject:message-id:references:mime-version
:list-unsubscribe:list-subscribe:list-id:precedence:in-reply-to:date
:reply-to:dkim-signature;
bh=6xnKyEv4OBvotGnyOqTbS4nPA0NPUNoMw8n+LkAwHEU=;
fh=/j5JD0kNmt6w2ElaoSjWxIvbDK7Ar0LSE5o5EAaCtME=;
b=oPKpX+hXRgQAaKlwIDjP/gz+Sa9laLjiEr3iQ7660IbtCy3S+zyORg1ifSdt6YS6vV
WumBbn59bQ54xayg12g6hzVE1FB3FZigd1R2pFF5/ywJMCuMB1kEwa7NFkJk+MDx8Lr+
EJRDgsW9jJ5yo6Oyhjv6PQfCachLpJnuJYPNBLNmAvz9DRq1tZyYEmdWuuHZo6RCoS34
bVUf/sVvqg6A51Z4H/lMrn/QhvJWTWhFkIKF6oXYmCJA02Y//wMr5Vv4zIhFzEtkj8wK
ezyeGtLdzyKkwzPil2+GhhGFJSVgf59ggLWRhRsNzwBcHLf/27AJI4jV6Pm6+FMMOz+k
rVKA==
ARC-Authentication-Results: i=1; mx.google.com;
dkim=pass header.i=@google.com header.s=20230601 header.b=XSWtWN7f;
spf=pass (google.com: domain of
linux-kernel+bounces-21589-ouuuleilei=gmail.com@vger.kernel.org designates
139.178.88.99 as permitted sender)
smtp.mailfrom="linux-kernel+bounces-21589-ouuuleilei=gmail.com@vger.kernel.org";
dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Received: from sv.mirrors.kernel.org (sv.mirrors.kernel.org. [139.178.88.99])
by mx.google.com with ESMTPS id
f3-20020a635103000000b005ce2b993254si2439978pgb.204.2024.01.09.16.40.59
for <ouuuleilei@gmail.com>
(version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
Tue, 09 Jan 2024 16:41:00 -0800 (PST)
Received-SPF: pass (google.com: domain of
linux-kernel+bounces-21589-ouuuleilei=gmail.com@vger.kernel.org designates
139.178.88.99 as permitted sender) client-ip=139.178.88.99;
Authentication-Results: mx.google.com;
dkim=pass header.i=@google.com header.s=20230601 header.b=XSWtWN7f;
spf=pass (google.com: domain of
linux-kernel+bounces-21589-ouuuleilei=gmail.com@vger.kernel.org designates
139.178.88.99 as permitted sender)
smtp.mailfrom="linux-kernel+bounces-21589-ouuuleilei=gmail.com@vger.kernel.org";
dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org
[52.25.139.140])
(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
(No client certificate requested)
by sv.mirrors.kernel.org (Postfix) with ESMTPS id BF2DE281461
for <ouuuleilei@gmail.com>; Wed, 10 Jan 2024 00:40:59 +0000 (UTC)
Received: from localhost.localdomain (localhost.localdomain [127.0.0.1])
by smtp.subspace.kernel.org (Postfix) with ESMTP id 57D30D51E;
Wed, 10 Jan 2024 00:39:50 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
header.b="XSWtWN7f"
Received: from mail-yb1-f202.google.com (mail-yb1-f202.google.com
[209.85.219.202])
(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
(No client certificate requested)
by smtp.subspace.kernel.org (Postfix) with ESMTPS id 9FF554691
for <linux-kernel@vger.kernel.org>; Wed, 10 Jan 2024 00:39:45 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org;
spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com
Received: by mail-yb1-f202.google.com with SMTP id
3f1490d57ef6-dbdb46770d7so4527766276.1
for <linux-kernel@vger.kernel.org>;
Tue, 09 Jan 2024 16:39:45 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=google.com; s=20230601; t=1704847184; x=1705451984;
darn=vger.kernel.org;
h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
:date:reply-to:from:to:cc:subject:date:message-id:reply-to;
bh=6xnKyEv4OBvotGnyOqTbS4nPA0NPUNoMw8n+LkAwHEU=;
b=XSWtWN7fzQbbzIAWT1B2BF6Rik9aDdNQwqiBQYaglkEYF9/kL4ySWJKtEqxVcU0Q6h
pHwuPqrAlH2dVU2o1GoOkk2E9GmumodNOpx7kAt0sC5LAizstjgCp95Fo9m+hEhOAKS9
J0YmrRRGwrgTrLZYWkhE7AbvXVD51ZaW6H+iL0OjbX2L91abrNhlS4TcU19J8VGra3we
HKX1qpkn0nVmD9hqJqJNIqAUTrYJzuzkeU+dhe2D7vkyR4fN3ShQdAUEMOjFfo1ra313
RTGhtvCLyTQTwUCJtpa7qcLGkIrKjPLQVh2TLxtqk+0kQtrYN5+rKcfgFx8UcdtAhknj
oV9g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20230601; t=1704847184; x=1705451984;
h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
:date:reply-to:x-gm-message-state:from:to:cc:subject:date:message-id
:reply-to;
bh=6xnKyEv4OBvotGnyOqTbS4nPA0NPUNoMw8n+LkAwHEU=;
b=GD/HFCWUYbm91NuoRVzootRLquiyB0K/gW51tozUx01Dt3Mt555xrOY3B9vtQ9Uiiw
2NvrOBCK6UXP1gtyvuN3+0hyeLS0iVX9hbZ7nLhGjrHkUxPQLIUKt5ydpeinZBe4gBAN
flTmYZtfl+Jj+zqz4bfUKh55yrIMWrCOTluMzSnj75St0CFX9DZ4J6zG19fxbdxz9Qe9
tJUJZ5DnNfAIkWVNUf4XxtWKJT8DIX6U6ZjcvxKZVCIksBU6V3sZgupTfnu1exOOLCWG
ZBDd2i1r5CmG+sjbO7XL55kaflRgwZScwVS4uu+g4Ss2vvpU0GsamJZLxQXzD8qdH5ev
ccPg==
X-Gm-Message-State: AOJu0YyudBRb6dAY0X+VaZPYS045wtN/aVEwa2s9KPwdafUc/WJjIan7
mDbjPi2nbk/RQeckPdnARDXORcnyMgFqw0YPZA==
X-Received: from zagreus.c.googlers.com
([fda3:e722:ac3:cc00:7f:e700:c0a8:5c37])
(user=seanjc job=sendgmr) by 2002:a05:6902:1348:b0:dbc:c697:63bd with SMTP id
g8-20020a056902134800b00dbcc69763bdmr83934ybu.0.1704847184802; Tue, 09 Jan
2024 16:39:44 -0800 (PST)
Reply-To: Sean Christopherson <seanjc@google.com>
Date: Tue, 9 Jan 2024 16:39:36 -0800
In-Reply-To: <20240110003938.490206-1-seanjc@google.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
Mime-Version: 1.0
References: <20240110003938.490206-1-seanjc@google.com>
X-Mailer: git-send-email 2.43.0.472.g3155946c3a-goog
Message-ID: <20240110003938.490206-3-seanjc@google.com>
Subject: [PATCH 2/4] KVM: x86: Rely solely on preempted_in_kernel flag for
directed yield
From: Sean Christopherson <seanjc@google.com>
To: Sean Christopherson <seanjc@google.com>,
Paolo Bonzini <pbonzini@redhat.com>
Cc: kvm@vger.kernel.org, linux-kernel@vger.kernel.org,
Like Xu <like.xu.linux@gmail.com>
Content-Type: text/plain; charset="UTF-8"
X-getmail-retrieved-from-mailbox: INBOX
X-GMAIL-THRID: 1787661920197539083
X-GMAIL-MSGID: 1787661920197539083
|
| Series |
KVM: Clean up "preempted in-kernel" logic
|
|
Commit Message
Sean Christopherson
Jan. 10, 2024, 12:39 a.m. UTC
Snapshot preempted_in_kernel using kvm_arch_vcpu_in_kernel() so that the
flag is "accurate" (or rather, consistent and deterministic within KVM)
for guest with protected state, and explicitly use preempted_in_kernel
when checking if a vCPU was preempted in kernel mode instead of bouncing
through kvm_arch_vcpu_in_kernel().
Drop the gnarly logic in kvm_arch_vcpu_in_kernel() that redirects to
preempted_in_kernel if the target vCPU is not the "running", i.e. loaded,
vCPU, as the only reason that code existed was for the directed yield case
where KVM wants to check the CPL of a vCPU that may or may not be loaded
on the current pCPU.
Cc: Like Xu <like.xu.linux@gmail.com>
Signed-off-by: Sean Christopherson <seanjc@google.com>
---
arch/x86/kvm/x86.c | 8 ++------
1 file changed, 2 insertions(+), 6 deletions(-)
Comments
On Tue, Jan 09, 2024 at 04:39:36PM -0800, Sean Christopherson wrote: > Snapshot preempted_in_kernel using kvm_arch_vcpu_in_kernel() so that the > flag is "accurate" (or rather, consistent and deterministic within KVM) > for guest with protected state, and explicitly use preempted_in_kernel > when checking if a vCPU was preempted in kernel mode instead of bouncing > through kvm_arch_vcpu_in_kernel(). > > Drop the gnarly logic in kvm_arch_vcpu_in_kernel() that redirects to > preempted_in_kernel if the target vCPU is not the "running", i.e. loaded, > vCPU, as the only reason that code existed was for the directed yield case > where KVM wants to check the CPL of a vCPU that may or may not be loaded > on the current pCPU. > > Cc: Like Xu <like.xu.linux@gmail.com> > Signed-off-by: Sean Christopherson <seanjc@google.com> > --- > arch/x86/kvm/x86.c | 8 ++------ > 1 file changed, 2 insertions(+), 6 deletions(-) > > diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c > index 415509918c7f..77494f9c8d49 100644 > --- a/arch/x86/kvm/x86.c > +++ b/arch/x86/kvm/x86.c > @@ -5062,8 +5062,7 @@ void kvm_arch_vcpu_put(struct kvm_vcpu *vcpu) > int idx; > > if (vcpu->preempted) { > - if (!vcpu->arch.guest_state_protected) > - vcpu->arch.preempted_in_kernel = !static_call(kvm_x86_get_cpl)(vcpu); > + vcpu->arch.preempted_in_kernel = kvm_arch_vcpu_in_kernel(vcpu); > > /* > * Take the srcu lock as memslots will be accessed to check the gfn > @@ -13093,7 +13092,7 @@ bool kvm_arch_dy_has_pending_interrupt(struct kvm_vcpu *vcpu) > > bool kvm_arch_vcpu_preempted_in_kernel(struct kvm_vcpu *vcpu) > { > - return kvm_arch_vcpu_in_kernel(vcpu); > + return vcpu->arch.preempted_in_kernel; > } > > bool kvm_arch_dy_runnable(struct kvm_vcpu *vcpu) > @@ -13116,9 +13115,6 @@ bool kvm_arch_vcpu_in_kernel(struct kvm_vcpu *vcpu) > if (vcpu->arch.guest_state_protected) > return true; > > - if (vcpu != kvm_get_running_vcpu()) > - return vcpu->arch.preempted_in_kernel; > - Now this function accepts vcpu parameter but can only get information from "current" vcpu loaded on hardware for VMX. I'm not sure whether need "WARN_ON(vcpu != kvm_get_running_vcpu())" here to guard it. i.e. kvm_guest_state() still uses this function (although it did chekcing before). > return static_call(kvm_x86_get_cpl)(vcpu) == 0; > } > > -- > 2.43.0.472.g3155946c3a-goog > >
On Wed, Jan 10, 2024, Yuan Yao wrote: > On Tue, Jan 09, 2024 at 04:39:36PM -0800, Sean Christopherson wrote: > > @@ -13093,7 +13092,7 @@ bool kvm_arch_dy_has_pending_interrupt(struct kvm_vcpu *vcpu) > > > > bool kvm_arch_vcpu_preempted_in_kernel(struct kvm_vcpu *vcpu) > > { > > - return kvm_arch_vcpu_in_kernel(vcpu); > > + return vcpu->arch.preempted_in_kernel; > > } > > > > bool kvm_arch_dy_runnable(struct kvm_vcpu *vcpu) > > @@ -13116,9 +13115,6 @@ bool kvm_arch_vcpu_in_kernel(struct kvm_vcpu *vcpu) > > if (vcpu->arch.guest_state_protected) > > return true; > > > > - if (vcpu != kvm_get_running_vcpu()) > > - return vcpu->arch.preempted_in_kernel; > > - > > Now this function accepts vcpu parameter but can only get information from > "current" vcpu loaded on hardware for VMX. I'm not sure whether need > "WARN_ON(vcpu != kvm_get_running_vcpu())" here to guard it. i.e. > kvm_guest_state() still uses this function (although it did chekcing before). Eh, I don't think it's worth adding a one-off kvm_get_running_vcpu() sanity check. In the vast majority of cases, if VMREAD or VMWRITE is used improperly, the instruction will fail at some point due to the pCPU not having any VMCS loaded. It's really just cross-vCPU checks that could silently do the wrong thing, and those flows are so few and far between that I'm comfortable taking a "just get it right stance". If we want to add sanity checks, I think my vote would be to plumb @vcpu down into vmcs_read{16,32,64,l} and add sanity checks there, probably with some sort of guard so that the sanity checks can be enabled only for debug kernels.
On Wed, Jan 10, 2024 at 09:13:28AM -0800, Sean Christopherson wrote: > On Wed, Jan 10, 2024, Yuan Yao wrote: > > On Tue, Jan 09, 2024 at 04:39:36PM -0800, Sean Christopherson wrote: > > > @@ -13093,7 +13092,7 @@ bool kvm_arch_dy_has_pending_interrupt(struct kvm_vcpu *vcpu) > > > > > > bool kvm_arch_vcpu_preempted_in_kernel(struct kvm_vcpu *vcpu) > > > { > > > - return kvm_arch_vcpu_in_kernel(vcpu); > > > + return vcpu->arch.preempted_in_kernel; > > > } > > > > > > bool kvm_arch_dy_runnable(struct kvm_vcpu *vcpu) > > > @@ -13116,9 +13115,6 @@ bool kvm_arch_vcpu_in_kernel(struct kvm_vcpu *vcpu) > > > if (vcpu->arch.guest_state_protected) > > > return true; > > > > > > - if (vcpu != kvm_get_running_vcpu()) > > > - return vcpu->arch.preempted_in_kernel; > > > - > > > > Now this function accepts vcpu parameter but can only get information from > > "current" vcpu loaded on hardware for VMX. I'm not sure whether need > > "WARN_ON(vcpu != kvm_get_running_vcpu())" here to guard it. i.e. > > kvm_guest_state() still uses this function (although it did chekcing before). > > Eh, I don't think it's worth adding a one-off kvm_get_running_vcpu() sanity check. > In the vast majority of cases, if VMREAD or VMWRITE is used improperly, the > instruction will fail at some point due to the pCPU not having any VMCS loaded. > It's really just cross-vCPU checks that could silently do the wrong thing, and > those flows are so few and far between that I'm comfortable taking a "just get > it right stance". > > If we want to add sanity checks, I think my vote would be to plumb @vcpu down > into vmcs_read{16,32,64,l} and add sanity checks there, probably with some sort > of guard so that the sanity checks can be enabled only for debug kernels. I got your point. Reviewed-by: Yuan Yao <yuan.yao@intel.com>
diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c index 415509918c7f..77494f9c8d49 100644 --- a/arch/x86/kvm/x86.c +++ b/arch/x86/kvm/x86.c @@ -5062,8 +5062,7 @@ void kvm_arch_vcpu_put(struct kvm_vcpu *vcpu) int idx; if (vcpu->preempted) { - if (!vcpu->arch.guest_state_protected) - vcpu->arch.preempted_in_kernel = !static_call(kvm_x86_get_cpl)(vcpu); + vcpu->arch.preempted_in_kernel = kvm_arch_vcpu_in_kernel(vcpu); /* * Take the srcu lock as memslots will be accessed to check the gfn @@ -13093,7 +13092,7 @@ bool kvm_arch_dy_has_pending_interrupt(struct kvm_vcpu *vcpu) bool kvm_arch_vcpu_preempted_in_kernel(struct kvm_vcpu *vcpu) { - return kvm_arch_vcpu_in_kernel(vcpu); + return vcpu->arch.preempted_in_kernel; } bool kvm_arch_dy_runnable(struct kvm_vcpu *vcpu) @@ -13116,9 +13115,6 @@ bool kvm_arch_vcpu_in_kernel(struct kvm_vcpu *vcpu) if (vcpu->arch.guest_state_protected) return true; - if (vcpu != kvm_get_running_vcpu()) - return vcpu->arch.preempted_in_kernel; - return static_call(kvm_x86_get_cpl)(vcpu) == 0; }