Re: [PATCH v10 3/9] KVM: Extend the memslot to support fd-based private memory

[PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Chao Peng <hidden> · 2022-12-02
[PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Chao Peng <hidden> · 2022-12-02
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Fuad Tabba <hidden> · 2022-12-06
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Chao Peng <hidden> · 2022-12-07
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Huang, Kai <hidden> · 2022-12-13
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Chao Peng <hidden> · 2022-12-19
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Huang, Kai <hidden> · 2022-12-19
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Chao Peng <hidden> · 2022-12-20
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Huang, Kai <hidden> · 2022-12-20
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Chao Peng <hidden> · 2022-12-21
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Huang, Kai <hidden> · 2022-12-22
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Chao Peng <hidden> · 2022-12-23
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Vlastimil Babka <hidden> · 2023-01-23
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Kirill A. Shutemov <hidden> · 2023-01-23
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Vlastimil Babka <hidden> · 2023-02-13
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Huang, Kai <hidden> · 2023-01-23
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Sean Christopherson <seanjc@google.com> · 2023-01-23
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Vlastimil Babka <hidden> · 2023-01-24
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Sean Christopherson <seanjc@google.com> · 2022-12-22
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Huang, Kai <hidden> · 2022-12-23
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Chao Peng <hidden> · 2022-12-23
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Kirill A. Shutemov <hidden> · 2023-01-23
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Vlastimil Babka <hidden> · 2023-02-13
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Michael Roth <hidden> · 2023-02-13
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Sean Christopherson <seanjc@google.com> · 2023-01-13
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Chao Peng <hidden> · 2023-01-17
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Sean Christopherson <seanjc@google.com> · 2023-01-17
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Chao Peng <hidden> · 2023-01-18
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Isaku Yamahata <hidden> · 2023-01-18
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Alexey Kardashevskiy <hidden> · 2023-02-22
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Chao Peng <hidden> · 2023-02-24
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Nikunj A. Dadhania <hidden> · 2023-02-16
Re: [PATCH v10 1/9] mm: Introduce memfd_restricted system call to create restricted user memory · Michael Roth <hidden> · 2023-03-20
[PATCH v10 2/9] KVM: Introduce per-page memory attributes · Chao Peng <hidden> · 2022-12-02
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Fabiano Rosas <hidden> · 2022-12-06
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Chao Peng <hidden> · 2022-12-07
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Fuad Tabba <hidden> · 2022-12-06
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Chao Peng <hidden> · 2022-12-07
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Borislav Petkov <bp@alien8.de> · 2022-12-16
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Chao Peng <hidden> · 2022-12-19
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Borislav Petkov <bp@alien8.de> · 2022-12-19
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Chao Peng <hidden> · 2022-12-20
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Chenyi Qiang <hidden> · 2022-12-28
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Chao Peng <hidden> · 2023-01-03
RE: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Wang, Wei W <hidden> · 2023-01-03
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Sean Christopherson <seanjc@google.com> · 2023-01-03
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Chao Peng <hidden> · 2023-01-05
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Sean Christopherson <seanjc@google.com> · 2023-01-13
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Binbin Wu <hidden> · 2023-01-17
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Chao Peng <hidden> · 2023-01-17
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Sean Christopherson <seanjc@google.com> · 2023-01-17
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Isaku Yamahata <hidden> · 2023-02-09
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Sean Christopherson <seanjc@google.com> · 2023-02-10
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Isaku Yamahata <hidden> · 2023-02-13
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Sean Christopherson <seanjc@google.com> · 2023-02-14
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Nicolas Saenz Julienne <hidden> · 2023-05-19
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Sean Christopherson <seanjc@google.com> · 2023-05-19
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Nicolas Saenz Julienne <hidden> · 2023-05-19
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Sean Christopherson <seanjc@google.com> · 2023-05-19
Re: [PATCH v10 2/9] KVM: Introduce per-page memory attributes · Nicolas Saenz Julienne <hidden> · 2023-05-23
[PATCH v10 4/9] KVM: Add KVM_EXIT_MEMORY_FAULT exit · Chao Peng <hidden> · 2022-12-02
Re: [PATCH v10 4/9] KVM: Add KVM_EXIT_MEMORY_FAULT exit · Fuad Tabba <hidden> · 2022-12-06
Re: [PATCH v10 4/9] KVM: Add KVM_EXIT_MEMORY_FAULT exit · Chao Peng <hidden> · 2022-12-07
Re: [PATCH v10 4/9] KVM: Add KVM_EXIT_MEMORY_FAULT exit · Sean Christopherson <seanjc@google.com> · 2023-01-13
[PATCH v10 3/9] KVM: Extend the memslot to support fd-based private memory · Chao Peng <hidden> · 2022-12-02
Re: [PATCH v10 3/9] KVM: Extend the memslot to support fd-based private memory · Fuad Tabba <hidden> · 2022-12-05
Re: [PATCH v10 3/9] KVM: Extend the memslot to support fd-based private memory · Chao Peng <hidden> · 2022-12-06
Re: [PATCH v10 3/9] KVM: Extend the memslot to support fd-based private memory · Fuad Tabba <hidden> · 2022-12-06
Re: [PATCH v10 3/9] KVM: Extend the memslot to support fd-based private memory · Chao Peng <hidden> · 2022-12-07
Re: [PATCH v10 3/9] KVM: Extend the memslot to support fd-based private memory · Xiaoyao Li <hidden> · 2022-12-08
Re: [PATCH v10 3/9] KVM: Extend the memslot to support fd-based private memory · Chao Peng <hidden> · 2022-12-08
Re: [PATCH v10 3/9] KVM: Extend the memslot to support fd-based private memory · Xiaoyao Li <hidden> · 2022-12-13
Re: [PATCH v10 3/9] KVM: Extend the memslot to support fd-based private memory · Chao Peng <hidden> · 2022-12-19
Re: [PATCH v10 3/9] KVM: Extend the memslot to support fd-based private memory · Borislav Petkov <bp@alien8.de> · 2022-12-19
Re: [PATCH v10 3/9] KVM: Extend the memslot to support fd-based private memory · Chao Peng <hidden> · 2022-12-20
Re: [PATCH v10 3/9] KVM: Extend the memslot to support fd-based private memory · Borislav Petkov <bp@alien8.de> · 2022-12-20
Re: [PATCH v10 3/9] KVM: Extend the memslot to support fd-based private memory · Chao Peng <hidden> · 2022-12-21
Re: [PATCH v10 3/9] KVM: Extend the memslot to support fd-based private memory · Jarkko Sakkinen <jarkko@kernel.org> · 2023-01-05
Re: [PATCH v10 3/9] KVM: Extend the memslot to support fd-based private memory · Chao Peng <hidden> · 2023-01-06
Re: [PATCH v10 3/9] KVM: Extend the memslot to support fd-based private memory · Sean Christopherson <seanjc@google.com> · 2023-01-09
Re: [PATCH v10 3/9] KVM: Extend the memslot to support fd-based private memory · Chao Peng <hidden> · 2023-01-10
Re: [PATCH v10 3/9] KVM: Extend the memslot to support fd-based private memory · Vishal Annapurve <hidden> · 2023-01-10
Re: [PATCH v10 3/9] KVM: Extend the memslot to support fd-based private memory · Sean Christopherson <seanjc@google.com> · 2023-01-13
Re: [PATCH v10 3/9] KVM: Extend the memslot to support fd-based private memory · Chao Peng <hidden> · 2023-01-17
Re: [PATCH v10 3/9] KVM: Extend the memslot to support fd-based private memory · Jarkko Sakkinen <jarkko@kernel.org> · 2023-01-20
Re: [PATCH v10 3/9] KVM: Extend the memslot to support fd-based private memory · Jarkko Sakkinen <jarkko@kernel.org> · 2023-01-20
[PATCH v10 5/9] KVM: Use gfn instead of hva for mmu_notifier_retry · Chao Peng <hidden> · 2022-12-02
Re: [PATCH v10 5/9] KVM: Use gfn instead of hva for mmu_notifier_retry · Fuad Tabba <hidden> · 2022-12-05
Re: [PATCH v10 5/9] KVM: Use gfn instead of hva for mmu_notifier_retry · Chao Peng <hidden> · 2022-12-06
Re: [PATCH v10 5/9] KVM: Use gfn instead of hva for mmu_notifier_retry · Fuad Tabba <hidden> · 2022-12-06
Re: [PATCH v10 5/9] KVM: Use gfn instead of hva for mmu_notifier_retry · Chao Peng <hidden> · 2022-12-09
Re: [PATCH v10 5/9] KVM: Use gfn instead of hva for mmu_notifier_retry · Isaku Yamahata <hidden> · 2022-12-07
Re: [PATCH v10 5/9] KVM: Use gfn instead of hva for mmu_notifier_retry · Chao Peng <hidden> · 2022-12-07
[PATCH v10 6/9] KVM: Unmap existing mappings when change the memory attributes · Chao Peng <hidden> · 2022-12-02
Re: [PATCH v10 6/9] KVM: Unmap existing mappings when change the memory attributes · Yuan Yao <hidden> · 2022-12-07
Re: [PATCH v10 6/9] KVM: Unmap existing mappings when change the memory attributes · Chao Peng <hidden> · 2022-12-08
Re: [PATCH v10 6/9] KVM: Unmap existing mappings when change the memory attributes · Yuan Yao <hidden> · 2022-12-09
Re: [PATCH v10 6/9] KVM: Unmap existing mappings when change the memory attributes · Fuad Tabba <hidden> · 2022-12-07
Re: [PATCH v10 6/9] KVM: Unmap existing mappings when change the memory attributes · Chao Peng <hidden> · 2022-12-08
Re: [PATCH v10 6/9] KVM: Unmap existing mappings when change the memory attributes · Fuad Tabba <hidden> · 2022-12-09
Re: [PATCH v10 6/9] KVM: Unmap existing mappings when change the memory attributes · Chao Peng <hidden> · 2022-12-12
Re: [PATCH v10 6/9] KVM: Unmap existing mappings when change the memory attributes · Huang, Kai <hidden> · 2022-12-13
Re: [PATCH v10 6/9] KVM: Unmap existing mappings when change the memory attributes · Chao Peng <hidden> · 2022-12-19
Re: [PATCH v10 6/9] KVM: Unmap existing mappings when change the memory attributes · Sean Christopherson <seanjc@google.com> · 2023-01-13
[PATCH v10 7/9] KVM: Update lpage info when private/shared memory are mixed · Chao Peng <hidden> · 2022-12-02
Re: [PATCH v10 7/9] KVM: Update lpage info when private/shared memory are mixed · Isaku Yamahata <hidden> · 2022-12-05
Re: [PATCH v10 7/9] KVM: Update lpage info when private/shared memory are mixed · Chao Peng <hidden> · 2022-12-06
Re: [PATCH v10 7/9] KVM: Update lpage info when private/shared memory are mixed · Isaku Yamahata <hidden> · 2022-12-07
Re: [PATCH v10 7/9] KVM: Update lpage info when private/shared memory are mixed · Chao Peng <hidden> · 2022-12-08
Re: [PATCH v10 7/9] KVM: Update lpage info when private/shared memory are mixed · Sean Christopherson <seanjc@google.com> · 2023-01-13
Re: [PATCH v10 7/9] KVM: Update lpage info when private/shared memory are mixed · Sean Christopherson <seanjc@google.com> · 2023-01-13
Re: [PATCH v10 7/9] KVM: Update lpage info when private/shared memory are mixed · Chao Peng <hidden> · 2023-01-28
[PATCH v10 8/9] KVM: Handle page fault for private memory · Chao Peng <hidden> · 2022-12-02
Re: [PATCH v10 8/9] KVM: Handle page fault for private memory · Yuan Yao <hidden> · 2022-12-08
Re: [PATCH v10 8/9] KVM: Handle page fault for private memory · Chao Peng <hidden> · 2022-12-08
Re: [PATCH v10 8/9] KVM: Handle page fault for private memory · Yuan Yao <hidden> · 2022-12-09
Re: [PATCH v10 8/9] KVM: Handle page fault for private memory · Fuad Tabba <hidden> · 2022-12-09
Re: [PATCH v10 8/9] KVM: Handle page fault for private memory · Chao Peng <hidden> · 2022-12-12
Re: [PATCH v10 8/9] KVM: Handle page fault for private memory · Sean Christopherson <seanjc@google.com> · 2023-01-13
[PATCH v10 9/9] KVM: Enable and expose KVM_MEM_PRIVATE · Chao Peng <hidden> · 2022-12-02
Re: [PATCH v10 9/9] KVM: Enable and expose KVM_MEM_PRIVATE · Fuad Tabba <hidden> · 2022-12-09
Re: [PATCH v10 9/9] KVM: Enable and expose KVM_MEM_PRIVATE · Vishal Annapurve <hidden> · 2023-01-05
Re: [PATCH v10 9/9] KVM: Enable and expose KVM_MEM_PRIVATE · Chao Peng <hidden> · 2023-01-06
Re: [PATCH v10 9/9] KVM: Enable and expose KVM_MEM_PRIVATE · Sean Christopherson <seanjc@google.com> · 2023-01-14
Re: [PATCH v10 9/9] KVM: Enable and expose KVM_MEM_PRIVATE · Chao Peng <hidden> · 2023-01-17
Re: [PATCH v10 9/9] KVM: Enable and expose KVM_MEM_PRIVATE · Sean Christopherson <seanjc@google.com> · 2023-01-17
Re: [PATCH v10 9/9] KVM: Enable and expose KVM_MEM_PRIVATE · Chao Peng <hidden> · 2023-01-18
Re: [PATCH v10 9/9] KVM: Enable and expose KVM_MEM_PRIVATE · Chao Peng <hidden> · 2023-01-28
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Sean Christopherson <seanjc@google.com> · 2023-01-14
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Kirill A. Shutemov <hidden> · 2023-01-16
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Chao Peng <hidden> · 2023-01-17
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Fuad Tabba <hidden> · 2023-01-17
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Isaku Yamahata <hidden> · 2023-01-19
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Sean Christopherson <seanjc@google.com> · 2023-01-19
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Isaku Yamahata <hidden> · 2023-01-19
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Sean Christopherson <seanjc@google.com> · 2023-01-24
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Isaku Yamahata <hidden> · 2023-02-08
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Michael Roth <hidden> · 2023-02-13
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Chao Peng <hidden> · 2023-02-21
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Michael Roth <hidden> · 2023-03-23
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Chao Peng <hidden> · 2023-03-24
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Sean Christopherson <seanjc@google.com> · 2023-04-12
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Chao Peng <hidden> · 2023-04-17
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Sean Christopherson <seanjc@google.com> · 2023-04-17
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Liam Merwick <hidden> · 2023-01-24
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Sean Christopherson <seanjc@google.com> · 2023-01-25
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Kirill A. Shutemov <hidden> · 2023-01-25
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Liam Merwick <hidden> · 2023-01-25
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Sean Christopherson <seanjc@google.com> · 2023-04-13
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Kirill A. Shutemov <hidden> · 2023-04-13
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Mike Rapoport <rppt@kernel.org> · 2023-02-16
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · David Hildenbrand <hidden> · 2023-02-16
Re: [PATCH v10 0/9] KVM: mm: fd-based approach for supporting KVM · Sean Christopherson <seanjc@google.com> · 2023-02-22

From: Chao Peng <hidden>
Date: 2023-01-06 09:46:36
Also in: kvm, linux-arch, linux-doc, linux-fsdevel, linux-mm, lkml, qemu-devel

On Thu, Jan 05, 2023 at 11:23:01AM +0000, Jarkko Sakkinen wrote:

On Fri, Dec 02, 2022 at 02:13:41PM +0800, Chao Peng wrote:

quoted

In memory encryption usage, guest memory may be encrypted with special
key and can be accessed only by the guest itself. We call such memory
private memory. It's valueless and sometimes can cause problem to allow
userspace to access guest private memory. This new KVM memslot extension
allows guest private memory being provided through a restrictedmem
backed file descriptor(fd) and userspace is restricted to access the
bookmarked memory in the fd.

This new extension, indicated by the new flag KVM_MEM_PRIVATE, adds two
additional KVM memslot fields restricted_fd/restricted_offset to allow
userspace to instruct KVM to provide guest memory through restricted_fd.
'guest_phys_addr' is mapped at the restricted_offset of restricted_fd
and the size is 'memory_size'.

The extended memslot can still have the userspace_addr(hva). When use, a
single memslot can maintain both private memory through restricted_fd
and shared memory through userspace_addr. Whether the private or shared
part is visible to guest is maintained by other KVM code.

A restrictedmem_notifier field is also added to the memslot structure to
allow the restricted_fd's backing store to notify KVM the memory change,
KVM then can invalidate its page table entries or handle memory errors.

Together with the change, a new config HAVE_KVM_RESTRICTED_MEM is added
and right now it is selected on X86_64 only.

To make future maintenance easy, internally use a binary compatible
alias struct kvm_user_mem_region to handle both the normal and the
'_ext' variants.

Feels bit hacky IMHO, and more like a completely new feature than
an extension.

Why not just add a new ioctl? The commit message does not address
the most essential design here.

Yes, people can always choose to add a new ioctl for this kind of change
and the balance point here is we want to also avoid 'too many ioctls' if
the functionalities are similar.  The '_ext' variant reuses all the
existing fields in the 'normal' variant and most importantly KVM
internally can reuse most of the code. I certainly can add some words in
the commit message to explain this design choice.

Thanks,
Chao

BR, Jarkko

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help