Re: [PATCH v3 08/12] KVM: Propagate vcpu explicitly to mark_page_dirty_in_slot()

[PATCH v3 00/12] KVM: x86/xen: Add in-kernel Xen event channel delivery · David Woodhouse <dwmw2@infradead.org> · 2021-11-17
[PATCH v3 03/12] KVM: s390: Use Makefile.kvm for common files · David Woodhouse <dwmw2@infradead.org> · 2021-11-17
[PATCH v3 05/12] KVM: RISC-V: Use Makefile.kvm for common files · David Woodhouse <dwmw2@infradead.org> · 2021-11-17
[PATCH v3 02/12] KVM: Add Makefile.kvm for common files, use it for x86 · David Woodhouse <dwmw2@infradead.org> · 2021-11-17
Re: [PATCH v3 02/12] KVM: Add Makefile.kvm for common files, use it for x86 · Marc Zyngier <maz@kernel.org> · 2021-11-17
[PATCH v3 06/12] KVM: powerpc: Use Makefile.kvm for common files · David Woodhouse <dwmw2@infradead.org> · 2021-11-17
Re: [PATCH v3 06/12] KVM: powerpc: Use Makefile.kvm for common files · Michael Ellerman <mpe@ellerman.id.au> · 2021-11-17
[PATCH v3 10/12] KVM: x86/xen: Maintain valid mapping of Xen shared_info page · David Woodhouse <dwmw2@infradead.org> · 2021-11-17
[PATCH v3 01/12] KVM: Introduce CONFIG_HAVE_KVM_DIRTY_RING · David Woodhouse <dwmw2@infradead.org> · 2021-11-17
[PATCH v3 12/12] KVM: x86: First attempt at converting nested virtual APIC page to gpc · David Woodhouse <dwmw2@infradead.org> · 2021-11-17
[PATCH v3 08/12] KVM: Propagate vcpu explicitly to mark_page_dirty_in_slot() · David Woodhouse <dwmw2@infradead.org> · 2021-11-17
Re: [PATCH v3 08/12] KVM: Propagate vcpu explicitly to mark_page_dirty_in_slot() · Marc Zyngier <maz@kernel.org> · 2021-11-17
Re: [PATCH v3 08/12] KVM: Propagate vcpu explicitly to mark_page_dirty_in_slot() · David Woodhouse <dwmw2@infradead.org> · 2021-11-17
Re: [PATCH v3 08/12] KVM: Propagate vcpu explicitly to mark_page_dirty_in_slot() · David Woodhouse <dwmw2@infradead.org> · 2021-11-17
Re: [PATCH v3 08/12] KVM: Propagate vcpu explicitly to mark_page_dirty_in_slot() · "David Woodhouse" <dwmw2@infradead.org> · 2021-11-17
Re: [PATCH v3 08/12] KVM: Propagate vcpu explicitly to mark_page_dirty_in_slot() · Paolo Bonzini <pbonzini@redhat.com> · 2021-11-18
Re: [PATCH v3 08/12] KVM: Propagate vcpu explicitly to mark_page_dirty_in_slot() · David Woodhouse <dwmw2@infradead.org> · 2021-11-18
Re: [PATCH v3 08/12] KVM: Propagate vcpu explicitly to mark_page_dirty_in_slot() · Sean Christopherson <seanjc@google.com> · 2021-11-18
Re: [PATCH v3 08/12] KVM: Propagate vcpu explicitly to mark_page_dirty_in_slot() · Sean Christopherson <seanjc@google.com> · 2021-11-18
Re: [PATCH v3 08/12] KVM: Propagate vcpu explicitly to mark_page_dirty_in_slot() · David Woodhouse <dwmw2@infradead.org> · 2021-11-18
Re: [PATCH v3 08/12] KVM: Propagate vcpu explicitly to mark_page_dirty_in_slot() · Sean Christopherson <seanjc@google.com> · 2021-11-18
Re: [PATCH v3 08/12] KVM: Propagate vcpu explicitly to mark_page_dirty_in_slot() · David Woodhouse <dwmw2@infradead.org> · 2021-11-19
[PATCH v3 09/12] KVM: Reinstate gfn_to_pfn_cache with invalidation support · David Woodhouse <dwmw2@infradead.org> · 2021-11-17
[PATCH v3 04/12] KVM: mips: Use Makefile.kvm for common files · David Woodhouse <dwmw2@infradead.org> · 2021-11-17
[PATCH v3 11/12] KVM: x86/xen: Add KVM_IRQ_ROUTING_XEN_EVTCHN and event channel delivery · David Woodhouse <dwmw2@infradead.org> · 2021-11-17
[PATCH v3 07/12] KVM: arm64: Use Makefile.kvm for common files · David Woodhouse <dwmw2@infradead.org> · 2021-11-17
Re: [PATCH v3 07/12] KVM: arm64: Use Makefile.kvm for common files · Marc Zyngier <maz@kernel.org> · 2021-11-17

From: David Woodhouse <dwmw2@infradead.org>
Date: 2021-11-18 14:23:41
Also in: kvm, kvm-riscv, kvmarm, linux-arm-kernel, linux-mips, linux-s390

On Thu, 2021-11-18 at 13:04 +0100, Paolo Bonzini wrote:

On 11/17/21 22:09, David Woodhouse wrote:

quoted

  {
-	struct kvm_vcpu *vcpu = kvm_get_running_vcpu();
+	struct kvm_vcpu *running_vcpu = kvm_get_running_vcpu();

+	WARN_ON_ONCE(vcpu && vcpu != running_vcpu);
  	WARN_ON_ONCE(vcpu->kvm != kvm);

Ah, that one needs to be changed to check running_vcpu instead. Or this
needs to go first:

I think I prefer making the vCPU a required argument. If anyone's going to
pull a vCPU pointer out of their posterior, let the caller do it.

I understand that feeling, but still using the running vCPU is by far 
the common case, and it's not worth adding a new function parameter to 
all call sites.

What about using a separate function, possibly __-prefixed, for the case 
where you have a very specific vCPU?

We could certainly do a kvm_vcpu_mark_page_dirty_in_slot() and reduce
the collateral damage. I think this patch wouldn't need to touch
anything outside virt/kvm/ if we did that.

But bikeshedding aside, it occurs to me that I have a more substantial
concern about this approach — are we even *allowed* to touch the dirty
ring of another vCPU? It seems to be based on the assumption that it's
entirely a per-cpu structure on the kernel side. Wouldn't we need a
spinlock in kvm_dirty_ring_push() at the very least?

At this point I'm somewhat tempted to remove the mark_page_dirty() call
from gfn_to_pfn_cache_invalidate_start() and move it to the tail of 
kvm_gfn_to_pfn_cache_refresh() instead, where it unpins and memunmaps
the page. (We'd still tell the *kernel* by calling kvm_set_pfn_dirty()
immediately in the invalidation, just defer the KVM mark_page_dirty()
to be done in the context of an actual vCPU.)

If I do that, I can drop this 'propagate vcpu' patch completely.

I'm already happy enough that I'll fix the Xen shared_info page by
*never* bothering to dirty_log for it, and I can wash my hands of that
problem.... if I stop typing now. But...

That leaves the one in TDP MMU handle_changed_spte_dirty_log() which
AFAICT can trigger the same crash seen by butt3rflyh4ck — can't that
happen from a thread where kvm_get_running_vcpu() is NULL too? For that
one I'm not sure.

Attachments

smime.p7s [application/pkcs7-signature] 5174 bytes

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help