From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from mgamail.intel.com (mgamail.intel.com [192.198.163.12])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 17D4425779;
	Tue, 16 Jul 2024 22:25:53 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=192.198.163.12
ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1721168756; cv=none; b=H+I+8xgK0Tjc9zh+Vr57370pgghzFBAgdlPZOGoD3FjQPWxhwXGXRhigHGoF+iphW2mQdQxTujWPV3h0Choi3+zzavo4G0Ea/msXfTA2oPgS2FKFQOjJnmRzw26eemZurx6keEl3E13ncreg9TvSPkY2j7TgLLr3fmDML46Vxv0=
ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1721168756; c=relaxed/simple;
	bh=7F4hgKgITRECAh9N68qhNLIBwGwLeiknvIwbYE7RkJA=;
	h=Date:From:To:Cc:Subject:Message-ID:References:MIME-Version:
	 Content-Type:Content-Disposition:In-Reply-To; b=GT72j0qb9zdp1/oc16cE3qD8dTxu/HDcNC36kLUXdf/aJjx3dz0z6AbguOAb2wzVBpSOQP3Kw9ghO60/BnG7jx+4siE6lo8Bh59g4oEfX2j704oLqbgWJCa3x7MRxEYaXmdIg/cNpcekn3GIgl6ei84FuDWwlXFFALwSxBsAoJ4=
ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=intel.com; spf=pass smtp.mailfrom=intel.com; dkim=pass (2048-bit key) header.d=intel.com header.i=@intel.com header.b=mf98ulgi; arc=none smtp.client-ip=192.198.163.12
Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=intel.com
Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=intel.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=intel.com header.i=@intel.com header.b="mf98ulgi"
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple;
  d=intel.com; i=@intel.com; q=dns/txt; s=Intel;
  t=1721168754; x=1752704754;
  h=date:from:to:cc:subject:message-id:references:
   mime-version:in-reply-to;
  bh=7F4hgKgITRECAh9N68qhNLIBwGwLeiknvIwbYE7RkJA=;
  b=mf98ulgiSdIlO/0PdvOdCu+QC86XFTJwc7kFJXx0C8ekr6pQ7gs18hUu
   aetiPh6eCsTUQ7zn34AaShX6ZYnjaq4gzUE7avSHFkwugm/oI3ut6KmuA
   wYwB6GHrQ7mWGS6k7QxKTewQEq8A1+9Rk8zbf19egmUDWElBAWWThYb8I
   wcT1YcI2tVO5F3m8IY1UqmLnJxa+dRSB6WmPjNSZfMBjplvycr0u9mlLC
   XCTwShS0OHc9EPnvGyq1bx7N1oy/KsjEF+N7lS3md/hcF36UG3aXCAVNR
   4OuWIkthm1I5aJ+GsrVSEUSp32J3FhFqiQUFJQx4LJ0tz0IGKib9jcleH
   g==;
X-CSE-ConnectionGUID: ZOovikoTSNK/pcZ7luyFHA==
X-CSE-MsgGUID: RaaG5u4pSbiGdMdGlqXzmA==
X-IronPort-AV: E=McAfee;i="6700,10204,11135"; a="22505719"
X-IronPort-AV: E=Sophos;i="6.09,212,1716274800"; 
   d="scan'208";a="22505719"
Received: from fmviesa009.fm.intel.com ([10.60.135.149])
  by fmvoesa106.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 16 Jul 2024 15:25:53 -0700
X-CSE-ConnectionGUID: RW2tu2JsTN28ByPedFOkBw==
X-CSE-MsgGUID: pWg9/OshT9K33GUACaeKFA==
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="6.09,212,1716274800"; 
   d="scan'208";a="50110083"
Received: from ls.sc.intel.com (HELO localhost) ([172.25.112.54])
  by fmviesa009-auth.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 16 Jul 2024 15:25:14 -0700
Date: Tue, 16 Jul 2024 15:25:14 -0700
From: Isaku Yamahata <isaku.yamahata@intel.com>
To: Binbin Wu <binbin.wu@linux.intel.com>
Cc: isaku.yamahata@intel.com, kvm@vger.kernel.org,
	linux-kernel@vger.kernel.org, isaku.yamahata@gmail.com,
	Paolo Bonzini <pbonzini@redhat.com>, erdemaktas@google.com,
	Sean Christopherson <seanjc@google.com>,
	Sagi Shahar <sagis@google.com>, Kai Huang <kai.huang@intel.com>,
	chen.bo@intel.com, hang.yuan@intel.com, tina.zhang@intel.com,
	Sean Christopherson <sean.j.christopherson@intel.com>,
	Rick Edgecombe <rick.p.edgecombe@intel.com>,
	Reinette Chatre <reinette.chatre@intel.com>
Subject: Re: [PATCH v19 110/130] KVM: TDX: Handle TDX PV MMIO hypercall
Message-ID: <20240716222514.GD1900928@ls.amr.corp.intel.com>
References: <cover.1708933498.git.isaku.yamahata@intel.com>
 <a4421e0f2eafc17b4703c920936e32489d2382a3.1708933498.git.isaku.yamahata@intel.com>
 <560f3796-5a41-49fb-be6e-558bbe582996@linux.intel.com>
Precedence: bulk
X-Mailing-List: kvm@vger.kernel.org
List-Id: <kvm.vger.kernel.org>
List-Subscribe: <mailto:kvm+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:kvm+unsubscribe@vger.kernel.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
In-Reply-To: <560f3796-5a41-49fb-be6e-558bbe582996@linux.intel.com>

On Tue, Jun 25, 2024 at 02:54:09PM +0800,
Binbin Wu <binbin.wu@linux.intel.com> wrote:

> 
> 
> On 2/26/2024 4:26 PM, isaku.yamahata@intel.com wrote:
> > From: Sean Christopherson <sean.j.christopherson@intel.com>
> > 
> > Export kvm_io_bus_read and kvm_mmio tracepoint and wire up TDX PV MMIO
> > hypercall to the KVM backend functions.
> > 
> > kvm_io_bus_read/write() searches KVM device emulated in kernel of the given
> > MMIO address and emulates the MMIO.  As TDX PV MMIO also needs it, export
> > kvm_io_bus_read().  kvm_io_bus_write() is already exported.  TDX PV MMIO
> > emulates some of MMIO itself.  To add trace point consistently with x86
> > kvm, export kvm_mmio tracepoint.
> > 
> > Signed-off-by: Sean Christopherson <sean.j.christopherson@intel.com>
> > Signed-off-by: Isaku Yamahata <isaku.yamahata@intel.com>
> > Reviewed-by: Paolo Bonzini <pbonzini@redhat.com>
> > ---
> >   arch/x86/kvm/vmx/tdx.c | 114 +++++++++++++++++++++++++++++++++++++++++
> >   arch/x86/kvm/x86.c     |   1 +
> >   virt/kvm/kvm_main.c    |   2 +
> >   3 files changed, 117 insertions(+)
> > 
> > diff --git a/arch/x86/kvm/vmx/tdx.c b/arch/x86/kvm/vmx/tdx.c
> > index 55fc6cc6c816..389bb95d2af0 100644
> > --- a/arch/x86/kvm/vmx/tdx.c
> > +++ b/arch/x86/kvm/vmx/tdx.c
> > @@ -1217,6 +1217,118 @@ static int tdx_emulate_io(struct kvm_vcpu *vcpu)
> >   	return ret;
> >   }
> > +static int tdx_complete_mmio(struct kvm_vcpu *vcpu)
> > +{
> > +	unsigned long val = 0;
> > +	gpa_t gpa;
> > +	int size;
> > +
> > +	KVM_BUG_ON(vcpu->mmio_needed != 1, vcpu->kvm);
> > +	vcpu->mmio_needed = 0;
> mmio_needed is used by instruction emulator to setup the complete callback.
> Since TDX handle MMIO in a PV way, mmio_needed is not needed here.

Ok, we don't need to update mmio_needed.


> > +
> > +	if (!vcpu->mmio_is_write) {
> It's also needed by instruction emulator, we can use
> vcpu->run->mmio.is_write instead.

No because vcpu->run->mmio is shared with user space.  KVM need to stash
it independently.


> 
> > +		gpa = vcpu->mmio_fragments[0].gpa;
> > +		size = vcpu->mmio_fragments[0].len;
> 
> Since MMIO cross page boundary is not allowed according to the input checks
> from TDVMCALL, these mmio_fragments[] is not needed.
> Just use vcpu->run->mmio.phys_addr and vcpu->run->mmio.len?

ditto.


> > +
> > +		memcpy(&val, vcpu->run->mmio.data, size);
> > +		tdvmcall_set_return_val(vcpu, val);
> > +		trace_kvm_mmio(KVM_TRACE_MMIO_READ, size, gpa, &val);
> > +	}
> 
> Tracepoint for KVM_TRACE_MMIO_WRITE is missing when it is handled in
> userspace.

tdx_mmio_write() has it before existing to the user space.  It matches with
how write_mmio() behaves in x86.c.

Hmm, to match with other code, we should remove
trace_kvm_mmio(KVM_TRACE_MMIO_READ) and keep KVM_TRACE_MMIO_READ_UNSATISFIED
in tdx_emulate_mmio().  That's how read_prepare() and read_exit_mmio() behaves.

For MMIO read
- When kernel can handle the MMIO, KVM_TRACE_MMIO_READ with data.
- When exiting to the user space, KVM_TRACE_MMIO_READ_UNSATISFIED before
  the exit.  No trace after the user space handled the MMIO.

For MMIO write
- KVM_TRACE_MMIO_WRITE before handling it.


> Also, the return code is only set when the emulation is done in kernel, but
> not set when it's handled in userspace.
> 
> > +	return 1;
> > +}
> 
> How about the fixup as following:
> 
> @@ -1173,19 +1173,18 @@ static int tdx_emulate_io(struct kvm_vcpu *vcpu)
> static int tdx_complete_mmio(struct kvm_vcpu *vcpu) { unsigned long val = 0;
> - gpa_t gpa; - int size; - - vcpu->mmio_needed = 0; - - if
> (!vcpu->mmio_is_write) { - gpa = vcpu->mmio_fragments[0].gpa; - size =
> vcpu->mmio_fragments[0].len; + gpa_t gpa = vcpu->run->mmio.phys_addr; + int
> size = vcpu->run->mmio.len; + if (vcpu->run->mmio.is_write) { +
> trace_kvm_mmio(KVM_TRACE_MMIO_WRITE, size, gpa, &val); + } else {
> memcpy(&val, vcpu->run->mmio.data, size); tdvmcall_set_return_val(vcpu,
> val); trace_kvm_mmio(KVM_TRACE_MMIO_READ, size, gpa, &val); } + +
> tdvmcall_set_return_code(vcpu, TDVMCALL_SUCCESS); return 1; }
> 
> 
> 
> > +
> > +static inline int tdx_mmio_write(struct kvm_vcpu *vcpu, gpa_t gpa, int size,
> > +				 unsigned long val)
> > +{
> > +	if (kvm_iodevice_write(vcpu, &vcpu->arch.apic->dev, gpa, size, &val) &&
> > +	    kvm_io_bus_write(vcpu, KVM_MMIO_BUS, gpa, size, &val))
> > +		return -EOPNOTSUPP;
> > +
> > +	trace_kvm_mmio(KVM_TRACE_MMIO_WRITE, size, gpa, &val);
> > +	return 0;
> > +}
> > +
> > +static inline int tdx_mmio_read(struct kvm_vcpu *vcpu, gpa_t gpa, int size)
> > +{
> > +	unsigned long val;
> > +
> > +	if (kvm_iodevice_read(vcpu, &vcpu->arch.apic->dev, gpa, size, &val) &&
> > +	    kvm_io_bus_read(vcpu, KVM_MMIO_BUS, gpa, size, &val))
> > +		return -EOPNOTSUPP;
> > +
> > +	tdvmcall_set_return_val(vcpu, val);
> > +	trace_kvm_mmio(KVM_TRACE_MMIO_READ, size, gpa, &val);
> > +	return 0;
> > +}
> > +
> > +static int tdx_emulate_mmio(struct kvm_vcpu *vcpu)
> > +{
> > +	struct kvm_memory_slot *slot;
> > +	int size, write, r;
> > +	unsigned long val;
> > +	gpa_t gpa;
> > +
> > +	KVM_BUG_ON(vcpu->mmio_needed, vcpu->kvm);
> > +
> [...]
> > +
> > +	/* Request the device emulation to userspace device model. */
> > +	vcpu->mmio_needed = 1;
> > +	vcpu->mmio_is_write = write;
> Then they can be dropped.

We may drop mmio_needed. mmio_is_write is needed as above.



> > +	vcpu->arch.complete_userspace_io = tdx_complete_mmio;
> > +
> > +	vcpu->run->mmio.phys_addr = gpa;
> > +	vcpu->run->mmio.len = size;
> > +	vcpu->run->mmio.is_write = write;
> > +	vcpu->run->exit_reason = KVM_EXIT_MMIO;
> > +
> > +	if (write) {
> > +		memcpy(vcpu->run->mmio.data, &val, size);
> > +	} else {
> > +		vcpu->mmio_fragments[0].gpa = gpa;
> > +		vcpu->mmio_fragments[0].len = size;
> These two lines can be dropped as well.

ditto.
-- 
Isaku Yamahata <isaku.yamahata@intel.com>