From: Borislav Petkov <bp@alien8.de>
To: Ashish Kalra <ashish.kalra@amd.com>
Cc: Paolo Bonzini <pbonzini@redhat.com>,
seanjc@google.com, tglx@linutronix.de, mingo@redhat.com,
hpa@zytor.com, joro@8bytes.org, thomas.lendacky@amd.com,
x86@kernel.org, kvm@vger.kernel.org,
linux-kernel@vger.kernel.org, srutherford@google.com,
venu.busireddy@oracle.com, brijesh.singh@amd.com
Subject: Re: [PATCH v2 2/4] mm: x86: Invoke hypercall when page encryption status is changed
Date: Fri, 14 May 2021 11:34:32 +0200 [thread overview]
Message-ID: <YJ5EKPLA9WluUdFG@zn.tnic> (raw)
In-Reply-To: <20210514090523.GA21627@ashkalra_ubuntu_server>
On Fri, May 14, 2021 at 09:05:23AM +0000, Ashish Kalra wrote:
> Ideally we should fail/stop migration even if a single guest page
> encryption status cannot be notified and that should be the way to
> proceed in this case, the guest kernel should notify the source
> userspace VMM to block/stop migration in this case.
Yap, and what I'm trying to point out here is that if the low level
machinery fails for whatever reason and it cannot recover, we should
propagate that error up the chain so that the user is aware as to why it
failed.
WARN is a good first start but in some configurations those splats don't
even get shown as people don't look at dmesg, etc.
And I think it is very important to propagate those errors properly
because there's a *lot* of moving parts involved in a guest migration
and you have encrypted memory which makes debugging this probably even
harder, etc, etc.
I hope this makes more sense.
> From a practical side, i do see Qemu's migrate_add_blocker() interface
> but that looks to be a static interface and also i don't think it will
> force stop an ongoing migration, is there an existing mechanism
> to inform userspace VMM from kernel about blocking/stopping migration ?
Hmm, so __set_memory_enc_dec() which calls
notify_addr_enc_status_changed() is called by the guest, right, when it
starts migrating.
Can an error value from it be propagated up the callchain so it can be
turned into an error messsage for the guest owner to see?
(I might be way off base here as I have no clue how the whole migration
machinery is kicked into gear...)
Thx.
--
Regards/Gruss,
Boris.
https://people.kernel.org/tglx/notes-about-netiquette
next prev parent reply other threads:[~2021-05-14 9:34 UTC|newest]
Thread overview: 33+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-04-23 15:57 [PATCH v2 0/4] Add guest support for SEV live migration Ashish Kalra
2021-04-23 15:58 ` [PATCH v2 1/4] KVM: x86: invert KVM_HYPERCALL to default to VMMCALL Ashish Kalra
2021-04-23 16:31 ` Jim Mattson
2021-04-23 17:44 ` Sean Christopherson
2021-04-23 15:58 ` [PATCH v2 2/4] mm: x86: Invoke hypercall when page encryption status is changed Ashish Kalra
2021-05-12 13:15 ` Borislav Petkov
2021-05-12 15:51 ` Sean Christopherson
2021-05-12 16:23 ` Borislav Petkov
2021-05-13 6:57 ` Ashish Kalra
2021-05-13 8:40 ` Paolo Bonzini
2021-05-13 13:49 ` Tom Lendacky
2021-05-13 4:34 ` Ashish Kalra
2021-05-14 7:33 ` Borislav Petkov
2021-05-14 8:03 ` Paolo Bonzini
2021-05-14 9:05 ` Ashish Kalra
2021-05-14 9:34 ` Borislav Petkov [this message]
2021-05-14 10:05 ` Ashish Kalra
2021-05-14 10:38 ` Borislav Petkov
2021-05-18 2:01 ` Steve Rutherford
2021-05-19 12:06 ` Ashish Kalra
2021-05-19 13:44 ` Paolo Bonzini
2021-05-14 9:57 ` Paolo Bonzini
2021-05-14 9:24 ` Borislav Petkov
2021-05-14 9:33 ` Ashish Kalra
2021-05-19 23:29 ` Andy Lutomirski
2021-05-19 23:44 ` Sean Christopherson
2021-04-23 15:59 ` [PATCH v2 3/4] EFI: Introduce the new AMD Memory Encryption GUID Ashish Kalra
2021-05-12 13:19 ` Borislav Petkov
2021-05-12 14:53 ` Ard Biesheuvel
2021-05-13 4:36 ` Ashish Kalra
2021-04-23 15:59 ` [PATCH v2 4/4] x86/kvm: Add guest support for detecting and enabling SEV Live Migration feature Ashish Kalra
2021-04-30 7:19 ` [PATCH v2 0/4] Add guest support for SEV live migration Ashish Kalra
2021-04-30 7:40 ` Paolo Bonzini
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=YJ5EKPLA9WluUdFG@zn.tnic \
--to=bp@alien8.de \
--cc=ashish.kalra@amd.com \
--cc=brijesh.singh@amd.com \
--cc=hpa@zytor.com \
--cc=joro@8bytes.org \
--cc=kvm@vger.kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=mingo@redhat.com \
--cc=pbonzini@redhat.com \
--cc=seanjc@google.com \
--cc=srutherford@google.com \
--cc=tglx@linutronix.de \
--cc=thomas.lendacky@amd.com \
--cc=venu.busireddy@oracle.com \
--cc=x86@kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).