From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from mail-wm1-f52.google.com (mail-wm1-f52.google.com [209.85.128.52])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id C241F1BDA99
	for <linux-kernel@vger.kernel.org>; Wed, 22 Jan 2025 11:46:21 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=209.85.128.52
ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1737546383; cv=none; b=Vk2zSZQDWcUVW5UaVEIRN9bb5JgA1yElYFRBfuIMHwQvBPC66wyzf6gkYwZI5aC6pmI0M8qGCvwmOEO1Co37VAz5bIEtXZPDKpTarrm3Y3QoaiB8145fFjUZFpZFA58ivPaxBqW2ayYis9EKIQ9ac8uTJ4wgj09NTAjszkpYqSg=
ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1737546383; c=relaxed/simple;
	bh=qyEKQ9E1yROQG1tbcPMuIfSm6sdPYtdc/z20peUWf/s=;
	h=Date:From:To:Cc:Subject:Message-ID:References:MIME-Version:
	 Content-Type:Content-Disposition:In-Reply-To; b=i39SvVQDSRVvf0P6PRKszhgL2CzW6Ewd4DBV6AmroYqnUsY2tf0uHEViYnCGVgkzky7dBMgKXf0JQTYD1R47j3qDiulvlVij/+7dmXhRlBc5GloDKxxCNeCMxjJ+wY/h8D8GyGCkYH4UG2LmvsiluO+CPJiRai3DgDQSRZ5GDO8=
ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=pass (p=reject dis=none) header.from=google.com; spf=pass smtp.mailfrom=google.com; dkim=pass (2048-bit key) header.d=google.com header.i=@google.com header.b=R9t88rBh; arc=none smtp.client-ip=209.85.128.52
Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=google.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=google.com header.i=@google.com header.b="R9t88rBh"
Received: by mail-wm1-f52.google.com with SMTP id 5b1f17b1804b1-4368a290e0dso38225e9.1
        for <linux-kernel@vger.kernel.org>; Wed, 22 Jan 2025 03:46:21 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20230601; t=1737546380; x=1738151180; darn=vger.kernel.org;
        h=in-reply-to:content-transfer-encoding:content-disposition
         :mime-version:references:message-id:subject:cc:to:from:date:from:to
         :cc:subject:date:message-id:reply-to;
        bh=M66snbmYrKqt/mbHszvaMECVHNs6H3jl0JCiF0yhrSs=;
        b=R9t88rBhq5hk8SEZiApwiBTrZVl/eB/c+QwJuB0mvIGcp2+kIDC596eTF8+WeC4h8G
         aXjEFdyADJFSBtgTsNtyDM6K8HZIVzEF5sUZfp2PXycPfCImmg9FWCYOzUuq//6Wud/o
         zEz7bnJgebWTCDvvzI4DjvtS+AYgrmjqkfTuFHCUQRD6ttYDO2+LrhH0t/7vLUthyzvE
         XxWCqJNuylS/qL1Rmn4DBAROjy/IqkQnKzqmZb+IIX7x7LgMVaDaVsURKIjPpyrHoxYV
         1qEMkYvqCP8ljKBISGsCJHjgcE0DNDHeKnIkG/x13d5U8m3ENB0YMMPj5pgYVC13sVCR
         owSA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1737546380; x=1738151180;
        h=in-reply-to:content-transfer-encoding:content-disposition
         :mime-version:references:message-id:subject:cc:to:from:date
         :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;
        bh=M66snbmYrKqt/mbHszvaMECVHNs6H3jl0JCiF0yhrSs=;
        b=f1S54Hjtg8SNkDt9G4lSmnGSLaOWGRlcqg7RMR8QCVj2XKIrETFPOEE6v9a4ZnMgbr
         HaCvwZNi2qO+hIWC9NNXsWX2Mm41UImL55Dv2gwAZdQZRBt1xDSMaqwIqIPEKGyRUjhh
         r5wjm1aBBRTx3/w9FcTI9BCxGHddwSetCHVBKBJU6aGS5fxlVP6MwHXwtnajgV3c3FE3
         jUNoOmk9ZCNAs7Zvgl7/h31KuOsL7Kb2/5SgY6IeqfpGsFp/+FDFbz5dtdqnC/TPSHdT
         yvzRtfKSbaKKEol7/6Dx128bH5c9BOSQdu+1Acl94nXXsj4xpk8N0jlDqWr1jv4C3qlN
         L30g==
X-Forwarded-Encrypted: i=1; AJvYcCX3+ILRwjVpuFKS7oyUKzK3EpAjs9oCsVYqfSIPGNIlFr3bgZ94TBfCqB0Ue66mAea03KSNcyxpyaGiSuU=@vger.kernel.org
X-Gm-Message-State: AOJu0YxAuherDwwkMjP4+Rc7og9BtjcO33c+3oP5DFWNCKyi1FD7QG4T
	C0vt79bxsDis8CwP4DdZGlxjt8F6b1aF2Sdy6W23g9lDsvzip8OkrLv0eDs9zw==
X-Gm-Gg: ASbGncuDBVL1sLCUTcWjcgnadoY0kNApDB237auJo4VzqdHvrL5F2oSWr1I8nvZPpJN
	sA1nV4elIcIfi1XfW3nQyK1mggaxMxgDetXeCxca68K+VRzaUoJEOVQYls1YF0FXHHdXeU0dsFp
	qjTYzMO0l3SVhl9Jgw6oXzqfanAlrNWzDrvVH7CU9m0z6mpagCN/p18u1zZDWi2bkIDYq75MrX5
	v7zTljGXV19EGKaMOtCJzsgxnuE39nlGumFT03r9B+SfQn0wToCFK39U1dzRicQESMYqHBoT1kJ
	WUw6w7/zv0NhYuqj841gmwtFX5B6hg==
X-Google-Smtp-Source: AGHT+IFls5TpL47C7K0O0oaibl6d2ILOLB2S6EMRWR6zhH8HrTL9uwlX0dZcT7Ee9IXAWCDbxNzW+g==
X-Received: by 2002:a05:600c:1f91:b0:434:9d0b:bd7c with SMTP id 5b1f17b1804b1-438b2da67dcmr845945e9.3.1737546379863;
        Wed, 22 Jan 2025 03:46:19 -0800 (PST)
Received: from google.com (88.140.78.34.bc.googleusercontent.com. [34.78.140.88])
        by smtp.gmail.com with ESMTPSA id 5b1f17b1804b1-438b31c6fbasm21159875e9.33.2025.01.22.03.46.18
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Wed, 22 Jan 2025 03:46:19 -0800 (PST)
Date: Wed, 22 Jan 2025 11:46:14 +0000
From: Mostafa Saleh <smostafa@google.com>
To: Jason Gunthorpe <jgg@ziepe.ca>
Cc: iommu@lists.linux.dev, kvmarm@lists.linux.dev,
	linux-kernel@vger.kernel.org, linux-arm-kernel@lists.infradead.org,
	catalin.marinas@arm.com, will@kernel.org, maz@kernel.org,
	oliver.upton@linux.dev, joey.gouly@arm.com, suzuki.poulose@arm.com,
	yuzenghui@huawei.com, robdclark@gmail.com, joro@8bytes.org,
	robin.murphy@arm.com, jean-philippe@linaro.org, nicolinc@nvidia.com,
	vdonnefort@google.com, qperret@google.com, tabba@google.com,
	danielmentz@google.com, tzukui@google.com
Subject: Re: [RFC PATCH v2 00/58] KVM: Arm SMMUv3 driver for pKVM
Message-ID: <Z5DahnNdoShXesib@google.com>
References: <20241212180423.1578358-1-smostafa@google.com>
 <20241212194119.GA4679@ziepe.ca>
 <Z1yNWI9lBNIZg6Le@google.com>
 <20250102201614.GA26854@ziepe.ca>
 <Z35rEeSVwfZVA9IF@google.com>
 <20250116191952.GD674319@ziepe.ca>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <20250116191952.GD674319@ziepe.ca>

On Thu, Jan 16, 2025 at 03:19:52PM -0400, Jason Gunthorpe wrote:
> On Wed, Jan 08, 2025 at 12:09:53PM +0000, Mostafa Saleh wrote:
> 
> > I am open to gradually upstream this as you mentioned where as a first
> > step pKVM would establish DMA isolation without translation for host,
> > that should be enough to have functional pKVM and run protected workloads.
> 
> Personally I hate these giant patch series, you should strip it down
> to small meaningful steps and try to stay below 20 per series.
> 
> I think getting pkvm to own the SMMU HW is a great first step that
> everything else can build on

I plan to do that for v3, I think that also removes the out-of-tree
dependencies, so the code applies directly on upstream.
Thanks for the feedback!

> 
> > But although that might be usable on some systems, I don’t think that’s
> > practical in the long term as it limits the amount of HW that can run pKVM.
> 
> I suspect you will end up doing everything. Old HW needs paravirt, new
> HW will want nesting and its performance. Users other than mobile will
> come. If we were to use pKVM on server workloads we need nesting for
> performance.

Yes, I guess that would be the case, as I mentioned in another reply
it would be interesting to get the order of magnitude both, which I am
looking into, I hope it'd help with which direction we should
prioritize upstream.

Thanks,
Mostafa

> 
> Jason