Xen project Mailing List

Re: [PATCH] x86/svm: Merge hsa and host_vmcb to reduce memory overhead

To: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>

Date: Wed, 28 Oct 2020 09:06:19 +0100

Cc: Roger Pau Monné <roger.pau@xxxxxxxxxx>, Wei Liu <wl@xxxxxxx>, Xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxxx>

Delivery-date: Wed, 28 Oct 2020 08:06:30 +0000

List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On 27.10.2020 20:30, Andrew Cooper wrote: > On 27/10/2020 15:24, Jan Beulich wrote: >> On 26.10.2020 14:50, Andrew Cooper wrote: >>> The format of the Host State Area is, and has always been, a VMCB. It is >>> explicitly safe to put the host VMSAVE data in. >> Nit: The PM calls this "Host Save Area" or "Host State Save Area" >> afaics. >> >> I recall us discussing this option in the past, and not right >> away pursuing it because of it not having been explicit at the >> time. What place in the doc has made this explicit? > > Sadly still not yet, but the pestering has happened. > >> The main >> uncertainty (without any explicit statement) on my part would be >> the risk of VMSAVE writing (for performance reasons) e.g. full >> cache lines, i.e. more than exactly the bits holding the state >> to be saved, without first bringing old contents in from memory. > > SEV-ES now requires the hypervisor to program desired exit state in in > the VMCB, due to differences in how the VMRUN instruction works. See > Vol3 15.35.8. (And yes - this does contradict the earlier statement in > that a the hypervisor must not write directly into the host state area). > > I have had it confirmed by AMD that it is safe to use in this fashion, > but if you want more evidence, KVM has had this behaviour on AMD for its > entire lifetime. Ah, interesting. >>> --- a/xen/arch/x86/hvm/svm/svm.c >>> +++ b/xen/arch/x86/hvm/svm/svm.c >>> @@ -72,11 +72,10 @@ static void svm_update_guest_efer(struct vcpu *); >>> static struct hvm_function_table svm_function_table; >>> >>> /* >>> - * Physical addresses of the Host State Area (for hardware) and vmcb (for >>> Xen) >>> - * which contains Xen's fs/gs/tr/ldtr and GSBASE/STAR/SYSENTER state when >>> in >>> - * guest vcpu context. >>> + * Host State Area. This area is used by the processor in non-root mode, >>> and >>> + * contains Xen's fs/gs/tr/ldtr and GSBASE/STAR/SYSENTER state required to >>> + * leave guest vcpu context. >>> */ >>> -static DEFINE_PER_CPU_READ_MOSTLY(paddr_t, hsa); >>> static DEFINE_PER_CPU_READ_MOSTLY(paddr_t, host_vmcb); >> The comment now applies to host_vmcb, so making the dual purpose >> more obvious would imo be helpful. > > But it isn't dual purpose. It *is* host state, both the half which > VMRUN deals with, and the half which VMLOAD/SAVE deals with (separately, > to optimise VMRUN). It is host state, yes, and if you would spell it "host state area" (and perhaps even omit "area") it would look less dual purpose, because the use of capitals (to me at least) suggests you refer to HSA (as used e.g. in the MSR name). The dual purpose really is that (a) the address gets put in the respective MSR and (b) the thing also gets directly accessed as a VMCB. Just like the comment originally said. Yes, in the end it's cumulative host state. Is there any reason why you can't mostly keep the original comment, merely starting with singular "Physical address of ..."? (Of course I'd then still prefer if "Host State Area" was changed to either of the two terms actually used by the PM.) Jan

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.