Xen project Mailing List

Re: [PATCH 9/9] x86emul+VMX: support {RD,WR}MSRLIST

To: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>

Date: Mon, 17 Apr 2023 15:02:38 +0200

Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=suse.com; dmarc=pass action=none header.from=suse.com; dkim=pass header.d=suse.com; arc=none

Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=jEr06YXWBLCW6Qe7L/3ulkPBi4aePPe64tK3Vf0jxkg=; b=WS/V8JsF3vGWZ+VYET1IbP7Wm3Gdtw9/bYeKhpCNr3d1Ibt/Xsb9lYie+Kok2EEzJQeiWHu5LqvZToTWViSzNhlvw6B2kli00smAWwK3A+Lf/yNjCoTTVXqVq34X5C8WnV5jsKSTwRczZ9tPPH8ikKYVet/0fb2UHp4/RuKC267vDNSO6/CN1ktOCk7k8w59keo2CSLHGysCUkZ3CXpvHjLv255Rpncf+rGMgeFsWMQG8es2VLibOccMeasm0E0CXxKCxN95mu85cdNq9SRFoL3CRlUBvswZ0L27X1KXsCBprnNTkrc2UykpY1PBds7psd1PCH5WmLZyMBSS6eqesQ==

Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=XXKTtNzFPw0O+tPnx9C7+WiUPPK+LniL7sUvPyqjN/Jp60P3Ae0ETdl1KpkV+t0uawoBu1lcSSeyanYmstQSAGMxBj5OkzpgxJCU8aEq/zpJxTQfi0IpqWteHUU8GPmlWLr7cbD1ZsONYmO6gncw6nHVI7as9y4VpFTCgU/JInqhwSsul2enKGK6r36tWm615LankYiDRhzsIpF6j5YDG9QpuMqADxxyXNLiTd5jicLRoaeQ1wT7MARdgNilAy16mIChLhYDqu93N84uGt//LkJ1CMVB9rwAjITwhnSADlHaHgSnnCw3vNIqYnmdAwVdP4To8owzixME2dYXf5zq0A==

Authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=suse.com;

Cc: Wei Liu <wl@xxxxxxx>, Roger Pau Monné <roger.pau@xxxxxxxxxx>, Kevin Tian <kevin.tian@xxxxxxxxx>, Jun Nakajima <jun.nakajima@xxxxxxxxx>, "xen-devel@xxxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxxx>

Delivery-date: Mon, 17 Apr 2023 13:03:26 +0000

List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On 07.04.2023 00:03, Andrew Cooper wrote: > On 04/04/2023 3:55 pm, Jan Beulich wrote: >> --- >> TODO: Use VMX tertiary execution control (once bit is known; see >> //todo-s) and then further adjust cpufeatureset.h. >> >> RFC: In vmx_vmexit_handler() handling is forwarded to the emulator >> blindly. Alternatively we could consult the exit qualification and >> process just a single MSR at a time (without involving the >> emulator), exiting back to the guest after every iteration. (I >> don't think a mix of both models makes a lot of sense.) > > {RD,WR}MSRLIST are supposed to be used for context switch paths. They > really shouldn't be exiting in the common case. > > What matters here is the conditional probability of a second MSR being > intercepted too, given that one already has been. And I don't have a > clue how to answer this. > > I would not expect Introspection to be intercepting a fastpath MSR. > (And if it does, frankly it can live with the consequences.) > > For future scenarios such as reloading PMU/LBR/whatever, these will be > all-or-nothing and we'd expect to have them eagerly in context anyway. > > If I were going to guess, I'd say that probably MSR_XSS or MSR_SPEC_CTRL > will be giving us the most grief here, because they're both ones that > are liable to be touched on a context switch path, and have split > host/guest bits. I'm not really certain, but I'm tending to interpret your reply as agreement with the choice made (and hence not as a request to change anything in this regard); clarification appreciated. >> RFC: For PV priv_op_ops would need to gain proper read/write hooks, >> which doesn't look desirable (albeit there we could refuse to >> handle anything else than x86_seg_none); we may want to consider to >> instead not support the feature for PV guests, requiring e.g. Linux >> to process the lists in new pvops hooks. > > Ah - funny you should ask. See patch 2. These are even better reasons > not to support on PV guests. Yeah, with PV dropped there it's quite obvious to not consider it here either. I'll drop the remark. >> RFC: I wasn't sure whether to add preemption checks to the loops - >> thoughts? > > I'd be tempted to. Mostly because a guest can exert 64* longest MSR > worth of pressure here, along with associated emulation overhead. > > 64* "write hypercall page" sounds expensive. So too does 64* MSR_PAT, > given all the EPT actions behind the scenes. > > Its probably one of those Which leaves me inclined to add preemption checking to writes, but keep reads as they are. Thoughts? Jan

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.