Received: by 2002:a25:8b12:0:0:0:0:0 with SMTP id i18csp5558120ybl;
        Tue, 27 Aug 2019 06:32:45 -0700 (PDT)
X-Google-Smtp-Source: APXvYqxBkh/L9mNwF2WqWTka7yXN8mvaAl5NRpMwIOp03YtmsDpKU7C5fuzx98+gYA7+zx3I1/2k
X-Received: by 2002:a17:90a:cf8d:: with SMTP id i13mr25288013pju.63.1566912765588;
        Tue, 27 Aug 2019 06:32:45 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1566912765; cv=none;
        d=google.com; s=arc-20160816;
        b=XRYlDcnBNOLjRjYnAtFL+TjcVtiblEisEpfhp8G6RnvVoTUmkrq9bkLaLir6mVJPo+
         KlLPryndnagfq29b6c2FdWQHGKYrqlqYogOT3rx9/EirrQPQi6yYvZJhLHgWkO5UykIB
         5+MPy4d3YcP8u6UktKe7MZL5Q4tFnhgSZYLUeO6XEpPMt/FKjsN0OrbSPqPQGAMm6WHS
         +Ow7CbcuOc7E5p7V1gj0mcJlKAGFO58pz/J9bYsZoO5FsYstcbgUesFHtJIkhGt/83jd
         WCbh/X3Un/5Crku2uyI6ZTv30ZcUtary3z6zrJ0tMHvVnMOiwxfXpbSetUpi5BHkAgsX
         sbSQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:mime-version:message-id:date:references
         :in-reply-to:subject:cc:to:from;
        bh=G9L7A4nBpy1D901YxUFl9Z11bC0ZxAJnfNz+eX7/gFs=;
        b=vN9p9FYhZaa3fJ8M1yo2f7h01nfm1OFlLjnHUv9NqcN96HHz7zxVlO9H/y3rOW8c4F
         vmsLEV2fMTUUZsCeXAqMakFdtBG2x4IjgXD2pJPOLRO+9Ijmq74qLBeeA/8BeMI83R43
         ZWm4gYqDVbsgjp+bZe6qGYbxOZcB/3ivMmitf6Z4z653en4kuwzfCCUdK9AKqLH6KjSo
         BTEl0ogsL5H6Xl6NQEIImXiG1zp6xqpEXsD0zZWYiJLkSV0rptPHnRtiZioYWHVGHCjE
         /WdinCyats4o67F3mREpX4xSriLHvB3NzLt4h3x5l5bMJR4sjJdlcCH2tedgFq5lt/0U
         kCWQ==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id gn1si12413905plb.9.2019.08.27.06.32.29;
        Tue, 27 Aug 2019 06:32:45 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1728415AbfH0NaB (ORCPT <rfc822;xqjcool@gmail.com> + 99 others);
        Tue, 27 Aug 2019 09:30:01 -0400
Received: from mx1.redhat.com ([209.132.183.28]:39134 "EHLO mx1.redhat.com"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S1726170AbfH0NaA (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Tue, 27 Aug 2019 09:30:00 -0400
Received: from mail-wr1-f72.google.com (mail-wr1-f72.google.com [209.85.221.72])
        (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
        (No client certificate requested)
        by mx1.redhat.com (Postfix) with ESMTPS id 11B8C85540
        for <linux-kernel@vger.kernel.org>; Tue, 27 Aug 2019 13:30:00 +0000 (UTC)
Received: by mail-wr1-f72.google.com with SMTP id x12so11443287wrw.0
        for <linux-kernel@vger.kernel.org>; Tue, 27 Aug 2019 06:30:00 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:from:to:cc:subject:in-reply-to:references:date
         :message-id:mime-version;
        bh=G9L7A4nBpy1D901YxUFl9Z11bC0ZxAJnfNz+eX7/gFs=;
        b=KZ//M15ZBBoJK9ZcqBJ/nxe3IPpmI4I6U8+MjBsdw7Pv7FWmOCHPq/t9twM6Yv6Ug5
         qmut5KVlVYqfTXMdrczT3xutLYnOa63JNRoraSkoF0eBEN78hgi31427ZiDA/2bgg2Ct
         bY9T321hQyJpDdYZ84VyMlwwVtjyjPJTO1coQlQif5CZe/PiBUjqd5aaNPCvJtaJmVEJ
         BYLGthx+sfY8NPJxF3jQh7PoJFyA5jgZ87e0jDkC0p6qbuirbjCdlSytF9KigqdEsrA7
         R3QQ4Dim97AR1d43nTcu8JyNhXnXSqsOmmqFVxWwUsfHEnVlWXRosE9nsQqHTPdLhr1B
         T1SA==
X-Gm-Message-State: APjAAAWgay5vuRt2Q58IlGLjDD3uDklX6pytVXSD+r9AzKNoxCtBcDfV
        t+mTMtVa4owr0kGg2oh0T0chgMbeRsnhigkUIFfxOBmJdGFg+6aHt0Hv8kCqF1RHdXWivnp/f/w
        lNeS0tdf+wszPMvJkox7w3x7l
X-Received: by 2002:adf:eb8c:: with SMTP id t12mr29945874wrn.84.1566912598815;
        Tue, 27 Aug 2019 06:29:58 -0700 (PDT)
X-Received: by 2002:adf:eb8c:: with SMTP id t12mr29945849wrn.84.1566912598552;
        Tue, 27 Aug 2019 06:29:58 -0700 (PDT)
Received: from vitty.brq.redhat.com (nat-pool-brq-t.redhat.com. [213.175.37.10])
        by smtp.gmail.com with ESMTPSA id z2sm3154237wmi.2.2019.08.27.06.29.57
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Tue, 27 Aug 2019 06:29:57 -0700 (PDT)
From:   Vitaly Kuznetsov <vkuznets@redhat.com>
To:     Tianyu Lan <lantianyu1986@gmail.com>
Cc:     Tianyu Lan <Tianyu.Lan@microsoft.com>, kvm <kvm@vger.kernel.org>,
        linux-doc@vger.kernel.org, linux-hyperv@vger.kernel.org,
        "linux-kernel\@vger kernel org" <linux-kernel@vger.kernel.org>,
        Paolo Bonzini <pbonzini@redhat.com>,
        Radim Krcmar <rkrcmar@redhat.com>, corbet@lwn.net,
        KY Srinivasan <kys@microsoft.com>,
        Haiyang Zhang <haiyangz@microsoft.com>,
        Stephen Hemminger <sthemmin@microsoft.com>,
        Sasha Levin <sashal@kernel.org>,
        Thomas Gleixner <tglx@linutronix.de>,
        Ingo Molnar <mingo@redhat.com>, Borislav Petkov <bp@alien8.de>,
        "H. Peter Anvin" <hpa@zytor.com>,
        the arch/x86 maintainers <x86@kernel.org>,
        michael.h.kelley@microsoft.com
Subject: Re: [PATCH V3 0/3] KVM/Hyper-V: Add Hyper-V direct tlb flush support
In-Reply-To: <CAOLK0py2rvYkLPP9uQ6Q7y31Btu4XOsWr3Vsk6GtUDWvg5uUOg@mail.gmail.com>
References: <20190819131737.26942-1-Tianyu.Lan@microsoft.com> <87ftlnm7o8.fsf@vitty.brq.redhat.com> <CAOLK0pzXPG9tBnQoKGTSNHMwXXrEQ4zZH1uWn2F2mQ2ddVcoFA@mail.gmail.com> <87v9uilr5x.fsf@vitty.brq.redhat.com> <CAOLK0py2rvYkLPP9uQ6Q7y31Btu4XOsWr3Vsk6GtUDWvg5uUOg@mail.gmail.com>
Date:   Tue, 27 Aug 2019 15:29:56 +0200
Message-ID: <87sgpmlorv.fsf@vitty.brq.redhat.com>
MIME-Version: 1.0
Content-Type: text/plain
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

Tianyu Lan <lantianyu1986@gmail.com> writes:

> On Tue, Aug 27, 2019 at 8:38 PM Vitaly Kuznetsov <vkuznets@redhat.com> wrote:
>>
>> Tianyu Lan <lantianyu1986@gmail.com> writes:
>>
>> > On Tue, Aug 27, 2019 at 2:41 PM Vitaly Kuznetsov <vkuznets@redhat.com> wrote:
>> >>
>> >> lantianyu1986@gmail.com writes:
>> >>
>> >> > From: Tianyu Lan <Tianyu.Lan@microsoft.com>
>> >> >
>> >> > This patchset is to add Hyper-V direct tlb support in KVM. Hyper-V
>> >> > in L0 can delegate L1 hypervisor to handle tlb flush request from
>> >> > L2 guest when direct tlb flush is enabled in L1.
>> >> >
>> >> > Patch 2 introduces new cap KVM_CAP_HYPERV_DIRECT_TLBFLUSH to enable
>> >> > feature from user space. User space should enable this feature only
>> >> > when Hyper-V hypervisor capability is exposed to guest and KVM profile
>> >> > is hided. There is a parameter conflict between KVM and Hyper-V hypercall.
>> >> > We hope L2 guest doesn't use KVM hypercall when the feature is
>> >> > enabled. Detail please see comment of new API
>> >> > "KVM_CAP_HYPERV_DIRECT_TLBFLUSH"
>> >>
>> >> I was thinking about this for awhile and I think I have a better
>> >> proposal. Instead of adding this new capability let's enable direct TLB
>> >> flush when KVM guest enables Hyper-V Hypercall page (writes to
>> >> HV_X64_MSR_HYPERCALL) - this guarantees that the guest doesn't need KVM
>> >> hypercalls as we can't handle both KVM-style and Hyper-V-style
>> >> hypercalls simultaneously and kvm_emulate_hypercall() does:
>> >>
>> >>         if (kvm_hv_hypercall_enabled(vcpu->kvm))
>> >>                 return kvm_hv_hypercall(vcpu);
>> >>
>> >> What do you think?
>> >>
>> >> (and instead of adding the capability we can add kvm.ko module parameter
>> >> to enable direct tlb flush unconditionally, like
>> >> 'hv_direct_tlbflush=-1/0/1' with '-1' being the default (autoselect
>> >> based on Hyper-V hypercall enablement, '0' - permanently disabled, '1' -
>> >> permanenetly enabled)).
>> >>
>> >
>> > Hi Vitaly::
>> >      Actually, I had such idea before. But user space should check
>> > whether hv tlb flush
>> > is exposed to VM before enabling direct tlb flush. If no, user space
>> > should not direct
>> > tlb flush for guest since Hyper-V will do more check for each
>> > hypercall from nested
>> > VM with enabling the feauter..
>>
>> If TLB Flush enlightenment is not exposed to the VM at all there's no
>> difference if we enable direct TLB flush in eVMCS or not: the guest
>> won't be using 'TLB Flush' hypercall and will do TLB flushing with
>> IPIs. And, in case the guest enables Hyper-V hypercall page, it is
>> definitelly not going to use KVM hypercalls so we can't break these.
>>
>
> Yes, this won't tigger KVM/Hyper-V hypercall conflict. My point is
> that if tlb flush enlightenment is not enabled, enabling direct tlb
> flush will not accelate anything and Hyper-V still will check each
> hypercalls from nested VM in order to intercpt tlb flush hypercall
> But guest won't use tlb flush hypercall in this case. The check
> of each hypercall in Hyper-V is redundant. We may avoid the
> overhead via checking status of tlb flush enlightenment and just
> enable direct tlb flush when it's enabled.

Oh, I see. Yes, this optimization is possible and I'm not against it,
however I doubt it will make a significant difference because no matter
what upon VMCALL we first drop into L0 which can either inject this in
L1 or, in case of direct TLB flush, execute it by itself. Checking if
the hypercall is a TLB flush hypercall is just a register read, it
should be very cheap.

-- 
Vitaly