Received: by 2002:a05:6a10:6d10:0:0:0:0 with SMTP id gq16csp323973pxb; Tue, 12 Apr 2022 02:54:50 -0700 (PDT) X-Google-Smtp-Source: ABdhPJy+zn7M0eyQbehU5UQTil8XqS/LhAl2g0WdyABlwzx4Eb8CPmQybZix/ZXALVd4HsnbGUBD X-Received: by 2002:a17:903:1cd:b0:158:8feb:86bc with SMTP id e13-20020a17090301cd00b001588feb86bcmr1004630plh.114.1649757290041; Tue, 12 Apr 2022 02:54:50 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1649757290; cv=none; d=google.com; s=arc-20160816; b=Vap781v1XyaEfiMd1RL24Z+9UTpJIkwP8ql90pSNZoed41XaTKLl5CjW/L+cLpeVLH ZXuYvjSFkTbAjj/y5e9TKMhCdk31V63DPbHl93iP8De4UIh/jA3WTsLp7h1sbvLSt45W bgmvwhAWuxLRgPn3a5LIWUHwidBsgXS5zEJ1+d7ucUuqOt2cFHuGB5G5P281MZFk6GRi weqExckaasuGwa0QX2gvzLRkY8jyANpi+dGjeBTcsXmKq/P5pK4GJXTQ7MbXqtolPjdV S2SEPP5xBqhHXubyolYsuvq+d45SCne0gU5i1kX+oz8Bqf5tNsIqjCbCx7qyFgt9yDQe V7Cw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:in-reply-to:content-disposition:mime-version :references:message-id:subject:cc:to:from:date:dkim-signature; bh=xnPakWPy2yT3pIDHfh65ar6g/dls1kfh8Fm485ETQ5M=; b=bxrXXfpWYfl7cYKFQpJQmOszYw54NVqkMTi/eAz6SUcBEDWmkliZJ5LTX15YDMR4GO vlcAFkJoKGCInM4BKGbHObR9OoRDKkTZrqSYvqsYZclOsVviXGG72mSt8gRHRfL3Ht/l SwMNm/O6q44memSCtSD0xcs0076dZGHMETMerfSrqA28zz3+Y1y6d/peQN5ZswSD5pYt kKxhkbVpGWvWTvVknN9TGQYB2BmI9LQYBPPAR0ZY++VJA6qikMJmsVCvRy7KVjt3YROz whnuc81/JUqpEYj9PPsayIW798eda3B9uCpqu0CoL9wboFOawpxqwhp60UL3dHq0eEpu FosA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@shutemov-name.20210112.gappssmtp.com header.s=20210112 header.b=dQKM0d07; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id u5-20020a637905000000b00382b764886bsi2174259pgc.121.2022.04.12.02.54.37; Tue, 12 Apr 2022 02:54:49 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@shutemov-name.20210112.gappssmtp.com header.s=20210112 header.b=dQKM0d07; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1347991AbiDKPfU (ORCPT + 99 others); Mon, 11 Apr 2022 11:35:20 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:47056 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1347947AbiDKPfS (ORCPT ); Mon, 11 Apr 2022 11:35:18 -0400 Received: from mail-lj1-x22e.google.com (mail-lj1-x22e.google.com [IPv6:2a00:1450:4864:20::22e]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id C506E36B43 for ; Mon, 11 Apr 2022 08:33:03 -0700 (PDT) Received: by mail-lj1-x22e.google.com with SMTP id bn33so20595125ljb.6 for ; Mon, 11 Apr 2022 08:33:03 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=shutemov-name.20210112.gappssmtp.com; s=20210112; h=date:from:to:cc:subject:message-id:references:mime-version :content-disposition:in-reply-to; bh=xnPakWPy2yT3pIDHfh65ar6g/dls1kfh8Fm485ETQ5M=; b=dQKM0d07whgvlC9oDhJtSUhDkTW4MoFSVg0vfgfBTGbnyj/vLpwIRlpTJbwhAy5wXy t4NvGLtrVnALpqzfCg7AJJXugL5G+gxtpmDu4P3kfUwP/PxlbMFsvAkSX6LdhPrmqMXT qiLuU+fH5rX1P4bRYOwwYVvuKX3ABpSSlgtg6Az3/bkGGCuw7OQsN/ELNNrrh8dksm+L jdUaWuAeAK2VUjv+c+38AFbQNMQ+BBRMEFHjUicyzn/UUqkyKZ+8hd7a357wBJLh/+Ai HUBjhhdQSdLifDKyLGXJgEw/B/MdcmTILkWCG50hI08mI+XNVGIswEXj19aZoHfNzVBJ crnw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:date:from:to:cc:subject:message-id:references :mime-version:content-disposition:in-reply-to; bh=xnPakWPy2yT3pIDHfh65ar6g/dls1kfh8Fm485ETQ5M=; b=ZLmxPsacJ9XxwiPXGxScYXjY3xk1d9elasmsuU8S3sQp8OVknf/kMZ8spTXM6sAQvc 3rEV3x/M7kFCYv6IQ7dcYXa+gXP5ommFcGrE/nehfGfdtB2R2enALa7RYGIFmfGeRndQ zFM1uBbiavJRxWO9J3f/b4uiHex8CuA1Qu7/kRzCVJWtKHoJCv6REmVV7smV7d5UkDKI V/mEikpMOAhrRbU9dIxdVkmNiyMUW6yz0Y3Md2xihFUVHOIu9EN9lknbcFpEH6DdJzzV KFYHupfqw2Y9x7qv/sIQrfHfC9UBX0aS6jwH8WH1TVFIx21pvPxSg20xT3QOkQUDYZKo mmuA== X-Gm-Message-State: AOAM5326+5JR8tJ15toVGIwG/Us3K/tIWIBBSri6JQWm6y5jFJceAATO P81dz+20UZQFOdo2VEU5rj0c4w== X-Received: by 2002:a2e:3a02:0:b0:24b:6120:1be4 with SMTP id h2-20020a2e3a02000000b0024b61201be4mr4554362lja.451.1649691181857; Mon, 11 Apr 2022 08:33:01 -0700 (PDT) Received: from box.localdomain ([86.57.175.117]) by smtp.gmail.com with ESMTPSA id c25-20020a2e6819000000b00247de61d3fdsm3162062lja.113.2022.04.11.08.33.01 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Mon, 11 Apr 2022 08:33:01 -0700 (PDT) Received: by box.localdomain (Postfix, from userid 1000) id E5DD4103CE0; Mon, 11 Apr 2022 18:34:33 +0300 (+03) Date: Mon, 11 Apr 2022 18:34:33 +0300 From: "Kirill A. Shutemov" To: Chao Peng Cc: Sean Christopherson , kvm@vger.kernel.org, linux-kernel@vger.kernel.org, linux-mm@kvack.org, linux-fsdevel@vger.kernel.org, linux-api@vger.kernel.org, qemu-devel@nongnu.org, Paolo Bonzini , Jonathan Corbet , Vitaly Kuznetsov , Wanpeng Li , Jim Mattson , Joerg Roedel , Thomas Gleixner , Ingo Molnar , Borislav Petkov , x86@kernel.org, "H . Peter Anvin" , Hugh Dickins , Jeff Layton , "J . Bruce Fields" , Andrew Morton , Mike Rapoport , Steven Price , "Maciej S . Szmigiero" , Vlastimil Babka , Vishal Annapurve , Yu Zhang , "Kirill A . Shutemov" , luto@kernel.org, jun.nakajima@intel.com, dave.hansen@intel.com, ak@linux.intel.com, david@redhat.com Subject: Re: [PATCH v5 04/13] mm/shmem: Restrict MFD_INACCESSIBLE memory against RLIMIT_MEMLOCK Message-ID: <20220411153433.6sqqqd6vzhyfjee6@box.shutemov.name> References: <20220310140911.50924-1-chao.p.peng@linux.intel.com> <20220310140911.50924-5-chao.p.peng@linux.intel.com> <20220408130254.GB57095@chaop.bj.intel.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20220408130254.GB57095@chaop.bj.intel.com> X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,DKIM_SIGNED, DKIM_VALID,RCVD_IN_DNSWL_NONE,SPF_HELO_NONE,SPF_NONE, T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Fri, Apr 08, 2022 at 09:02:54PM +0800, Chao Peng wrote: > > I think the correct approach is to not do the locking automatically for SHM_F_INACCESSIBLE, > > and instead require userspace to do shmctl(.., SHM_LOCK, ...) if userspace knows the > > consumers don't support migrate/swap. That'd require wrapping migrate_page() and then > > wiring up notifier hooks for migrate/swap, but IMO that's a good thing to get sorted > > out sooner than later. KVM isn't planning on support migrate/swap for TDX or SNP, > > but supporting at least migrate for a software-only implementation a la pKVM should > > be relatively straightforward. On the notifiee side, KVM can terminate the VM if it > > gets an unexpected migrate/swap, e.g. so that TDX/SEV VMs don't die later with > > exceptions and/or data corruption (pre-SNP SEV guests) in the guest. > > SHM_LOCK sounds like a good match. Emm, no. shmctl(2) and SHM_LOCK are SysV IPC thing. I don't see how they fit here. -- Kirill A. Shutemov