Received: by 2002:a05:6602:2086:0:0:0:0 with SMTP id a6csp4973160ioa;
        Wed, 27 Apr 2022 15:47:33 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJz0KTqZ02bFxtRF7kz9mmqRMXPKCn1boxJlunf0IAxqYGFzvPnjikeECgoiIHT7MEUHiV9X
X-Received: by 2002:a17:90b:4c84:b0:1d2:cadc:4e4d with SMTP id my4-20020a17090b4c8400b001d2cadc4e4dmr45984919pjb.8.1651099652895;
        Wed, 27 Apr 2022 15:47:32 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1651099652; cv=none;
        d=google.com; s=arc-20160816;
        b=HSe75NVgkBjCzsL3TiP3t91ycGieFvz9vnTZAG6dlC9fo0PpDv/K6LkZdP2XLcucRC
         Jz29bgDBZXOluguACSsgjG7YfPthjWtscGUdn7xwMSE/DWfGYFU4nbMYAoT9sdje3beA
         lgXao9VUh5XBc1z50GihDIV7GualoZEhlYLYH4kbmOH9SjLXaHH9FPbtdK+l1qZJ8oHX
         unnFqpX0959geevmKHHNnu14QXWv6PGNm0YfdlljjTeO0KKljcTVlLQ4gMqj0bRliuSS
         4T/i/A73OXvSEwf6Bi4akQYlgGDCMdX3o2c4QXyoKkC51oxj/9CBTOUC3R6nIcA7TAPw
         6+IQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:in-reply-to:from
         :references:cc:to:content-language:subject:user-agent:mime-version
         :date:message-id:dkim-signature;
        bh=CS2qVGtEFOHX1b03PecAipmPIeZou7WysVKLXSVl4NY=;
        b=vBzZ9C3EAIzKZtIR00pmtnD8uE6hOygoyLUm1oZglLSgc/8hBfQuS7P2YC29PkXBMZ
         2njq4V/4y8N1CrTIx59r8eWMBKtD0S0mgT4hnDecFpJeCXA00VOGpa8g3qiDswEjxvHv
         LcrGTOPVsmq6dqxenXNlIv6YNzHyrzFoZHFMEjaimJQSDWYqPn1QgRPao58yH6XqIzFa
         tOb4VAmVnhPiUhJXnZR8jt1dywpcxePbG6AZjdUJyzUJ+6yrFEgO88rHACl1WdJ7ZuQs
         7eGBh/9LGXaIbuC+OZLrlrTM1QfKcv4YQdfM57IL6d5e6tiuMrX/594jQmX7OIgpLvKh
         Kohg==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@intel.com header.s=Intel header.b=E9BMTlmd;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=intel.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id h16-20020a056a001a5000b0050d5680c706si1450224pfv.189.2022.04.27.15.47.15;
        Wed, 27 Apr 2022 15:47:32 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@intel.com header.s=Intel header.b=E9BMTlmd;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=intel.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S234208AbiD0VtD (ORCPT <rfc822;andrew.melo@gmail.com>
        + 99 others); Wed, 27 Apr 2022 17:49:03 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:59158 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S234616AbiD0Vsa (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Wed, 27 Apr 2022 17:48:30 -0400
Received: from mga14.intel.com (mga14.intel.com [192.55.52.115])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 0449F1C90B
        for <linux-kernel@vger.kernel.org>; Wed, 27 Apr 2022 14:45:16 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple;
  d=intel.com; i=@intel.com; q=dns/txt; s=Intel;
  t=1651095917; x=1682631917;
  h=message-id:date:mime-version:subject:to:cc:references:
   from:in-reply-to:content-transfer-encoding;
  bh=UccQ20jf84JeTZXA7ZJ2PcggBgDr2ncfHg0gT7J+keE=;
  b=E9BMTlmda6RR5mEdaydsaiTaZFX/fyztOawfHhRFhyQhWDumd7NbUg5o
   NkI7xbAQaPaEwBCygJ4G2RKPwW+xOJS0LQejZSXmx8ERHKYCPhvGyI0yV
   Ug3dhMS/WH2xXId9ModVJTDmUazCUUqZDF9ndQFPYzMGoXQcYrQ5cbQ1x
   1IzNOkWImtUPGo/CiJ8Sm5AIgUkqODMjTJHSSZp517vocBQMphyUlo91j
   osVHLOUwYBRzqAntvMheKUbyCK0VKNRoRdL8Dq3qvl3Hag5+NVNKwi/KP
   ull7H1c2lgbShLU48EksKYk+SCqr2geaBDiMUs/kgbyY7D9PFXTffIkVn
   w==;
X-IronPort-AV: E=McAfee;i="6400,9594,10330"; a="266239184"
X-IronPort-AV: E=Sophos;i="5.90,294,1643702400"; 
   d="scan'208";a="266239184"
Received: from orsmga005.jf.intel.com ([10.7.209.41])
  by fmsmga103.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 27 Apr 2022 14:45:16 -0700
X-IronPort-AV: E=Sophos;i="5.90,294,1643702400"; 
   d="scan'208";a="731026227"
Received: from leeyongj-mobl1.amr.corp.intel.com (HELO [10.212.138.148]) ([10.212.138.148])
  by orsmga005-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 27 Apr 2022 14:45:14 -0700
Message-ID: <bcae2b91-c4eb-7b43-0b00-842fa1b9f57c@linux.intel.com>
Date:   Wed, 27 Apr 2022 14:45:13 -0700
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101
 Firefox/91.0 Thunderbird/91.7.0
Subject: Re: [PATCH v4 1/3] x86/tdx: Add TDX Guest attestation interface
 driver
Content-Language: en-US
To:     Kai Huang <kai.huang@intel.com>,
        Thomas Gleixner <tglx@linutronix.de>,
        Ingo Molnar <mingo@redhat.com>, Borislav Petkov <bp@alien8.de>,
        Dave Hansen <dave.hansen@linux.intel.com>, x86@kernel.org
Cc:     "H . Peter Anvin" <hpa@zytor.com>,
        "Kirill A . Shutemov" <kirill.shutemov@linux.intel.com>,
        Tony Luck <tony.luck@intel.com>,
        Andi Kleen <ak@linux.intel.com>, linux-kernel@vger.kernel.org
References: <20220422233418.1203092-1-sathyanarayanan.kuppuswamy@linux.intel.com>
 <20220422233418.1203092-2-sathyanarayanan.kuppuswamy@linux.intel.com>
 <0457ce8e78ddd1d6c7832176368e095adae1bc18.camel@intel.com>
 <1168a7cc-9e41-ee2d-8b3d-8dbd1ab85609@linux.intel.com>
 <a597c1fffab01e1048421887d5ef7aa2ac01c46e.camel@intel.com>
From:   Sathyanarayanan Kuppuswamy 
        <sathyanarayanan.kuppuswamy@linux.intel.com>
In-Reply-To: <a597c1fffab01e1048421887d5ef7aa2ac01c46e.camel@intel.com>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
X-Spam-Status: No, score=-9.4 required=5.0 tests=BAYES_00,DKIMWL_WL_HIGH,
        DKIM_SIGNED,DKIM_VALID,DKIM_VALID_EF,NICE_REPLY_A,RCVD_IN_DNSWL_HI,
        SPF_HELO_NONE,SPF_NONE autolearn=ham autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

Hi,

On 4/26/22 10:15 PM, Kai Huang wrote:
> On Tue, 2022-04-26 at 12:07 -0700, Sathyanarayanan Kuppuswamy wrote:
>>> Is there any particular reason to use platform driver and support it as a
>>> module?
>>>
>>> SGX driver uses misc_register() to register /dev/sgx_enclave during boot.
>>> Looks
>>> it would be simpler.
>>
>> Main reason is to use a proper device in dma_alloc* APIs.
>>
>> My initial version only used misc device as you have mentioned. But
>> Hans raised a concern about using proper struct device in dma_alloc*
>> APIs and suggested modifying the driver to use platform device
>> model. You can find relevant discussion here.
>>
>> https://lore.kernel.org/all/47d06f45-c1b5-2c8f-d937-3abacbf10321@redhat.com/
> 
> Thanks for the info.  Sorry I didn't dig review comments for previous version.
> 
> However, after digging more, I am wondering why do you need to use DMA API at
> the first place.
> 
> Firstly, for this basic driver to report TDREPORT to userspace, there's no need
> to use any DMA API, nor we need to use shared memory, as we just get the report
> into some buffer (doesn't need to be shared) and copy the report back to
> userspace.  So it doesn't make a lot sense to use platform device here.

Yes. For this patch itself, since  we don't need to use DMA API,
platform driver model is not required. But I have made this patch use
platform driver format in consideration of its need in the next patch.
Making it misc driver in this patch and changing it to platform driver
in next patch does not make sense. Since they are all in the same patch
set we can add some changes in consideration of the next patch.

> 
> Secondly, in terms of GetQuote support, it seems Dave/Andi suggested you can use
> vmalloc()/vmap() and just use set_memory_decrypted() to convert it to shared:
> 
> https://lore.kernel.org/all/ce0feeec-a949-35f8-3010-b0d69acbbc2e@linux.intel.com/
> 
> I don't see why it cannot work?  Then wouldn't this approach be simpler than
> using DMA API?  Any reason to choose platform device?

Yes, it will work. But I am not sure whether it is simpler than adding
platform driver specific buffer code. I have used DMA APIs because it
will handle allocation and decryption setting internally. I thought is
simpler than we handling it ourselves.

But if platform device driver model is not preferred, I can change it.


> 
> Btw, a side topic:
> 
> Andy suggested we don't do memory allocation and private-shared conversion at
> IOCTL time as the conversion is expensive:
> 
> https://lore.kernel.org/all/06c85c19-e16c-3121-ed47-075cfa779b67@kernel.org/
> 
> This is reasonable (and sorry I didn't see this when I commented in v3).
> 
> To avoid IOCTL time private-shared conversion, and yet support dynamic Quote
> length, can we do following:
> 
> - Allocate a *default* size buffer at driver loading time (i.e. 4 pages), and
> convert to shared.  This default size should cover 99% cases as Intel QGS
> currently generates Quote smaller than 8K, and Intel attestation agent hard-code
> a 4 pages buffer for Quote.
> 
> - In GetQuote IOCTL, when the len is larger than default size, we discard the
> original one and allocate a larger buffer.
> 
> How does this sound?

It sounds fine. Your suggestion can indeed decrease the IOCTL time.

But, IMO, since attestation will not be used that frequently,
we don't need to consider optimization at this point of time. Also, I
think the memory allocation time is negligible compared to time it takes
for the TDQUOTE generation.

Even if we have to do it, we can add it in future as a separate
patch. We don't need to add it part of this basic driver support
patch.

> 
> 

-- 
Sathyanarayanan Kuppuswamy
Linux Kernel Developer