Received: by 2002:a05:6358:3188:b0:123:57c1:9b43 with SMTP id q8csp9969790rwd; Wed, 21 Jun 2023 14:28:40 -0700 (PDT) X-Google-Smtp-Source: ACHHUZ5pKZmQyB3k4Ot+wD7TowNbtMZoKlaqLgr6dFrnd8jAu8/QdiJKMEvBwl5e90MdJrTrGFvG X-Received: by 2002:a05:6358:e98:b0:131:234:e2df with SMTP id 24-20020a0563580e9800b001310234e2dfmr4635161rwg.22.1687382919808; Wed, 21 Jun 2023 14:28:39 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1687382919; cv=none; d=google.com; s=arc-20160816; b=M0rV2Sybfs0JrnMb/MBGgpPRyHjj8umxtjaw9FMPmgH0VBhrS4gOOioWQPW7Ak0Jd+ gJO6oxgdgM+ArN0iwjVCNwrDjyT6HPJahMnT6mR977HZGxElzJe7VmrazmwHd6h+8PZd nGKtjn2UKfdHuvRYK3K4ON3yYwd4K890frgT5LHKaDRQpqagWI4OP5ajWKtJyWY2HYD0 /8yiml9H48GIVfh+sDAM3WK6U+p10s9QGZUNpfKOLWWgBvtLgkk/gM+o7wOHZt3Fzxig Yr/8Fw7Q3TZEKSANBsubO2k9jxBPcEqfOsJWCRg/gXdT0QtQmErz8kuA8z1F/QDvYddB giIQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:cc:to:subject :message-id:date:from:in-reply-to:references:mime-version :dkim-signature; bh=X3Qi4zy5Gr75S42BE9xiiVJqsuIBs35w8Y4EM5LQQNY=; b=vbXyZMhQTkxjuypfzioBVExMLuOLA9uzX6y8TO56JsU1HKSy0L72cMjPTMDh4z/Jgw sQigcr3PVZ6oAclnFIP0LTR6e/GV87js27nWxAnQcmpj5SbCL5/h+rZUyC4dh0povI+X 03Qo/ZvnAEYVJEMhoeMDGgPVViKSlrcb0rGhxxVBU0z4iQRsf+Sg83hVTDQu9fH57flA hxywtYPfHmtB8OmvtaHQ9TfGNz1xq4G9OWoHmBeVPwveN8tHC8J28mSZS1yk8VIgTEcX mP3mLhGjyPGYmOeJcD19mflfKNnin9LEjSbkU2PfaMs+8SVnw4Svfh2vUwelietpcL5T dFzQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@google.com header.s=20221208 header.b=KlTPYcQJ; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id e12-20020a63aa0c000000b0054fcdd04604si4005978pgf.387.2023.06.21.14.28.27; Wed, 21 Jun 2023 14:28:39 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@google.com header.s=20221208 header.b=KlTPYcQJ; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S230103AbjFUUqt (ORCPT + 99 others); Wed, 21 Jun 2023 16:46:49 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:59740 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229655AbjFUUqr (ORCPT ); Wed, 21 Jun 2023 16:46:47 -0400 Received: from mail-qv1-xf2f.google.com (mail-qv1-xf2f.google.com [IPv6:2607:f8b0:4864:20::f2f]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id E1DA019A6 for ; Wed, 21 Jun 2023 13:46:46 -0700 (PDT) Received: by mail-qv1-xf2f.google.com with SMTP id 6a1803df08f44-62fe192f7d3so58488966d6.3 for ; Wed, 21 Jun 2023 13:46:46 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20221208; t=1687380406; x=1689972406; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=X3Qi4zy5Gr75S42BE9xiiVJqsuIBs35w8Y4EM5LQQNY=; b=KlTPYcQJVDU0wrNlvuOhxxoVr9cZ2HoxP47XbMf7/fWWISuGM6n62tPPGxrLdAKOYo +GteKiCQO74tyats+2/dW3h58DD82+GpVOWudzMbITeqUJev4mbtn2hFfbjk5bQYqurU CKlZLiu9Xl2RB5zQR4B5B1KBf0OlygsLL8vVRkZ+xi0bBXTvBvPyKTDa+YD9NDGuDE3v TfH5toEDnV5W1xwxF0HpXWoydJoTs/FUQBfF54AAZ1msPo+mcw6uNs7mCro2z6jMffHg vQmIvUjmNGNBylz7I4OlkmeO8slu+mIUdcIFIsNxcRYcQOXNcyO65WQEWfO+3mF65TY8 DdBg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1687380406; x=1689972406; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=X3Qi4zy5Gr75S42BE9xiiVJqsuIBs35w8Y4EM5LQQNY=; b=cFnoJ19XdkiA8LX7mwrUVj6aClErrRet9ASnh/OdT9mvZAOLrIVevlM1ihaHWV45bk jSPurYoVFp9i1IgBcE3Gz4u6TltDaMRNREFpo1L0BnEOPhjoDtlpOTt9p/XvZQqHzF72 ifGMLggmL7DUba52DMjB5Ult6APtzVS3tOKXgWdILzET3GnlCxtPt4L9sH+l/rEE/ZVI nHiX0Q1oyUDyr3UlSDYuLcJkV5VCEQRYzsDL+w+JF9YOt/dCxnMGSKtMUzlWl4VcHX6H mybCaEfpk5Y9FsILNuje0BuQgRa9BdQ9J+IL5e7mBR4f9gAcze4RT6Oe+Al60oMeuY86 R1SA== X-Gm-Message-State: AC+VfDy3xhgGXhVqWzTGtI8mYQ2sVnfhvR/T60QyXGOgkYGN+KL0jInW EvhBZmsXERoRzou2vZhw0iG0HOwUwjHYmwCHsyXoGw== X-Received: by 2002:a05:6214:f23:b0:631:e696:7b6 with SMTP id iw3-20020a0562140f2300b00631e69607b6mr11969303qvb.53.1687380405803; Wed, 21 Jun 2023 13:46:45 -0700 (PDT) MIME-Version: 1.0 References: <20230619231142.0000134a.zhi.wang.linux@gmail.com> In-Reply-To: From: Vishal Annapurve Date: Wed, 21 Jun 2023 13:46:34 -0700 Message-ID: Subject: Re: [RFC PATCH 0/6] KVM: guest memory: Misc enhacnement To: "Dong, Eddie" Cc: Zhi Wang , "Yamahata, Isaku" , "kvm@vger.kernel.org" , "linux-kernel@vger.kernel.org" , "isaku.yamahata@gmail.com" , Paolo Bonzini , "Aktas, Erdem" , "Christopherson,, Sean" , "Shahar, Sagi" , David Matlack , "Huang, Kai" , "Chen, Bo2" , "linux-coco@lists.linux.dev" , Chao Peng , Ackerley Tng , Michael Roth Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Spam-Status: No, score=-17.6 required=5.0 tests=BAYES_00,DKIMWL_WL_MED, DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF, ENV_AND_HDR_SPF_MATCH,RCVD_IN_DNSWL_NONE,SPF_HELO_NONE,SPF_PASS, T_SCC_BODY_TEXT_LINE,URIBL_BLOCKED,USER_IN_DEF_DKIM_WL, USER_IN_DEF_SPF_WL autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Wed, Jun 21, 2023 at 11:20=E2=80=AFAM Dong, Eddie = wrote: > > > > > -----Original Message----- > > From: Vishal Annapurve > > Sent: Monday, June 19, 2023 2:55 PM > > To: Zhi Wang > > Cc: Yamahata, Isaku ; kvm@vger.kernel.org; > > linux-kernel@vger.kernel.org; isaku.yamahata@gmail.com; Paolo Bonzini > > ; Aktas, Erdem ; > > Christopherson,, Sean ; Shahar, Sagi > > ; David Matlack ; Huang, Kai > > ; Chen, Bo2 ; linux- > > coco@lists.linux.dev; Chao Peng ; Ackerley > > Tng ; Michael Roth > > Subject: Re: [RFC PATCH 0/6] KVM: guest memory: Misc enhacnement > > > > On Mon, Jun 19, 2023 at 1:11=E2=80=AFPM Zhi Wang > > wrote: > > > > > > On Mon, 19 Jun 2023 12:11:50 -0700 > ... > > > > Protected VM effort is about being able to have guest memory ranges not > > mapped into Userspace VMM and so are unreachable for most of the cases > > from KVM as well. Non-CC VMs can use this support to mitigate any > > unintended accesses from userspace VMM/KVM possibly using enlightened > > kernels. > > "PROTECTED" seems to be not very close to what you mean here. "PROTECTED_= MEM" ? > What case of non-CC VMs may use this feature in reality? Or do you have = any expected cases? > Similar to pKvm efforts [1], PROTECTED_VM functionality may be used to unmap guest memory ranges from the host and userspace VMM on x86 platforms. If the KVM/host kernel and the guest VMs are enlightened for this usecase, then it should be possible to deploy this feature for normal VMs irrespective of the platforms they are running on. Primary usecase here would be to prevent unintended accesses from KVM/userspace VMM which would normally go undetected at runtime or are hard to trace back to the original culprit. [1] https://source.android.com/docs/core/virtualization/architecture#hyperv= isor