On Wed, Feb 03, 2016 at 08:04:16AM +0000, Tian, Kevin wrote: > > From: Zhiyuan Lv > > Sent: Tuesday, February 02, 2016 3:35 PM > > > > Hi Gerd/Alex, > > > > On Mon, Feb 01, 2016 at 02:44:55PM -0700, Alex Williamson wrote: > > > On Mon, 2016-02-01 at 14:10 +0100, Gerd Hoffmann wrote: > > > > Hi, > > > > > > > > > > Unfortunately it's not the only one. Another example is, device-model > > > > > > may want to write-protect a gfn (RAM). In case that this request goes > > > > > > to VFIO .. how it is supposed to reach KVM MMU? > > > > > > > > > > Well, let's work through the problem. How is the GFN related to the > > > > > device? Is this some sort of page table for device mappings with a base > > > > > register in the vgpu hardware? > > > > > > > > IIRC this is needed to make sure the guest can't bypass execbuffer > > > > verification and works like this: > > > > > > > > (1) guest submits execbuffer. > > > > (2) host makes execbuffer readonly for the guest > > > > (3) verify the buffer (make sure it only accesses resources owned by > > > > the vm). > > > > (4) pass on execbuffer to the hardware. > > > > (5) when the gpu is done with it make the execbuffer writable again. > > > > > > Ok, so are there opportunities to do those page protections outside of > > > KVM? We should be able to get the vma for the buffer, can we do > > > something with that to make it read-only. Alternatively can the vgpu > > > driver copy it to a private buffer and hardware can execute from that? > > > I'm not a virtual memory expert, but it doesn't seem like an > > > insurmountable problem. Thanks, > > > > Originally iGVT-g used write-protection for privilege execbuffers, as Gerd > > described. Now the latest implementation has removed wp to do buffer copy > > instead, since the privilege command buffers are usually small. So that part > > is fine. > > > > But we need write-protection for graphics page table shadowing as well. Once > > guest driver modifies gpu page table, we need to know that and manipulate > > shadow page table accordingly. buffer copy cannot help here. Thanks! > > > > > 4) Map/unmap guest memory > -- > It's there for KVM. > > 5) Pin/unpin guest memory > -- > IGD or any PCI passthru should have same requirement. So we should be > able to leverage existing code in VFIO. The only tricky thing (Jike may > elaborate after he is back), is that KVMGT requires to pin EPT entry too, > which requires some further change in KVM side. But I'm not sure whether > it still holds true after some design changes made in this thread. So I'll > leave to Jike to further comment. > Hi Kevin, I think you should be able to map and pin guest memory via the IOMMU API, not KVM. > Well, then I realize pretty much opens have been covered with a solution > when ending this write-up. Then we should move forward to come up a > prototype upon which we can then identify anything missing or overlooked > (definitely there would be), and also discuss several remaining opens atop > (such as exit-less emulation, pin/unpin, etc.). Another thing we need > to think is whether this new design is still compatible to Xen side. > > Thanks a lot all for the great discussion (especially Alex with many good > inputs)! I believe it becomes much clearer now than 2 weeks ago, about > how to integrate KVMGT with VFIO. :-) > It is great to see you guys are onboard with VFIO solution! As Kirti has mentioned in other threads, let's review the current registration APIs and figure out what we need to add for both solutions. Thanks, Neo > Thanks > Kevin > -- > To unsubscribe from this list: send the line "unsubscribe kvm" in > the body of a message to majordomo@xxxxxxxxxxxxxxx > More majordomo info at http://vger.kernel.org/majordomo-info.html -- To unsubscribe from this list: send the line "unsubscribe kvm" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html