On Mon, 2023-10-16 at 19:10 -0500, Haitao Huang wrote: > On Mon, 16 Oct 2023 16:09:52 -0500, Huang, Kai <kai.huang@xxxxxxxxx> wrote: > [...] > > > still need to fix the bug mentioned above here. > > > > I really think you should just go this simple way: > > > > When you want to take EPC back from VM, kill the VM. > > > > My only concern is that this is a compromise due to current limitation (no > other sane way to take EPC from VMs). If we define this behavior and it > becomes a contract to user space, then we can't change in future. Why do we need to "define such behaviour"? This isn't some kinda of kernel/userspace ABI IMHO, but only kernel internal implementation. Here VM is similar to normal host enclaves. You limit the resource, some host enclaves could be killed. Similarly, VM could also be killed too. And supporting VMM EPC oversubscription doesn't mean VM won't be killed. The VM can still be a target to kill after VM's all EPC pages have been swapped out. > > On the other hand, my understanding the reason you want this behavior is > to enforce EPC limit at runtime. > No I just thought this is a bug/issue needs to be fixed. If anyone believes this is not a bug/issue then it's a separate discussion.