Re: [RFC PATCH 5/9] x86/bugs: Use Virtual MSRs to request hardware mitigations

From: Sean Christopherson
Date: Mon Dec 19 2022 - 12:14:16 EST

Next message: Jakub Kicinski: "Re: [PATCH v7 net-next 0/5] add PLCA RS support and onsemi NCN26000"
Previous message: Paul Gazzillo: "[PATCH] octeontx2_pf: Select NET_DEVLINK when enabling OCTEONTX2_PF"
In reply to: Chao Gao: "Re: [RFC PATCH 5/9] x86/bugs: Use Virtual MSRs to request hardware mitigations"
Next in thread: Chao Gao: "Re: [RFC PATCH 5/9] x86/bugs: Use Virtual MSRs to request hardware mitigations"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Dec 19, 2022, Chao Gao wrote:
> On Wed, Dec 14, 2022 at 08:18:17PM +0000, Sean Christopherson wrote:
> > To me, this looks like Intel is foisting a paravirt interface on KVM and other
> > hypervisors without collaborating with said hypervisors' developers and maintainers.
> >
> >I get that some of the mitigations are vendor specific, but things like RETPOLINE
> >aren't vendor specific. I haven't followed all of the mitigation stuff very
> >closely, but I wouldn't be surprised if there are mitigations now or in the future
> >that are common across architectures, e.g. arm64 and x86-64. Intel doing its own
> >thing means AMD and arm64 will likely follow suit, and suddenly KVM is supporting
> >multiple paravirt interfaces for very similar things, without having any control
> >over the APIs. That's all kinds of backwards.
>
> But if the interface is defined by KVM rather than Intel, it will likely end up
> with different interfaces for different VMMs, then Linux guest needs to support
> all of them. And KVM needs to implement Hyper-V's and Xen's interface to support
> Hyper-V enlightened and Xen enlightened guest. This is a _real_ problem and
> complicates KVM/Linux in a similar way as multiple paravirt interfaces.

I never said the PV interfaces should be defined by KVM. I 100% agree that any
one hypervisor defining its own interface will suffer the same problem.

I think having a PV interface for coordinating mitigations between host and guest
is a great idea. What I don't like is tying the interface to "hardware" and defining
the interface without even trying to collaborate with others.

> The use case of this paravirt interface is specific to Intel CPU microarchitecture.

Well yeah, because the interface was designed only to work for Intel CPUs.

> Supporting multiple paravirt interfaces may not happen in the near future if there
> is no use case for AMD and arm64.

I'll take that bet. The vast majority of problems that are solved by PV interfaces
are common to all architectures and vendors, e.g. steal time, PV spinlocks, async
page faults, directed yield, confidential VMs (GHCB vs. GHCI), etc. I highly doubt
Intel is the only hardware vendor that will ever benefit from paravirtualizing
mitigations.

Next message: Jakub Kicinski: "Re: [PATCH v7 net-next 0/5] add PLCA RS support and onsemi NCN26000"
Previous message: Paul Gazzillo: "[PATCH] octeontx2_pf: Select NET_DEVLINK when enabling OCTEONTX2_PF"
In reply to: Chao Gao: "Re: [RFC PATCH 5/9] x86/bugs: Use Virtual MSRs to request hardware mitigations"
Next in thread: Chao Gao: "Re: [RFC PATCH 5/9] x86/bugs: Use Virtual MSRs to request hardware mitigations"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]