RE: [PATCH v2 6/9] x86/hyperv: Introduce a global variable hyperv_paravisor_present

From: Dexuan Cui
Date: Wed Aug 23 2023 - 00:24:02 EST

Next message: Namhyung Kim: "Re: [PATCH v6] Documentation: userspace-api: Document perf ring buffer mechanism"
Previous message: Chen-Yu Tsai: "Re: [PATCH v2 05/11] regulator: dt-bindings: mediatek: Add MT6366 PMIC"
In reply to: Michael Kelley (LINUX): "RE: [PATCH v2 6/9] x86/hyperv: Introduce a global variable hyperv_paravisor_present"
Next in thread: Dexuan Cui: "RE: [PATCH v2 6/9] x86/hyperv: Introduce a global variable hyperv_paravisor_present"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> From: Michael Kelley (LINUX) <mikelley@xxxxxxxxxxxxx>
> Sent: Monday, August 21, 2023 12:33 PM
> [...]
> From: Dexuan Cui <decui@xxxxxxxxxxxxx> Sent: Sunday, August 20, 2023
> >
> > The new variable hyperv_paravisor_present is set only when the VM
> > is a SNP/TDX with the paravisor running: see ms_hyperv_init_platform().
> >
> > In many places, hyperv_paravisor_present can replace
>
> You said "In many places". Are there places where it can't replace
> ms_hyperv.paravisor_present? It looks like all the uses are gone
> after this patch.

Sorry for the inaccuracy. I meant to say "everywhere" rather than
"In many places". I think hyperv_paravisor_present and
ms_hyperv.paravisor_present can be used interchangeably except that
I need to use hyperv_paravisor_present in arch/x86/include/asm/mshyperv.h
to avoid the header file dependency issue.

As we discussed offline, we'll add some hypercall function structure in future
for different VM types, and then hyperv_paravisor_present and
ms_hyperv.paravisor_present would go away when we make hypercalls.

So let me use hyperv_paravisor_present only in
arch/x86/include/asm/mshyperv.h to make the patch smaller.

> > ms_hyperv.paravisor_present, and it's also used to replace
> > hv_isolation_type_snp() in drivers/hv/hv.c.
> >
> > Call hv_vtom_init() when it's a VBS VM or when hyperv_paravisor_present
> > is true (i.e. the VM is a SNP/TDX VM with the paravisor).
> >
> > Enhance hv_vtom_init() for a TDX VM with the paravisor.
> >
> > The biggest motive to introduce hyperv_paravisor_present is that we
> > can not use ms_hyperv.paravisor_present in
> arch/x86/include/asm/mshyperv.h:
> > that would introduce a complicated header file dependency issue.
>
> The discussion in this commit messages about hyperv_paravisor_present
> is a bit scattered and confusing. I think you are introducing the global
> variable
> to solve the header file dependency issue. Otherwise, the ms_hyperv field
> would be equivalent. Then you are using hyperv_paravisor_present for
> several purposes, including to decide whether to call hv_vtom_init() and
> to simplify the logic in drivers/hv/hv.c. Maybe you could reorganize
> the commit message a bit to be more direct regarding the purpose.

The new changelog will be:

x86/hyperv: Introduce a global variable hyperv_paravisor_present

The new variable hyperv_paravisor_present is set only when the VM
is a SNP/TDX VM with the paravisor running: see ms_hyperv_init_platform().

We introduce hyperv_paravisor_present because we can not use
ms_hyperv.paravisor_present in arch/x86/include/asm/mshyperv.h:

struct ms_hyperv_info is defined in include/asm-generic/mshyperv.h, which
is included at the end of arch/x86/include/asm/mshyperv.h, but at the
beginning of arch/x86/include/asm/mshyperv.h, we would already need to use
struct ms_hyperv_info in hv_do_hypercall().

We use hyperv_paravisor_present only in include/asm-generic/mshyperv.h,
and use ms_hyperv.paravisor_present elsewhere. In the future, we'll
introduce a hypercall function structure for different VM types, and
at boot time, the right function pointers would be written into the
structure so that runtime testing of TDX vs. SNP vs. normal will be
avoided and hyperv_paravisor_present will no longer be needed.

Call hv_vtom_init() when it's a VBS VM or when ms_hyperv.paravisor_present
is true, i.e. the VM is a SNP VM or TDX VM with the paravisor.

Enhance hv_vtom_init() for a TDX VM with the paravisor.

In hv_common_cpu_init(), don't decrypt the hyperv_pcpu_input_arg
for a TDX VM with the paravisor, just like we don't decrypt the page
for a SNP VM with the paravisor.

BTW, please refer to the link for the v3 version of this patch (WIP):

> > In arch/x86/include/asm/mshyperv.h, _hv_do_fast_hypercall8()
> > is changed to specially handle HVCALL_SIGNAL_EVENT for a TDX VM with
> the
> > paravisor, because such a VM must use TDX GHCI (see hv_tdx_hypercall())
> > for this hypercall. See vmbus_set_event() -> hv_do_fast_hypercall8() ->
> > _hv_do_fast_hypercall8() -> hv_tdx_hypercall().
>
> Embedding the special case for HVCALL_SIGNAL_EVENT within
> hv_do_fast_hypercall8() is not consistent with how this special case
> is handled for SNP. For SNP, the special case is coded directly into
> vmbus_set_event(). Any reason not to do the same for TDX + paravisor?

Ok, will handle it directly in vmbus_set_event().

> > @@ -497,13 +497,29 @@ int hv_snp_boot_ap(int cpu, unsigned long
> start_ip)
> >
> > void __init hv_vtom_init(void)
> > {
> > + enum hv_isolation_type type = hv_get_isolation_type();
> > /*
> > * By design, a VM using vTOM doesn't see the SEV setting,
> > * so SEV initialization is bypassed and sev_status isn't set.
> > * Set it here to indicate a vTOM VM.
> > */
>
> The above comment applies just to the case HV_ISOLATION_TYPE_SNP,
> not to the entire switch statement, so it should be moved under the
> case.

Will fix.

> > [...]
> > --- a/arch/x86/include/asm/mshyperv.h
> > +++ b/arch/x86/include/asm/mshyperv.h
[...]
> > @@ -134,7 +135,9 @@ static inline u64 _hv_do_fast_hypercall8(u64
> control, u64 input1)
> > u64 hv_status;
> >
> > #ifdef CONFIG_X86_64
> > - if (hv_isolation_type_tdx())
> > + if (hv_isolation_type_tdx() &&
> > + (!hyperv_paravisor_present ||
> > + control == (HVCALL_SIGNAL_EVENT |
> HV_HYPERCALL_FAST_BIT)))
>
> See comment above. This would be more consistent with SNP if it were
> handled directly in vmbus_set_event().

Will fix.

> > --- a/drivers/hv/connection.c
> > +++ b/drivers/hv/connection.c
> > @@ -484,7 +484,7 @@ void vmbus_set_event(struct vmbus_channel
> *channel)
> >
> > ++channel->sig_events;
> >
> > - if (hv_isolation_type_snp())
> > + if (hv_isolation_type_snp() && hyperv_paravisor_present)
>
> This code change seems to be more properly part of Patch 9 in the
> series when hv_isolation_type_en_snp() goes away.

The change here is part of the efforts to correctly support hypercalls for
a TDX VM with the paravisor. Patch 9 is just a clean-up patch, which is
not really required for a TDX VM (with or with the paravisor) to run on
Hyper-V, so IMO it's better to keep the change here in this patch.

BTW, please refer to the link for the v3 version of this patch (WIP):

Next message: Namhyung Kim: "Re: [PATCH v6] Documentation: userspace-api: Document perf ring buffer mechanism"
Previous message: Chen-Yu Tsai: "Re: [PATCH v2 05/11] regulator: dt-bindings: mediatek: Add MT6366 PMIC"
In reply to: Michael Kelley (LINUX): "RE: [PATCH v2 6/9] x86/hyperv: Introduce a global variable hyperv_paravisor_present"
Next in thread: Dexuan Cui: "RE: [PATCH v2 6/9] x86/hyperv: Introduce a global variable hyperv_paravisor_present"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]