[PATCHv4 10/14] x86/tdx: Convert shared memory back to private on kexec
Edgecombe, Rick P
rick.p.edgecombe at intel.com
Wed Dec 6 10:32:11 PST 2023
On Wed, 2023-12-06 at 18:07 +0300, kirill.shutemov at linux.intel.com
wrote:
> I can't think of any non-ridiculous way to handle this case. Maybe
> we
> > need VMM help.
>
> Do you see a specific way how VMM can help here?
I didn't have a specific idea. I was just thinking that the problem is
that guest doesn't know the exact private/shared state of the GFNs
because of the potentially interrupted conversion processes. But the
VMM does have this information.
What about something like: The VMM could expose something like MapGPA
that searches for a shared GPA and return it. So you ask it to convert
the next shared GPA it can find to private and it searches (in the
host) the xarray stuff to find a GPA that is shared. Then in the guest,
it has a shared GPA and check the direct map PTE to reset, and accept.
The guest could call the new MapGPA-like hypercall in a loop until all
GPAs are reset.
> > I'd still wonder about if anything might try to
> > access a shared page triggered by the console output.
>
> set_memory_np() would make it obvious if it ever happens.
I think this is a worthwhile improvement over the existing complete
lack of support, but it's not race free. With the barrier comments, and
given the lack of good alternatives:
Reviewed-by: Rick Edgecombe <rick.p.edgecombe at intel.com>
More information about the kexec
mailing list