[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH 7/9] x86/hvm: Disable MPX by default

To: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>
From: Jan Beulich <jbeulich@xxxxxxxx>
Date: Wed, 17 Jun 2020 13:24:15 +0200
Cc: Xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxxx>, Ian Jackson <Ian.Jackson@xxxxxxxxxx>, Paul Durrant <paul@xxxxxxx>, Wei Liu <wl@xxxxxxx>, Roger Pau Monné <roger.pau@xxxxxxxxxx>
Delivery-date: Wed, 17 Jun 2020 11:24:23 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On 17.06.2020 13:16, Andrew Cooper wrote:
> On 17/06/2020 11:32, Jan Beulich wrote:
>> On 16.06.2020 18:15, Andrew Cooper wrote:
>>> On 16/06/2020 10:33, Jan Beulich wrote:
>>>> On 15.06.2020 16:15, Andrew Cooper wrote:
>>>>> @@ -479,6 +497,18 @@ int xc_cpuid_apply_policy(xc_interface *xch, 
>>>>> uint32_t domid, bool restore,
>>>>>          goto out;
>>>>>      }
>>>>>  
>>>>> +    /*
>>>>> +     * Account for feature which have been disabled by default since Xen 
>>>>> 4.13,
>>>>> +     * so migrated-in VM's don't risk seeing features disappearing.
>>>>> +     */
>>>>> +    if ( restore )
>>>>> +    {
>>>>> +        if ( di.hvm )
>>>>> +        {
>>>>> +            p->feat.mpx = test_bit(X86_FEATURE_MPX, host_featureset);
>>>> Why do you derive this from the host featureset instead of the max
>>>> one for the guest type?
>>> Because that is how the logic worked for 4.13.
>>>
>>> Also, because we don't have easy access to the actual guest max
>>> featureset at this point.  I could add two new sysctl subops to
>>> get_featureset, but the reason for not doing so before are still
>>> applicable now.
>>>
>>> There is a theoretical case where host MPX is visible but guest max is
>>> hidden, and that is down to the vmentry controls.  As this doesn't exist
>>> in real hardware, I'm not terribly concerned about it.
>> I'd also see us allow features to be kept for the host, but masked
>> off of the/some guest feature sets, by way of a to-be-introduced
>> command line option.
> 
> What kind of usecase do you have in mind for this?  We've got a load of
> features which are blanket disabled for guests.  I suppose `ler` et al
> ought to have an impact, except for the fact that LBR at that level
> isn't architectural and always expected.

What I was thinking of was the kind of "none of my guests should use
AVX512 - let me disable it globally, rather than individually in
each guest's config" approach. Of course AVX512 is something we use
in Xen only to emulate guest insns, but I think the example still
serves the purpose.

Jan

Follow-Ups:
- Re: [PATCH 7/9] x86/hvm: Disable MPX by default
  - From: Andrew Cooper

References:
- [PATCH for-4.14 0/9] XSA-320 follow for IvyBridge
  - From: Andrew Cooper
- [PATCH 7/9] x86/hvm: Disable MPX by default
  - From: Andrew Cooper
- Re: [PATCH 7/9] x86/hvm: Disable MPX by default
  - From: Jan Beulich
- Re: [PATCH 7/9] x86/hvm: Disable MPX by default
  - From: Andrew Cooper
- Re: [PATCH 7/9] x86/hvm: Disable MPX by default
  - From: Jan Beulich
- Re: [PATCH 7/9] x86/hvm: Disable MPX by default
  - From: Andrew Cooper

Prev by Date: Re: [PATCH 9/9] x86/spec-ctrl: Hide RDRAND by default on IvyBridge
Next by Date: Re: [PATCH 7/9] x86/hvm: Disable MPX by default
Previous by thread: Re: [PATCH 7/9] x86/hvm: Disable MPX by default
Next by thread: Re: [PATCH 7/9] x86/hvm: Disable MPX by default
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.