From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from mail-yw1-f202.google.com (mail-yw1-f202.google.com [209.85.128.202])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id F1E15153BC3
	for <linux-kernel@vger.kernel.org>; Mon, 22 Apr 2024 17:01:18 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=209.85.128.202
ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1713805281; cv=none; b=i6xBGcF5dDUaBUmIZA7D2HYBlnichHrqbTM9FW9O3mmJnRqiFfvpSFo/iXAzWeedOjTPAH3heWRVdeD6lWzzkSOl1zpRKn20zqr/+r6yBA4Q9z94yMvXzMAdkQ458LFyIZ2OgU4qosYMw1DO+bCw54W/pNzwrUNK5iGfqDUg8Vo=
ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1713805281; c=relaxed/simple;
	bh=tFtTqcaa3UL3gUHgYz3SnGVDhY1APQClW8vbGEb5RYA=;
	h=Date:In-Reply-To:Mime-Version:References:Message-ID:Subject:From:
	 To:Cc:Content-Type; b=gpqznC3YO4LwWQ5vN2OUkk1f9M3p6xyA7W/U4bKpbwrSjkPW754kGs4+T5fuRd1nws+hE/uPAEFZxeRLigAksXUtv/4DlO0+cJe9FWtaPcuW5GBv3y/d2cuLH/b659wWXTlA726/ebiM4yhN6z2MELr+HArRfyTyZ6UbYdW7sf8=
ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=pass (p=reject dis=none) header.from=google.com; spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com; dkim=pass (2048-bit key) header.d=google.com header.i=@google.com header.b=KY1xfZkb; arc=none smtp.client-ip=209.85.128.202
Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=google.com header.i=@google.com header.b="KY1xfZkb"
Received: by mail-yw1-f202.google.com with SMTP id 00721157ae682-61ab19438a3so86619907b3.1
        for <linux-kernel@vger.kernel.org>; Mon, 22 Apr 2024 10:01:18 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20230601; t=1713805278; x=1714410078; darn=vger.kernel.org;
        h=content-transfer-encoding:cc:to:from:subject:message-id:references
         :mime-version:in-reply-to:date:from:to:cc:subject:date:message-id
         :reply-to;
        bh=FZ7fYvxgvMd9WAE1xHWyeLUfwlp+MDVvS9r+qsqhFSI=;
        b=KY1xfZkbOljrZD701zOJWld9owj3vpNIVLtoK3jsx4R6QSEOFXSA+3Fm19KCPKkuAl
         yFSSQHFoTQdM0WFL7D3/dtZqkm9hxOuYSJteP66JtE8GNllyI2zwF+m1kd9KFIdbPTQY
         YXRcuYFU8i1+k9vefruTbjuDmKrH1QvaT4FxKq0z+8+8KUW25apnuNfFw0rtJAsHK6Hz
         kKZ+gSanAGB1ZJ4YH/R44wluLCgC18bGpB6o72MNTMcaL+vi1AMvT+P0WB9eJOCR63BG
         dj08DB8VJ8tKKY37Wnt4U8DphFvdzA6ADMHa0Mz+rMcQEIb/Lf/kUOon2ciex1cUGaK+
         XzfQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1713805278; x=1714410078;
        h=content-transfer-encoding:cc:to:from:subject:message-id:references
         :mime-version:in-reply-to:date:x-gm-message-state:from:to:cc:subject
         :date:message-id:reply-to;
        bh=FZ7fYvxgvMd9WAE1xHWyeLUfwlp+MDVvS9r+qsqhFSI=;
        b=pj+ObHdrQC77rgv82K+qQX9OgjRStrIiXlWJDq1ZwPvySS2ur+VNYjv6XPIDGxmeAc
         17yzVkbkIvLRA4b/ptGIOhCR4RB8QR2xTzqCxpsNM0KC3nDrOb0FbvvzF0ca86pVitbN
         HCjxFlcGAMNpnlolGCQrjKXROLPmAs95dYT8Ay5vohlzWIObksMtaUEnaT/BXRPzO+7t
         7c1j0S9Is6IQVUCryJSUkm38Ytn3Y3WmgMx/QciOuVeo3gxU1McHiwyIXewkXAcly3bm
         rJeyXIdLeWs3HL51mqTOOuke+yDu/Fh7lqC7wVmBWEa2Rdi56PPI61B293J+DWN3ae8l
         F4Wg==
X-Forwarded-Encrypted: i=1; AJvYcCW5Z/w8msdoq/tQWFSoflceXz55gP81zcBxdbm0GtBrajwI1/jdZbHv8OqYKpZt2vDBxN33DELFfdzOJUEt5yjxQH2+7cBUeplzJWNj
X-Gm-Message-State: AOJu0Yz2iJi3F/KB1WeCfY0E5ysLDhLGzoKEjqPdXVcZgV3Yjv7FICdC
	7RB7Mu+4xXjs9hvN5bDCM/Fxf7pyahJXYy4KMz1dCW9xew/FkLLIU6RtLk+9n8yug5auBkl81P+
	fkQ==
X-Google-Smtp-Source: AGHT+IHxPMIKb+cXXFc3JSk+qqDotC8cWUwgp6OnLCVbJKSb7mac0sVKwo0ojDibXTLNBvO5Jg4rAs0+vxA=
X-Received: from zagreus.c.googlers.com ([fda3:e722:ac3:cc00:7f:e700:c0a8:5c37])
 (user=seanjc job=sendgmr) by 2002:a0d:d649:0:b0:615:80c8:94eb with SMTP id
 y70-20020a0dd649000000b0061580c894ebmr2287195ywd.10.1713805278077; Mon, 22
 Apr 2024 10:01:18 -0700 (PDT)
Date: Mon, 22 Apr 2024 10:01:16 -0700
In-Reply-To: <4d60384a-11e0-2f2b-a568-517b40c91b25@loongson.cn>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
Mime-Version: 1.0
References: <18b19dd4-6d76-4ed8-b784-32436ab93d06@linux.intel.com>
 <Zhn9TGOiXxcV5Epx@google.com> <4c47b975-ad30-4be9-a0a9-f0989d1fa395@linux.intel.com>
 <CAL715WJXWQgfzgh8KqL+pAzeqL+dkF6imfRM37nQ6PkZd09mhQ@mail.gmail.com>
 <737f0c66-2237-4ed3-8999-19fe9cca9ecc@linux.intel.com> <CAL715W+RKCLsByfM3-0uKBWdbYgyk_hou9oC+mC9H61yR_9tyw@mail.gmail.com>
 <Zh1mKoHJcj22rKy8@google.com> <CAL715WJf6RdM3DQt995y4skw8LzTMk36Q2hDE34n3tVkkdtMMw@mail.gmail.com>
 <Zh2uFkfH8BA23lm0@google.com> <4d60384a-11e0-2f2b-a568-517b40c91b25@loongson.cn>
Message-ID: <ZiaX3H3YfrVh50cs@google.com>
Subject: Re: [RFC PATCH 23/41] KVM: x86/pmu: Implement the save/restore of PMU
 state for Intel CPU
From: Sean Christopherson <seanjc@google.com>
To: maobibo <maobibo@loongson.cn>
Cc: Mingwei Zhang <mizhang@google.com>, Dapeng Mi <dapeng1.mi@linux.intel.com>, 
	Xiong Zhang <xiong.y.zhang@linux.intel.com>, pbonzini@redhat.com, peterz@infradead.org, 
	kan.liang@intel.com, zhenyuw@linux.intel.com, jmattson@google.com, 
	kvm@vger.kernel.org, linux-perf-users@vger.kernel.org, 
	linux-kernel@vger.kernel.org, zhiyuan.lv@intel.com, eranian@google.com, 
	irogers@google.com, samantha.alt@intel.com, like.xu.linux@gmail.com, 
	chao.gao@intel.com
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable

On Mon, Apr 22, 2024, maobibo wrote:
> On 2024/4/16 =E4=B8=8A=E5=8D=886:45, Sean Christopherson wrote:
> > On Mon, Apr 15, 2024, Mingwei Zhang wrote:
> > > On Mon, Apr 15, 2024 at 10:38=E2=80=AFAM Sean Christopherson <seanjc@=
google.com> wrote:
> > > > One my biggest complaints with the current vPMU code is that the ro=
les and
> > > > responsibilities between KVM and perf are poorly defined, which lea=
ds to suboptimal
> > > > and hard to maintain code.
> > > >=20
> > > > Case in point, I'm pretty sure leaving guest values in PMCs _would_=
 leak guest
> > > > state to userspace processes that have RDPMC permissions, as the PM=
Cs might not
> > > > be dirty from perf's perspective (see perf_clear_dirty_counters()).
> > > >=20
> > > > Blindly clearing PMCs in KVM "solves" that problem, but in doing so=
 makes the
> > > > overall code brittle because it's not clear whether KVM _needs_ to =
clear PMCs,
> > > > or if KVM is just being paranoid.
> > >=20
> > > So once this rolls out, perf and vPMU are clients directly to PMU HW.
> >=20
> > I don't think this is a statement we want to make, as it opens a discus=
sion
> > that we won't win.  Nor do I think it's one we *need* to make.  KVM doe=
sn't need
> > to be on equal footing with perf in terms of owning/managing PMU hardwa=
re, KVM
> > just needs a few APIs to allow faithfully and accurately virtualizing a=
 guest PMU.
> >=20
> > > Faithful cleaning (blind cleaning) has to be the baseline
> > > implementation, until both clients agree to a "deal" between them.
> > > Currently, there is no such deal, but I believe we could have one via
> > > future discussion.
> >=20
> > What I am saying is that there needs to be a "deal" in place before thi=
s code
> > is merged.  It doesn't need to be anything fancy, e.g. perf can still p=
ave over
> > PMCs it doesn't immediately load, as opposed to using cpu_hw_events.dir=
ty to lazily
> > do the clearing.  But perf and KVM need to work together from the get g=
o, ie. I
> > don't want KVM doing something without regard to what perf does, and vi=
ce versa.
> >=20
> There is similar issue on LoongArch vPMU where vm can directly pmu hardwa=
re
> and pmu hw is shard with guest and host. Besides context switch there are
> other places where perf core will access pmu hw, such as tick
> timer/hrtimer/ipi function call, and KVM can only intercept context switc=
h.

Two questions:

 1) Can KVM prevent the guest from accessing the PMU?

 2) If so, KVM can grant partial access to the PMU, or is it all or nothing=
?

If the answer to both questions is "yes", then it sounds like LoongArch *re=
quires*
mediated/passthrough support in order to virtualize its PMU.

> Can we add callback handler in structure kvm_guest_cbs?  just like this:
> @@ -6403,6 +6403,7 @@ static struct perf_guest_info_callbacks kvm_guest_c=
bs
> =3D {
>         .state                  =3D kvm_guest_state,
>         .get_ip                 =3D kvm_guest_get_ip,
>         .handle_intel_pt_intr   =3D NULL,
> +       .lose_pmu               =3D kvm_guest_lose_pmu,
>  };
>=20
> By the way, I do not know should the callback handler be triggered in per=
f
> core or detailed pmu hw driver. From ARM pmu hw driver, it is triggered i=
n
> pmu hw driver such as function kvm_vcpu_pmu_resync_el0,
> but I think it will be better if it is done in perf core.

I don't think we want to take the approach of perf and KVM guests "fighting=
" over
the PMU.  That's effectively what we have today, and it's a mess for KVM be=
cause
it's impossible to provide consistent, deterministic behavior for the guest=
.  And
it's just as messy for perf, which ends up having wierd, cumbersome flows t=
hat
exists purely to try to play nice with KVM.