Commit 852f0048f3 ("RAMBlock: make guest_memfd require uncoordinated

discard") effectively disables device assignment when using guest_memfd.

This poses a significant challenge as guest_memfd is essential for

confidential guests, thereby blocking device assignment to these VMs.

The initial rationale for disabling device assignment was due to stale

IOMMU mappings (see Problem section) and the assumption that TEE I/O

(SEV-TIO, TDX Connect, COVE-IO, etc.) would solve the device-assignment

problem for confidential guests [1]. However, this assumption has proven

to be incorrect. TEE I/O relies on the ability to operate devices against

"shared" or untrusted memory, which is crucial for device initialization

and error recovery scenarios. As a result, the current implementation does

not adequately support device assignment for confidential guests, necessitating

a reevaluation of the approach to ensure compatibility and functionality.

This series enables shared device assignment by notifying VFIO of page

conversions using an existing framework named RamDiscardListener.

Additionally, there is an ongoing patch set [2] that aims to add 1G page

support for guest_memfd. This patch set introduces in-place page conversion,

where private and shared memory share the same physical pages as the backend.

This development may impact our solution.

We presented our solution in the guest_memfd meeting to discuss its

compatibility with the new changes and potential future directions (see [3]

for more details). The conclusion was that, although our solution may not be

the most elegant (see the Limitation section), it is sufficient for now and

can be easily adapted to future changes.

We are re-posting the patch series with some cleanup and have removed the RFC

label for the main enabling patches (1-6). The newly-added patch 7 is still

marked as RFC as it tries to resolve some extension concerns related to

RamDiscardManager for future usage.

The overview of the patches:

- Patch 1: Export a helper to get intersection of a MemoryRegionSection

with a given range.

- Patch 2-6: Introduce a new object to manage the guest-memfd with

RamDiscardManager, and notify the shared/private state change during

conversion.

- Patch 7: Try to resolve a semantics concern related to RamDiscardManager

i.e. RamDiscardManager is used to manage memory plug/unplug state

instead of shared/private state. It would affect future users of

RamDiscardManger in confidential VMs. Attach it behind as a RFC patch[4].

Changes since last version:

- Add a patch to export some generic helper functions from virtio-mem code.

- Change the bitmap in guest_memfd_manager from default shared to default

private. This keeps alignment with virtio-mem that 1-setting in bitmap

represents the populated state and may help to export more generic code

if necessary.

- Add the helpers to initialize/uninitialize the guest_memfd_manager instance

to make it more clear.

- Add a patch to distinguish between the shared/private state change and

the memory plug/unplug state change in RamDiscardManager.

- RFC: https://lore.kernel.org/qemu-devel/20240725072118.358923-1-chenyi.qiang@intel.com/

private memory. The key differences between guest_memfd and normal memfd

are that guest_memfd is spawned by a KVM ioctl, bound to its owner VM and

cannot be mapped, read or written by userspace.

In QEMU's implementation, shared memory is allocated with normal methods

(e.g. mmap or fallocate) while private memory is allocated from

guest_memfd. When a VM performs memory conversions, QEMU frees pages via

madvise() or via PUNCH_HOLE on memfd or guest_memfd from one side and

allocates new pages from the other side.

Problem

=======

Device assignment in QEMU is implemented via VFIO system. In the normal

VM, VM memory is pinned at the beginning of time by VFIO. In the

confidential VM, the VM can convert memory and when that happens

nothing currently tells VFIO that its mappings are stale. This means

that page conversion leaks memory and leaves stale IOMMU mappings. For

example, sequence like the following can result in stale IOMMU mappings:

1. allocate shared page

2. convert page shared->private

3. discard shared page

4. convert page private->shared

5. allocate shared page

6. issue DMA operations against that shared page

After step 3, VFIO is still pinning the page. However, DMA operations in

step 6 will hit the old mapping that was allocated in step 1, which

causes the device to access the invalid data.

on page conversion.

Given the constraints and assumptions here is a solution that satisfied

the use cases. RamDiscardManager, an existing interface currently

utilized by virtio-mem, offers a means to modify IOMMU mappings in

accordance with VM page assignment. Page conversion is similar to

hot-removing a page in one mode and adding it back in the other.

This series implements a RamDiscardManager for confidential VMs and

utilizes its infrastructure to notify VFIO of page conversions.

Another possible attempt [5] was to not discard shared pages in step 3

above. This was an incomplete band-aid because guests would consume

twice the memory since shared pages wouldn't be freed even after they

were converted to private.

w/ in-place page conversion

===========================

To support 1G page support for guest_memfd, the current direction is to

operations and the page conversion. This series can be adjusted to achieve

One limitation (also discussed in the guest_memfd meeting) is that VFIO

expects the DMA mapping for a specific IOVA to be mapped and unmapped with

the same granularity. The guest may perform partial conversions, such as

converting a small region within a larger region. To prevent such invalid

cases, all operations are performed with 4K granularity. The possible

solutions we can think of are either to enable VFIO to support partial unmap

or to implement an enlightened guest to avoid partial conversion. The former

requires complex changes in VFIO, while the latter requires the page

conversion to be a guest-enlightened behavior. It is still uncertain which

option is a preferred one.

This patch series is tested with the KVM/QEMU branch:

KVM: https://github.com/intel/tdx/tree/tdx_kvm_dev-2024-11-20

QEMU: https://github.com/intel-staging/qemu-tdx/tree/tdx-upstream-snapshot-2024-12-13

[1] https://lore.kernel.org/all/d6acfbef-96a1-42bc-8866-c12a4de8c57c@redhat.com/

[3] https://docs.google.com/document/d/1M6766BzdY1Lhk7LiR5IqVR8B8mG3cr-cxTxOrAosPOk/edit?tab=t.0#heading=h.jr4csfgw1uql

[4] https://lore.kernel.org/qemu-devel/d299bbad-81bc-462e-91b5-a6d9c27ffe3a@redhat.com/

[5] https://lore.kernel.org/all/20240320083945.991426-20-michael.roth@amd.com/

Chenyi Qiang (7):

guest_memfd: Introduce an object to manage the guest-memfd with

guest_memfd: Introduce a callback to notify the shared/private state

change

KVM: Notify the state change event during shared/private conversion

memory: Register the RamDiscardManager instance upon guest_memfd

creation

RAMBlock: make guest_memfd require coordinate discard

memory: Add a new argument to indicate the request attribute in

RamDismcardManager helpers

accel/kvm/kvm-all.c | 4 +

hw/vfio/common.c | 22 +-

hw/virtio/virtio-mem.c | 55 ++--

include/exec/memory.h | 36 ++-

include/sysemu/guest-memfd-manager.h | 91 ++++++

migration/ram.c | 14 +-

system/guest-memfd-manager.c | 456 +++++++++++++++++++++++++++

system/memory.c | 30 +-

system/memory_mapping.c | 4 +-

system/meson.build | 1 +

system/physmem.c | 9 +-

11 files changed, 659 insertions(+), 63 deletions(-)

create mode 100644 include/sysemu/guest-memfd-manager.h

create mode 100644 system/guest-memfd-manager.c

more generic.

include/exec/memory.h | 13 +++++++++++++

system/memory.c | 17 +++++++++++++++++

3 files changed, 35 insertions(+), 27 deletions(-)

+bool memory_region_section_intersect_range(MemoryRegionSection *s,

+ uint64_t offset, uint64_t size);

+

/**

* memory_region_init: Initialize a memory region

*

diff --git a/system/memory.c b/system/memory.c

index XXXXXXX..XXXXXXX 100644

--- a/system/memory.c

+++ b/system/memory.c

@@ -XXX,XX +XXX,XX @@ void memory_region_section_free_copy(MemoryRegionSection *s)

g_free(s);

}

+bool memory_region_section_intersect_range(MemoryRegionSection *s,

+ uint64_t offset, uint64_t size)

+ uint64_t end = MIN(s->offset_within_region + int128_get64(s->size),

+ offset + size);

+ if (end <= start) {

+ s->size = int128_make64(end - start);

bool memory_region_present(MemoryRegion *container, hwaddr addr)

{

MemoryRegion *mr;

For each ram_discard_manager helper, add a new argument 'is_private' to

indicate the request attribute. If is_private is true, the operation

targets the private range in the section. For example,

replay_populate(true) will replay the populate operation on private part

in the MemoryRegionSection, while replay_popuate(false) will replay

population on shared part.

This helps to distinguish between the states of private/shared and

discarded/populated. It is essential for guest_memfd_manager which uses

RamDiscardManager interface but can't treat private memory as discarded

memory. This is because it does not align with the expectation of

current RamDiscardManager users (e.g. live migration), who expect that

discarded memory is hot-removed and can be skipped when processing guest

memory. Treating private memory as discarded won't work in the future if

live migration needs to handle private memory. For example, live

migration needs to migrate private memory.

The user of the helper needs to figure out which attribute to

manipulate. For legacy VM case, use is_private=true by default. Private

attribute is only valid in a guest_memfd based VM.

Opportunistically rename the guest_memfd_for_each_{discarded,

populated}_section() to guest_memfd_for_each_{private, shared)_section()

to distinguish between private/shared and discarded/populated at the

same time.

hw/vfio/common.c | 22 ++++++--

hw/virtio/virtio-mem.c | 23 ++++----

include/exec/memory.h | 23 ++++++--

migration/ram.c | 14 ++---

system/guest-memfd-manager.c | 106 +++++++++++++++++++++++------------

system/memory.c | 13 +++--

system/memory_mapping.c | 4 +-

7 files changed, 135 insertions(+), 70 deletions(-)

}

static void vfio_ram_discard_notify_discard(RamDiscardListener *rdl,

- MemoryRegionSection *section)

+ MemoryRegionSection *section,

+ bool is_private)

{

const hwaddr iova = section->offset_within_address_space;

int ret;

+ if (is_private) {

+ /* Not support discard private memory yet. */

+ return;

+ }

+

/* Unmap with a single call. */

ret = vfio_container_dma_unmap(bcontainer, iova, size , NULL);

if (ret) {

@@ -XXX,XX +XXX,XX @@ static void vfio_ram_discard_notify_discard(RamDiscardListener *rdl,

}

static int vfio_ram_discard_notify_populate(RamDiscardListener *rdl,

- MemoryRegionSection *section)

+ MemoryRegionSection *section,

+ bool is_private)

{

@@ -XXX,XX +XXX,XX @@ static int vfio_ram_discard_notify_populate(RamDiscardListener *rdl,

void *vaddr;

int ret;

+ if (is_private) {

+ /* Not support discard private memory yet. */

+ return 0;

+ }

+

/*

* Map in (aligned within memory region) minimum granularity, so we can

* unmap in minimum granularity later.

+ vfio_ram_discard_notify_discard(rdl, section, false);

@@ -XXX,XX +XXX,XX @@ out:

}

static int vfio_ram_discard_get_dirty_bitmap(MemoryRegionSection *section,

- void *opaque)

+ bool is_private, void *opaque)

{

const hwaddr size = int128_get64(section->size);

const hwaddr iova = section->offset_within_address_space;

+ return ram_discard_manager_replay_populated(rdm, section, false,

@@ -XXX,XX +XXX,XX @@ static int virtio_mem_notify_populate_cb(MemoryRegionSection *s, void *arg)

{

RamDiscardListener *rdl = arg;

+ return rdl->notify_populate(rdl, s, false);

}

RamDiscardListener *rdl = arg;

+ rdl->notify_discard(rdl, s, false);

+ rdl->notify_discard(rdl, &tmp, false);

}

}

+ ret = rdl->notify_populate(rdl, &tmp, false);

+ rdl2->notify_discard(rdl2, &tmp, false);

+ rdl->notify_discard(rdl, rdl->section, false);

virtio_mem_for_each_plugged_section(vmem, rdl->section, rdl,

@@ -XXX,XX +XXX,XX @@ static uint64_t virtio_mem_rdm_get_min_granularity(const RamDiscardManager *rdm,

}

static bool virtio_mem_rdm_is_populated(const RamDiscardManager *rdm,

- const MemoryRegionSection *s)

+ const MemoryRegionSection *s,

+ bool is_private)

{

const VirtIOMEM *vmem = VIRTIO_MEM(rdm);

{

struct VirtIOMEMReplayData *data = arg;

- return ((ReplayRamPopulate)data->fn)(s, data->opaque);

+ return ((ReplayRamPopulate)data->fn)(s, false, data->opaque);

}

static int virtio_mem_rdm_replay_populated(const RamDiscardManager *rdm,

+ bool is_private,

ReplayRamPopulate replay_fn,

static void virtio_mem_rdm_replay_discarded(const RamDiscardManager *rdm,

MemoryRegionSection *s,

+ bool is_private,

ReplayRamDiscard replay_fn,

void *opaque)

{

@@ -XXX,XX +XXX,XX @@ static void virtio_mem_rdm_unregister_listener(RamDiscardManager *rdm,

g_assert(rdl->section->mr == &vmem->memdev->mr);

+ rdl->notify_discard(rdl, rdl->section, false);

virtio_mem_for_each_plugged_section(vmem, rdl->section, rdl,

typedef struct RamDiscardListener RamDiscardListener;

typedef int (*NotifyRamPopulate)(RamDiscardListener *rdl,