From: Sean Christopherson <sean.j.christopherson@intel.com>
To: harry harry <hiharryharryharry@gmail.com>
Cc: Maxim Levitsky <mlevitsk@redhat.com>,
qemu-devel@nongnu.org, mathieu.tarral@protonmail.com,
stefanha@redhat.com, libvir-list@redhat.com, kvm@vger.kernel.org,
pbonzini@redhat.com
Subject: Re: Why guest physical addresses are not the same as the corresponding host virtual addresses in QEMU/KVM? Thanks!
Date: Mon, 12 Oct 2020 09:54:28 -0700 [thread overview]
Message-ID: <20201012165428.GD26135@linux.intel.com> (raw)
In-Reply-To: <CA+-xGqOm2sWbxR=3W1pWrZNLOt7EE5qiNWxMz=9=gmga15vD2w@mail.gmail.com>
On Sun, Oct 11, 2020 at 10:11:39AM -0400, harry harry wrote:
> Hi Maxim,
>
> Thanks much for your reply.
>
> On Sun, Oct 11, 2020 at 3:29 AM Maxim Levitsky <mlevitsk@redhat.com> wrote:
> >
> > On Sun, 2020-10-11 at 01:26 -0400, harry harry wrote:
> > > Hi QEMU/KVM developers,
> > >
> > > I am sorry if my email disturbs you. I did an experiment and found the
> > > guest physical addresses (GPAs) are not the same as the corresponding
> > > host virtual addresses (HVAs). I am curious about why; I think they
> > > should be the same. I am very appreciated if you can give some
> > > comments and suggestions about 1) why GPAs and HVAs are not the same
> > > in the following experiment; 2) are there any better experiments to
> > > look into the reasons? Any other comments/suggestions are also very
> > > welcome. Thanks!
> > >
> > > The experiment is like this: in a single vCPU VM, I ran a program
> > > allocating and referencing lots of pages (e.g., 100*1024) and didn't
> > > let the program terminate. Then, I checked the program's guest virtual
> > > addresses (GVAs) and GPAs through parsing its pagemap and maps files
> > > located at /proc/pid/pagemap and /proc/pid/maps, respectively. At
> > > last, in the host OS, I checked the vCPU's pagemap and maps files to
> > > find the program's HVAs and host physical addresses (HPAs); I actually
> > > checked the new allocated physical pages in the host OS after the
> > > program was executed in the guest OS.
> > >
> > > With the above experiment, I found GPAs of the program are different
> > > from its corresponding HVAs. BTW, Intel EPT and other related Intel
> > > virtualization techniques were enabled.
> > >
> > > Thanks,
> > > Harry
> > >
> > The fundemental reason is that some HVAs (e.g. QEMU's virtual memory addresses) are already allocated
> > for qemu's own use (e.g qemu code/heap/etc) prior to the guest starting up.
> >
> > KVM does though use quite effiecient way of mapping HVA's to GPA. It uses an array of arbitrary sized HVA areas
> > (which we call memslots) and for each such area/memslot you specify the GPA to map to. In theory QEMU
> > could allocate the whole guest's memory in one contiguous area and map it as single memslot to the guest.
> > In practice there are MMIO holes, and various other reasons why there will be more that 1 memslot.
>
> It is still not clear to me why GPAs are not the same as the
> corresponding HVAs in my experiment. Since two-dimensional paging
> (Intel EPT) is used, GPAs should be the same as their corresponding
> HVAs. Otherwise, I think EPT may not work correctly. What do you
> think?
No, the guest physical address spaces is not intrinsically tied to the host
virtual address spaces. The fact that GPAs and HVAs are related in KVM is a
property KVM's architecture. EPT/NPT has absolutely nothing to do with HVAs.
As Maxim pointed out, KVM links a guest's physical address space, i.e. GPAs, to
the host's virtual address space, i.e. HVAs, via memslots. For all intents and
purposes, this is an extra layer of address translation that is purely software
defined. The memslots allow KVM to retrieve the HPA for a given GPA when
servicing a shadow page fault (a.k.a. EPT violation).
When EPT is enabled, a shadow page fault due to an unmapped GPA will look like:
GVA -> [guest page tables] -> GPA -> EPT Violation VM-Exit
The above walk of the guest page tables is done in hardware. KVM then does the
following walks in software to retrieve the desired HPA:
GPA -> [memslots] -> HVA -> [host page tables] -> HPA
KVM then takes the resulting HPA and shoves it into KVM's shadow page tables,
or when TDP is enabled, the EPT/NPT page tables. When the guest is run with
TDP enabled, GVA->HPA translations look like the following, with all walks done
in hardware.
GVA -> [guest page tables] -> GPA -> [extended/nested page tables] -> HPA
WARNING: multiple messages have this Message-ID (diff)
From: Sean Christopherson <sean.j.christopherson@intel.com>
To: harry harry <hiharryharryharry@gmail.com>
Cc: kvm@vger.kernel.org, libvir-list@redhat.com,
qemu-devel@nongnu.org, Maxim Levitsky <mlevitsk@redhat.com>,
mathieu.tarral@protonmail.com, stefanha@redhat.com,
pbonzini@redhat.com
Subject: Re: Why guest physical addresses are not the same as the corresponding host virtual addresses in QEMU/KVM? Thanks!
Date: Mon, 12 Oct 2020 09:54:28 -0700 [thread overview]
Message-ID: <20201012165428.GD26135@linux.intel.com> (raw)
In-Reply-To: <CA+-xGqOm2sWbxR=3W1pWrZNLOt7EE5qiNWxMz=9=gmga15vD2w@mail.gmail.com>
On Sun, Oct 11, 2020 at 10:11:39AM -0400, harry harry wrote:
> Hi Maxim,
>
> Thanks much for your reply.
>
> On Sun, Oct 11, 2020 at 3:29 AM Maxim Levitsky <mlevitsk@redhat.com> wrote:
> >
> > On Sun, 2020-10-11 at 01:26 -0400, harry harry wrote:
> > > Hi QEMU/KVM developers,
> > >
> > > I am sorry if my email disturbs you. I did an experiment and found the
> > > guest physical addresses (GPAs) are not the same as the corresponding
> > > host virtual addresses (HVAs). I am curious about why; I think they
> > > should be the same. I am very appreciated if you can give some
> > > comments and suggestions about 1) why GPAs and HVAs are not the same
> > > in the following experiment; 2) are there any better experiments to
> > > look into the reasons? Any other comments/suggestions are also very
> > > welcome. Thanks!
> > >
> > > The experiment is like this: in a single vCPU VM, I ran a program
> > > allocating and referencing lots of pages (e.g., 100*1024) and didn't
> > > let the program terminate. Then, I checked the program's guest virtual
> > > addresses (GVAs) and GPAs through parsing its pagemap and maps files
> > > located at /proc/pid/pagemap and /proc/pid/maps, respectively. At
> > > last, in the host OS, I checked the vCPU's pagemap and maps files to
> > > find the program's HVAs and host physical addresses (HPAs); I actually
> > > checked the new allocated physical pages in the host OS after the
> > > program was executed in the guest OS.
> > >
> > > With the above experiment, I found GPAs of the program are different
> > > from its corresponding HVAs. BTW, Intel EPT and other related Intel
> > > virtualization techniques were enabled.
> > >
> > > Thanks,
> > > Harry
> > >
> > The fundemental reason is that some HVAs (e.g. QEMU's virtual memory addresses) are already allocated
> > for qemu's own use (e.g qemu code/heap/etc) prior to the guest starting up.
> >
> > KVM does though use quite effiecient way of mapping HVA's to GPA. It uses an array of arbitrary sized HVA areas
> > (which we call memslots) and for each such area/memslot you specify the GPA to map to. In theory QEMU
> > could allocate the whole guest's memory in one contiguous area and map it as single memslot to the guest.
> > In practice there are MMIO holes, and various other reasons why there will be more that 1 memslot.
>
> It is still not clear to me why GPAs are not the same as the
> corresponding HVAs in my experiment. Since two-dimensional paging
> (Intel EPT) is used, GPAs should be the same as their corresponding
> HVAs. Otherwise, I think EPT may not work correctly. What do you
> think?
No, the guest physical address spaces is not intrinsically tied to the host
virtual address spaces. The fact that GPAs and HVAs are related in KVM is a
property KVM's architecture. EPT/NPT has absolutely nothing to do with HVAs.
As Maxim pointed out, KVM links a guest's physical address space, i.e. GPAs, to
the host's virtual address space, i.e. HVAs, via memslots. For all intents and
purposes, this is an extra layer of address translation that is purely software
defined. The memslots allow KVM to retrieve the HPA for a given GPA when
servicing a shadow page fault (a.k.a. EPT violation).
When EPT is enabled, a shadow page fault due to an unmapped GPA will look like:
GVA -> [guest page tables] -> GPA -> EPT Violation VM-Exit
The above walk of the guest page tables is done in hardware. KVM then does the
following walks in software to retrieve the desired HPA:
GPA -> [memslots] -> HVA -> [host page tables] -> HPA
KVM then takes the resulting HPA and shoves it into KVM's shadow page tables,
or when TDP is enabled, the EPT/NPT page tables. When the guest is run with
TDP enabled, GVA->HPA translations look like the following, with all walks done
in hardware.
GVA -> [guest page tables] -> GPA -> [extended/nested page tables] -> HPA
next prev parent reply other threads:[~2020-10-12 16:54 UTC|newest]
Thread overview: 34+ messages / expand[flat|nested] mbox.gz Atom feed top
2020-10-11 5:26 Why guest physical addresses are not the same as the corresponding host virtual addresses in QEMU/KVM? Thanks! harry harry
2020-10-11 5:26 ` harry harry
2020-10-11 7:29 ` Maxim Levitsky
2020-10-11 7:29 ` Maxim Levitsky
2020-10-11 14:11 ` harry harry
2020-10-11 14:11 ` harry harry
2020-10-12 16:54 ` Sean Christopherson [this message]
2020-10-12 16:54 ` Sean Christopherson
2020-10-13 4:30 ` harry harry
2020-10-13 4:30 ` harry harry
2020-10-13 4:52 ` Sean Christopherson
2020-10-13 4:52 ` Sean Christopherson
2020-10-13 5:33 ` harry harry
2020-10-13 5:46 ` harry harry
2020-10-13 6:43 ` Paolo Bonzini
2020-10-13 6:43 ` Paolo Bonzini
2020-10-13 20:36 ` harry harry
2020-10-13 20:36 ` harry harry
2020-10-14 8:27 ` Paolo Bonzini
2020-10-14 8:27 ` Paolo Bonzini
2020-10-14 8:29 ` Maxim Levitsky
2020-10-14 8:29 ` Maxim Levitsky
2020-10-15 3:45 ` harry harry
2020-10-15 3:45 ` harry harry
2020-10-13 7:03 ` Sean Christopherson
2020-10-13 7:03 ` Sean Christopherson
2020-10-13 22:40 ` harry harry
2020-10-13 22:40 ` harry harry
2020-10-14 8:28 ` Paolo Bonzini
2020-10-14 8:28 ` Paolo Bonzini
2020-10-15 3:43 ` harry harry
2020-10-15 3:43 ` harry harry
2020-10-13 5:00 ` harry harry
2020-10-13 5:00 ` harry harry
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20201012165428.GD26135@linux.intel.com \
--to=sean.j.christopherson@intel.com \
--cc=hiharryharryharry@gmail.com \
--cc=kvm@vger.kernel.org \
--cc=libvir-list@redhat.com \
--cc=mathieu.tarral@protonmail.com \
--cc=mlevitsk@redhat.com \
--cc=pbonzini@redhat.com \
--cc=qemu-devel@nongnu.org \
--cc=stefanha@redhat.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.