* [PATCH RFC] x86/sgx: Add a read-only sysctl attribute kernel.sgx.total_mem
@ 2021-08-11 2:04 Jarkko Sakkinen
2021-08-11 2:06 ` Jarkko Sakkinen
0 siblings, 1 reply; 2+ messages in thread
From: Jarkko Sakkinen @ 2021-08-11 2:04 UTC (permalink / raw)
To: linux-sgx
Cc: Reinette Chatre, Borislav Petkov, Jarkko Sakkinen, Dave Hansen,
Thomas Gleixner, Ingo Molnar, x86, H. Peter Anvin,
Jonathan Corbet, linux-kernel, linux-doc
The amount of EPC on the system is determined by the BIOS and it varies
wildly between systems. It can be dozens of MB on desktops, or many GB
on servers. Introduce a read-only sysctl attribute kernel.sgx_total_mem,
which provides the amount of EPC memory available in the system.
The primary use case for this attribute are stress tests.
Just like normal memory, SGX memory can be overcommitted. SGX has its
own reclaim mechanism which kicks in when physical SGX memory (Enclave
Page Cache / EPC) is exhausted. That reclaim mechanism is relatively
rarely exercised and needs selftests to poke at it.
To run in a reasonable amount of time, the selftest needs to know how
much EPC there is in the system.
Using a sysctl attribute makes most sense, given that its meaning is
shared with the SGX driver and KVM. It must be available even when the
driver is disabled.
Acked-by: Dave Hansen <dave.hansen@linux.intel.com>
Signed-off-by: Jarkko Sakkinen <jarkko@kernel.org>
---
Documentation/x86/sgx.rst | 6 +++++
arch/x86/kernel/cpu/sgx/main.c | 40 ++++++++++++++++++++++++++++++++--
2 files changed, 44 insertions(+), 2 deletions(-)
diff --git a/Documentation/x86/sgx.rst b/Documentation/x86/sgx.rst
index dd0ac96ff9ef..f11bfb331b93 100644
--- a/Documentation/x86/sgx.rst
+++ b/Documentation/x86/sgx.rst
@@ -250,3 +250,9 @@ user wants to deploy SGX applications both on the host and in guests
on the same machine, the user should reserve enough EPC (by taking out
total virtual EPC size of all SGX VMs from the physical EPC size) for
host SGX applications so they can run with acceptable performance.
+
+Debugging
+=========
+
+*/sys/kernel/debug/x86/sgx_total_mem* contains an integer describing
+the total SGX reserved memory in bytes, available in the system.
diff --git a/arch/x86/kernel/cpu/sgx/main.c b/arch/x86/kernel/cpu/sgx/main.c
index 63d3de02bbcc..c857253a2e5d 100644
--- a/arch/x86/kernel/cpu/sgx/main.c
+++ b/arch/x86/kernel/cpu/sgx/main.c
@@ -28,7 +28,10 @@ static DECLARE_WAIT_QUEUE_HEAD(ksgxd_waitq);
static LIST_HEAD(sgx_active_page_list);
static DEFINE_SPINLOCK(sgx_reclaimer_lock);
-/* The free page list lock protected variables prepend the lock. */
+/* Total EPC memory available in bytes. */
+static unsigned long sgx_total_mem;
+
+/* The number of free EPC pages in all nodes. */
static unsigned long sgx_nr_free_pages;
/* Nodes with one or more EPC sections. */
@@ -656,6 +659,8 @@ static bool __init sgx_setup_epc_section(u64 phys_addr, u64 size,
list_add_tail(§ion->pages[i].list, &sgx_dirty_page_list);
}
+ sgx_total_mem += nr_pages * PAGE_SIZE;
+
return true;
}
@@ -790,8 +795,30 @@ int sgx_set_attribute(unsigned long *allowed_attributes,
}
EXPORT_SYMBOL_GPL(sgx_set_attribute);
+static struct ctl_path sgx_sysctl_path[] = {
+ { .procname = "kernel", },
+ { .procname = "sgx", },
+ { }
+};
+
+static unsigned long sgx_total_mem_max = ~0UL;
+
+static struct ctl_table sgx_sysctl_table[] = {
+ {
+ .procname = "total_mem",
+ .data = &sgx_total_mem,
+ .maxlen = sizeof(unsigned long),
+ .mode = 0444,
+ .proc_handler = proc_doulongvec_minmax,
+ .extra1 = SYSCTL_ZERO, /* min */
+ .extra2 = &sgx_total_mem_max, /* max */
+ },
+ { }
+};
+
static int __init sgx_init(void)
{
+ struct ctl_table_header *sysctl_table_header;
int ret;
int i;
@@ -810,6 +837,12 @@ static int __init sgx_init(void)
if (ret)
goto err_kthread;
+ sysctl_table_header = register_sysctl_paths(sgx_sysctl_path, sgx_sysctl_table);
+ if (!sysctl_table_header) {
+ pr_err("sysctl registration failed.\n");
+ goto err_provision;
+ }
+
/*
* Always try to initialize the native *and* KVM drivers.
* The KVM driver is less picky than the native one and
@@ -821,10 +854,13 @@ static int __init sgx_init(void)
ret = sgx_drv_init();
if (sgx_vepc_init() && ret)
- goto err_provision;
+ goto err_sysctl;
return 0;
+err_sysctl:
+ unregister_sysctl_table(sysctl_table_header);
+
err_provision:
misc_deregister(&sgx_dev_provision);
--
2.32.0
^ permalink raw reply related [flat|nested] 2+ messages in thread
* Re: [PATCH RFC] x86/sgx: Add a read-only sysctl attribute kernel.sgx.total_mem
2021-08-11 2:04 [PATCH RFC] x86/sgx: Add a read-only sysctl attribute kernel.sgx.total_mem Jarkko Sakkinen
@ 2021-08-11 2:06 ` Jarkko Sakkinen
0 siblings, 0 replies; 2+ messages in thread
From: Jarkko Sakkinen @ 2021-08-11 2:06 UTC (permalink / raw)
To: linux-sgx
Cc: Reinette Chatre, Borislav Petkov, Dave Hansen, Thomas Gleixner,
Ingo Molnar, x86, H. Peter Anvin, Jonathan Corbet, linux-kernel,
linux-doc
On Wed, Aug 11, 2021 at 05:04:38AM +0300, Jarkko Sakkinen wrote:
> Acked-by: Dave Hansen <dave.hansen@linux.intel.com>
This went in by mistake.
/Jarkko
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2021-08-11 2:06 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-08-11 2:04 [PATCH RFC] x86/sgx: Add a read-only sysctl attribute kernel.sgx.total_mem Jarkko Sakkinen
2021-08-11 2:06 ` Jarkko Sakkinen
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).