From nobody Thu Jul 10 00:39:59 2025
Delivered-To: importer@patchew.org
Received-SPF: pass (zoho.com: domain of redhat.com designates 209.132.183.28
 as permitted sender) client-ip=209.132.183.28;
 envelope-from=libvir-list-bounces@redhat.com; helo=mx1.redhat.com;
Authentication-Results: mx.zohomail.com;
	spf=pass (zoho.com: domain of redhat.com designates 209.132.183.28 as
 permitted sender)  smtp.mailfrom=libvir-list-bounces@redhat.com
Return-Path: <libvir-list-bounces@redhat.com>
Received: from mx1.redhat.com (mx1.redhat.com [209.132.183.28]) by
 mx.zohomail.com
	with SMTPS id 1521649989514960.0159767370062;
 Wed, 21 Mar 2018 09:33:09 -0700 (PDT)
Received: from smtp.corp.redhat.com (int-mx03.intmail.prod.int.phx2.redhat.com
 [10.5.11.13])
	(using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by mx1.redhat.com (Postfix) with ESMTPS id 340FBC058EA8;
	Wed, 21 Mar 2018 16:33:08 +0000 (UTC)
Received: from colo-mx.corp.redhat.com
 (colo-mx02.intmail.prod.int.phx2.redhat.com [10.5.11.21])
	by smtp.corp.redhat.com (Postfix) with ESMTPS id 04EB0611A2;
	Wed, 21 Mar 2018 16:33:08 +0000 (UTC)
Received: from lists01.pubmisc.prod.ext.phx2.redhat.com
 (lists01.pubmisc.prod.ext.phx2.redhat.com [10.5.19.33])
	by colo-mx.corp.redhat.com (Postfix) with ESMTP id B7E204CAA0;
	Wed, 21 Mar 2018 16:33:07 +0000 (UTC)
Received: from smtp.corp.redhat.com (int-mx01.intmail.prod.int.phx2.redhat.com
	[10.5.11.11])
	by lists01.pubmisc.prod.ext.phx2.redhat.com (8.13.8/8.13.8) with ESMTP
	id w2LGWsXZ018692 for <libvir-list@listman.util.phx.redhat.com>;
	Wed, 21 Mar 2018 12:32:54 -0400
Received: by smtp.corp.redhat.com (Postfix)
	id AD9C384747; Wed, 21 Mar 2018 16:32:54 +0000 (UTC)
Received: from mx1.redhat.com (ext-mx09.extmail.prod.ext.phx2.redhat.com
	[10.5.110.38])
	by smtp.corp.redhat.com (Postfix) with ESMTPS id A710C84751
	for <libvir-list@redhat.com>; Wed, 21 Mar 2018 16:32:49 +0000 (UTC)
Received: from out5-smtp.messagingengine.com (out5-smtp.messagingengine.com
	[66.111.4.29])
	(using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by mx1.redhat.com (Postfix) with ESMTPS id B89053A9E3
	for <libvir-list@redhat.com>; Wed, 21 Mar 2018 16:32:48 +0000 (UTC)
Received: from compute7.internal (compute7.nyi.internal [10.202.2.47])
	by mailout.nyi.internal (Postfix) with ESMTP id 70CE621447;
	Wed, 21 Mar 2018 12:32:45 -0400 (EDT)
Received: from frontend2 ([10.202.2.161])
	by compute7.internal (MEProxy); Wed, 21 Mar 2018 12:32:45 -0400
Received: from localhost.localdomain (ip5b40bfaa.dynamic.kabel-deutschland.de
	[91.64.191.170])
	by mail.messagingengine.com (Postfix) with ESMTPA id C342824251;
	Wed, 21 Mar 2018 12:32:44 -0400 (EDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=
	messagingengine.com; h=cc:content-transfer-encoding:content-type
	:date:from:in-reply-to:in-reply-to:message-id:mime-version
	:references:references:subject:to:x-me-sender:x-me-sender
	:x-sasl-enc; s=fm2; bh=QQmcHJu+vATE7CHoYMk75lXi/bVtLrVBIpyGr1lks
	jg=; b=J0Cx94RexOD7sQyDNDov1MZj/YaDRkbm5KzvuP3B0+hhxX9a3utU7cpIi
	YLkEutbkaK/vMd1KiVCOe3PrGQJUx8I/c7wHXwfwYsqfPGaCrv1WhCXD0YngeGAz
	ei89rrGJpsXpFgLlU3tfED2OixN/4XkQ4jsvitGT4rca4lOCVF4lBOPycKKprBEa
	WSAk05VpZHw41xKjy3TOSuIeLG69DQOYxlG6aIbYW9S2uu7Mn9w5iQxAGU9sJvjq
	zBV41Ez8cc9b4U6CRFksS0fo460qV5PDWXVGrGZ+wK5s9phxZUb63UJhy0eDUCV5
	N2gvawTHFISP9udy3XoakMmWIQJJw==
X-ME-Sender: <xms:LYmyWqrzzGSztPCXz61ajtgzPxbKq6AIDG2mLuPyJCwx4MWx6Fzgbw>
From: =?UTF-8?q?Marek=20Marczykowski-G=C3=B3recki?=
	<marmarek@invisiblethingslab.com>
To: libvir-list@redhat.com
Date: Wed, 21 Mar 2018 17:32:30 +0100
Message-Id: 
 <fe5f0fc03779ae24fd3b55307e82a722639bef4f.1521649909.git-series.marmarek@invisiblethingslab.com>
In-Reply-To: 
 <cover.e5f926d3b4f1ba2ec2e1bf3aca7d0a2d0cae0706.1521649909.git-series.marmarek@invisiblethingslab.com>
References: 
 <cover.e5f926d3b4f1ba2ec2e1bf3aca7d0a2d0cae0706.1521649909.git-series.marmarek@invisiblethingslab.com>
MIME-Version: 1.0
In-Reply-To: 
 <cover.e5f926d3b4f1ba2ec2e1bf3aca7d0a2d0cae0706.1521649909.git-series.marmarek@invisiblethingslab.com>
References: 
 <cover.e5f926d3b4f1ba2ec2e1bf3aca7d0a2d0cae0706.1521649909.git-series.marmarek@invisiblethingslab.com>
X-Greylist: Sender passed SPF test, Sender IP whitelisted by DNSRBL, ACL 207
	matched, not delayed by milter-greylist-4.5.16 (mx1.redhat.com
	[10.5.110.38]); Wed, 21 Mar 2018 16:32:48 +0000 (UTC)
X-Greylist: inspected by milter-greylist-4.5.16 (mx1.redhat.com
 [10.5.110.38]);
	Wed, 21 Mar 2018 16:32:48 +0000 (UTC) for IP:'66.111.4.29'
	DOMAIN:'out5-smtp.messagingengine.com'
	HELO:'out5-smtp.messagingengine.com'
	FROM:'marmarek@invisiblethingslab.com' RCPT:''
X-RedHat-Spam-Score: -0.701  (DKIM_SIGNED, DKIM_VALID, RCVD_IN_DNSWL_LOW,
	SPF_HELO_PASS) 66.111.4.29 out5-smtp.messagingengine.com
	66.111.4.29 out5-smtp.messagingengine.com
	<marmarek@invisiblethingslab.com>
X-Scanned-By: MIMEDefang 2.78 on 10.5.110.38
X-Scanned-By: MIMEDefang 2.79 on 10.5.11.11
X-loop: libvir-list@redhat.com
Subject: [libvirt] [PATCH v6 6/9] libxl: add support for CPUID features
	policy
X-BeenThere: libvir-list@redhat.com
X-Mailman-Version: 2.1.12
Precedence: junk
List-Id: Development discussions about the libvirt library & tools
	<libvir-list.redhat.com>
List-Unsubscribe: <https://www.redhat.com/mailman/options/libvir-list>,
	<mailto:libvir-list-request@redhat.com?subject=unsubscribe>
List-Archive: <https://www.redhat.com/archives/libvir-list>
List-Post: <mailto:libvir-list@redhat.com>
List-Help: <mailto:libvir-list-request@redhat.com?subject=help>
List-Subscribe: <https://www.redhat.com/mailman/listinfo/libvir-list>,
	<mailto:libvir-list-request@redhat.com?subject=subscribe>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Sender: libvir-list-bounces@redhat.com
Errors-To: libvir-list-bounces@redhat.com
X-Scanned-By: MIMEDefang 2.79 on 10.5.11.13
X-Greylist: Sender IP whitelisted,
 not delayed by milter-greylist-4.5.16 (mx1.redhat.com [10.5.110.32]);
 Wed, 21 Mar 2018 16:33:08 +0000 (UTC)
X-ZohoMail: RSF_0  Z_629925259 SPT_0

Convert CPU features policy into libxl cpuid policy settings. Use new
("libxl") syntax, which allow to enable/disable specific bits, using
host CPU as a base. For this reason, only "host-passthrough" mode is
accepted.
Libxl do not have distinction between "force" and "required" policy
(there is only "force") and also between "forbid" and "disable" (there
is only "disable"). So, merge them appropriately. If anything, "require"
and "forbid" should be enforced outside of specific driver.
Nested HVM (vmx and svm features) is handled separately, so exclude it
from translation.

Signed-off-by: Marek Marczykowski-G=C3=B3recki <marmarek@invisiblethingslab=
.com>
Reviewed-by: Daniel P. Berrang=C3=A9 <berrange@redhat.com>
---
Changes since v4:
 - added spec-ctrl/ibrsb
Changes since v2:
 - drop spurious changes
 - move libxlTranslateCPUFeature function to xen_xl.c, to be reused by
 xenconfig driver
Changes since v1:
 - use new ("libxl") syntax to set only bits explicitly mentioned in
 domain XML
---
 src/libxl/libxl_conf.c | 36 +++++++++++++++++++++++++++++++++---
 src/xenconfig/xen_xl.c | 35 +++++++++++++++++++++++++++++++++++
 src/xenconfig/xen_xl.h |  2 ++
 3 files changed, 70 insertions(+), 3 deletions(-)

diff --git a/src/libxl/libxl_conf.c b/src/libxl/libxl_conf.c
index 3b9e828..235b982 100644
--- a/src/libxl/libxl_conf.c
+++ b/src/libxl/libxl_conf.c
@@ -50,6 +50,7 @@
 #include "secret_util.h"
 #include "cpu/cpu.h"
 #include "xen_common.h"
+#include "xen_xl.h"
=20
=20
 #define VIR_FROM_THIS VIR_FROM_LIBXL
@@ -359,6 +360,7 @@ libxlMakeDomBuildInfo(virDomainDefPtr def,
             def->cpu && def->cpu->mode =3D=3D (VIR_CPU_MODE_HOST_PASSTHROU=
GH)) {
             bool hasHwVirt =3D false;
             bool svm =3D false, vmx =3D false;
+            char xlCPU[32];
=20
             /* enable nested HVM only if global nested_hvm option enable i=
t and
              * host support it*/
@@ -376,17 +378,45 @@ libxlMakeDomBuildInfo(virDomainDefPtr def,
                         case VIR_CPU_FEATURE_DISABLE:
                         case VIR_CPU_FEATURE_FORBID:
                             if ((vmx && STREQ(def->cpu->features[i].name, =
"vmx")) ||
-                                (svm && STREQ(def->cpu->features[i].name, =
"svm")))
+                                (svm && STREQ(def->cpu->features[i].name, =
"svm"))) {
                                 hasHwVirt =3D false;
+                                continue;
+                            }
+
+                            snprintf(xlCPU,
+                                    sizeof(xlCPU),
+                                    "%s=3D0",
+                                    xenTranslateCPUFeature(
+                                        def->cpu->features[i].name,
+                                        false));
+                            if (libxl_cpuid_parse_config(&b_info->cpuid, x=
lCPU)) {
+                                virReportError(VIR_ERR_CONFIG_UNSUPPORTED,
+                                        _("unsupported cpu feature '%s'"),
+                                        def->cpu->features[i].name);
+                                return -1;
+                            }
                             break;
=20
                         case VIR_CPU_FEATURE_FORCE:
                         case VIR_CPU_FEATURE_REQUIRE:
                             if ((vmx && STREQ(def->cpu->features[i].name, =
"vmx")) ||
-                                (svm && STREQ(def->cpu->features[i].name, =
"svm")))
+                                (svm && STREQ(def->cpu->features[i].name, =
"svm"))) {
                                 hasHwVirt =3D true;
+                                continue;
+                            }
+
+                            snprintf(xlCPU,
+                                    sizeof(xlCPU),
+                                    "%s=3D1",
+                                    xenTranslateCPUFeature(
+                                        def->cpu->features[i].name, false)=
);
+                            if (libxl_cpuid_parse_config(&b_info->cpuid, x=
lCPU)) {
+                                virReportError(VIR_ERR_CONFIG_UNSUPPORTED,
+                                        _("unsupported cpu feature '%s'"),
+                                        def->cpu->features[i].name);
+                                return -1;
+                            }
                             break;
-
                         case VIR_CPU_FEATURE_OPTIONAL:
                         case VIR_CPU_FEATURE_LAST:
                             break;
diff --git a/src/xenconfig/xen_xl.c b/src/xenconfig/xen_xl.c
index 93eba51..94d91cd 100644
--- a/src/xenconfig/xen_xl.c
+++ b/src/xenconfig/xen_xl.c
@@ -218,6 +218,41 @@ xenParseXLOS(virConfPtr conf, virDomainDefPtr def, vir=
CapsPtr caps)
     return 0;
 }
=20
+/*
+ * Translate CPU feature name from libvirt to libxl (from_libxl=3Dfalse) o=
r from
+ * libxl to libvirt (from_libxl=3Dtrue).
+ */
+const char *
+xenTranslateCPUFeature(const char *feature_name, bool from_libxl)
+{
+    static const char *translation_table[][2] =3D {
+        /* libvirt name, libxl name */
+        { "cx16", "cmpxchg16" },
+        { "cid", "cntxid" },
+        { "ds_cpl", "dscpl" },
+        { "pclmuldq", "pclmulqdq" },
+        { "pni", "sse3" },
+        { "ht", "htt" },
+        { "pn", "psn" },
+        { "clflush", "clfsh" },
+        { "sep", "sysenter" },
+        { "cx8", "cmpxchg8" },
+        { "nodeid_msr", "nodeid" },
+        { "cr8legacy", "altmovcr8" },
+        { "lahf_lm", "lahfsahf" },
+        { "cmp_legacy", "cmplegacy" },
+        { "fxsr_opt", "ffxsr" },
+        { "pdpe1gb", "page1gb" },
+        { "spec-ctrl", "ibrsb" },
+    };
+    size_t i;
+
+    for (i =3D 0; i < ARRAY_CARDINALITY(translation_table); i++)
+        if (STREQ(translation_table[i][from_libxl], feature_name))
+            return translation_table[i][!from_libxl];
+    return feature_name;
+}
+
=20
 static int
 xenParseXLSpice(virConfPtr conf, virDomainDefPtr def)
diff --git a/src/xenconfig/xen_xl.h b/src/xenconfig/xen_xl.h
index dd96326..68f332a 100644
--- a/src/xenconfig/xen_xl.h
+++ b/src/xenconfig/xen_xl.h
@@ -33,4 +33,6 @@ virDomainDefPtr xenParseXL(virConfPtr conn,
=20
 virConfPtr xenFormatXL(virDomainDefPtr def, virConnectPtr);
=20
+const char *xenTranslateCPUFeature(const char *feature_name, bool from_lib=
xl);
+
 #endif /* __VIR_XEN_XL_H__ */
--=20
git-series 0.9.1

--
libvir-list mailing list
libvir-list@redhat.com
https://www.redhat.com/mailman/listinfo/libvir-list