OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

virtio-comment message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Re: [RFC PATCH v2 1/2] Add virtio Admin Virtqueue specification


On 8/2/2021 6:21 PM, Cornelia Huck wrote:

On Sun, Aug 01 2021, Max Gurtovoy <mgurtovoy@nvidia.com> wrote:


On 8/1/2021 1:17 AM, Michael S. Tsirkin wrote:

On Sat, Jul 31, 2021 at 02:53:45PM +0300, Max Gurtovoy wrote:

On 7/30/2021 10:36 AM, Michael S. Tsirkin wrote:

On Thu, Jul 29, 2021 at 05:51:07PM +0300, Max Gurtovoy wrote:

On 7/28/2021 3:48 PM, Michael S. Tsirkin wrote:

On Mon, Jul 26, 2021 at 07:52:53PM +0300, Max Gurtovoy wrote:

Admin virtqueues will be used to send administrative commands to
manipulate various features of the device which would not easily map
into the configuration space.

The same Admin command format will be used for all virtio devices. The
Admin command set will include 4 types of command classes:
1. The generic common class
2. The transport specific class
3. The device specific class
4. The vendor specific class

The above mechanism will enable adding various features to the virtio
specification, e.g.:
1. Format virtio-blk devices in various configurations (512B block size,
       512B + 8B T10-DIF, 4K block size, 4k + 8B T10-DIF, etc..).
2. Live migration management.
3. Encrypt/Decrypt descriptors.
4. Virtualization management.
5. Get device error logs.
6. Implement advanced vendor/device/transport specific features.
7. Run device health test.
8. More.

I still don't really see what do all these things have in common?

I don't think you need to look on this in that direction.

This is a queue for administration.

Cornelia and Stefan already agreed on this approach.

Please lets progress and not go back to the beginning.


Why are they grouped behind the same feature bit? Share same VQ?

They are grouped behind an admin q.

It's fine for a variety of things to use the admin q. But I think each
feature should come with its own feature bit that depends on the admin
vq.
There is a specific command in the admin command set that query all these feature bits.
There is no much bits left in the generic feature field for all the features we would like to add.
I mentioned only 5-6 in the above example and it will bring us to bit 46 already. 

please think of 5-10 years from today.




What actually makes sense to use the admin vq is also worth further
discussion.




As virtio evolves beyond the para-virt/sw-emulated world, it's mandatory
for the specification to become flexible and allow a wider feature set.
The corrent ctrl virtq that is defined for some of the virtio devices is
device specific and wasn't designed to be a generic virtq for
admininistration.

Signed-off-by: Max Gurtovoy <mgurtovoy@nvidia.com>

Lots of things on this list seem to make sense when
done from PF and affecting a VF.
I think from this POV the generic structure should include
a way to address one device from another.

This will be defined per command.

For example, funcion_id will be given as command data.

Why? Sounds like a generic thing to me.

Generic to a command that handles virtualization management.

It could be that mixing up virtualization management and arbitrary
other management commands in the same interface is a mistake.

It's not a mistake.

This is the right design.

Well, we're clearly not all in agreement what the "right design"
is. Figuring that out is the whole point of this discussion.
I suggested a solid infrastructure for adding any feature easily in the future without having half a year waste on debates. 

I didn't see any other suggestion so far.

Only some half baked phrases and answers.




Creating a new interface for each feature is madness.



Or maybe not - do we want host to have ability to run health tests
for a VF without loading VF driver? Get error logs?

This can be an optional feature.

We need to define it in the future. We can't define the entire command
set now.

We need to define the infrastructure.


In fact besides migration and virtualization management the rest of
examples that you give all seem to be more or less device specific, with
the possible exception of 3. Encrypt/Decrypt descriptors.  what does
this one imply, exactly?

For storage devices there is an option to have a self encrypted drive.

Maybe we can develop encryption/decryption also for net devices.

This will be developed in the future.

But the infrastructure will allow it. This is the beauty if it, you
create infrastructure today and add optional commands tomorrow.

Nobody can think of thousands of features and commands today, and we
also can't push thousands of pages to the spec.

Lets push 2-3 mandatory commands with the infrastructure and build new
features incrementally.

Why "mandatory commands"? Just make them covered by a feature bit.


mandatory for anyone that supports admin q.

They are covered by admin q bit.





So there are several problems with this approach.
One is that there is no two way negotiation.

you negotiate the adminq feature.

then you can send admin commands and discover the supported commands.


No way for device to know what will driver use in the end.

device will be designed to support mandatory admin commands and some
optional.

It doesn't need to care whether the driver will use it or not.

This breaks things like e.g. accelerating some configurations
but not others.

I don't understand what it breaks exactly.

Long practice taught us that it is good for device to know
what is driver going to use.
For example, some features can be implemented in hardware
and some in hypervisor software. If driver is going to use software
features then you need to switch to a slower software
implementation. Doing that dynamically at time of use is
often much harder that up-front at negotiation time.

I don't think we should write specifications that should consider hypervisor
SW.

Well considering hypervisors is clearly one of the purposes of virtio TC.
Look it up in the charter, section 2. Statement of Purpose.



You might use virtio device without hypervisor at all.

Yes and supporting that is also clearly an objective:

	With the 1.1, 1.2 and future revisions of the Specification, we aim to
	evolve the VIRTIO standard further, addressing such new requirements
	while both continuing to honor the goals of the 1.0 Specification and
	including new objectives.



There is nothing in admin queue that doesn't honor old spec.

Old driver will not be aware of it.

I don't see how this helps; negotiating the admin vq only tells the
device that the driver wants to use the admin vq, but not what it
actually wants to use. This is a departure from the feature negotiation
method used up to now.
The driver can use all the admin q commands the device is capable to support. 

The HW tells the cap of admin queue and this is negotiated.
Then all the supported commands should be usable and supported by the device. 




+\subsubsection{Vendor specific command set}\label{sec:Basic Facilities of a Virtio Device / Admin Virtqueues / Admin command set / Vendor specific command set}
+
+The Vendor specific command set is a group of classes and commands
+within each of these classes which are vendor specific. Refer to
+each vendor specification for more information on the supported
+commands.

Here's another example.
It's important that there is a way to make a device completely
generic without vendor specific expensions.
Would be hard to do here.

That's a generic comment.

but specifically I am very reluctant to add vendor specific stuff like
this directly in the spec. We already have VIRTIO_PCI_CAP_VENDOR_CFG
and if that is not sufficient I would like to know why
before we add more vendor specific stuff.

We are adding an option to add vendor specific commands. We're not adding it
to the spec since each vendor will have its own manual for that.

You didn't actually answer the question though.


For example, we can use virtio-cli to pass command from command line to
device in pass-through manner without changing driver.


Opaque strings passed all the way from guest userspace to host device?
Not sure why is that a good idea.

Where did I mentioned a guest ?

Virtio-cli will control a device on the same host that it runs.

If it's a bare metal host so it will manage the virtio attached device.

If it's a guest it will manage the device attached to the guest.

Opaqueness of all this is what worries at least me and Cornelia.

guest is not aware of host devices.

Sending raw command from Linux cmdline to a device is not something I
invented.

If a user is aware of its HW he can use the virtio-cli tool to configure
its unique features.

And if the user is not so smart, we can help him with adding vendor
classes to virtio-cli management tool.

There's something very wrong in relying on an external tool to configure
a supposedly standardized device. This spec is supposed to be
platform-agnostic. Everything must be implementable by a random OS or HW
maker, and for that, it needs to be properly specified.


Where do I rely on it ? I said it's an option.
How would you like to format a virtio block device without tools ? the driver can't do this job out of the blue. 

It is platform agnostic.

And it is a proper spec.

Opening a vendor channel is already there.

Nothing new here.

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]