From nobody Wed Apr  8 06:05:17 2026
Return-Path: <linux-kernel-owner@kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from vger.kernel.org (vger.kernel.org [23.128.96.18])
	by smtp.lore.kernel.org (Postfix) with ESMTP id 710FBC32774
	for <linux-kernel@archiver.kernel.org>; Wed, 24 Aug 2022 03:31:24 +0000 (UTC)
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S234143AbiHXDbX (ORCPT <rfc822;linux-kernel@archiver.kernel.org>);
        Tue, 23 Aug 2022 23:31:23 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:44280 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S234700AbiHXDbH (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Tue, 23 Aug 2022 23:31:07 -0400
Received: from mail-pl1-x649.google.com (mail-pl1-x649.google.com
 [IPv6:2607:f8b0:4864:20::649])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 15ADE82FBE
        for <linux-kernel@vger.kernel.org>;
 Tue, 23 Aug 2022 20:31:04 -0700 (PDT)
Received: by mail-pl1-x649.google.com with SMTP id
 f1-20020a170902ce8100b001731029cd6bso1162984plg.1
        for <linux-kernel@vger.kernel.org>;
 Tue, 23 Aug 2022 20:31:04 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20210112;
        h=cc:to:from:subject:references:mime-version:message-id:in-reply-to
         :date:reply-to:from:to:cc;
        bh=2uNZhNlygYfzqtsufi8grh7zfz/isIffnv0kaF6zjFw=;
        b=nvhkP1quL0nCRBfrxMLWjqyp/MZEExScs2NzyX9rCFcZOgEhFpmYcC/g99s0b6XqRA
         nGuR76qd67RN6PqoWyhI1pxj5tb9lZMmm5XY8shjy7EM67pdRQEt1cu4d2JvnB7ckkro
         RL4q45KEi5tCNh0kO0bgc1KefEVe0rbVa9EfeKP55GmIRcE2S9Wp848Ul2fPWaV63EoE
         iJ0BIcbvr9uC6cKcEOAE4C0KEkSZHCw5csPKhkhqWQgc1kG0m9BTHCHdMZ/wUKCNq1RT
         wHQZmcnD+6KJV+/NuKz2rJs3kPxkUXRT1Xi3O2uMN1NTxGv3NS3/zKOTDJX57aGdnczS
         apRA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20210112;
        h=cc:to:from:subject:references:mime-version:message-id:in-reply-to
         :date:reply-to:x-gm-message-state:from:to:cc;
        bh=2uNZhNlygYfzqtsufi8grh7zfz/isIffnv0kaF6zjFw=;
        b=zVd3WBgJsdPKNjJjdQBBeX6IfjxjWw2GBwgfSmymXRgtUbe5jcRKQgj2n6VAWjEW1V
         MZ1q85FxAC3q3eBKPCR+JxD8lq5gnQrkH0VoTwl+MD+qB7P0VfL7GXKJm5gEqVQ+IjcO
         t2WM0EyynjXHR6W7RzaLHKaU+ZSwYz1yxurNlEso0L5aFHTX40atHEYRa6qhI0RN6fsG
         OfH40vnkJSLqVXdWQJlN2LJhrGEPBrWaS8Z2tWJQTFWcEibUTlBem89p0BUqT27ZxlsK
         j0pxzWwBkJsR7VlSOCdciZHdAeuK9rTnGn8UlHXRXhbfdzZYHH5DhmkICKycTBmafzVt
         y83w==
X-Gm-Message-State: ACgBeo3cnH3FCaNafQB3ScEEOhwx/3lrcFvmmcUUTyMO2ieNQ3jeMUCU
        HJzCtNuB8bjeMtTHjTxsMfU5vxclOH0=
X-Google-Smtp-Source: 
 AA6agR4TQFp6F/x/VzAI7SFXRkCI9AJwEpueV0cQacS/3VkifY18ZPF87EIFebk2tUIH/i2uTHCN+oCv0D0=
X-Received: from zagreus.c.googlers.com
 ([fda3:e722:ac3:cc00:7f:e700:c0a8:5c37])
 (user=seanjc job=sendgmr) by 2002:a17:902:e94c:b0:171:3df0:c886 with SMTP id
 b12-20020a170902e94c00b001713df0c886mr27423263pll.39.1661311863609; Tue, 23
 Aug 2022 20:31:03 -0700 (PDT)
Reply-To: Sean Christopherson <seanjc@google.com>
Date: Wed, 24 Aug 2022 03:30:56 +0000
In-Reply-To: <20220824033057.3576315-1-seanjc@google.com>
Message-Id: <20220824033057.3576315-3-seanjc@google.com>
Mime-Version: 1.0
References: <20220824033057.3576315-1-seanjc@google.com>
X-Mailer: git-send-email 2.37.1.595.g718a3a8f04-goog
Subject: [PATCH 2/3] KVM: x86: Always enable legacy FP/SSE in allowed user
 XFEATURES
From: Sean Christopherson <seanjc@google.com>
To: Sean Christopherson <seanjc@google.com>,
        Paolo Bonzini <pbonzini@redhat.com>
Cc: kvm@vger.kernel.org, linux-kernel@vger.kernel.org,
        Leonardo Bras <leobras@redhat.com>,
        "Dr . David Alan Gilbert" <dgilbert@redhat.com>,
        Vitaly Kuznetsov <vkuznets@redhat.com>
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

From: Dr. David Alan Gilbert <dgilbert@redhat.com>

Allow FP and SSE state to be saved and restored via KVM_{G,SET}_XSAVE on
XSAVE-capable hosts even if their bits are not exposed to the guest via
XCR0.

Failing to allow FP+SSE first showed up as a QEMU live migration failure,
where migrating a VM from a pre-XSAVE host, e.g. Nehalem, to an XSAVE
host failed due to KVM rejecting KVM_SET_XSAVE.  However, the bug also
causes problems even when migrating between XSAVE-capable hosts as
KVM_GET_SAVE won't set any bits in user_xfeatures if XSAVE isn't exposed
to the guest, i.e. KVM will fail to actually migrate FP+SSE.

Because KVM_{G,S}ET_XSAVE are designed to allowing migrating between
hosts with and without XSAVE, KVM_GET_XSAVE on a non-XSAVE (by way of
fpu_copy_guest_fpstate_to_uabi()) always sets the FP+SSE bits in the
header so that KVM_SET_XSAVE will work even if the new host supports
XSAVE.

Fixes: ad856280ddea ("x86/kvm/fpu: Limit guest user_xfeatures to supported =
bits of XCR0")
bz: https://bugzilla.redhat.com/show_bug.cgi?id=3D2079311
Cc: stable@vger.kernel.org
Cc: Leonardo Bras <leobras@redhat.com>
Signed-off-by: Dr. David Alan Gilbert <dgilbert@redhat.com>
[sean: add comment, massage changelog]
Signed-off-by: Sean Christopherson <seanjc@google.com>
---
 arch/x86/kvm/cpuid.c | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/arch/x86/kvm/cpuid.c b/arch/x86/kvm/cpuid.c
index 2e0f27ad736a..4c1c2c06e96b 100644
--- a/arch/x86/kvm/cpuid.c
+++ b/arch/x86/kvm/cpuid.c
@@ -329,7 +329,13 @@ static void kvm_vcpu_after_set_cpuid(struct kvm_vcpu *=
vcpu)
 	vcpu->arch.guest_supported_xcr0 =3D
 		cpuid_get_supported_xcr0(vcpu->arch.cpuid_entries, vcpu->arch.cpuid_nent=
);
=20
-	vcpu->arch.guest_fpu.fpstate->user_xfeatures =3D vcpu->arch.guest_support=
ed_xcr0;
+	/*
+	 * FP+SSE can always be saved/restored via KVM_{G,S}ET_XSAVE, even if
+	 * XSAVE/XCRO are not exposed to the guest, and even if XSAVE isn't
+	 * supported by the host.
+	 */
+	vcpu->arch.guest_fpu.fpstate->user_xfeatures =3D vcpu->arch.guest_support=
ed_xcr0 |
+						       XFEATURE_MASK_FPSSE;
=20
 	kvm_update_pv_runtime(vcpu);
=20
--=20
2.37.1.595.g718a3a8f04-goog