From nobody Wed Feb 11 04:18:44 2026
Received: from mail-pj1-f73.google.com (mail-pj1-f73.google.com
 [209.85.216.73])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 48974653
	for <linux-kernel@vger.kernel.org>; Sat, 18 May 2024 00:04:38 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.216.73
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1715990679; cv=none;
 b=IxsCOVyikDvPPuAKLYxNpSguQO22/UrrIGUbNKMjTl5gB8h17LreFlUKdKkGOqB3n6hdfgd/PSB4nc76fVzaykdFF74B5QvVjRxcMNzPEcOirpuOgrxwT6ilCfBsLBkAIZrJuJO7YJdf2mcpKUVauADeYF9thMFfLU74s6V7OHI=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1715990679; c=relaxed/simple;
	bh=rvIusehJzyfZSU3DUGfZk3ycQpyzGMDHRsg3jAj+Fmc=;
	h=Date:In-Reply-To:Mime-Version:References:Message-ID:Subject:From:
	 To:Cc:Content-Type;
 b=BMYmuw+nGWxIA82NZqNCZfznyhPI+G/CvhKIjWqumU9VFuXa1OZHDqAlLZSESMKj7vaqqNb69pLwqGIIQ3vMP18+ZuyUqQy+cvBnSYctXPRquICQT58QNM4GSAC+RNqI7tlqWOjQg62J2iViT/yBE/HV4JdQLGBhD7wkbMAlejw=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com;
 dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b=Evs33zy7; arc=none smtp.client-ip=209.85.216.73
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b="Evs33zy7"
Received: by mail-pj1-f73.google.com with SMTP id
 98e67ed59e1d1-2bd5f87a0e1so274953a91.0
        for <linux-kernel@vger.kernel.org>;
 Fri, 17 May 2024 17:04:38 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20230601; t=1715990677; x=1716595477;
 darn=vger.kernel.org;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:from:to:cc:subject:date:message-id:reply-to;
        bh=lj20UPkGYyPVSIzMYtQicJyMaFFHUkTnXbi2b/YJs04=;
        b=Evs33zy7rS9tKW6zWsgeD6fwSsJy5yVUeQMorSYou/bVEFHs7fC71O1KyAvgOUD/Cs
         D7W3UqdauEvezPDstiPYmK5GyrgykeKXFRVCdtbCtpt+hUV6BfAEDZHG/w5FvmIRLdot
         B7XezgmiCp3/eteM+IUcXmuf667vrgJasr8DjdM18iwTs6uAWth86iKLSVBSrWm04M85
         YWtYc2i0V4wCJyDS+XHpCHPfZAQXpoZvSUM5uooK0DTIMIpMyLfvdxvdMmrcqnNpvbJg
         s0SvW9wpmKvQWBiSY+851mY02Hj/3OhUmDm7Z/B7vHLc2YDin01V7nKwscsThwTWOxgk
         PT8A==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1715990677; x=1716595477;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:x-gm-message-state:from:to:cc:subject:date:message-id
         :reply-to;
        bh=lj20UPkGYyPVSIzMYtQicJyMaFFHUkTnXbi2b/YJs04=;
        b=bRQ2mIim37dA84Q7+ffVTgEwC+omDbvFl8E6/eFZtX8KOHrxOOmvGqFyWDwJbFXNHh
         lazbTG4DS09jHCxbqcUN92PjktyBUB4bLkW0YSBeX33V+swzle5hI0jc7pH4PF9t42cI
         rgsOiyl8sf78P7zKr3hu5qNPIpHUsT33484WRIBImyWyW/QRR4z7CyxtDXmRSBXHF7oD
         p77Y8ev5meqC/eX4ILWuyMEWYmUfRjY219128GPsxSJ32BZ/AknNoPCPrf/+ZSYybhzL
         aqnt4t1nGhWL/0BEAtk7KCo21DAnaGICt+UPkO3NGh/ktuDXY/a/xs1hyckK+yGNiLcs
         u++w==
X-Forwarded-Encrypted: i=1;
 AJvYcCUUeckymHimvNJt9JmcRWhrk+LgZkJLc0s2/MHoorn5QfjDn2/LqgbqKOdVaYxtPxuHqi519U0xqJUEzOF4XNAx8/Mc+iHeZTyQLPEV
X-Gm-Message-State: AOJu0YzAAgYrZp7Fq1pe/LUYcwzJymT7m3LGCWAGPXcqDhkKFnj3t2YH
	RTiowkee0/NPdX/HfIk/Xdn7NHIq/U+y54L+bebZ8QK65hElFKeHLf/997clF+T8CmR038IvpSz
	3Fg==
X-Google-Smtp-Source: 
 AGHT+IGpdxtM8Gr2Cby17gotkm6Me/GjSzJCCJjzc+9CZGnGeexqUy7HUOGADG/0D9GVxcMlmsZaUfGAvLs=
X-Received: from zagreus.c.googlers.com
 ([fda3:e722:ac3:cc00:7f:e700:c0a8:5c37])
 (user=seanjc job=sendgmr) by 2002:a17:90a:8809:b0:2ad:df73:31c4 with SMTP id
 98e67ed59e1d1-2b6cd20f995mr63818a91.9.1715990677507; Fri, 17 May 2024
 17:04:37 -0700 (PDT)
Reply-To: Sean Christopherson <seanjc@google.com>
Date: Fri, 17 May 2024 17:04:22 -0700
In-Reply-To: <20240518000430.1118488-1-seanjc@google.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
Mime-Version: 1.0
References: <20240518000430.1118488-1-seanjc@google.com>
X-Mailer: git-send-email 2.45.0.215.g3402c0e53f-goog
Message-ID: <20240518000430.1118488-2-seanjc@google.com>
Subject: [PATCH 1/9] KVM: x86/mmu: Use SHADOW_NONPRESENT_VALUE for atomic zap
 in TDP MMU
From: Sean Christopherson <seanjc@google.com>
To: Sean Christopherson <seanjc@google.com>,
 Paolo Bonzini <pbonzini@redhat.com>
Cc: kvm@vger.kernel.org, linux-kernel@vger.kernel.org
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

From: Isaku Yamahata <isaku.yamahata@intel.com>

Use SHADOW_NONPRESENT_VALUE when zapping TDP MMU SPTEs with mmu_lock held
for read, tdp_mmu_zap_spte_atomic() was simply missed during the initial
development.

Fixes: 7f01cab84928 ("KVM: x86/mmu: Allow non-zero value for non-present SP=
TE and removed SPTE")
Not-yet-signed-off-by: Isaku Yamahata <isaku.yamahata@intel.com>
[sean: write changelog]
Signed-off-by: Sean Christopherson <seanjc@google.com>
Reviewed-by: Kai Huang <kai.huang@intel.com>
---
 arch/x86/kvm/mmu/tdp_mmu.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/arch/x86/kvm/mmu/tdp_mmu.c b/arch/x86/kvm/mmu/tdp_mmu.c
index 1259dd63defc..36539c1b36cd 100644
--- a/arch/x86/kvm/mmu/tdp_mmu.c
+++ b/arch/x86/kvm/mmu/tdp_mmu.c
@@ -626,7 +626,7 @@ static inline int tdp_mmu_zap_spte_atomic(struct kvm *k=
vm,
 	 * SPTEs.
 	 */
 	handle_changed_spte(kvm, iter->as_id, iter->gfn, iter->old_spte,
-			    0, iter->level, true);
+			    SHADOW_NONPRESENT_VALUE, iter->level, true);
=20
 	return 0;
 }
--=20
2.45.0.215.g3402c0e53f-goog
From nobody Wed Feb 11 04:18:44 2026
Received: from mail-yw1-f201.google.com (mail-yw1-f201.google.com
 [209.85.128.201])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 59BF66AD7
	for <linux-kernel@vger.kernel.org>; Sat, 18 May 2024 00:04:40 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.128.201
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1715990682; cv=none;
 b=uRsUTLswFJZ/YaqY/wyD8zLcCH32qN/bECmhjtw6oqhgZev9FGtKZSicklLYcNCtopcea4ybQTy5m/x1Uq+uOiTfll6xC8kcRshBGPcoS7W6ORkuV+Z1F4bRASgkRnQNAUpnwU5rqCTGDoGaNuBbj8TzxBzPrnJ9OTdmN+qF5CU=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1715990682; c=relaxed/simple;
	bh=ZZiN6+e15dQN6MMssxaWW8K/IugjsD8kYnxv2JER8Sw=;
	h=Date:In-Reply-To:Mime-Version:References:Message-ID:Subject:From:
	 To:Cc:Content-Type;
 b=Bkl15FkvvTHOZVur9195o5Ren7dECcDKcXMsI/IVJ5GlCLpch3JbmXvXQxv6JetujfOV60CxeVrgUsgBfnZcpB9NuDnPHpkUzdkt80XWu5elw+vsXtoGn+cvbbzDfGTnCA7foFCb82YEOruMIlakPmmx5dXe0OuLx7xDMRjmGEc=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com;
 dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b=102onJoX; arc=none smtp.client-ip=209.85.128.201
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b="102onJoX"
Received: by mail-yw1-f201.google.com with SMTP id
 00721157ae682-61be23bb01aso205246297b3.2
        for <linux-kernel@vger.kernel.org>;
 Fri, 17 May 2024 17:04:40 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20230601; t=1715990679; x=1716595479;
 darn=vger.kernel.org;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:from:to:cc:subject:date:message-id:reply-to;
        bh=55Fpx2MIulH1TJ9s55duhi3yhB4vtlMWdhuL3vC3xBQ=;
        b=102onJoXcHKtnZIhIvcFD1NxbGYQaWUDYwUBOb5zjT1Twet3+CU98Ozq1ygilfSclm
         jQDpux1E4rmrG/gGDfrDilnBq5eKZIDze3qjoEl+DhEWMVCMcDAr10IIwIyF8GF9qnym
         kNZ282emV3bX/dsjxsY8mg0QcuSBfpl+gYKVMa9igy1P6WiOCqfeiL5UoDcZ8JGvLnk5
         2grc237SlimHtbE4VJtygDVbWF72+4G3rx83003OVjI5XVwe1xPBIZ27hgTNwacnWW+p
         j9fGSgJBc9fXyvQb+6Sd7T2q3LHl7CaxlJKCXjDEtshat1K96p1gHRb5j34y0zSGYE8c
         juJA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1715990679; x=1716595479;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:x-gm-message-state:from:to:cc:subject:date:message-id
         :reply-to;
        bh=55Fpx2MIulH1TJ9s55duhi3yhB4vtlMWdhuL3vC3xBQ=;
        b=wW4dS/YvOwjqnqFTh8m/HOuJgsTUVrd+aKh2d1z4eAYIWWyL6PCcUce+Dh+jhsjx4B
         YnrY+6QqLzmCYc0OzojUItdNJYxBQpwp/U5h0XW1MmbLX3P5vs3Gf4/indu0nKowkxuX
         M+FcKYUriAZRwfPd8nE01nstkMuqkoBcmXI+bC6/sPoveE1TemXzwkD0gObEqg8x911i
         8lUfTOKJY3lu0YCtFGC4ueENtzKQJxeSmKfkviZAPaKKCnTf3QT6zDRsWRwcIKhi6rHS
         zfteAmYWUs0CaEWtiHJlNXa0JdRO7timoBpBJCFxU+hTmp5zZQC2DMl/3JhSuFeXTOyt
         B4jQ==
X-Forwarded-Encrypted: i=1;
 AJvYcCU1qRNFW1JDSPn9gE1axs0eKKpRbRoyFTSBJGSyVteUI5cz7OppNg3GqzM+5sMLUzRrrv7oQd8XSM4+4MrdU1x7PX611Jy5haIe9fAb
X-Gm-Message-State: AOJu0YwvrhsAgLYJAg2chq//Thx42PRm7KKvX7q0xO0lFWf8/an1z89P
	Ep5dhtuw9gk2mtpkoqwLmjo8nKtTdEmVVuocw4OTpPFBlDQYxxkR4+71ArL/XHsI78nWkEfPxT7
	cdw==
X-Google-Smtp-Source: 
 AGHT+IFiVlGymQzpow3h8j4sNOJKTfw4H5KxXwAelQPEmYeQwtXrj3JO1q9+VPmJJ7oNI5OfSrZMzmiPyrA=
X-Received: from zagreus.c.googlers.com
 ([fda3:e722:ac3:cc00:7f:e700:c0a8:5c37])
 (user=seanjc job=sendgmr) by 2002:a05:690c:338c:b0:61b:ea08:111f with SMTP id
 00721157ae682-622aff9d4cdmr58113437b3.6.1715990679473; Fri, 17 May 2024
 17:04:39 -0700 (PDT)
Reply-To: Sean Christopherson <seanjc@google.com>
Date: Fri, 17 May 2024 17:04:23 -0700
In-Reply-To: <20240518000430.1118488-1-seanjc@google.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
Mime-Version: 1.0
References: <20240518000430.1118488-1-seanjc@google.com>
X-Mailer: git-send-email 2.45.0.215.g3402c0e53f-goog
Message-ID: <20240518000430.1118488-3-seanjc@google.com>
Subject: [PATCH 2/9] KVM: nVMX: Initialize #VE info page for vmcs02 when
 proving #VE support
From: Sean Christopherson <seanjc@google.com>
To: Sean Christopherson <seanjc@google.com>,
 Paolo Bonzini <pbonzini@redhat.com>
Cc: kvm@vger.kernel.org, linux-kernel@vger.kernel.org
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

Point vmcs02.VE_INFORMATION_ADDRESS at the vCPU's #VE info page when
initializing vmcs02, otherwise KVM will run L2 with EPT Violation #VE
enabled and a VE info address pointing at pfn 0.

Fixes: 8131cf5b4fd8 ("KVM: VMX: Introduce test mode related to EPT violatio=
n VE")
Signed-off-by: Sean Christopherson <seanjc@google.com>
---
 arch/x86/kvm/vmx/nested.c | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/arch/x86/kvm/vmx/nested.c b/arch/x86/kvm/vmx/nested.c
index d5b832126e34..6798fadaa335 100644
--- a/arch/x86/kvm/vmx/nested.c
+++ b/arch/x86/kvm/vmx/nested.c
@@ -2242,6 +2242,9 @@ static void prepare_vmcs02_constant_state(struct vcpu=
_vmx *vmx)
 		vmcs_write64(EPT_POINTER,
 			     construct_eptp(&vmx->vcpu, 0, PT64_ROOT_4LEVEL));
=20
+	if (vmx->ve_info)
+		vmcs_write64(VE_INFORMATION_ADDRESS, __pa(vmx->ve_info));
+
 	/* All VMFUNCs are currently emulated through L0 vmexits.  */
 	if (cpu_has_vmx_vmfunc())
 		vmcs_write64(VM_FUNCTION_CONTROL, 0);
--=20
2.45.0.215.g3402c0e53f-goog
From nobody Wed Feb 11 04:18:44 2026
Received: from mail-yw1-f201.google.com (mail-yw1-f201.google.com
 [209.85.128.201])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 40161C13C
	for <linux-kernel@vger.kernel.org>; Sat, 18 May 2024 00:04:42 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.128.201
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1715990683; cv=none;
 b=ctav/fprY5URNuQGtz4nmzI04q+1zmXvVG2WbLX40zwSjCfKBJ76D4nlD52Cq2uYKn9OJnLf7qwwWb0X2GiyMQcbUrbeCvtUSKDAfwSuJItwJTM/zOCxsekIZrBPP/AK2vf2icj36TtcAkApKswXYPYQb8px/ymwTpkGPZ36FIc=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1715990683; c=relaxed/simple;
	bh=KJtLDlzQg0wy9e57GzodTPJt6UlMTvdQZUilMOrGkZg=;
	h=Date:In-Reply-To:Mime-Version:References:Message-ID:Subject:From:
	 To:Cc:Content-Type;
 b=ufjo+3yHO+ic4Ptia1CVxKBkod2JAnPNQiePGQkqy2q5GQfZ+qOgaXA1LOFGSZD9H75XEaJEsg6CwDiAX/Yxe6sdWuZbjGIa/QpgVRHssQQOAEG3CaN7Tax2Brn8xTsmJAxvvICPszVEDTnHlGczUJHSROqjF9geerFEe5Ozoss=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com;
 dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b=NhbH19bc; arc=none smtp.client-ip=209.85.128.201
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b="NhbH19bc"
Received: by mail-yw1-f201.google.com with SMTP id
 00721157ae682-61dfa4090c1so152972967b3.3
        for <linux-kernel@vger.kernel.org>;
 Fri, 17 May 2024 17:04:42 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20230601; t=1715990681; x=1716595481;
 darn=vger.kernel.org;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:from:to:cc:subject:date:message-id:reply-to;
        bh=GM5SO5v27GV7rdeXp4FaIGBag6GhBo/t/KPBUjUr/dw=;
        b=NhbH19bcmfe4ldcoAO3NE9GVpwtCA6D9eAfUCFgbuyxwEH2yeq/TwObXqgo/sL8Znp
         7gx9NdSpsG8F7vCFm1kGnzLl104nxADxXwzF4pfn83qTffGUicz8cpG1inMABCQ7EtCE
         sFS/0mGym5xAIup5YYUqdLtrjqmJQ7FMN/ynlBT/u/RdxShDwKqfNc59BWKWo1ZU7AHj
         n3O859kUxlvtmZFB7T56pqERplAGe8F73As0/dfJO+aBL5ZMeaibla46nC/swC5NTf6I
         q74w3wOGfgqr+UMM/8rCW2lt85mfphBemUrvjMcdGIZ+71iGbDBD3pVNKCE1BxFdw3oy
         tE7Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1715990681; x=1716595481;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:x-gm-message-state:from:to:cc:subject:date:message-id
         :reply-to;
        bh=GM5SO5v27GV7rdeXp4FaIGBag6GhBo/t/KPBUjUr/dw=;
        b=ZCcyO7AZdefR03lUcx34vQW5erDBCjFoR0NbiM1PIahtnbwP7qU3aIYax8WEm9JTMd
         jBBHBeSaRQV17YrnQckmNF/k63naz55qYI+QCazyB7Rf6c0lCA9lYXd85JvxB1NcbYnM
         yzMAKDFpg6mPE7LF46SxdmAVIBqkXqXK1nNlW2g8QK65w98A/LwGVLWj9UsdoOF+7iZ7
         igRoqh9Laj4XYsdqfbWKsukM1EF6HU6WM6Noq30pDrn0KaapVc0BqlbG2Wggv9uoEVT+
         B+7npPK/AMGCFutUgVbVGvfWM6OZoxyLprhRSjDhdbkp1FYBX/LOXhKX+4VBrilz9w8o
         GM3g==
X-Forwarded-Encrypted: i=1;
 AJvYcCXi7ETKsbnCbVvJm02M8CTmIbx/PjGbiTEG6v5IsqJdza59aq89eTeY0U/EgOB0q/xDcoqNFfTblyK8Ive1RdekG9iCyiDUqAoisujY
X-Gm-Message-State: AOJu0YywFuRaibTLZ4biDGuvC62vrtY0wvUKPHFCn38c31OBbF3KK02X
	u1usbbqXuCGaY+2q4EMmasxEN6Xqxxv9a0cC8ttBr5JRfd0PZ00qq6CQz1Y5+43i4OMLD5WKQ55
	opQ==
X-Google-Smtp-Source: 
 AGHT+IFuoSzVp7PcfFD1Q1RorBxgwCQkq06IFSmtCXpMTO3G31frkl5Q+wTnbphKiOylmI+xCkIbpuIbE84=
X-Received: from zagreus.c.googlers.com
 ([fda3:e722:ac3:cc00:7f:e700:c0a8:5c37])
 (user=seanjc job=sendgmr) by 2002:a0d:dd85:0:b0:627:7563:95b1 with SMTP id
 00721157ae682-6277563967cmr14645877b3.5.1715990681328; Fri, 17 May 2024
 17:04:41 -0700 (PDT)
Reply-To: Sean Christopherson <seanjc@google.com>
Date: Fri, 17 May 2024 17:04:24 -0700
In-Reply-To: <20240518000430.1118488-1-seanjc@google.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
Mime-Version: 1.0
References: <20240518000430.1118488-1-seanjc@google.com>
X-Mailer: git-send-email 2.45.0.215.g3402c0e53f-goog
Message-ID: <20240518000430.1118488-4-seanjc@google.com>
Subject: [PATCH 3/9] KVM: nVMX: Always handle #VEs in L0 (never forward #VEs
 from L2 to L1)
From: Sean Christopherson <seanjc@google.com>
To: Sean Christopherson <seanjc@google.com>,
 Paolo Bonzini <pbonzini@redhat.com>
Cc: kvm@vger.kernel.org, linux-kernel@vger.kernel.org
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

Always handle #VEs, e.g. due to prove EPT Violation #VE failures, in L0,
as KVM does not expose any #VE capabilities to L1, i.e. any and all #VEs
are KVM's responsibility.

Fixes: 8131cf5b4fd8 ("KVM: VMX: Introduce test mode related to EPT violatio=
n VE")
Signed-off-by: Sean Christopherson <seanjc@google.com>
---
 arch/x86/kvm/vmx/nested.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/arch/x86/kvm/vmx/nested.c b/arch/x86/kvm/vmx/nested.c
index 6798fadaa335..643935a0f70a 100644
--- a/arch/x86/kvm/vmx/nested.c
+++ b/arch/x86/kvm/vmx/nested.c
@@ -6233,6 +6233,8 @@ static bool nested_vmx_l0_wants_exit(struct kvm_vcpu =
*vcpu,
 		else if (is_alignment_check(intr_info) &&
 			 !vmx_guest_inject_ac(vcpu))
 			return true;
+		else if (is_ve_fault(intr_info))
+			return true;
 		return false;
 	case EXIT_REASON_EXTERNAL_INTERRUPT:
 		return true;
--=20
2.45.0.215.g3402c0e53f-goog
From nobody Wed Feb 11 04:18:44 2026
Received: from mail-pf1-f201.google.com (mail-pf1-f201.google.com
 [209.85.210.201])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 0974B10A11
	for <linux-kernel@vger.kernel.org>; Sat, 18 May 2024 00:04:44 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.210.201
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1715990686; cv=none;
 b=J08VXWjzeWvlIsLmd9NKLRNAkb49d5pZvWnMkw/Z2qc1H9RRaqKztWMeQV4iXtnIzSZkjd88SucXMAnaaLoxSrL6qG5zxkNWOJMwczp6mSBTOFd11EcLl+RNIhR6zaTh6LYJ49W+UlUJ5YX2oKauxpCghGwd3DbajO7XIpwMJFI=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1715990686; c=relaxed/simple;
	bh=4/2HLzcusjSlO0rsq/T4/YEv0mk4XS4XnM4Qi5lbYss=;
	h=Date:In-Reply-To:Mime-Version:References:Message-ID:Subject:From:
	 To:Cc:Content-Type;
 b=aoe/nd4eacgbvE78rvASRmJaNImsukJMcauVGigtryDiuwGRNLgMQK/+MlPzDDwFer8IkbLibYwgCtzXCn4+UDVTvuXWcAd+/9ZwdrPuXzvyPxe2ioxz4Mxqhj0H9Z8ZzDatc3Wdn4smvjgYVUuavl+FA60zmdfIPze37b8Vofg=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com;
 dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b=LYQ9wfKF; arc=none smtp.client-ip=209.85.210.201
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b="LYQ9wfKF"
Received: by mail-pf1-f201.google.com with SMTP id
 d2e1a72fcca58-6f449ea6804so10624169b3a.2
        for <linux-kernel@vger.kernel.org>;
 Fri, 17 May 2024 17:04:44 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20230601; t=1715990684; x=1716595484;
 darn=vger.kernel.org;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:from:to:cc:subject:date:message-id:reply-to;
        bh=QlWrNPMcBNIRjZ1oRUuV/rtUWiyhfC1iM9WcCPk5B74=;
        b=LYQ9wfKF3VBD8azfAFN5KBqS0dei6FaLHfqbNkwe+RREVRBklz1ONbLp0/F9vFB0Bw
         RiZUvJr92W0HSqwzD01xHqbOe+wiPocIIpqvPE6gJl/kYp2dQxFChzWlI7Cpp8cV+pWD
         XHB8V5RMx7hkpDtJOEnofk1m46Ghp7Xwno06HwbkVL+hDcwcnDPhnzylCuwomDikEUcX
         cVJmWr8HC0QYzZ51QnzYGrSwuSZy1K/c33VfwPW5ACGsjyS38TUEpc4UCRtECPavCB6i
         4uRRvzEJ0eBtyFt7xUTjfghs4HhW6fepnOI3QRafWBlaUnGONr0TnACLF2CFYI3g7d9U
         L2Lw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1715990684; x=1716595484;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:x-gm-message-state:from:to:cc:subject:date:message-id
         :reply-to;
        bh=QlWrNPMcBNIRjZ1oRUuV/rtUWiyhfC1iM9WcCPk5B74=;
        b=n7O6QBHlmBGK0DV/VB0SvxWFmvgUpSdH98iq1BuCTTvJp0Un9gV0zGy0nryPgcXCV7
         HWVlG+UOOh1Gt+p8afWlqgOZAV01/NRVLRSgzRLlQEmCrSA6Tz0EE03lsU3UWfxrjmt7
         B6Ihi326/VKKpq6xJvM4w5psbjjxBk62OaXej/VXNBimsnuThyCGEyJ2tYOrw6pyd7mE
         WV+PgRGzFivgx9obscEHVJUv3rF8oyd0jAjM5r2Px0qYlmErnkfiPc8pK1VAbx/U+fdM
         Hr9plKishdeiClIDyVPjBB+WA0bRUoX5pjIabFXtcJx9TaC7LIikgaBj6iM7gpOAo6Bp
         d6Ag==
X-Forwarded-Encrypted: i=1;
 AJvYcCXHUR9DH77CD6zHW6HorZLlGhQ4rTVE0m3gi5gaK4MOvkuD2VXABaiqEw5JCU38tTnSLSydxJeTp1e2jN2Eg4cnl2Vkh1Hpr9V6eqFG
X-Gm-Message-State: AOJu0Yy6H0X1Pg6V357b/lr+hgDFL9a1OlTtP/flgzcgyW+opQpeJJ7T
	rG66PPYPhZ977VAzBGL4wROHWinwxqbfw4MfpH7OQ1PNRP4CSvN9tnQqHpXSWVo48r5qEPASn2V
	kSA==
X-Google-Smtp-Source: 
 AGHT+IGXTb5HJ+lESm2mn7d52eb+nyx9ads/DAkFTkEN0ck3hpsE/NtPnquqJPYm3p9JzsWWbbm5Xh2kiJg=
X-Received: from zagreus.c.googlers.com
 ([fda3:e722:ac3:cc00:7f:e700:c0a8:5c37])
 (user=seanjc job=sendgmr) by 2002:a05:6a00:3a0f:b0:6ea:88cd:67e9 with SMTP id
 d2e1a72fcca58-6f4e0376006mr1193202b3a.4.1715990684360; Fri, 17 May 2024
 17:04:44 -0700 (PDT)
Reply-To: Sean Christopherson <seanjc@google.com>
Date: Fri, 17 May 2024 17:04:25 -0700
In-Reply-To: <20240518000430.1118488-1-seanjc@google.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
Mime-Version: 1.0
References: <20240518000430.1118488-1-seanjc@google.com>
X-Mailer: git-send-email 2.45.0.215.g3402c0e53f-goog
Message-ID: <20240518000430.1118488-5-seanjc@google.com>
Subject: [PATCH 4/9] KVM: x86/mmu: Add sanity checks that KVM doesn't create
 EPT #VE SPTEs
From: Sean Christopherson <seanjc@google.com>
To: Sean Christopherson <seanjc@google.com>,
 Paolo Bonzini <pbonzini@redhat.com>
Cc: kvm@vger.kernel.org, linux-kernel@vger.kernel.org
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

Assert that KVM doesn't set a SPTE to a value that could trigger an EPT
Violation #VE on a non-MMIO SPTE, e.g. to help detect bugs even without
KVM_INTEL_PROVE_VE enabled, and to help debug actual #VE failures.

Note, this will run afoul of TDX support, which needs to reflect emulated
MMIO accesses into the guest as #VEs (which was the whole point of adding
EPT Violation #VE support in KVM).  The obvious fix for that is to exempt
MMIO SPTEs, but that's annoyingly difficult now that is_mmio_spte() relies
on a per-VM value.  However, resolving that conundrum is a future problem,
whereas getting KVM_INTEL_PROVE_VE healthy is a current problem.

Signed-off-by: Sean Christopherson <seanjc@google.com>
---
 arch/x86/kvm/mmu/mmu.c      | 3 +++
 arch/x86/kvm/mmu/spte.h     | 9 +++++++++
 arch/x86/kvm/mmu/tdp_iter.h | 2 ++
 3 files changed, 14 insertions(+)

diff --git a/arch/x86/kvm/mmu/mmu.c b/arch/x86/kvm/mmu/mmu.c
index 5095fb46713e..d2af077d8b34 100644
--- a/arch/x86/kvm/mmu/mmu.c
+++ b/arch/x86/kvm/mmu/mmu.c
@@ -336,16 +336,19 @@ static int is_cpuid_PSE36(void)
 #ifdef CONFIG_X86_64
 static void __set_spte(u64 *sptep, u64 spte)
 {
+	KVM_MMU_WARN_ON(is_ept_ve_possible(spte));
 	WRITE_ONCE(*sptep, spte);
 }
=20
 static void __update_clear_spte_fast(u64 *sptep, u64 spte)
 {
+	KVM_MMU_WARN_ON(is_ept_ve_possible(spte));
 	WRITE_ONCE(*sptep, spte);
 }
=20
 static u64 __update_clear_spte_slow(u64 *sptep, u64 spte)
 {
+	KVM_MMU_WARN_ON(is_ept_ve_possible(spte));
 	return xchg(sptep, spte);
 }
=20
diff --git a/arch/x86/kvm/mmu/spte.h b/arch/x86/kvm/mmu/spte.h
index 5dd5405fa07a..52fa004a1fbc 100644
--- a/arch/x86/kvm/mmu/spte.h
+++ b/arch/x86/kvm/mmu/spte.h
@@ -3,6 +3,8 @@
 #ifndef KVM_X86_MMU_SPTE_H
 #define KVM_X86_MMU_SPTE_H
=20
+#include <asm/vmx.h>
+
 #include "mmu.h"
 #include "mmu_internal.h"
=20
@@ -276,6 +278,13 @@ static inline bool is_shadow_present_pte(u64 pte)
 	return !!(pte & SPTE_MMU_PRESENT_MASK);
 }
=20
+static inline bool is_ept_ve_possible(u64 spte)
+{
+	return (shadow_present_mask & VMX_EPT_SUPPRESS_VE_BIT) &&
+	       !(spte & VMX_EPT_SUPPRESS_VE_BIT) &&
+	       (spte & VMX_EPT_RWX_MASK) !=3D VMX_EPT_MISCONFIG_WX_VALUE;
+}
+
 /*
  * Returns true if A/D bits are supported in hardware and are enabled by K=
VM.
  * When enabled, KVM uses A/D bits for all non-nested MMUs.  Because L1 can
diff --git a/arch/x86/kvm/mmu/tdp_iter.h b/arch/x86/kvm/mmu/tdp_iter.h
index fae559559a80..2880fd392e0c 100644
--- a/arch/x86/kvm/mmu/tdp_iter.h
+++ b/arch/x86/kvm/mmu/tdp_iter.h
@@ -21,11 +21,13 @@ static inline u64 kvm_tdp_mmu_read_spte(tdp_ptep_t spte=
p)
=20
 static inline u64 kvm_tdp_mmu_write_spte_atomic(tdp_ptep_t sptep, u64 new_=
spte)
 {
+	KVM_MMU_WARN_ON(is_ept_ve_possible(new_spte));
 	return xchg(rcu_dereference(sptep), new_spte);
 }
=20
 static inline void __kvm_tdp_mmu_write_spte(tdp_ptep_t sptep, u64 new_spte)
 {
+	KVM_MMU_WARN_ON(is_ept_ve_possible(new_spte));
 	WRITE_ONCE(*rcu_dereference(sptep), new_spte);
 }
=20
--=20
2.45.0.215.g3402c0e53f-goog
From nobody Wed Feb 11 04:18:44 2026
Received: from mail-yw1-f202.google.com (mail-yw1-f202.google.com
 [209.85.128.202])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 3E2B3C13C
	for <linux-kernel@vger.kernel.org>; Sat, 18 May 2024 00:04:46 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.128.202
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1715990688; cv=none;
 b=SszZ8vIZZMRegIwZ3abx/qJB1YE/UjCV8osVkW0qmPbYrnS9K6PofemM5ed3+IOvBP5reScnW3QNjKpxFCnMRTZ8cB0vwfyXAYXKJ7X0x0HHleP3cUgYcvr9dav6a2MC06T7Lvae9YgTXKaQU+Z0RAF+apZhuh7rUBi6kFDuxYA=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1715990688; c=relaxed/simple;
	bh=UsxfZ2Znpr+evi/d9J5xPggQfQfWujjuBEirhapl2Io=;
	h=Date:In-Reply-To:Mime-Version:References:Message-ID:Subject:From:
	 To:Cc:Content-Type;
 b=WX5rRKPkF3sUiFKWEUDZlke1QNXAwp+zWn25yC5YjHqpm0x83QltRhoXqpodtVybKr/QhOgf2K8Hmt5PUbxKlW11o2xZnJlnHVswrO1NeF26A6mJjwgE4uVaQnTE5r2DbB9K8K/o6+2vBuUvMg3JkReeGqUcSn+2D3aE59SSwj8=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com;
 dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b=BIFBpc94; arc=none smtp.client-ip=209.85.128.202
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b="BIFBpc94"
Received: by mail-yw1-f202.google.com with SMTP id
 00721157ae682-62035d9ecc4so187103947b3.1
        for <linux-kernel@vger.kernel.org>;
 Fri, 17 May 2024 17:04:46 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20230601; t=1715990686; x=1716595486;
 darn=vger.kernel.org;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:from:to:cc:subject:date:message-id:reply-to;
        bh=GtLQWhneBIjQa9L0ZFgDjGejsgErZqZOjE88sPfbTko=;
        b=BIFBpc94IAroqArDyjMJmzGrALxbfTVAOO+80UJIqQD5ZTxcoMO0o1v9WGY5yYLb6v
         uUy0R7ehgeJZL8VHUbXGFJgOYOAsk3JHYiG4gxDsSl3QYFWPLI/jn9OHXvfeV8f+cS22
         Kfsx01G6pOFPQ+h/Fgk8J4GKjndd54gbITTqv7OlmWRzDfaJu8dOpCKy4Bi2i+5HuTmL
         Rct7qM3FgLSOu/e2aQoY31Bcd/bQZQmCaSfkhnp++McWIMk/LgbX8ycOYIGf/PV9WwlO
         ETAkix+hYcQfdgACe8wUhFOcPXyK1Io3T9OaqdQwFanSqoO5Lli0r266O18qJkT+meYf
         /fyw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1715990686; x=1716595486;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:x-gm-message-state:from:to:cc:subject:date:message-id
         :reply-to;
        bh=GtLQWhneBIjQa9L0ZFgDjGejsgErZqZOjE88sPfbTko=;
        b=HjGcF6TiE/78ZJIPoDyInuhmtjKLdJCN1jSLMCZ7ejCeER2Nml+LHNvipo/qN64GHV
         whUfc3vX5mEw4JNER/WAeJ7UKitAPX6yEDIJG0gCCd3AW10JbiM1MCdcyr58y2Q+QKXn
         y8Rf2v+ZgBgfvhUaPF4OhXVrMoE+CeVH2iKTfaLkFY3LkfjcguhEYiUeigP1L6pJ1OsA
         ig6aorL+t2gP1SKDNcJqTQjrvL0IAnb2n2TjBij72OJhJCEurpK8EUMU3l4NRb+fPn5v
         xPw5GYb94zV0CeMHYNpDot+W3Ash7xPhYyWze+mRmJucoHzAvxcbEn2q0LW7xwBeXvA/
         dh1g==
X-Forwarded-Encrypted: i=1;
 AJvYcCVduYxggQJiLUMhxvh4m1P5Fy/1gCfVavNBXLWEzt38S9rbIWfC1WlM2nY4XbeAqI7fL5Ts0nfKmk9mBExAtbdFsF3v47XqvqXN0hJn
X-Gm-Message-State: AOJu0YzOj6zrkhu/z56RXgobo0VzTQrd2VnXAesN+JVCFc2ulELtrzJj
	GtvwLVS/uhH5+BgeXgIj43Q1svlfNCoSUjGqhHTIISdvg3nr3XIo63GQY3GwisGgMoYjOfCVKj0
	vWg==
X-Google-Smtp-Source: 
 AGHT+IFRNVOusb8NQXdsGL9g9hQDWm+VyTFubFptChkJmXOI5zfWn5LIjq49IRgRPhze5UG2hHk0EnpyWr8=
X-Received: from zagreus.c.googlers.com
 ([fda3:e722:ac3:cc00:7f:e700:c0a8:5c37])
 (user=seanjc job=sendgmr) by 2002:a05:6902:154e:b0:dee:6866:98c9 with SMTP id
 3f1490d57ef6-dee68669b8cmr5303731276.1.1715990686245; Fri, 17 May 2024
 17:04:46 -0700 (PDT)
Reply-To: Sean Christopherson <seanjc@google.com>
Date: Fri, 17 May 2024 17:04:26 -0700
In-Reply-To: <20240518000430.1118488-1-seanjc@google.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
Mime-Version: 1.0
References: <20240518000430.1118488-1-seanjc@google.com>
X-Mailer: git-send-email 2.45.0.215.g3402c0e53f-goog
Message-ID: <20240518000430.1118488-6-seanjc@google.com>
Subject: [PATCH 5/9] KVM: VMX: Dump VMCS on unexpected #VE
From: Sean Christopherson <seanjc@google.com>
To: Sean Christopherson <seanjc@google.com>,
 Paolo Bonzini <pbonzini@redhat.com>
Cc: kvm@vger.kernel.org, linux-kernel@vger.kernel.org
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

Dump the VMCS on an unexpected #VE, otherwise it's practically impossible
to figure out why the #VE occurred.

Signed-off-by: Sean Christopherson <seanjc@google.com>
---
 arch/x86/kvm/vmx/vmx.c | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/arch/x86/kvm/vmx/vmx.c b/arch/x86/kvm/vmx/vmx.c
index 51b2cd13250a..0c68643d982b 100644
--- a/arch/x86/kvm/vmx/vmx.c
+++ b/arch/x86/kvm/vmx/vmx.c
@@ -5217,8 +5217,10 @@ static int handle_exception_nmi(struct kvm_vcpu *vcp=
u)
 	if (is_invalid_opcode(intr_info))
 		return handle_ud(vcpu);
=20
-	if (KVM_BUG_ON(is_ve_fault(intr_info), vcpu->kvm))
+	if (KVM_BUG_ON(is_ve_fault(intr_info), vcpu->kvm)) {
+		dump_vmcs(vcpu);
 		return -EIO;
+	}
=20
 	error_code =3D 0;
 	if (intr_info & INTR_INFO_DELIVER_CODE_MASK)
--=20
2.45.0.215.g3402c0e53f-goog
From nobody Wed Feb 11 04:18:44 2026
Received: from mail-pj1-f74.google.com (mail-pj1-f74.google.com
 [209.85.216.74])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id ED5C422079
	for <linux-kernel@vger.kernel.org>; Sat, 18 May 2024 00:04:48 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.216.74
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1715990690; cv=none;
 b=Lm71bAAtCaDiP99JWygQ6osI4E7+ZrbIyeo4mRm2AY5KBF1ngL4+0zN+A6gNsXIkuqLlofWITjwUYLvyRbeknxqSsljBjwsHq4g7LKZtsMv4VXEolCozC4rPcd5H2+lWb+hCa9eLOIGGRgi0xV82eB9YNJyGi+Ylf2w5MybrCcE=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1715990690; c=relaxed/simple;
	bh=G0H1ZribibIRAeIPrcFsCyVZimPoXaBX2C7zZ9WKf10=;
	h=Date:In-Reply-To:Mime-Version:References:Message-ID:Subject:From:
	 To:Cc:Content-Type;
 b=s5r9wYF34XMMmX6BtRej6oZwIz+WRO90x6H7ljQ5QbNSxUJlf4++MRiF7BltoeCEY7pArgwqEiA8QSUmXfUw3FyRWNzvCdY9yeUhCpXTSV6LeMCzjgBxFYlyVspH2iw+tOgY0hUlc6LuCvcUd4zZ2SGWZsNipaj8FeEULu3pHqs=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com;
 dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b=F9/Y6jJF; arc=none smtp.client-ip=209.85.216.74
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b="F9/Y6jJF"
Received: by mail-pj1-f74.google.com with SMTP id
 98e67ed59e1d1-2b4330e5119so7983238a91.3
        for <linux-kernel@vger.kernel.org>;
 Fri, 17 May 2024 17:04:48 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20230601; t=1715990688; x=1716595488;
 darn=vger.kernel.org;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:from:to:cc:subject:date:message-id:reply-to;
        bh=F6tFR9z1vs8c6u2WtnRiVVbIp33RqmLFmChD3Ch8F40=;
        b=F9/Y6jJFhzewat4Cg4F+eQuIev0srhsroVkR8wbo1PmWIPhlRju6kAQkd2PzSkbUBz
         L3gYIcwPIFifCEn+9BgkbCv9ZHKKd/Qa6suXuu22bOWt/2Ev0MxEqzq6FUXnz/2mnlCq
         ZZD2z+xqNZ0xjnBWi7J7vK9lK611m6jtwKdNr0h3anFylsax9XOYwq8pMdq7osHyKzoZ
         gQbxapf4HX9Fp0AM+01Z1EmaVd76TN0QvN/Q53M/bFIktm1dCn4HrsGm1RTBMI4rwN9v
         SMSQzQXvsMm6YqD7Mm1RXT+pmAZ2oxp4SNJechiyHd/PoHdvlNu/kzTk5A7mI3x7tlR4
         wLGw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1715990688; x=1716595488;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:x-gm-message-state:from:to:cc:subject:date:message-id
         :reply-to;
        bh=F6tFR9z1vs8c6u2WtnRiVVbIp33RqmLFmChD3Ch8F40=;
        b=FwGzOHvuQ/j+1jec74bGXCB+8pZxpf0z5/rjdYU9uR09sEGUlzTY5bLiseJTLBf6LU
         ZzmkMtgWgr/IiT0DxDhZouSqN8QPzDJeHXPYxtZWSFcRFf2XQCbE2GA7o7Un8w9nxbS+
         mMzctTr2OWDnNibX0huyoE/eNC2IJfG4O/nRaL1JSkxWNJQFKb9qEfPtCHVjzcDnjxDN
         Ffj3w/4AoD56Jo+cu93NVQdnLVbRJRycIlECvx7Jev2K8+lplXJi0hKwm01KTlgdZDkY
         7WBC3KdCnFReG3chfd1QvnbhqJXbN9S1+pb6zntaaRfhcnjLV57oLu3CHoVUwpFXAiXQ
         hMcw==
X-Forwarded-Encrypted: i=1;
 AJvYcCVa3bm4mRMyO83JOwgET69e2zzeHENPWf0ScdwSvpc+Aws0FFXqVzXZzq2oZVOn0eQMhs7SPkaeu1nxz55c/VwUEBJy7htmPSpiMH8l
X-Gm-Message-State: AOJu0YykuAM6VYZmimaZMOkoYSkeFjZSux/eGJHgT6n2gVgoQvBfsQmR
	85qUT/8PAJPHT4u95I5h1LkzuJyH35mz4g/2SQ+l7W5CSiBbDu/UYS6R5kXGIVw8o9Y+3HB4UH7
	SYA==
X-Google-Smtp-Source: 
 AGHT+IHcIhWQz88cxjQfIWr9QqPrvA4yvrV/FRAF27BDNzjGzBtgW0NQ5/zWEknFAvdFH63hTP7V0CPnMDs=
X-Received: from zagreus.c.googlers.com
 ([fda3:e722:ac3:cc00:7f:e700:c0a8:5c37])
 (user=seanjc job=sendgmr) by 2002:a17:90a:9309:b0:2b2:ad92:da6d with SMTP id
 98e67ed59e1d1-2b6ccc73bbemr63870a91.4.1715990688132; Fri, 17 May 2024
 17:04:48 -0700 (PDT)
Reply-To: Sean Christopherson <seanjc@google.com>
Date: Fri, 17 May 2024 17:04:27 -0700
In-Reply-To: <20240518000430.1118488-1-seanjc@google.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
Mime-Version: 1.0
References: <20240518000430.1118488-1-seanjc@google.com>
X-Mailer: git-send-email 2.45.0.215.g3402c0e53f-goog
Message-ID: <20240518000430.1118488-7-seanjc@google.com>
Subject: [PATCH 6/9] KVM: x86/mmu: Print SPTEs on unexpected #VE
From: Sean Christopherson <seanjc@google.com>
To: Sean Christopherson <seanjc@google.com>,
 Paolo Bonzini <pbonzini@redhat.com>
Cc: kvm@vger.kernel.org, linux-kernel@vger.kernel.org
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

Print the SPTEs that correspond to the faulting GPA on an unexpected EPT
Violation #VE to help the user debug failures, e.g. to pinpoint which SPTE
didn't have SUPPRESS_VE set.

Opportunistically assert that the underlying exit reason was indeed an EPT
Violation, as the CPU has *really* gone off the rails if a #VE occurs due
to a completely unexpected exit reason.

Signed-off-by: Sean Christopherson <seanjc@google.com>
---
 arch/x86/include/asm/kvm_host.h |  1 +
 arch/x86/kvm/mmu/mmu.c          | 42 ++++++++++++++++++++++++++-------
 arch/x86/kvm/vmx/vmx.c          |  5 ++++
 3 files changed, 39 insertions(+), 9 deletions(-)

diff --git a/arch/x86/include/asm/kvm_host.h b/arch/x86/include/asm/kvm_hos=
t.h
index aabf1648a56a..9bb2e164c523 100644
--- a/arch/x86/include/asm/kvm_host.h
+++ b/arch/x86/include/asm/kvm_host.h
@@ -2159,6 +2159,7 @@ int kvm_emulate_hypercall(struct kvm_vcpu *vcpu);
=20
 int kvm_mmu_page_fault(struct kvm_vcpu *vcpu, gpa_t cr2_or_gpa, u64 error_=
code,
 		       void *insn, int insn_len);
+void kvm_mmu_print_sptes(struct kvm_vcpu *vcpu, gpa_t gpa, const char *msg=
);
 void kvm_mmu_invlpg(struct kvm_vcpu *vcpu, gva_t gva);
 void kvm_mmu_invalidate_addr(struct kvm_vcpu *vcpu, struct kvm_mmu *mmu,
 			     u64 addr, unsigned long roots);
diff --git a/arch/x86/kvm/mmu/mmu.c b/arch/x86/kvm/mmu/mmu.c
index d2af077d8b34..f2c9580d9588 100644
--- a/arch/x86/kvm/mmu/mmu.c
+++ b/arch/x86/kvm/mmu/mmu.c
@@ -4124,6 +4124,22 @@ static int get_walk(struct kvm_vcpu *vcpu, u64 addr,=
 u64 *sptes, int *root_level
 	return leaf;
 }
=20
+static int get_sptes_lockless(struct kvm_vcpu *vcpu, u64 addr, u64 *sptes,
+			      int *root_level)
+{
+	int leaf;
+
+	walk_shadow_page_lockless_begin(vcpu);
+
+	if (is_tdp_mmu_active(vcpu))
+		leaf =3D kvm_tdp_mmu_get_walk(vcpu, addr, sptes, root_level);
+	else
+		leaf =3D get_walk(vcpu, addr, sptes, root_level);
+
+	walk_shadow_page_lockless_end(vcpu);
+	return leaf;
+}
+
 /* return true if reserved bit(s) are detected on a valid, non-MMIO SPTE. =
*/
 static bool get_mmio_spte(struct kvm_vcpu *vcpu, u64 addr, u64 *sptep)
 {
@@ -4132,15 +4148,7 @@ static bool get_mmio_spte(struct kvm_vcpu *vcpu, u64=
 addr, u64 *sptep)
 	int root, leaf, level;
 	bool reserved =3D false;
=20
-	walk_shadow_page_lockless_begin(vcpu);
-
-	if (is_tdp_mmu_active(vcpu))
-		leaf =3D kvm_tdp_mmu_get_walk(vcpu, addr, sptes, &root);
-	else
-		leaf =3D get_walk(vcpu, addr, sptes, &root);
-
-	walk_shadow_page_lockless_end(vcpu);
-
+	leaf =3D get_sptes_lockless(vcpu, addr, sptes, &root);
 	if (unlikely(leaf < 0)) {
 		*sptep =3D 0ull;
 		return reserved;
@@ -5963,6 +5971,22 @@ int noinline kvm_mmu_page_fault(struct kvm_vcpu *vcp=
u, gpa_t cr2_or_gpa, u64 err
 }
 EXPORT_SYMBOL_GPL(kvm_mmu_page_fault);
=20
+void kvm_mmu_print_sptes(struct kvm_vcpu *vcpu, gpa_t gpa, const char *msg)
+{
+	u64 sptes[PT64_ROOT_MAX_LEVEL + 1];
+	int root_level, leaf, level;
+
+	leaf =3D get_sptes_lockless(vcpu, gpa, sptes, &root_level);
+	if (unlikely(leaf < 0))
+		return;
+
+	pr_err("%s %llx", msg, gpa);
+	for (level =3D root_level; level >=3D leaf; level--)
+		pr_cont(", spte[%d] =3D 0x%llx", level, sptes[level]);
+	pr_cont("\n");
+}
+EXPORT_SYMBOL_GPL(kvm_mmu_print_sptes);
+
 static void __kvm_mmu_invalidate_addr(struct kvm_vcpu *vcpu, struct kvm_mm=
u *mmu,
 				      u64 addr, hpa_t root_hpa)
 {
diff --git a/arch/x86/kvm/vmx/vmx.c b/arch/x86/kvm/vmx/vmx.c
index 0c68643d982b..2a3fce61c785 100644
--- a/arch/x86/kvm/vmx/vmx.c
+++ b/arch/x86/kvm/vmx/vmx.c
@@ -5218,7 +5218,12 @@ static int handle_exception_nmi(struct kvm_vcpu *vcp=
u)
 		return handle_ud(vcpu);
=20
 	if (KVM_BUG_ON(is_ve_fault(intr_info), vcpu->kvm)) {
+		struct vmx_ve_information *ve_info =3D vmx->ve_info;
+
+		WARN_ONCE(ve_info->exit_reason !=3D EXIT_REASON_EPT_VIOLATION,
+			  "Unexpected #VE on VM-Exit reason 0x%x", ve_info->exit_reason);
 		dump_vmcs(vcpu);
+		kvm_mmu_print_sptes(vcpu, ve_info->guest_physical_address, "#VE");
 		return -EIO;
 	}
=20
--=20
2.45.0.215.g3402c0e53f-goog
From nobody Wed Feb 11 04:18:44 2026
Received: from mail-yb1-f201.google.com (mail-yb1-f201.google.com
 [209.85.219.201])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id C6E6728DD5
	for <linux-kernel@vger.kernel.org>; Sat, 18 May 2024 00:04:50 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.219.201
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1715990692; cv=none;
 b=DrWiwf1fH3+LPiIRDVxuc/lS4iUEsgYeUDEFW3O9Wu7cxjZ8quW8TjaVpyOy3LzYUeJk4/wRVoDtc4EA+N6Kw+q8IY1QHAiP+pLx5I17brCr76/29PQJwb4PtBh7Q3wfFxus3y+hRQv+sAX8t3I8M4NApxLu9wtf81lmEjbdvo4=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1715990692; c=relaxed/simple;
	bh=d+HGE5FKbalq1IyET5esmBeH4ox7PVAkkfHJLMxz3xo=;
	h=Date:In-Reply-To:Mime-Version:References:Message-ID:Subject:From:
	 To:Cc:Content-Type;
 b=HL3GXWTaa7pQH6ewvURBDGtTM1byioPqCxYIRDdn987ZK6FfcOb1v//Kd/xabNaATsreVC0/FC31ZxVK/PQM2LkVzvvgN8tVidTc93F6lJSJbFBm7ZFZZpJ1Jjp76Y5fgLnI62drMAYrRgRUOBUzgEUA55Hj0Cp4k/OkoVdntQo=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com;
 dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b=N5udJawD; arc=none smtp.client-ip=209.85.219.201
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b="N5udJawD"
Received: by mail-yb1-f201.google.com with SMTP id
 3f1490d57ef6-de8b66d59f7so12399627276.0
        for <linux-kernel@vger.kernel.org>;
 Fri, 17 May 2024 17:04:50 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20230601; t=1715990690; x=1716595490;
 darn=vger.kernel.org;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:from:to:cc:subject:date:message-id:reply-to;
        bh=gllonWtr/HXeH3HBzo9n0ORhoUvXSPNion6U8aTZ5rc=;
        b=N5udJawDMf7x+Wc0ZtJ4eh90N7pmyDLFo1b5pAMHBK8FgD6X5BUdM637bDySWH55s4
         RnPUCFCFfLkZpAz7JLDAKzb/YAxGpxoqH+PLWrjWmsZlSsB7s4xiXhsAGYA/qM/HQIlb
         qoCmvoABa3T7dtjlRiVbvXPaxs6762Q9D6RUH7WZd/UXfCJoLtWxgGBPPJYetTDA2L02
         /4JoQTO1j2EiHm7FjAfIrRgY7CF8HAIIkYiN72CAKLP5JoP9RxGJKvO488d9si7AJ2Po
         cfQ2ffg9OAJpeyL7rS4+52tjJrW10HwUfqfMOgsDJg2P8HuAFFXNFPO9Ztm01ytZuv3p
         frsg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1715990690; x=1716595490;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:x-gm-message-state:from:to:cc:subject:date:message-id
         :reply-to;
        bh=gllonWtr/HXeH3HBzo9n0ORhoUvXSPNion6U8aTZ5rc=;
        b=EklRq4MrV38Mu2Oyb/GxJ4lg7OFwF8s27TEm62MoqA16+Cp6B94a6hxNJkSyavluyi
         p5vFdV/vWlVYb+NmXuJjzubb0JdnKV5/mFlzZgJvpK9FZDpG/kBUVTCaHWhCvcWmlkDu
         Yw6WDX+o2ZTwD/TOcQKIqM0smCqKkme97QK1kBvZG9Mi2g0KiCrUfUfQNGOU9nUyasFU
         taqCN5b3ygG+zEMOHT9+GfoqDP3jSPB82OCPHA2gJj+T2cQjkLaAxj36B75RHi6HTHbr
         oX7VvkBebT5pZZoViw8YLtUwZiurmBsPbXezc3bgDoeKRqWuaR3GJqX9NB14k4vMTd27
         Z5Xg==
X-Forwarded-Encrypted: i=1;
 AJvYcCUaKFwCJYbZZbcZ+pkRJu+NdDhGJObyeAvWGKbB3KnvyaQZ0NBzSPbym+Hlf+YXXDF6N0emwEIrQSLsVp6oiqjfecU7iUQXbb+nT74C
X-Gm-Message-State: AOJu0YwA22RxTbFXzM1j012q0jKg9wwD5u3Mvq2yrbHDVF2sDecuaeJG
	nUYLDYDfXGk5RBz9WgpKywU666H/ZDNZWgZFdQ7dKuUVVKFBrCGR+rKhrWDowipGXZ9inCKnUcJ
	Usw==
X-Google-Smtp-Source: 
 AGHT+IFAyinQ0ziYwYxNYFhEDBpRzcHlzA15Uvh759ilYWGg6F9fzj5Lm4hz9NDOEEtMykWD/Id/cx5EJhg=
X-Received: from zagreus.c.googlers.com
 ([fda3:e722:ac3:cc00:7f:e700:c0a8:5c37])
 (user=seanjc job=sendgmr) by 2002:a05:6902:2d8f:b0:de5:4b39:ffd0 with SMTP id
 3f1490d57ef6-df49021cfccmr116977276.0.1715990689912; Fri, 17 May 2024
 17:04:49 -0700 (PDT)
Reply-To: Sean Christopherson <seanjc@google.com>
Date: Fri, 17 May 2024 17:04:28 -0700
In-Reply-To: <20240518000430.1118488-1-seanjc@google.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
Mime-Version: 1.0
References: <20240518000430.1118488-1-seanjc@google.com>
X-Mailer: git-send-email 2.45.0.215.g3402c0e53f-goog
Message-ID: <20240518000430.1118488-8-seanjc@google.com>
Subject: [PATCH 7/9] KVM: VMX: Don't kill the VM on an unexpected #VE
From: Sean Christopherson <seanjc@google.com>
To: Sean Christopherson <seanjc@google.com>,
 Paolo Bonzini <pbonzini@redhat.com>
Cc: kvm@vger.kernel.org, linux-kernel@vger.kernel.org
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

Don't terminiate the VM on an unexpected #VE, as it's extremely unlikely
the #VE is fatal to the guest, and even less likely that it presents a
danger to the host.  Simply resume the guest on "failure", as the #VE info
page's BUSY field will prevent converting any more EPT Violations to #VEs
for the vCPU (at least, that's what the BUSY field is supposed to do).

Signed-off-by: Sean Christopherson <seanjc@google.com>
---
 arch/x86/kvm/vmx/vmx.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/arch/x86/kvm/vmx/vmx.c b/arch/x86/kvm/vmx/vmx.c
index 2a3fce61c785..58832aae2248 100644
--- a/arch/x86/kvm/vmx/vmx.c
+++ b/arch/x86/kvm/vmx/vmx.c
@@ -5217,14 +5217,14 @@ static int handle_exception_nmi(struct kvm_vcpu *vc=
pu)
 	if (is_invalid_opcode(intr_info))
 		return handle_ud(vcpu);
=20
-	if (KVM_BUG_ON(is_ve_fault(intr_info), vcpu->kvm)) {
+	if (WARN_ON_ONCE(is_ve_fault(intr_info))) {
 		struct vmx_ve_information *ve_info =3D vmx->ve_info;
=20
 		WARN_ONCE(ve_info->exit_reason !=3D EXIT_REASON_EPT_VIOLATION,
 			  "Unexpected #VE on VM-Exit reason 0x%x", ve_info->exit_reason);
 		dump_vmcs(vcpu);
 		kvm_mmu_print_sptes(vcpu, ve_info->guest_physical_address, "#VE");
-		return -EIO;
+		return 1;
 	}
=20
 	error_code =3D 0;
--=20
2.45.0.215.g3402c0e53f-goog
From nobody Wed Feb 11 04:18:44 2026
Received: from mail-yb1-f202.google.com (mail-yb1-f202.google.com
 [209.85.219.202])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id AA40033E8
	for <linux-kernel@vger.kernel.org>; Sat, 18 May 2024 00:04:52 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.219.202
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1715990695; cv=none;
 b=bTyyamyEG0xVc4y8qwU3RpBtp3dFHKJi9tQpFIW5x+m0KOXryhShqRoHoCXsx3k8jZB0Tdv4Cia7UEy7vHN7NscV4ZLEWLYmoin6DWdubtHQQk4Rq5QxigUkCrW1eDo7BncTDKLTwq0y8p/iZvwTMpY0NYjVUN87Il4fByL7p0o=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1715990695; c=relaxed/simple;
	bh=ectuSuFOojgkLLmjDmKbjYyngGKrMAV7Dv3oP241fUo=;
	h=Date:In-Reply-To:Mime-Version:References:Message-ID:Subject:From:
	 To:Cc:Content-Type;
 b=G3eaNuiEjdm9gRAVUgZxS+Stg56fiUD6KvtJeLxJzsap0OCU4ZgAaTxPNUsskN9hsG8DdpingDCsmvah5s/a1i5GMtAcTjst462HpLxQxDLkmv/oybbBUS4O6ya4Xwmx5joOWmnCYsUgX66LbXWXRzDL1Fx61Gl3oOSquGFUARc=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com;
 dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b=31/gGNFl; arc=none smtp.client-ip=209.85.219.202
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b="31/gGNFl"
Received: by mail-yb1-f202.google.com with SMTP id
 3f1490d57ef6-de74a2635e2so15969144276.3
        for <linux-kernel@vger.kernel.org>;
 Fri, 17 May 2024 17:04:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20230601; t=1715990692; x=1716595492;
 darn=vger.kernel.org;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:from:to:cc:subject:date:message-id:reply-to;
        bh=PmNsMiZYuI21fzAH4xPEmM+x/ygJuUkqhfrSS79CJmk=;
        b=31/gGNFlyljWFYLmBC24TzcComNO9PXyscXqyzQGPwj7pM70dSfcJp0KH+Y3HNnmR2
         vEh01tsKNPQY60emtKQ7iuRx3YYpcSP/DwQq4coxRRUYpd6L8e+fs0ra5MvZXIypoQvR
         hFfx1SLPFVvG8pLMk7VjVySSeYiax2xnMA59s/zjafs82OZ2ZWeQFPdxOhFjaar9OXgk
         m19uLx6F6GCigbthGjgWTLSbub2yDCOWNqhDNrVDx+V2tcF+PQjNpo90GJ4nXAfm6KTm
         rAybeF4o9VGrcKf2npUqvoEN78AlZCRlPbfVEXJ00jpHa50WKlmffjX4JMHNs6Db7qd2
         uB3g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1715990692; x=1716595492;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:x-gm-message-state:from:to:cc:subject:date:message-id
         :reply-to;
        bh=PmNsMiZYuI21fzAH4xPEmM+x/ygJuUkqhfrSS79CJmk=;
        b=ZVc3k7ff90Z45sPvV2y2VwKHymbZo+yjL5yhrg8NVuVq1vfIg+CGTLrJVOTEmN5e92
         dnvbAtPmbsPGYNRH9HBerOii5xTn/PRq6JeUq6L1yK2mSOSnjEGEORqcFKjMrGhQpdzR
         9XyvXdPsdff1ooyFAZKv5DEGOBGasY5uJtI3LI3WLqPuYPk+iRc3UW+k2MiPZICdfDoX
         a9iYBIp97bHXfjtAmNyPTl52oHlTiL+PTdIs1x5SnwhAiQ9Is82i567Q+Q5ijI1ssazM
         vrxBrNwnim36Xd2GlZDofAaJ5Qm/uMgeikAw63M06b/pVFP/k15DIIvTt0AqI6PKsWzX
         CdHw==
X-Forwarded-Encrypted: i=1;
 AJvYcCXr/zViYAymKSi15MskpgC2wNokZ++JaMOTPBn9s0LZv5hmH76Qh8XAXE0TpsRY07B4Zg/T+QxqRke+mQbD4vYMsD21xhSGzrpXKuFx
X-Gm-Message-State: AOJu0YyAhcoecML2WfgubH86LnyYzMTk0tFmJEPuUc8wYdvdm7trWsBl
	+SHK27sAc1EBKdHKwiXYEyTT2SHLSEhDwtCc0JpywXNQAwSQ52l2O++2YQBe+13c6GA4fymH5C/
	m/w==
X-Google-Smtp-Source: 
 AGHT+IEKsAdKYBFpozQHbHXiVJ/HspTDM2CFInyHubWioj3i50BbfdUhI4/kUioYnKr2iux2sNvJgfiTfs4=
X-Received: from zagreus.c.googlers.com
 ([fda3:e722:ac3:cc00:7f:e700:c0a8:5c37])
 (user=seanjc job=sendgmr) by 2002:a05:6902:706:b0:dee:63ce:9718 with SMTP id
 3f1490d57ef6-dee63ce9a16mr2061685276.1.1715990691759; Fri, 17 May 2024
 17:04:51 -0700 (PDT)
Reply-To: Sean Christopherson <seanjc@google.com>
Date: Fri, 17 May 2024 17:04:29 -0700
In-Reply-To: <20240518000430.1118488-1-seanjc@google.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
Mime-Version: 1.0
References: <20240518000430.1118488-1-seanjc@google.com>
X-Mailer: git-send-email 2.45.0.215.g3402c0e53f-goog
Message-ID: <20240518000430.1118488-9-seanjc@google.com>
Subject: [PATCH 8/9] KVM: VMX: Enumerate EPT Violation #VE support in
 /proc/cpuinfo
From: Sean Christopherson <seanjc@google.com>
To: Sean Christopherson <seanjc@google.com>,
 Paolo Bonzini <pbonzini@redhat.com>
Cc: kvm@vger.kernel.org, linux-kernel@vger.kernel.org
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

Don't suppress printing EPT_VIOLATION_VE in /proc/cpuinfo, knowing whether
or not KVM_INTEL_PROVE_VE actually does anything is extremely valuable.
A privileged user can get at the information by reading the raw MSR, but
the whole point of the VMX flags is to avoid needing to glean information
from raw MSR reads.

Signed-off-by: Sean Christopherson <seanjc@google.com>
---
 arch/x86/include/asm/vmxfeatures.h | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/arch/x86/include/asm/vmxfeatures.h b/arch/x86/include/asm/vmxf=
eatures.h
index 266daf5b5b84..695f36664889 100644
--- a/arch/x86/include/asm/vmxfeatures.h
+++ b/arch/x86/include/asm/vmxfeatures.h
@@ -77,7 +77,7 @@
 #define VMX_FEATURE_ENCLS_EXITING	( 2*32+ 15) /* "" VM-Exit on ENCLS (leaf=
 dependent) */
 #define VMX_FEATURE_RDSEED_EXITING	( 2*32+ 16) /* "" VM-Exit on RDSEED */
 #define VMX_FEATURE_PAGE_MOD_LOGGING	( 2*32+ 17) /* "pml" Log dirty pages =
into buffer */
-#define VMX_FEATURE_EPT_VIOLATION_VE	( 2*32+ 18) /* "" Conditionally refle=
ct EPT violations as #VE exceptions */
+#define VMX_FEATURE_EPT_VIOLATION_VE	( 2*32+ 18) /* Conditionally reflect =
EPT violations as #VE exceptions */
 #define VMX_FEATURE_PT_CONCEAL_VMX	( 2*32+ 19) /* "" Suppress VMX indicato=
rs in Processor Trace */
 #define VMX_FEATURE_XSAVES		( 2*32+ 20) /* "" Enable XSAVES and XRSTORS in=
 guest */
 #define VMX_FEATURE_MODE_BASED_EPT_EXEC	( 2*32+ 22) /* "ept_mode_based_exe=
c" Enable separate EPT EXEC bits for supervisor vs. user */
--=20
2.45.0.215.g3402c0e53f-goog
From nobody Wed Feb 11 04:18:44 2026
Received: from mail-pj1-f74.google.com (mail-pj1-f74.google.com
 [209.85.216.74])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 4D5861754B
	for <linux-kernel@vger.kernel.org>; Sat, 18 May 2024 00:04:54 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.216.74
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1715990695; cv=none;
 b=tTSvF05VPO7s4Yzd0mLzcsN+TE+Eor6t8cTLzd3LsAodRlOkU7Nge5cV0OymJ0yo0hB/Q0uEIs5/VRRGBDhUiZze4fba6u7Y72eV/fRzFQFPeKF3G8lcZH1gXr4ids7ZbdrxtROBWVkNxafm92NU/8maRrgoLKGM23zqYy+lUzM=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1715990695; c=relaxed/simple;
	bh=7aTw1q5fF2jfF8qaFVxCQ7vKf0J6QUU/de4LqX2pZiU=;
	h=Date:In-Reply-To:Mime-Version:References:Message-ID:Subject:From:
	 To:Cc:Content-Type;
 b=mVtLzleFI+fQsCcc3XW8dvzTKH4ievLmX8MM4PIz/nqSKbHmYW3/WyPioHdllYI4zw+pVzxlpy812QXh/wYHMbgJHwHqBcqSZH7fSeCRrR6DbPIqj3bb5InNwXf+Q4Uf/HDVonzfx3u1zLJlFo3lPz5XVy4oe6BC5/qn0PLlFfE=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com;
 dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b=uKW/Z5a/; arc=none smtp.client-ip=209.85.216.74
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b="uKW/Z5a/"
Received: by mail-pj1-f74.google.com with SMTP id
 98e67ed59e1d1-2ba04ab5e2cso2794293a91.1
        for <linux-kernel@vger.kernel.org>;
 Fri, 17 May 2024 17:04:54 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20230601; t=1715990694; x=1716595494;
 darn=vger.kernel.org;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:from:to:cc:subject:date:message-id:reply-to;
        bh=KaG30rbQSApl1hJFQFNfcRVacF/4y69sxTalkt/kPiY=;
        b=uKW/Z5a/2ekjqeq56LcRExA4lIDRl6EKXz4E97VoDd5NdAEjVOQ3/5YbV1PKzGcL92
         onkw/aTfPFMtU8BO+aU3mk+OSZmodXEdQVZJ6xhtwxC1ON7zw6LDyHBsAdHkpJSB9lOt
         yx8ftTszYtYEb0mKu8M19vIU5px/i8l5Her8A/neOc5Pi9kRN4kXqAgdKxSGolNybTMP
         0WQa8DXIqFO75uaz4vjcSQ61PPQIppBiV0ML2RtdZdlERw/MbCSUgVy+ZnOwB8XMuy/f
         /+EQKbCWL2hlsOskb0dj73gC126eCEWS3JcQOGXgv192j6gCpys2LfZs1JEk5tk7jw7U
         t65g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1715990694; x=1716595494;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:x-gm-message-state:from:to:cc:subject:date:message-id
         :reply-to;
        bh=KaG30rbQSApl1hJFQFNfcRVacF/4y69sxTalkt/kPiY=;
        b=e7LlYAFedHmWE/9u8GyUfT7dRYNEs6XWv++CMYSZZmYqB+aAIWfPOyaThlU7c1K0Kp
         kIA2xlBZC9kObVCQJBtqwqgFwbvenloiy1QFMXesUwl9DuqiW7oaEH8e85s0sCIYkRrw
         awvLKIYvSgKy03uPnKIh9eriHskD68+dZrHRSZbTBiIZLFHBOt7gh1114VBm5okY0Wmq
         fbJ1Z6kK0MFXbq+wOnXIToEGW3ohBLE7q9OCbwKK9koTEj6tL1G4EMQM6bAXIlhB3xnQ
         WBCd9iJEzVtcyWDyRdgIlloVe3MJgpdR/8iAkkPyj5GpGhPrWfYYRPrp3VGmXkX3TG7z
         KJBw==
X-Forwarded-Encrypted: i=1;
 AJvYcCVg4el69FZWaqDxt/9LU/iY9cWnvhdoU3Fzxn433zRIzlF05nCO8X8ONXp29z1Bk4mZuo+HscGXQw9Mo32arV6auo6IWXDfTGpT+/qL
X-Gm-Message-State: AOJu0YwHAPCaL41d2Kg3gSAeIKQoWhlD3HU+ZmPVdkxCplhODPXG3qR7
	J6+fZA4flOpxdgzSH6+6IRLZUZnymz/Nt4FGurSoJS293shanvPJ/XYZQ4n5w6e7+tUoYQLG53o
	0NA==
X-Google-Smtp-Source: 
 AGHT+IEbccThIlHdBUKBF+9ohVSG5QaFMw6xK62nY9XRpFOKV92TLuuJQe5NE/0y95hCq2GrvpgsmmwHd5k=
X-Received: from zagreus.c.googlers.com
 ([fda3:e722:ac3:cc00:7f:e700:c0a8:5c37])
 (user=seanjc job=sendgmr) by 2002:a17:90a:d80b:b0:2a7:4bb8:b24e with SMTP id
 98e67ed59e1d1-2b6cc453033mr63941a91.1.1715990693657; Fri, 17 May 2024
 17:04:53 -0700 (PDT)
Reply-To: Sean Christopherson <seanjc@google.com>
Date: Fri, 17 May 2024 17:04:30 -0700
In-Reply-To: <20240518000430.1118488-1-seanjc@google.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
Mime-Version: 1.0
References: <20240518000430.1118488-1-seanjc@google.com>
X-Mailer: git-send-email 2.45.0.215.g3402c0e53f-goog
Message-ID: <20240518000430.1118488-10-seanjc@google.com>
Subject: [PATCH 9/9] KVM: x86: Disable KVM_INTEL_PROVE_VE by default
From: Sean Christopherson <seanjc@google.com>
To: Sean Christopherson <seanjc@google.com>,
 Paolo Bonzini <pbonzini@redhat.com>
Cc: kvm@vger.kernel.org, linux-kernel@vger.kernel.org
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

Disable KVM's "prove #VE" support by default, as it provides no functional
value, and even its sanity checking benefits are relatively limited.  I.e.
it should be fully opt-in even on debug kernels, especially since EPT
Violation #VE suppression appears to be buggy on some CPUs.

Opportunistically add a line in the help text to make it abundantly clear
that KVM_INTEL_PROVE_VE should never be enabled in a production
environment.

Suggested-by: Paolo Bonzini <pbonzini@redhat.com>
Signed-off-by: Sean Christopherson <seanjc@google.com>
---
 arch/x86/kvm/Kconfig | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/arch/x86/kvm/Kconfig b/arch/x86/kvm/Kconfig
index 2a7f69abcac3..3468efc4be55 100644
--- a/arch/x86/kvm/Kconfig
+++ b/arch/x86/kvm/Kconfig
@@ -97,15 +97,15 @@ config KVM_INTEL
=20
 config KVM_INTEL_PROVE_VE
         bool "Check that guests do not receive #VE exceptions"
-        default KVM_PROVE_MMU || DEBUG_KERNEL
-        depends on KVM_INTEL
+        depends on KVM_INTEL && DEBUG_KERNEL && EXPERT
         help
-
           Checks that KVM's page table management code will not incorrectly
           let guests receive a virtualization exception.  Virtualization
           exceptions will be trapped by the hypervisor rather than injected
           in the guest.
=20
+          This should never be enabled in a production environment.
+
           If unsure, say N.
=20
 config X86_SGX_KVM
--=20
2.45.0.215.g3402c0e53f-goog