From nobody Sun Oct  5 10:45:22 2025
Received: from mail-pf1-f202.google.com (mail-pf1-f202.google.com
 [209.85.210.202])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 3D85523A98E
	for <linux-kernel@vger.kernel.org>; Tue,  5 Aug 2025 20:22:31 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.210.202
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1754425352; cv=none;
 b=XIDz95BCoZsUwKSSMzV2rIMXo02oQtHQafWqHiNsQIgyBlyIQ5EUexEVgHCBa4aWES6H1gwgsQbmtcpk+8wyVlDghNUvm/Nra1e6bJoDX3rZLPZtQvCHR5U/HmcEmoXaBCesHuivLtsPphV9rY2VUY3y4PfvnBmvnujjdGiuoAQ=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1754425352; c=relaxed/simple;
	bh=m4cvXDVqGW0AbHw4k3Vzfovsu939uVbAU2XVf0YMJis=;
	h=Date:In-Reply-To:Mime-Version:References:Message-ID:Subject:From:
	 To:Cc:Content-Type;
 b=dm9yepTz+Vsus4G7nAIW/uFUYdVQG/QzqZ+LAqCx2rTjLTh9xnU1PK68/PrAXYSuDi38JF+bCOcnSWXUdm+yirjp8JkDcA5a60QNJ/iOMWPbNwIJV4fHouv47T8BSlqCHsX6cOCOykDuE6VuTXLHHL/ikEC948U+ljZoHMN1Wik=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com;
 dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b=29FNzCVo; arc=none smtp.client-ip=209.85.210.202
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b="29FNzCVo"
Received: by mail-pf1-f202.google.com with SMTP id
 d2e1a72fcca58-76bcf2cac36so4985486b3a.0
        for <linux-kernel@vger.kernel.org>;
 Tue, 05 Aug 2025 13:22:31 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20230601; t=1754425350; x=1755030150;
 darn=vger.kernel.org;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:from:to:cc:subject:date:message-id:reply-to;
        bh=wjR/uxIdvcDRTpBouU2Bht36ZMEEqH5DZxI9XQvsEgw=;
        b=29FNzCVoA3UTpIt0UXOjFra+kcVX/goUGRP7qMVOeFpJjJR+Rn+N1IR8WC44Td+HoA
         PMI+YxTW0wfOv6vYKx9Iyx1l9fg24x4xk2+zsc44Qa+OkCtAk7z9a04QWZGDVqpkvDg9
         s/5yrkFH2kZtXGWRXaS/Z6qJjV6lnE7n7VgzsbC/1/l+wA+9YS7RIT0//9xF580ST9n1
         84JkqDQSLpbvuWIsV4QB9GYlmZAoCvXem+oGlvUwL6yamuuN8fbwxjWSkb1d1NOSU1Ie
         0IlqGPP4DpE13L+g7JQjoK5tN2WBkkwMuoZQx0lRB82bqVJbqRrUMPTqZgR2VFFJukaO
         qVkA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1754425350; x=1755030150;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:x-gm-message-state:from:to:cc:subject:date:message-id
         :reply-to;
        bh=wjR/uxIdvcDRTpBouU2Bht36ZMEEqH5DZxI9XQvsEgw=;
        b=YuShocqiobcP8Lc7FHE1aLDh8/MjENj8nCFYfNybnI8viUnVJxMdQCxId+nTE0LxpZ
         PYAkU9qfRk7XoanVrqHTwELyUjngwcPuYgKBNrbwgEgHJy1vChJPu8Yy/SSubLFflvMQ
         Fe+vLX01XFBk2hN51CwdrcLXXwitotlqbkeTQLI4hmRlEMXm5s7skhME4eIBXaBpywNm
         RjPM94SfBNKQL/c7ZZqtqpSdMNpG0SEML+zLGNENBAq0DzaWFOdJl42Smp5fORBP8ScA
         MlkebPf0VnZFmiGYvUTUAD7YF+kcv/o/4OyTHDjvdAw8MBphJV1N+BeEhdK+DSdA1nEJ
         Ww5w==
X-Forwarded-Encrypted: i=1;
 AJvYcCUs+7jaWOZ8pqwohsFhdJmXa7wrzHOYdxmeBVuzOqAkGvqp1qng+OZTtlx3ex1FWaMGqr9AxXMgIT0BnoU=@vger.kernel.org
X-Gm-Message-State: AOJu0YyoMqjZOJ5bU76I9j1HpvDFxVactj7QHI50MuDXuUh+/F+2WYkU
	ZqDjlMVUQc9ob1FXbukKbq1WrCabYdEs0TsyJt+SDXyfhVTLYskIwF5C9h/+hzheglhORKzPs+K
	GcaLmpQ==
X-Google-Smtp-Source: 
 AGHT+IFCEgZsJmKgL2NHifE5gOQctZUA/8fGKPI5Bt4+O9PcW1nCN4b728D10NGn7NJpY+CAkpFhrL7KBbw=
X-Received: from pfnp22.prod.google.com ([2002:aa7:8616:0:b0:76b:269d:d476])
 (user=seanjc job=prod-delivery.src-stubby-dispatcher) by
 2002:a05:6a20:2590:b0:240:265f:4eb0
 with SMTP id adf61e73a8af0-24031412f65mr574781637.4.1754425350570; Tue, 05
 Aug 2025 13:22:30 -0700 (PDT)
Reply-To: Sean Christopherson <seanjc@google.com>
Date: Tue,  5 Aug 2025 13:22:19 -0700
In-Reply-To: <20250805202224.1475590-1-seanjc@google.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
Mime-Version: 1.0
References: <20250805202224.1475590-1-seanjc@google.com>
X-Mailer: git-send-email 2.50.1.565.gc32cd1483b-goog
Message-ID: <20250805202224.1475590-2-seanjc@google.com>
Subject: [PATCH v3 1/6] x86/cpufeatures: Add a CPU feature bit for MSR
 immediate form instructions
From: Sean Christopherson <seanjc@google.com>
To: Sean Christopherson <seanjc@google.com>,
 Paolo Bonzini <pbonzini@redhat.com>
Cc: kvm@vger.kernel.org, linux-kernel@vger.kernel.org,
	Borislav Petkov <bp@alien8.de>, Xin Li <xin@zytor.com>
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

From: Xin Li <xin@zytor.com>

The immediate form of MSR access instructions are primarily motivated
by performance, not code size: by having the MSR number in an immediate,
it is available *much* earlier in the pipeline, which allows the
hardware much more leeway about how a particular MSR is handled.

Use a scattered CPU feature bit for MSR immediate form instructions.

Suggested-by: Borislav Petkov (AMD) <bp@alien8.de>
Signed-off-by: Xin Li (Intel) <xin@zytor.com>
Signed-off-by: Sean Christopherson <seanjc@google.com>
---
 arch/x86/include/asm/cpufeatures.h | 1 +
 arch/x86/kernel/cpu/scattered.c    | 1 +
 2 files changed, 2 insertions(+)

diff --git a/arch/x86/include/asm/cpufeatures.h b/arch/x86/include/asm/cpuf=
eatures.h
index 286d509f9363..75b43bbe2a6d 100644
--- a/arch/x86/include/asm/cpufeatures.h
+++ b/arch/x86/include/asm/cpufeatures.h
@@ -491,6 +491,7 @@
 #define X86_FEATURE_TSA_SQ_NO		(21*32+11) /* AMD CPU not vulnerable to TSA=
-SQ */
 #define X86_FEATURE_TSA_L1_NO		(21*32+12) /* AMD CPU not vulnerable to TSA=
-L1 */
 #define X86_FEATURE_CLEAR_CPU_BUF_VM	(21*32+13) /* Clear CPU buffers using=
 VERW before VMRUN */
+#define X86_FEATURE_MSR_IMM		(21*32+14) /* MSR immediate form instructions=
 */
=20
 /*
  * BUG word(s)
diff --git a/arch/x86/kernel/cpu/scattered.c b/arch/x86/kernel/cpu/scattere=
d.c
index b4a1f6732a3a..5fe19bbe538e 100644
--- a/arch/x86/kernel/cpu/scattered.c
+++ b/arch/x86/kernel/cpu/scattered.c
@@ -27,6 +27,7 @@ static const struct cpuid_bit cpuid_bits[] =3D {
 	{ X86_FEATURE_APERFMPERF,		CPUID_ECX,  0, 0x00000006, 0 },
 	{ X86_FEATURE_EPB,			CPUID_ECX,  3, 0x00000006, 0 },
 	{ X86_FEATURE_INTEL_PPIN,		CPUID_EBX,  0, 0x00000007, 1 },
+	{ X86_FEATURE_MSR_IMM,			CPUID_ECX,  5, 0x00000007, 1 },
 	{ X86_FEATURE_APX,			CPUID_EDX, 21, 0x00000007, 1 },
 	{ X86_FEATURE_RRSBA_CTRL,		CPUID_EDX,  2, 0x00000007, 2 },
 	{ X86_FEATURE_BHI_CTRL,			CPUID_EDX,  4, 0x00000007, 2 },
--=20
2.50.1.565.gc32cd1483b-goog
From nobody Sun Oct  5 10:45:22 2025
Received: from mail-pj1-f73.google.com (mail-pj1-f73.google.com
 [209.85.216.73])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id EEB0728136B
	for <linux-kernel@vger.kernel.org>; Tue,  5 Aug 2025 20:22:32 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.216.73
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1754425354; cv=none;
 b=guyS+bBNsrBLd3KDxcQLomEARkFjs1pGbbVSCtrHNuWJ2CG8qn8rFuyayqCfT92crOzThyFbUnGRTmh82YDkQdEgYsSANMP5nB4YJykv4RTPKa8HPAnn7qb6lpajENS9hNk4TNNfWq1I0BreqmIv/xeGyBe9r3qvQMM3bHbJsc8=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1754425354; c=relaxed/simple;
	bh=UJgmB/Ob4AoVZGt7xKkirFQmgZBvEN8yyFQqgRG07jE=;
	h=Date:In-Reply-To:Mime-Version:References:Message-ID:Subject:From:
	 To:Cc:Content-Type;
 b=AUQwGjpnlpmTYGaEzjQ/5T6QCV8pgc1/WZu/eHwt2iHwAh7KvYG9OhE+3BG9e1ag7ZaQvvh/ZjCfubk4a1g6GIMqAlzOK2xom61HiSXbq8IuJrI8gh69Gebybr8w1HX6WSTqf5e/IjVKboe2QcTS12hdEv8s5T1nYnelGcdV7E4=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com;
 dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b=LNgajVf8; arc=none smtp.client-ip=209.85.216.73
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b="LNgajVf8"
Received: by mail-pj1-f73.google.com with SMTP id
 98e67ed59e1d1-31f74a64da9so6764110a91.2
        for <linux-kernel@vger.kernel.org>;
 Tue, 05 Aug 2025 13:22:32 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20230601; t=1754425352; x=1755030152;
 darn=vger.kernel.org;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:from:to:cc:subject:date:message-id:reply-to;
        bh=hVdzLN8sL24VDPUeSwih1MH9qTKCVxqUydN6MJPX8eQ=;
        b=LNgajVf8hR7ARBuOTlmqFhBla9uUS5uUsCbqxl1m/TYdQxDR4eoqAtnm75EwT4IwrN
         ioGivrmBUyY2DhmQcf55FPrBt/Klitl/XqramIiLwdYq2BkpZiyYbPJIw5VObT311cPC
         ssb8FTwZ53WCbzvvYYov4TnB9lbzJytbPZr9SZFF2ksNHmZS46nv0n1v65qViCzUiJdP
         hWJdCeebmZc0xFGfJKolHUhWWJS1qE1EV9NUz3ZB/nR8ezExt/gPysSwOaK4pUaHUGil
         2nZNuadHvCrsMRqh4BGhsFc2VHlFZWBH3FzOkmd8sRuZreOiBejP4oB00+wbUdlm7bu7
         84vg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1754425352; x=1755030152;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:x-gm-message-state:from:to:cc:subject:date:message-id
         :reply-to;
        bh=hVdzLN8sL24VDPUeSwih1MH9qTKCVxqUydN6MJPX8eQ=;
        b=gNK+jwt3YkTqpzI6iwK5iRJ5FrO0F46/iIYXQNyHy81+t2dLKepKNmvvfyCUloE+hg
         /sAssMYt+K6WkIoYyAurOZFmMFkUNW6lIMuhgtowdTt2Avt8rR6X2Z1JhTtJ+WF9B7AS
         fuW7YY1HZGWSxuOoEeZoFz1V3oWetWYg1byEQyldxkzhOLocbL/C1PjSI7+1nNWlujkM
         j+Z6jZ8QAPW6FJzde1nbaCtnYyEZBB6GsE82SyR81H8Am3xWxJlXr3tgx3he3nwvMr15
         JSkzuwG+5YtPWjeCheJidtjO0cV7ZXTZxPimB3hcos2J0UIjJqE55fCXnUKp1Dsa7Bt2
         PGLA==
X-Forwarded-Encrypted: i=1;
 AJvYcCXLZtmTGNTuP9NQuiEC9HfU6a/dV5GkEvhqBmLH/hAANu3UzzSJPttk5m6yCwFJIVHEBv6d+2Um7wRwW+k=@vger.kernel.org
X-Gm-Message-State: AOJu0YwRK1ZjRGHL97UfPtMxRXQD5ZCaWaVvcV33OJsJnBMrBIrtBxeU
	/n5v+iAtet5mooXzBHIPOkpdwHX8N75Mwb4kALLY/oOtoreztglx6V7iwa7ylSETYPB2+Uo/lIz
	Iv0658g==
X-Google-Smtp-Source: 
 AGHT+IFN/daddyCjGSfBUXDE3umrKXqLhMKLGZOT2guDNhYn6MZXS/lzN74VrFw4eL7k99H8xccG0Nf0VGI=
X-Received: from pjro15.prod.google.com ([2002:a17:90a:b88f:b0:31f:1dad:d0a4])
 (user=seanjc job=prod-delivery.src-stubby-dispatcher) by
 2002:a17:90b:524f:b0:312:e8ed:758
 with SMTP id 98e67ed59e1d1-32166c20054mr214109a91.13.1754425352370; Tue, 05
 Aug 2025 13:22:32 -0700 (PDT)
Reply-To: Sean Christopherson <seanjc@google.com>
Date: Tue,  5 Aug 2025 13:22:20 -0700
In-Reply-To: <20250805202224.1475590-1-seanjc@google.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
Mime-Version: 1.0
References: <20250805202224.1475590-1-seanjc@google.com>
X-Mailer: git-send-email 2.50.1.565.gc32cd1483b-goog
Message-ID: <20250805202224.1475590-3-seanjc@google.com>
Subject: [PATCH v3 2/6] KVM: x86: Rename local "ecx" variables to "msr" and
 "pmc" as appropriate
From: Sean Christopherson <seanjc@google.com>
To: Sean Christopherson <seanjc@google.com>,
 Paolo Bonzini <pbonzini@redhat.com>
Cc: kvm@vger.kernel.org, linux-kernel@vger.kernel.org,
	Borislav Petkov <bp@alien8.de>, Xin Li <xin@zytor.com>
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

Rename "ecx" variables in {RD,WR}MSR and RDPMC helpers to "msr" and "pmc"
respectively, in anticipation of adding support for the immediate variants
of RDMSR and WRMSRNS, and to better document what the variables hold
(versus where the data originated).

No functional change intended.

Signed-off-by: Sean Christopherson <seanjc@google.com>
---
 arch/x86/kvm/x86.c | 24 ++++++++++++------------
 1 file changed, 12 insertions(+), 12 deletions(-)

diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c
index 5af2c5aed0f2..d3afb875133e 100644
--- a/arch/x86/kvm/x86.c
+++ b/arch/x86/kvm/x86.c
@@ -1572,10 +1572,10 @@ EXPORT_SYMBOL_GPL(kvm_get_dr);
=20
 int kvm_emulate_rdpmc(struct kvm_vcpu *vcpu)
 {
-	u32 ecx =3D kvm_rcx_read(vcpu);
+	u32 pmc =3D kvm_rcx_read(vcpu);
 	u64 data;
=20
-	if (kvm_pmu_rdpmc(vcpu, ecx, &data)) {
+	if (kvm_pmu_rdpmc(vcpu, pmc, &data)) {
 		kvm_inject_gp(vcpu, 0);
 		return 1;
 	}
@@ -2026,23 +2026,23 @@ static int kvm_msr_user_space(struct kvm_vcpu *vcpu=
, u32 index,
=20
 int kvm_emulate_rdmsr(struct kvm_vcpu *vcpu)
 {
-	u32 ecx =3D kvm_rcx_read(vcpu);
+	u32 msr =3D kvm_rcx_read(vcpu);
 	u64 data;
 	int r;
=20
-	r =3D kvm_get_msr_with_filter(vcpu, ecx, &data);
+	r =3D kvm_get_msr_with_filter(vcpu, msr, &data);
=20
 	if (!r) {
-		trace_kvm_msr_read(ecx, data);
+		trace_kvm_msr_read(msr, data);
=20
 		kvm_rax_write(vcpu, data & -1u);
 		kvm_rdx_write(vcpu, (data >> 32) & -1u);
 	} else {
 		/* MSR read failed? See if we should ask user space */
-		if (kvm_msr_user_space(vcpu, ecx, KVM_EXIT_X86_RDMSR, 0,
+		if (kvm_msr_user_space(vcpu, msr, KVM_EXIT_X86_RDMSR, 0,
 				       complete_fast_rdmsr, r))
 			return 0;
-		trace_kvm_msr_read_ex(ecx);
+		trace_kvm_msr_read_ex(msr);
 	}
=20
 	return kvm_x86_call(complete_emulated_msr)(vcpu, r);
@@ -2051,23 +2051,23 @@ EXPORT_SYMBOL_GPL(kvm_emulate_rdmsr);
=20
 int kvm_emulate_wrmsr(struct kvm_vcpu *vcpu)
 {
-	u32 ecx =3D kvm_rcx_read(vcpu);
+	u32 msr =3D kvm_rcx_read(vcpu);
 	u64 data =3D kvm_read_edx_eax(vcpu);
 	int r;
=20
-	r =3D kvm_set_msr_with_filter(vcpu, ecx, data);
+	r =3D kvm_set_msr_with_filter(vcpu, msr, data);
=20
 	if (!r) {
-		trace_kvm_msr_write(ecx, data);
+		trace_kvm_msr_write(msr, data);
 	} else {
 		/* MSR write failed? See if we should ask user space */
-		if (kvm_msr_user_space(vcpu, ecx, KVM_EXIT_X86_WRMSR, data,
+		if (kvm_msr_user_space(vcpu, msr, KVM_EXIT_X86_WRMSR, data,
 				       complete_fast_msr_access, r))
 			return 0;
 		/* Signal all other negative errors to userspace */
 		if (r < 0)
 			return r;
-		trace_kvm_msr_write_ex(ecx, data);
+		trace_kvm_msr_write_ex(msr, data);
 	}
=20
 	return kvm_x86_call(complete_emulated_msr)(vcpu, r);
--=20
2.50.1.565.gc32cd1483b-goog
From nobody Sun Oct  5 10:45:22 2025
Received: from mail-pj1-f73.google.com (mail-pj1-f73.google.com
 [209.85.216.73])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id CF887299AB5
	for <linux-kernel@vger.kernel.org>; Tue,  5 Aug 2025 20:22:34 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.216.73
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1754425356; cv=none;
 b=MSythQzBe4Mabb5OrzYoeQf6LRbz7yaVG7unSw7VLBVzLkPtaeAWbepgoS/Ky6L5Q7MB9b/3BCG6iS31qvqSr5ZqETWkd7foGpTxAXXdDSKFvoocHY41Yi0KDoRJedFfQyuIPYzPlWlCx7zCZVzXzneEJ6h1Ih7BHKOhvjqh8Gs=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1754425356; c=relaxed/simple;
	bh=e2I9314HPIpBFl9igczsMXWZp8yxi5cthi2XE5Azg8o=;
	h=Date:In-Reply-To:Mime-Version:References:Message-ID:Subject:From:
	 To:Cc:Content-Type;
 b=EDGjwvfz1BBuYlVE0S6hyVy8Oyn0dkptbIoZ3XtSLrCIDBfFKzXoJ1kZd24yUIaPsbVzq4PrlsTuDUBm/mV8Wy6F8+RI8MCfprjaKOJzP4jQHkpsCpe/+wkFzTfhKmcQhiEOLQqzK/739JLO3qhGrFcDh6ZuYO/E8+WwOXzUcQU=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com;
 dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b=OP4d0SXD; arc=none smtp.client-ip=209.85.216.73
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b="OP4d0SXD"
Received: by mail-pj1-f73.google.com with SMTP id
 98e67ed59e1d1-31ed2a7d475so4986894a91.1
        for <linux-kernel@vger.kernel.org>;
 Tue, 05 Aug 2025 13:22:34 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20230601; t=1754425354; x=1755030154;
 darn=vger.kernel.org;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:from:to:cc:subject:date:message-id:reply-to;
        bh=5vwmlR1d0IHiMOo6jObRDAiKTHWGb9+yBzPo613PVvY=;
        b=OP4d0SXD/iDQjndkG5Qe9dAhx1+sDDTXmmM4k6ij+plUiNJZW2fQSJfZCGF5zGfc4e
         WdDqMPqpSy39ThrWP83XUMRgx1r1PsvViYZ/y5tznh1igHXXK8k8M+FYF/R1BOC16IWJ
         MbBLoLtk7y7kcQ/+1V1zffN+EKnEdfgFD4R41S9bjlyc/mrxxj2NH+6330rVyOmeWFWJ
         +Y/Sl9SZKMMOxGfEZYYZIUsA3mAJzgAKFIF2UQTeOaoGOc1YQ/zX2Viiytaoaacc2ItS
         sAVHayEd+yMead0pxzaiXXt6OQMBNzbk4SFME6Tf2ougqmKXOroI1VxAkXnDskLhGmm4
         M88A==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1754425354; x=1755030154;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:x-gm-message-state:from:to:cc:subject:date:message-id
         :reply-to;
        bh=5vwmlR1d0IHiMOo6jObRDAiKTHWGb9+yBzPo613PVvY=;
        b=TgDwfFDKthjXiPVAwZh7+uQOLMs0a4ntSRJcJlxJookG58HQI40WXdbmDm3YLnIcme
         dswR5tamgBKM8a+a0H3di96epltObhpj6xkN5vNehlaAc77zFeUNRSlF1Ctq7BGyzxku
         6AS2JugG8pMyYj2AbsJ3V9eKvvZ3N2QRzDimxushY7ockpXbyqPYtjHJgdm1RtEevrVp
         IkMEeFWt/z+8XY2mQoA2J2dywWsMdy91GVFuzbAZ2t1QpKAGSwaIuVE2KwkGKnMRqidk
         qKYTnZseUvwWLCcYnA7P8LfnWOG/Nmd0uPwft1RykrimQlXJYzFcNR+6+cpGOSlhHOGA
         r0KQ==
X-Forwarded-Encrypted: i=1;
 AJvYcCXw9w/Eu7aCZVq6XX+iaREJJRn+THqG8FARn+48Z5+2hmpaSBhBwf9AU4Ka4Na1zpjEUG9yo3Ii1GLzcBw=@vger.kernel.org
X-Gm-Message-State: AOJu0Yzh/5R6E45IvZjlFqi3GcphGCr6faL0kLRn/jEJx5sYyKfcOYfw
	+RQTCsN/4QeWvwMCiPYqCq3bKt9Tn3WUc7diq4ZeILljM66rseZk3agi61sQTWM7DEKMk46ApR7
	ObPPRjw==
X-Google-Smtp-Source: 
 AGHT+IEo7cJCHqYoYh8KZTKmcUCO2w3FybZUjjoTK5f0mcQiWQs81U9X5kUzl1rtWaMgTlO4PqHhe4rIJ2I=
X-Received: from pjbsz13.prod.google.com
 ([2002:a17:90b:2d4d:b0:31c:38fb:2958])
 (user=seanjc job=prod-delivery.src-stubby-dispatcher) by
 2002:a17:90b:35c8:b0:321:2160:bf72
 with SMTP id 98e67ed59e1d1-32166dfb0c8mr121888a91.7.1754425354132; Tue, 05
 Aug 2025 13:22:34 -0700 (PDT)
Reply-To: Sean Christopherson <seanjc@google.com>
Date: Tue,  5 Aug 2025 13:22:21 -0700
In-Reply-To: <20250805202224.1475590-1-seanjc@google.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
Mime-Version: 1.0
References: <20250805202224.1475590-1-seanjc@google.com>
X-Mailer: git-send-email 2.50.1.565.gc32cd1483b-goog
Message-ID: <20250805202224.1475590-4-seanjc@google.com>
Subject: [PATCH v3 3/6] KVM: x86: Rename handle_fastpath_set_msr_irqoff() to
 handle_fastpath_wrmsr()
From: Sean Christopherson <seanjc@google.com>
To: Sean Christopherson <seanjc@google.com>,
 Paolo Bonzini <pbonzini@redhat.com>
Cc: kvm@vger.kernel.org, linux-kernel@vger.kernel.org,
	Borislav Petkov <bp@alien8.de>, Xin Li <xin@zytor.com>
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

From: Xin Li <xin@zytor.com>

Rename the WRMSR fastpath API to drop "irqoff", as that information is
redundant (the fastpath always runs with IRQs disabled), and to prepare
for adding a fastpath for the immediate variant of WRMSRNS.

No functional change intended.

Signed-off-by: Xin Li (Intel) <xin@zytor.com>
[sean: split to separate patch, write changelog]
Signed-off-by: Sean Christopherson <seanjc@google.com>
Suggested-by: Sean Christopherson <seanjc@google.com>
---
 arch/x86/kvm/svm/svm.c | 2 +-
 arch/x86/kvm/vmx/vmx.c | 2 +-
 arch/x86/kvm/x86.c     | 4 ++--
 arch/x86/kvm/x86.h     | 2 +-
 4 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/arch/x86/kvm/svm/svm.c b/arch/x86/kvm/svm/svm.c
index f7e1e665a826..ca550c4fa174 100644
--- a/arch/x86/kvm/svm/svm.c
+++ b/arch/x86/kvm/svm/svm.c
@@ -4197,7 +4197,7 @@ static fastpath_t svm_exit_handlers_fastpath(struct k=
vm_vcpu *vcpu)
 	case SVM_EXIT_MSR:
 		if (!control->exit_info_1)
 			break;
-		return handle_fastpath_set_msr_irqoff(vcpu);
+		return handle_fastpath_wrmsr(vcpu);
 	case SVM_EXIT_HLT:
 		return handle_fastpath_hlt(vcpu);
 	case SVM_EXIT_INVD:
diff --git a/arch/x86/kvm/vmx/vmx.c b/arch/x86/kvm/vmx/vmx.c
index 95765db52992..ae2c8c10e5d2 100644
--- a/arch/x86/kvm/vmx/vmx.c
+++ b/arch/x86/kvm/vmx/vmx.c
@@ -7170,7 +7170,7 @@ static fastpath_t vmx_exit_handlers_fastpath(struct k=
vm_vcpu *vcpu,
=20
 	switch (vmx_get_exit_reason(vcpu).basic) {
 	case EXIT_REASON_MSR_WRITE:
-		return handle_fastpath_set_msr_irqoff(vcpu);
+		return handle_fastpath_wrmsr(vcpu);
 	case EXIT_REASON_PREEMPTION_TIMER:
 		return handle_fastpath_preemption_timer(vcpu, force_immediate_exit);
 	case EXIT_REASON_HLT:
diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c
index d3afb875133e..6470f0ab2060 100644
--- a/arch/x86/kvm/x86.c
+++ b/arch/x86/kvm/x86.c
@@ -2142,7 +2142,7 @@ static inline bool kvm_vcpu_exit_request(struct kvm_v=
cpu *vcpu)
 	       kvm_request_pending(vcpu) || xfer_to_guest_mode_work_pending();
 }
=20
-fastpath_t handle_fastpath_set_msr_irqoff(struct kvm_vcpu *vcpu)
+fastpath_t handle_fastpath_wrmsr(struct kvm_vcpu *vcpu)
 {
 	u64 data =3D kvm_read_edx_eax(vcpu);
 	u32 msr =3D kvm_rcx_read(vcpu);
@@ -2167,7 +2167,7 @@ fastpath_t handle_fastpath_set_msr_irqoff(struct kvm_=
vcpu *vcpu)
=20
 	return EXIT_FASTPATH_REENTER_GUEST;
 }
-EXPORT_SYMBOL_GPL(handle_fastpath_set_msr_irqoff);
+EXPORT_SYMBOL_GPL(handle_fastpath_wrmsr);
=20
 /*
  * Adapt set_msr() to msr_io()'s calling convention
diff --git a/arch/x86/kvm/x86.h b/arch/x86/kvm/x86.h
index 46220b04cdf2..2dab9c9d6199 100644
--- a/arch/x86/kvm/x86.h
+++ b/arch/x86/kvm/x86.h
@@ -437,7 +437,7 @@ int x86_decode_emulated_instruction(struct kvm_vcpu *vc=
pu, int emulation_type,
 				    void *insn, int insn_len);
 int x86_emulate_instruction(struct kvm_vcpu *vcpu, gpa_t cr2_or_gpa,
 			    int emulation_type, void *insn, int insn_len);
-fastpath_t handle_fastpath_set_msr_irqoff(struct kvm_vcpu *vcpu);
+fastpath_t handle_fastpath_wrmsr(struct kvm_vcpu *vcpu);
 fastpath_t handle_fastpath_hlt(struct kvm_vcpu *vcpu);
 fastpath_t handle_fastpath_invd(struct kvm_vcpu *vcpu);
=20
--=20
2.50.1.565.gc32cd1483b-goog
From nobody Sun Oct  5 10:45:22 2025
Received: from mail-pj1-f74.google.com (mail-pj1-f74.google.com
 [209.85.216.74])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 8DE1329B224
	for <linux-kernel@vger.kernel.org>; Tue,  5 Aug 2025 20:22:36 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.216.74
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1754425359; cv=none;
 b=dyJi5OLbBO8wuw+8ZjZ7Es1BM1U3R53Q8GvqwcWh6Fn0TJLz70wqUMN1FwgYFBGkFqfvwlhik+RN/N9t/SE1ZfTvRe8hhFq09zwAHjuqrkhgyzqM2y0sPJtSvX+3KqhdOU1D0g/sH7zd3qo228Eu+fuMF3NgIAiNg2ajge/rJTo=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1754425359; c=relaxed/simple;
	bh=OQAD1+TI9280wQ8Yc2nbz+IbtiOOKpSNPfA/OYxaJi0=;
	h=Date:In-Reply-To:Mime-Version:References:Message-ID:Subject:From:
	 To:Cc:Content-Type;
 b=lodPJrgQytKSXt9gW+joFuwEEAh6d3VN+XM7A3pnQtCGZtSjgIvkE1EP+Dq7o/zvwz4uy1vU/5hoUuKfTkzEgB09h4dJYnJ7re90/gIHxv2DVgiq9noj65jgfFsfuX1BAXQAAVyK4+QcOnm3TqL8SheN8hbm0yWPrQYq2Aa4n5A=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com;
 dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b=cWJ+4ri8; arc=none smtp.client-ip=209.85.216.74
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b="cWJ+4ri8"
Received: by mail-pj1-f74.google.com with SMTP id
 98e67ed59e1d1-31f3b65ce07so9620241a91.1
        for <linux-kernel@vger.kernel.org>;
 Tue, 05 Aug 2025 13:22:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20230601; t=1754425356; x=1755030156;
 darn=vger.kernel.org;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:from:to:cc:subject:date:message-id:reply-to;
        bh=hCQzdPrSujGSw139bM4xXGP7aFIBkvP3p3eu7Yldsxo=;
        b=cWJ+4ri8cbJq/3wDOI5yywr9P37OKUjDaXw5pLLoYBwDSTuzE+QnvVaSp1zYoT/Ctg
         yNqmooHqBYSxoSctgyEGvYsQUnkOxoUsjMIT9hUtkdGKwDBCdW89jOEVAf14pfcekbTR
         RGNrO+FpM62chT2TvPbOI+0mEMHXobxnFrGL1KI76TR5xaSZ3WC79wba+fvuDDn/s02M
         b4IIyXmpO6epC8JlBkGJ9Jy6AwGekcNsb0hP1JLriKRxnRq65xajRNoTWk6Bp7MyCX9f
         L2vDIIEAHZT4fjUnEr8YkP6U5LCeKhwJ7QrlldDSFN4n0uogMfok9UOfhFouDWdTiAAV
         HsiA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1754425356; x=1755030156;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:x-gm-message-state:from:to:cc:subject:date:message-id
         :reply-to;
        bh=hCQzdPrSujGSw139bM4xXGP7aFIBkvP3p3eu7Yldsxo=;
        b=X+CU2+dz1Nnr7sJEVxwb8P1db8T0PaA1pvYsJl/z0sbsfTPjsXFm69ICVyc79NsA+6
         BUSilwnUBNl1qBnd6rCrZIaH3dDc77XQvgKcVb4LcRYYxHDLL7pjC2q6podBBFvPnUvE
         MHLmT67WzQj/VW35aXrHfeFzfBBpZfEuPp6nZvS0BeNqFuF9j1MfvWtKe7Px9LeV8riX
         a6/caRk/tNGaIhZmNHJSrDFcjMVZo3iOF4v2THVPwStP2viCUervLQ9jsJLtJ1X7ohUa
         df1e2+sN4Y6PTuN+IqwtrXuztcr4tOWoj7IljELpqui7doxcGv1wpPAUbDoEw+sdrWce
         uE4w==
X-Forwarded-Encrypted: i=1;
 AJvYcCVzrftUjJ7D9QqPrWW2rp/XYr5FGHEOdqxvYTFo75NpZbR0ATo8AGfyfDHmq4Zp3hWxCcobxJAGMaM/e2s=@vger.kernel.org
X-Gm-Message-State: AOJu0YyDcMdP1qnv0FWXX2wb7hCextWWSlhQ19Ca8LkHS0UUrjR8ShRn
	08zH469UA4vSN3uNukKRjqsBlHRjG+dvVzIYU/rYz6Z00bM952ra4PPmi0aZVIns4qWQFm3c2bg
	9rUihqw==
X-Google-Smtp-Source: 
 AGHT+IE3vkVzzIIxfpyerjuXmtO0hXmnXOn7G1F/20O2k8XjIQDNZLOhvNvx5miHjZh4At1LMGWibGnALuw=
X-Received: from pjyr4.prod.google.com ([2002:a17:90a:e184:b0:31f:3227:1724])
 (user=seanjc job=prod-delivery.src-stubby-dispatcher) by
 2002:a17:90b:2650:b0:31e:fe0d:f48f
 with SMTP id 98e67ed59e1d1-32166c292dbmr236589a91.10.1754425355877; Tue, 05
 Aug 2025 13:22:35 -0700 (PDT)
Reply-To: Sean Christopherson <seanjc@google.com>
Date: Tue,  5 Aug 2025 13:22:22 -0700
In-Reply-To: <20250805202224.1475590-1-seanjc@google.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
Mime-Version: 1.0
References: <20250805202224.1475590-1-seanjc@google.com>
X-Mailer: git-send-email 2.50.1.565.gc32cd1483b-goog
Message-ID: <20250805202224.1475590-5-seanjc@google.com>
Subject: [PATCH v3 4/6] KVM: x86: Add support for RDMSR/WRMSRNS w/ immediate
 on Intel
From: Sean Christopherson <seanjc@google.com>
To: Sean Christopherson <seanjc@google.com>,
 Paolo Bonzini <pbonzini@redhat.com>
Cc: kvm@vger.kernel.org, linux-kernel@vger.kernel.org,
	Borislav Petkov <bp@alien8.de>, Xin Li <xin@zytor.com>
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

From: Xin Li <xin@zytor.com>

Add support for the immediate forms of RDMSR and WRMSRNS (currently
Intel-only).  The immediate variants are only valid in 64-bit mode, and
use a single general purpose register for the data (the register is also
encoded in the instruction, i.e. not implicit like regular RDMSR/WRMSR).

The immediate variants are primarily motivated by performance, not code
size: by having the MSR index in an immediate, it is available *much*
earlier in the CPU pipeline, which allows hardware much more leeway about
how a particular MSR is handled.

Intel VMX support for the immediate forms of MSR accesses communicates
exit information to the host as follows:

  1) The immediate form of RDMSR uses VM-Exit Reason 84.

  2) The immediate form of WRMSRNS uses VM-Exit Reason 85.

  3) For both VM-Exit reasons 84 and 85, the Exit Qualification field is
     set to the MSR index that triggered the VM-Exit.

  4) Bits 3 ~ 6 of the VM-Exit Instruction Information field are set to
     the register encoding used by the immediate form of the instruction,
     i.e. the destination register for RDMSR, and the source for WRMSRNS.

  5) The VM-Exit Instruction Length field records the size of the
     immediate form of the MSR instruction.

To deal with userspace RDMSR exits, stash the destination register in a
new kvm_vcpu_arch field, similar to cui_linear_rip, pio, etc.
Alternatively, the register could be saved in kvm_run.msr or re-retrieved
from the VMCS, but the former would require sanitizing the value to ensure
userspace doesn't clobber the value to an out-of-bounds index, and the
latter would require a new one-off kvm_x86_ops hook.

Don't bother adding support for the instructions in KVM's emulator, as the
only way for RDMSR/WRMSR to be encountered is if KVM is emulating large
swaths of code due to invalid guest state, and a vCPU cannot have invalid
guest state while in 64-bit mode.

Signed-off-by: Xin Li (Intel) <xin@zytor.com>
[sean: minor tweaks, massage and expand changelog]
Signed-off-by: Sean Christopherson <seanjc@google.com>
---
 arch/x86/include/asm/kvm_host.h |  3 ++
 arch/x86/include/uapi/asm/vmx.h |  6 +++-
 arch/x86/kvm/vmx/nested.c       | 13 ++++++--
 arch/x86/kvm/vmx/vmx.c          | 21 +++++++++++++
 arch/x86/kvm/vmx/vmx.h          |  5 +++
 arch/x86/kvm/x86.c              | 55 +++++++++++++++++++++++++++------
 6 files changed, 90 insertions(+), 13 deletions(-)

diff --git a/arch/x86/include/asm/kvm_host.h b/arch/x86/include/asm/kvm_hos=
t.h
index d7680612ba1e..dbdec6025fde 100644
--- a/arch/x86/include/asm/kvm_host.h
+++ b/arch/x86/include/asm/kvm_host.h
@@ -929,6 +929,7 @@ struct kvm_vcpu_arch {
 	bool emulate_regs_need_sync_from_vcpu;
 	int (*complete_userspace_io)(struct kvm_vcpu *vcpu);
 	unsigned long cui_linear_rip;
+	int cui_rdmsr_imm_reg;
=20
 	gpa_t time;
 	s8  pvclock_tsc_shift;
@@ -2158,7 +2159,9 @@ int __kvm_get_msr(struct kvm_vcpu *vcpu, u32 index, u=
64 *data, bool host_initiat
 int kvm_get_msr(struct kvm_vcpu *vcpu, u32 index, u64 *data);
 int kvm_set_msr(struct kvm_vcpu *vcpu, u32 index, u64 data);
 int kvm_emulate_rdmsr(struct kvm_vcpu *vcpu);
+int kvm_emulate_rdmsr_imm(struct kvm_vcpu *vcpu, u32 msr, int reg);
 int kvm_emulate_wrmsr(struct kvm_vcpu *vcpu);
+int kvm_emulate_wrmsr_imm(struct kvm_vcpu *vcpu, u32 msr, int reg);
 int kvm_emulate_as_nop(struct kvm_vcpu *vcpu);
 int kvm_emulate_invd(struct kvm_vcpu *vcpu);
 int kvm_emulate_mwait(struct kvm_vcpu *vcpu);
diff --git a/arch/x86/include/uapi/asm/vmx.h b/arch/x86/include/uapi/asm/vm=
x.h
index f0f4a4cf84a7..9792e329343e 100644
--- a/arch/x86/include/uapi/asm/vmx.h
+++ b/arch/x86/include/uapi/asm/vmx.h
@@ -94,6 +94,8 @@
 #define EXIT_REASON_BUS_LOCK            74
 #define EXIT_REASON_NOTIFY              75
 #define EXIT_REASON_TDCALL              77
+#define EXIT_REASON_MSR_READ_IMM        84
+#define EXIT_REASON_MSR_WRITE_IMM       85
=20
 #define VMX_EXIT_REASONS \
 	{ EXIT_REASON_EXCEPTION_NMI,         "EXCEPTION_NMI" }, \
@@ -158,7 +160,9 @@
 	{ EXIT_REASON_TPAUSE,                "TPAUSE" }, \
 	{ EXIT_REASON_BUS_LOCK,              "BUS_LOCK" }, \
 	{ EXIT_REASON_NOTIFY,                "NOTIFY" }, \
-	{ EXIT_REASON_TDCALL,                "TDCALL" }
+	{ EXIT_REASON_TDCALL,                "TDCALL" }, \
+	{ EXIT_REASON_MSR_READ_IMM,          "MSR_READ_IMM" }, \
+	{ EXIT_REASON_MSR_WRITE_IMM,         "MSR_WRITE_IMM" }
=20
 #define VMX_EXIT_REASON_FLAGS \
 	{ VMX_EXIT_REASONS_FAILED_VMENTRY,	"FAILED_VMENTRY" }
diff --git a/arch/x86/kvm/vmx/nested.c b/arch/x86/kvm/vmx/nested.c
index db2fd4eedc90..798776dddd43 100644
--- a/arch/x86/kvm/vmx/nested.c
+++ b/arch/x86/kvm/vmx/nested.c
@@ -6216,19 +6216,26 @@ static bool nested_vmx_exit_handled_msr(struct kvm_=
vcpu *vcpu,
 					struct vmcs12 *vmcs12,
 					union vmx_exit_reason exit_reason)
 {
-	u32 msr_index =3D kvm_rcx_read(vcpu);
+	u32 msr_index;
 	gpa_t bitmap;
=20
 	if (!nested_cpu_has(vmcs12, CPU_BASED_USE_MSR_BITMAPS))
 		return true;
=20
+	if (exit_reason.basic =3D=3D EXIT_REASON_MSR_READ_IMM ||
+	    exit_reason.basic =3D=3D EXIT_REASON_MSR_WRITE_IMM)
+		msr_index =3D vmx_get_exit_qual(vcpu);
+	else
+		msr_index =3D kvm_rcx_read(vcpu);
+
 	/*
 	 * The MSR_BITMAP page is divided into four 1024-byte bitmaps,
 	 * for the four combinations of read/write and low/high MSR numbers.
 	 * First we need to figure out which of the four to use:
 	 */
 	bitmap =3D vmcs12->msr_bitmap;
-	if (exit_reason.basic =3D=3D EXIT_REASON_MSR_WRITE)
+	if (exit_reason.basic =3D=3D EXIT_REASON_MSR_WRITE ||
+	    exit_reason.basic =3D=3D EXIT_REASON_MSR_WRITE_IMM)
 		bitmap +=3D 2048;
 	if (msr_index >=3D 0xc0000000) {
 		msr_index -=3D 0xc0000000;
@@ -6527,6 +6534,8 @@ static bool nested_vmx_l1_wants_exit(struct kvm_vcpu =
*vcpu,
 		return nested_cpu_has2(vmcs12, SECONDARY_EXEC_DESC);
 	case EXIT_REASON_MSR_READ:
 	case EXIT_REASON_MSR_WRITE:
+	case EXIT_REASON_MSR_READ_IMM:
+	case EXIT_REASON_MSR_WRITE_IMM:
 		return nested_vmx_exit_handled_msr(vcpu, vmcs12, exit_reason);
 	case EXIT_REASON_INVALID_STATE:
 		return true;
diff --git a/arch/x86/kvm/vmx/vmx.c b/arch/x86/kvm/vmx/vmx.c
index ae2c8c10e5d2..44423d5f0e27 100644
--- a/arch/x86/kvm/vmx/vmx.c
+++ b/arch/x86/kvm/vmx/vmx.c
@@ -6003,6 +6003,23 @@ static int handle_notify(struct kvm_vcpu *vcpu)
 	return 1;
 }
=20
+static int vmx_get_msr_imm_reg(struct kvm_vcpu *vcpu)
+{
+	return vmx_get_instr_info_reg(vmcs_read32(VMX_INSTRUCTION_INFO));
+}
+
+static int handle_rdmsr_imm(struct kvm_vcpu *vcpu)
+{
+	return kvm_emulate_rdmsr_imm(vcpu, vmx_get_exit_qual(vcpu),
+				     vmx_get_msr_imm_reg(vcpu));
+}
+
+static int handle_wrmsr_imm(struct kvm_vcpu *vcpu)
+{
+	return kvm_emulate_wrmsr_imm(vcpu, vmx_get_exit_qual(vcpu),
+				     vmx_get_msr_imm_reg(vcpu));
+}
+
 /*
  * The exit handlers return 1 if the exit was handled fully and guest exec=
ution
  * may resume.  Otherwise they set the kvm_run parameter to indicate what =
needs
@@ -6061,6 +6078,8 @@ static int (*kvm_vmx_exit_handlers[])(struct kvm_vcpu=
 *vcpu) =3D {
 	[EXIT_REASON_ENCLS]		      =3D handle_encls,
 	[EXIT_REASON_BUS_LOCK]                =3D handle_bus_lock_vmexit,
 	[EXIT_REASON_NOTIFY]		      =3D handle_notify,
+	[EXIT_REASON_MSR_READ_IMM]            =3D handle_rdmsr_imm,
+	[EXIT_REASON_MSR_WRITE_IMM]           =3D handle_wrmsr_imm,
 };
=20
 static const int kvm_vmx_max_exit_handlers =3D
@@ -6495,6 +6514,8 @@ static int __vmx_handle_exit(struct kvm_vcpu *vcpu, f=
astpath_t exit_fastpath)
 #ifdef CONFIG_MITIGATION_RETPOLINE
 	if (exit_reason.basic =3D=3D EXIT_REASON_MSR_WRITE)
 		return kvm_emulate_wrmsr(vcpu);
+	else if (exit_reason.basic =3D=3D EXIT_REASON_MSR_WRITE_IMM)
+		return handle_wrmsr_imm(vcpu);
 	else if (exit_reason.basic =3D=3D EXIT_REASON_PREEMPTION_TIMER)
 		return handle_preemption_timer(vcpu);
 	else if (exit_reason.basic =3D=3D EXIT_REASON_INTERRUPT_WINDOW)
diff --git a/arch/x86/kvm/vmx/vmx.h b/arch/x86/kvm/vmx/vmx.h
index d3389baf3ab3..24d65dac5e89 100644
--- a/arch/x86/kvm/vmx/vmx.h
+++ b/arch/x86/kvm/vmx/vmx.h
@@ -706,6 +706,11 @@ static inline bool vmx_guest_state_valid(struct kvm_vc=
pu *vcpu)
=20
 void dump_vmcs(struct kvm_vcpu *vcpu);
=20
+static inline int vmx_get_instr_info_reg(u32 vmx_instr_info)
+{
+	return (vmx_instr_info >> 3) & 0xf;
+}
+
 static inline int vmx_get_instr_info_reg2(u32 vmx_instr_info)
 {
 	return (vmx_instr_info >> 28) & 0xf;
diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c
index 6470f0ab2060..79c3074dbd60 100644
--- a/arch/x86/kvm/x86.c
+++ b/arch/x86/kvm/x86.c
@@ -1990,6 +1990,15 @@ static int complete_fast_rdmsr(struct kvm_vcpu *vcpu)
 	return complete_fast_msr_access(vcpu);
 }
=20
+static int complete_fast_rdmsr_imm(struct kvm_vcpu *vcpu)
+{
+	if (!vcpu->run->msr.error)
+		kvm_register_write(vcpu, vcpu->arch.cui_rdmsr_imm_reg,
+				   vcpu->run->msr.data);
+
+	return complete_fast_msr_access(vcpu);
+}
+
 static u64 kvm_msr_reason(int r)
 {
 	switch (r) {
@@ -2024,39 +2033,53 @@ static int kvm_msr_user_space(struct kvm_vcpu *vcpu=
, u32 index,
 	return 1;
 }
=20
-int kvm_emulate_rdmsr(struct kvm_vcpu *vcpu)
+static int __kvm_emulate_rdmsr(struct kvm_vcpu *vcpu, u32 msr, int reg,
+			       int (*complete_rdmsr)(struct kvm_vcpu *))
 {
-	u32 msr =3D kvm_rcx_read(vcpu);
 	u64 data;
 	int r;
=20
 	r =3D kvm_get_msr_with_filter(vcpu, msr, &data);
-
 	if (!r) {
 		trace_kvm_msr_read(msr, data);
=20
-		kvm_rax_write(vcpu, data & -1u);
-		kvm_rdx_write(vcpu, (data >> 32) & -1u);
+		if (reg < 0) {
+			kvm_rax_write(vcpu, data & -1u);
+			kvm_rdx_write(vcpu, (data >> 32) & -1u);
+		} else {
+			kvm_register_write(vcpu, reg, data);
+		}
 	} else {
 		/* MSR read failed? See if we should ask user space */
 		if (kvm_msr_user_space(vcpu, msr, KVM_EXIT_X86_RDMSR, 0,
-				       complete_fast_rdmsr, r))
+				       complete_rdmsr, r))
 			return 0;
 		trace_kvm_msr_read_ex(msr);
 	}
=20
 	return kvm_x86_call(complete_emulated_msr)(vcpu, r);
 }
+
+int kvm_emulate_rdmsr(struct kvm_vcpu *vcpu)
+{
+	return __kvm_emulate_rdmsr(vcpu, kvm_rcx_read(vcpu), -1,
+				   complete_fast_rdmsr);
+}
 EXPORT_SYMBOL_GPL(kvm_emulate_rdmsr);
=20
-int kvm_emulate_wrmsr(struct kvm_vcpu *vcpu)
+int kvm_emulate_rdmsr_imm(struct kvm_vcpu *vcpu, u32 msr, int reg)
+{
+	vcpu->arch.cui_rdmsr_imm_reg =3D reg;
+
+	return __kvm_emulate_rdmsr(vcpu, msr, reg, complete_fast_rdmsr_imm);
+}
+EXPORT_SYMBOL_GPL(kvm_emulate_rdmsr_imm);
+
+static int __kvm_emulate_wrmsr(struct kvm_vcpu *vcpu, u32 msr, u64 data)
 {
-	u32 msr =3D kvm_rcx_read(vcpu);
-	u64 data =3D kvm_read_edx_eax(vcpu);
 	int r;
=20
 	r =3D kvm_set_msr_with_filter(vcpu, msr, data);
-
 	if (!r) {
 		trace_kvm_msr_write(msr, data);
 	} else {
@@ -2072,8 +2095,20 @@ int kvm_emulate_wrmsr(struct kvm_vcpu *vcpu)
=20
 	return kvm_x86_call(complete_emulated_msr)(vcpu, r);
 }
+
+int kvm_emulate_wrmsr(struct kvm_vcpu *vcpu)
+{
+	return __kvm_emulate_wrmsr(vcpu, kvm_rcx_read(vcpu),
+				   kvm_read_edx_eax(vcpu));
+}
 EXPORT_SYMBOL_GPL(kvm_emulate_wrmsr);
=20
+int kvm_emulate_wrmsr_imm(struct kvm_vcpu *vcpu, u32 msr, int reg)
+{
+	return __kvm_emulate_wrmsr(vcpu, msr, kvm_register_read(vcpu, reg));
+}
+EXPORT_SYMBOL_GPL(kvm_emulate_wrmsr_imm);
+
 int kvm_emulate_as_nop(struct kvm_vcpu *vcpu)
 {
 	return kvm_skip_emulated_instruction(vcpu);
--=20
2.50.1.565.gc32cd1483b-goog
From nobody Sun Oct  5 10:45:22 2025
Received: from mail-pj1-f73.google.com (mail-pj1-f73.google.com
 [209.85.216.73])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 22C9A29B22F
	for <linux-kernel@vger.kernel.org>; Tue,  5 Aug 2025 20:22:37 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.216.73
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1754425360; cv=none;
 b=fFYdanHH/zTfifpOOEDz6sxgLvMPBHImWRB2BBxlNEbt1PvV2RJjgB+Y9Oa0F659WOEReHWWS0eOLrYecyV1icMr0YktxugpO+a8DRdMT82uapaKCN7AVuv4l0Pm+gKIN11B7p7WX6aZT1V38Q6GMrDJnUbyADj/T05awM70ASw=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1754425360; c=relaxed/simple;
	bh=rTnxiA9BL1R+vaD/CWOthhuM8IHT8+JClqid5Etct5A=;
	h=Date:In-Reply-To:Mime-Version:References:Message-ID:Subject:From:
	 To:Cc:Content-Type;
 b=AbbTzrgea1uXHVdSKNN3hSd+iT2IBeEqJJ9pMVez0Bqfk+s6k60uY5jw5eX9imDNgdxldu0jqOC5tyHttR3DyqAZ47batXaMjWpxYO+uMP+ymzzhXFkEb6of3DJ5GzIYeDrVnOw0a2ueRbEjFNoWxmnszug1sGDT6L/7xdi2Ezc=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com;
 dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b=hzesSLPF; arc=none smtp.client-ip=209.85.216.73
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b="hzesSLPF"
Received: by mail-pj1-f73.google.com with SMTP id
 98e67ed59e1d1-315af08594fso6257607a91.2
        for <linux-kernel@vger.kernel.org>;
 Tue, 05 Aug 2025 13:22:37 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20230601; t=1754425357; x=1755030157;
 darn=vger.kernel.org;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:from:to:cc:subject:date:message-id:reply-to;
        bh=bqiEzQGi8mPmHzSR/9HBKbVJLrw+PmQtKxfKFOFslu4=;
        b=hzesSLPFbtp0yU5Uh1NxvWqqSSXWE+TJhdtdubaQJQQaFLpiinDyuyimn+BYM5hBCD
         CE2lNGowqDZuFwlZ/gBsvCmsAqZ1c7hUDsj5PWEmXHvYfA9Sv9ReY6+T8c01CE+z2gr5
         eZ1iAack61oGh+c9jJG1wHdMPA8FPvGduDYXmsBFA2ekoy0Rrh/oewvodQtBTK6Ju0zj
         Oy6HelWGUMwY/5ce2VRLKMJ0cD7gpCdf/GiRkvYlR5bGZd6ME8D5OLE6632AfMtgatqI
         OY8TTTkF+URIkLLYaTA4zBRXBspJ+PDomk8gWiCiGk6+qW/8Awqmk9DFMGqELHcypNtP
         6T8g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1754425357; x=1755030157;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:x-gm-message-state:from:to:cc:subject:date:message-id
         :reply-to;
        bh=bqiEzQGi8mPmHzSR/9HBKbVJLrw+PmQtKxfKFOFslu4=;
        b=RDZWQ/WWJ3g6HsyXd1iZR18voag7FEQtiGUFrP1F55t9b3WDRmT75bSpIWHd20OegI
         kNcZ7gY+2OrsDWcTLJ+tnHHhttm63XYhD+CDk6Be9Y/TJq8gitWD0gxvA6M2CgUjKIk7
         dJHog8c5RNoByqg7DmDfO/Ywcpt9pKz1ShJkv5pDEhSjOkGmUqtykwQRI3vK5pa0K8Fd
         4mHPEfl7ZihV3gBHF5RFdbr+MSqZyKWuqH8UJe7vtBBh4OFD6oUByVHidhWGAov1y10E
         hzsSxxMD4Urce0wgHFtrIYbir8i9DTmmaOyEtmJBG6f9l/3Go6fOTYNVGUCCL13DLm7E
         QT8g==
X-Forwarded-Encrypted: i=1;
 AJvYcCUCbiAfU41R3eqRoAz/GGHsE++u87yy3sjA+muN32jHX75/4j8CRZndLWCYbNkpU6AhuEjZYKu/nd0QB8Y=@vger.kernel.org
X-Gm-Message-State: AOJu0YymFnpPPVoAFYQ7OZah93VDqHkBax9j8Yf4dkCJeo1L4pRcR91h
	Qs46C0N5zjTkpjpdBIVyHpFXmAZQ2hWOmpL5PdYQdtwzd28G7QhlehwjnbEZfqm7vS/uQ2DHKcR
	m3S4RJA==
X-Google-Smtp-Source: 
 AGHT+IFILYSMpLJvLjPNe3eD/i5kVt2v2zs3TiIlk4/4dpwGW4POJnyGbIMrZP0UDa71HgdkxAiFrPcIk/g=
X-Received: from pjbsg8.prod.google.com ([2002:a17:90b:5208:b0:31f:4696:ea9c])
 (user=seanjc job=prod-delivery.src-stubby-dispatcher) by
 2002:a17:90b:528d:b0:312:e91c:e340
 with SMTP id 98e67ed59e1d1-32167580273mr94334a91.35.1754425357421; Tue, 05
 Aug 2025 13:22:37 -0700 (PDT)
Reply-To: Sean Christopherson <seanjc@google.com>
Date: Tue,  5 Aug 2025 13:22:23 -0700
In-Reply-To: <20250805202224.1475590-1-seanjc@google.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
Mime-Version: 1.0
References: <20250805202224.1475590-1-seanjc@google.com>
X-Mailer: git-send-email 2.50.1.565.gc32cd1483b-goog
Message-ID: <20250805202224.1475590-6-seanjc@google.com>
Subject: [PATCH v3 5/6] KVM: VMX: Support the immediate form of WRMSRNS in the
 VM-Exit fastpath
From: Sean Christopherson <seanjc@google.com>
To: Sean Christopherson <seanjc@google.com>,
 Paolo Bonzini <pbonzini@redhat.com>
Cc: kvm@vger.kernel.org, linux-kernel@vger.kernel.org,
	Borislav Petkov <bp@alien8.de>, Xin Li <xin@zytor.com>
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

From: Xin Li <xin@zytor.com>

Add support for handling "WRMSRNS with an immediate" VM-Exits in KVM's
fastpath.  On Intel, all writes to the x2APIC ICR and to the TSC Deadline
MSR are non-serializing, i.e. it's highly likely guest kernels will switch
to using WRMSRNS when possible.  And in general, any MSR written via
WRMSRNS is probably worth handling in the fastpath, as the entire point of
WRMSRNS is to shave cycles in hot paths.

Signed-off-by: Xin Li (Intel) <xin@zytor.com>
[sean: rewrite changelog, split rename to separate patch]
Signed-off-by: Sean Christopherson <seanjc@google.com>
---
 arch/x86/kvm/vmx/vmx.c |  3 +++
 arch/x86/kvm/x86.c     | 17 +++++++++++++----
 arch/x86/kvm/x86.h     |  1 +
 3 files changed, 17 insertions(+), 4 deletions(-)

diff --git a/arch/x86/kvm/vmx/vmx.c b/arch/x86/kvm/vmx/vmx.c
index 44423d5f0e27..a3f0d458be9d 100644
--- a/arch/x86/kvm/vmx/vmx.c
+++ b/arch/x86/kvm/vmx/vmx.c
@@ -7192,6 +7192,9 @@ static fastpath_t vmx_exit_handlers_fastpath(struct k=
vm_vcpu *vcpu,
 	switch (vmx_get_exit_reason(vcpu).basic) {
 	case EXIT_REASON_MSR_WRITE:
 		return handle_fastpath_wrmsr(vcpu);
+	case EXIT_REASON_MSR_WRITE_IMM:
+		return handle_fastpath_wrmsr_imm(vcpu, vmx_get_exit_qual(vcpu),
+						 vmx_get_msr_imm_reg(vcpu));
 	case EXIT_REASON_PREEMPTION_TIMER:
 		return handle_fastpath_preemption_timer(vcpu, force_immediate_exit);
 	case EXIT_REASON_HLT:
diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c
index 79c3074dbd60..68b95ab4b23f 100644
--- a/arch/x86/kvm/x86.c
+++ b/arch/x86/kvm/x86.c
@@ -2177,11 +2177,8 @@ static inline bool kvm_vcpu_exit_request(struct kvm_=
vcpu *vcpu)
 	       kvm_request_pending(vcpu) || xfer_to_guest_mode_work_pending();
 }
=20
-fastpath_t handle_fastpath_wrmsr(struct kvm_vcpu *vcpu)
+static fastpath_t __handle_fastpath_wrmsr(struct kvm_vcpu *vcpu, u32 msr, =
u64 data)
 {
-	u64 data =3D kvm_read_edx_eax(vcpu);
-	u32 msr =3D kvm_rcx_read(vcpu);
-
 	switch (msr) {
 	case APIC_BASE_MSR + (APIC_ICR >> 4):
 		if (!lapic_in_kernel(vcpu) || !apic_x2apic_mode(vcpu->arch.apic) ||
@@ -2202,8 +2199,20 @@ fastpath_t handle_fastpath_wrmsr(struct kvm_vcpu *vc=
pu)
=20
 	return EXIT_FASTPATH_REENTER_GUEST;
 }
+
+fastpath_t handle_fastpath_wrmsr(struct kvm_vcpu *vcpu)
+{
+	return __handle_fastpath_wrmsr(vcpu, kvm_rcx_read(vcpu),
+				       kvm_read_edx_eax(vcpu));
+}
 EXPORT_SYMBOL_GPL(handle_fastpath_wrmsr);
=20
+fastpath_t handle_fastpath_wrmsr_imm(struct kvm_vcpu *vcpu, u32 msr, int r=
eg)
+{
+	return __handle_fastpath_wrmsr(vcpu, msr, kvm_register_read(vcpu, reg));
+}
+EXPORT_SYMBOL_GPL(handle_fastpath_wrmsr_imm);
+
 /*
  * Adapt set_msr() to msr_io()'s calling convention
  */
diff --git a/arch/x86/kvm/x86.h b/arch/x86/kvm/x86.h
index 2dab9c9d6199..eb3088684e8a 100644
--- a/arch/x86/kvm/x86.h
+++ b/arch/x86/kvm/x86.h
@@ -438,6 +438,7 @@ int x86_decode_emulated_instruction(struct kvm_vcpu *vc=
pu, int emulation_type,
 int x86_emulate_instruction(struct kvm_vcpu *vcpu, gpa_t cr2_or_gpa,
 			    int emulation_type, void *insn, int insn_len);
 fastpath_t handle_fastpath_wrmsr(struct kvm_vcpu *vcpu);
+fastpath_t handle_fastpath_wrmsr_imm(struct kvm_vcpu *vcpu, u32 msr, int r=
eg);
 fastpath_t handle_fastpath_hlt(struct kvm_vcpu *vcpu);
 fastpath_t handle_fastpath_invd(struct kvm_vcpu *vcpu);
=20
--=20
2.50.1.565.gc32cd1483b-goog
From nobody Sun Oct  5 10:45:22 2025
Received: from mail-pg1-f202.google.com (mail-pg1-f202.google.com
 [209.85.215.202])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id F198F29B775
	for <linux-kernel@vger.kernel.org>; Tue,  5 Aug 2025 20:22:39 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.215.202
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1754425361; cv=none;
 b=ceNx/XdeR8RYFUsbRf2NjsagZIULTo/iNYgDzEcAhkeRLyY76p80SRsz/jnx27CMeFBjvzzRgLONfkV0P3YNpcs8SKs8LS6OvFwa+YqacTEvXwvHU+h4AQ0XELMeQcGs+bqTeSgr6tIboun8pCEHLcBrFdtVu+4f4F7+0S1DnnQ=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1754425361; c=relaxed/simple;
	bh=/74tP/uL8VD1igiEhMrK02lCdVn9JNfbzbe9m1VzDeE=;
	h=Date:In-Reply-To:Mime-Version:References:Message-ID:Subject:From:
	 To:Cc:Content-Type;
 b=HL7J/dXhw/2vtVWgiWrQeRAKPKNAbZlcKRX7zSdRcqt/LGyd0R52SBNHgy+o/sFF7uI4Vf46qwnCnKyv8w4Bzr4GRG90giaGIf1zGQbFSNPqINMFUG7kxj0QEa0xp8Ljxhw24/0QJd2g3KAAAb5AQMhHmGLkWfDvXYo2VyuCmng=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com;
 dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b=M2GxXJ5B; arc=none smtp.client-ip=209.85.215.202
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=flex--seanjc.bounces.google.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b="M2GxXJ5B"
Received: by mail-pg1-f202.google.com with SMTP id
 41be03b00d2f7-b42218e4a59so3996560a12.0
        for <linux-kernel@vger.kernel.org>;
 Tue, 05 Aug 2025 13:22:39 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20230601; t=1754425359; x=1755030159;
 darn=vger.kernel.org;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:from:to:cc:subject:date:message-id:reply-to;
        bh=1f+f9oC1bVjCd62ipVbDNWs3Q33jM/p7vFWYLjp/MqM=;
        b=M2GxXJ5Bgk3HSyR9FnJ4qJyry6N57mFGMFH4T+oAPL/m97oS88kqB0XC4ENo4DEtNg
         Ht0E8P5Aer7acJ0DwDRaVaKI7M+3Z4+akgsR6uqw3Qe4pPtALS/VZ4c458DmYx6LeLe3
         QHi50Om5W6Xt0zmIDH4Vdilz7DeR6DzhJidDD8R3gzMHi2p91cRPXJcIf/GA4RYaYlZD
         2RhROFJ85sEhvGRN9FCgDiGzZg7XTbrC+ZNiVXIXO8kMn15ApgkhutobA08WYoRJevPC
         iILhtEQJCypodI/kdDm+xy5Ws6JlcYFklrCmM8PuraLD+LolaHx7u70utMRk1nAEHuQO
         U75w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1754425359; x=1755030159;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:reply-to:x-gm-message-state:from:to:cc:subject:date:message-id
         :reply-to;
        bh=1f+f9oC1bVjCd62ipVbDNWs3Q33jM/p7vFWYLjp/MqM=;
        b=uq9nZ1/hDTWId6/HoBNWRn8Qog92n0whe+1XzsqRuPDVB2pd6sMlyg+VlbL2h4iov5
         jtLl4DiWGIAR3t+1/cvPHuXxAonN1WD1XZplhgY/ML7HlQgL2Qgl2YJkbOSAGbiSQVz2
         0Jbmyo2SSeThaDj7PyRGh/evnM8aCb/TQXIEXXYEyiH5S+sK39mWUo25YPuW+QFtU7p2
         Addyk4KDXkzvQiEJbVAmu4M+oIg5If/OOB5C67Hgt8NF19QD+MT3TB+r3eQVturetuX9
         YXmNaH0oJA+40ZcPlDlNCA9OpIZ+t+c27paHO+j1ckGwDP376g+g1axlCQocTJwiO+go
         a0sA==
X-Forwarded-Encrypted: i=1;
 AJvYcCWG4Ac7MBwIMZjgtOaWVfyo6BckfrKPn+XfLpKvyMI3yT1O0JrX2OSRDj6yP5P2NnPfw+qDDrfS3RuLR7Q=@vger.kernel.org
X-Gm-Message-State: AOJu0Yw5TzLlEfgNWFUwC9D8pXmv7fa4Am0Wpgc6qsIQkGTBVnAzyhx/
	Zvta4Qsog3gvmufVOcQlgEn2ZcQo4oawlqk2Bkds41DOTgjCTsdiHzeC3veHEUwPHoKk9+S3hII
	vcL28ZQ==
X-Google-Smtp-Source: 
 AGHT+IGSm11toOjPwvtC633w4IWObqyBZzDlcAWaJmjXYtr4+m7SO4dsAZJxrRV/oUi4bYeNSpO/Jtzrkyw=
X-Received: from pjbkl16.prod.google.com
 ([2002:a17:90b:4990:b0:311:c20d:676d])
 (user=seanjc job=prod-delivery.src-stubby-dispatcher) by
 2002:a17:90b:4ac1:b0:31e:cb27:9de4
 with SMTP id 98e67ed59e1d1-32166cb2fb2mr191994a91.24.1754425359238; Tue, 05
 Aug 2025 13:22:39 -0700 (PDT)
Reply-To: Sean Christopherson <seanjc@google.com>
Date: Tue,  5 Aug 2025 13:22:24 -0700
In-Reply-To: <20250805202224.1475590-1-seanjc@google.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
Mime-Version: 1.0
References: <20250805202224.1475590-1-seanjc@google.com>
X-Mailer: git-send-email 2.50.1.565.gc32cd1483b-goog
Message-ID: <20250805202224.1475590-7-seanjc@google.com>
Subject: [PATCH v3 6/6] KVM: x86: Advertise support for the immediate form of
 MSR instructions
From: Sean Christopherson <seanjc@google.com>
To: Sean Christopherson <seanjc@google.com>,
 Paolo Bonzini <pbonzini@redhat.com>
Cc: kvm@vger.kernel.org, linux-kernel@vger.kernel.org,
	Borislav Petkov <bp@alien8.de>, Xin Li <xin@zytor.com>
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

From: Xin Li <xin@zytor.com>

Advertise support for the immediate form of MSR instructions to userspace
if the instructions are supported by the underlying CPU, and KVM is using
VMX, i.e. is running on an Intel-compatible CPU.

For SVM, explicitly clear X86_FEATURE_MSR_IMM to ensure KVM doesn't over-
report support if AMD-compatible CPUs ever implement the immediate forms,
as SVM will likely require explicit enablement in KVM.

Signed-off-by: Xin Li (Intel) <xin@zytor.com>
[sean: massage changelog]
Signed-off-by: Sean Christopherson <seanjc@google.com>
---
 arch/x86/include/asm/kvm_host.h | 1 +
 arch/x86/kvm/cpuid.c            | 6 +++++-
 arch/x86/kvm/reverse_cpuid.h    | 5 +++++
 arch/x86/kvm/svm/svm.c          | 6 +++++-
 4 files changed, 16 insertions(+), 2 deletions(-)

diff --git a/arch/x86/include/asm/kvm_host.h b/arch/x86/include/asm/kvm_hos=
t.h
index dbdec6025fde..735b5d1e62dd 100644
--- a/arch/x86/include/asm/kvm_host.h
+++ b/arch/x86/include/asm/kvm_host.h
@@ -774,6 +774,7 @@ enum kvm_only_cpuid_leafs {
 	CPUID_7_2_EDX,
 	CPUID_24_0_EBX,
 	CPUID_8000_0021_ECX,
+	CPUID_7_1_ECX,
 	NR_KVM_CPU_CAPS,
=20
 	NKVMCAPINTS =3D NR_KVM_CPU_CAPS - NCAPINTS,
diff --git a/arch/x86/kvm/cpuid.c b/arch/x86/kvm/cpuid.c
index e2836a255b16..eaaa9203d4d9 100644
--- a/arch/x86/kvm/cpuid.c
+++ b/arch/x86/kvm/cpuid.c
@@ -985,6 +985,10 @@ void kvm_set_cpu_caps(void)
 		F(LAM),
 	);
=20
+	kvm_cpu_cap_init(CPUID_7_1_ECX,
+		SCATTERED_F(MSR_IMM),
+	);
+
 	kvm_cpu_cap_init(CPUID_7_1_EDX,
 		F(AVX_VNNI_INT8),
 		F(AVX_NE_CONVERT),
@@ -1411,9 +1415,9 @@ static inline int __do_cpuid_func(struct kvm_cpuid_ar=
ray *array, u32 function)
 				goto out;
=20
 			cpuid_entry_override(entry, CPUID_7_1_EAX);
+			cpuid_entry_override(entry, CPUID_7_1_ECX);
 			cpuid_entry_override(entry, CPUID_7_1_EDX);
 			entry->ebx =3D 0;
-			entry->ecx =3D 0;
 		}
 		if (max_idx >=3D 2) {
 			entry =3D do_host_cpuid(array, function, 2);
diff --git a/arch/x86/kvm/reverse_cpuid.h b/arch/x86/kvm/reverse_cpuid.h
index c53b92379e6e..743ab25ba787 100644
--- a/arch/x86/kvm/reverse_cpuid.h
+++ b/arch/x86/kvm/reverse_cpuid.h
@@ -25,6 +25,9 @@
 #define KVM_X86_FEATURE_SGX2		KVM_X86_FEATURE(CPUID_12_EAX, 1)
 #define KVM_X86_FEATURE_SGX_EDECCSSA	KVM_X86_FEATURE(CPUID_12_EAX, 11)
=20
+/* Intel-defined sub-features, CPUID level 0x00000007:1 (ECX) */
+#define KVM_X86_FEATURE_MSR_IMM		KVM_X86_FEATURE(CPUID_7_1_ECX, 5)
+
 /* Intel-defined sub-features, CPUID level 0x00000007:1 (EDX) */
 #define X86_FEATURE_AVX_VNNI_INT8       KVM_X86_FEATURE(CPUID_7_1_EDX, 4)
 #define X86_FEATURE_AVX_NE_CONVERT      KVM_X86_FEATURE(CPUID_7_1_EDX, 5)
@@ -87,6 +90,7 @@ static const struct cpuid_reg reverse_cpuid[] =3D {
 	[CPUID_7_2_EDX]       =3D {         7, 2, CPUID_EDX},
 	[CPUID_24_0_EBX]      =3D {      0x24, 0, CPUID_EBX},
 	[CPUID_8000_0021_ECX] =3D {0x80000021, 0, CPUID_ECX},
+	[CPUID_7_1_ECX]       =3D {         7, 1, CPUID_ECX},
 };
=20
 /*
@@ -128,6 +132,7 @@ static __always_inline u32 __feature_translate(int x86_=
feature)
 	KVM_X86_TRANSLATE_FEATURE(BHI_CTRL);
 	KVM_X86_TRANSLATE_FEATURE(TSA_SQ_NO);
 	KVM_X86_TRANSLATE_FEATURE(TSA_L1_NO);
+	KVM_X86_TRANSLATE_FEATURE(MSR_IMM);
 	default:
 		return x86_feature;
 	}
diff --git a/arch/x86/kvm/svm/svm.c b/arch/x86/kvm/svm/svm.c
index ca550c4fa174..7e7821ee8ee1 100644
--- a/arch/x86/kvm/svm/svm.c
+++ b/arch/x86/kvm/svm/svm.c
@@ -5311,8 +5311,12 @@ static __init void svm_set_cpu_caps(void)
 	/* CPUID 0x8000001F (SME/SEV features) */
 	sev_set_cpu_caps();
=20
-	/* Don't advertise Bus Lock Detect to guest if SVM support is absent */
+	/*
+	 * Clear capabilities that are automatically configured by common code,
+	 * but that require explicit SVM support (that isn't yet implemented).
+	 */
 	kvm_cpu_cap_clear(X86_FEATURE_BUS_LOCK_DETECT);
+	kvm_cpu_cap_clear(X86_FEATURE_MSR_IMM);
 }
=20
 static __init int svm_hardware_setup(void)
--=20
2.50.1.565.gc32cd1483b-goog