KVM: VMX: EPTP cleanups and nVMX fixes

[PATCH 6/9] KVM: nVMX: Add consistency check for TSC_MULTIPLIER=0

Posted by Sean Christopherson 1 week, 6 days ago

Add a missing consistency check on the TSC Multiplier being '0'.  Per the
SDM:

  If the "use TSC scaling" VM-execution control is 1, the TSC-multiplier
  must not be zero.

Fixes: d041b5ea9335 ("KVM: nVMX: Enable nested TSC scaling")
Signed-off-by: Sean Christopherson <seanjc@google.com>
---
 arch/x86/kvm/vmx/nested.c | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/arch/x86/kvm/vmx/nested.c b/arch/x86/kvm/vmx/nested.c
index 5ac7ad207ef7..eb838ebeff0f 100644
--- a/arch/x86/kvm/vmx/nested.c
+++ b/arch/x86/kvm/vmx/nested.c
@@ -2906,6 +2906,10 @@ static int nested_check_vm_execution_controls(struct kvm_vcpu *vcpu,
 		}
 	}
 
+	if (nested_cpu_has2(vmcs12, SECONDARY_EXEC_TSC_SCALING) &&
+	    CC(!vmcs12->tsc_multiplier))
+		return -EINVAL;
+
 	return 0;
 }
 
-- 
2.51.0.470.ga7dc726c21-goog

[PATCH 1/9] KVM: VMX: Hoist construct_eptp() "up" in vmx.c
[PATCH 2/9] KVM: nVMX: Hardcode dummy EPTP used for early nested consistency checks
[PATCH 3/9] KVM: x86/mmu: Move "dummy root" helpers to spte.h
[PATCH 4/9] KVM: VMX: Use kvm_mmu_page role to construct EPTP, not current vCPU state
[PATCH 5/9] KVM: nVMX: Add consistency check for TPR_THRESHOLD[31:4]!=0 without VID
[PATCH 6/9] KVM: nVMX: Add consistency check for TSC_MULTIPLIER=0
[PATCH 7/9] KVM: nVMX: Stuff vmcs02.TSC_MULTIPLIER early on for nested early checks
[PATCH 8/9] KVM: nVMX: Remove support for "early" consistency checks via hardware
[PATCH 9/9] KVM: nVMX: Add an off-by-default module param to WARN on missed consistency checks