From nobody Mon Jun  8 17:47:14 2026
Received: from mail-pl1-f201.google.com (mail-pl1-f201.google.com
 [209.85.214.201])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 17EBB15687D
	for <linux-kernel@vger.kernel.org>; Wed, 27 May 2026 17:44:03 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.214.201
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1779903847; cv=none;
 b=twOzFD8oeZx9HV7kWPMH9CwMcxK/KmIp3mWcCkSIjREoRhGRyf0P94cwj6PCVpNlYSssqFEksC6CUhByyFpmnHpXrAL0vFp36jNRSZGOvYQ/cplj+YG67uzFp0DiukwKhK+l5ORhxx2cgro+A5Mv6AsZppcVMADWQMZtIQUrFQs=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1779903847; c=relaxed/simple;
	bh=4dM+MyiSqvp+Jq7wcMz9CiXdA6assxQeJuKyAT0TKZc=;
	h=Date:In-Reply-To:Mime-Version:References:Message-ID:Subject:From:
	 To:Cc:Content-Type;
 b=XeBNFXhDh4r8VmhTpO0V+HS+p+Lhq9CVSygxjlonLzlQlLx6FEZ8MXZodFB435iVSFYTQHZVN4HGwmIHcN0MYFXnh54lTxMs0lYKJG4XZRvAAR3OEzIRpnElKhdm1n32kJ9Gql0SjNd2vt4gvUIHQoQ3TpEy+U8V8cAjeKdruqQ=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com;
 spf=pass smtp.mailfrom=flex--jmattson.bounces.google.com;
 dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b=TjnqpcY1; arc=none smtp.client-ip=209.85.214.201
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=flex--jmattson.bounces.google.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b="TjnqpcY1"
Received: by mail-pl1-f201.google.com with SMTP id
 d9443c01a7336-2b4530a90fdso67149475ad.1
        for <linux-kernel@vger.kernel.org>;
 Wed, 27 May 2026 10:44:03 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20251104; t=1779903843; x=1780508643;
 darn=vger.kernel.org;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:from:to:cc:subject:date:message-id:reply-to;
        bh=3sU0RPFbAlDPXpf7+JC6NZ9VwzjnBo5QhV+gWzHYteo=;
        b=TjnqpcY150n2ARgba1RKS2JOFYkT7xCbmvruo4cbCGtzZBqLgqLVuApvKoTK8RX7bL
         pWH/QLRcokrEPoRd4g4g9veWLp/y6t4H83QjrpCCP1Cm8GbDxsKepSC0Had0PJSdyA6C
         z/BuUxxu9TFvy0qkJorJpyMwTSakP7r1Y+07wSbfe2jytRfUUNB6JpOvOHzq2osbG+gr
         ED9NsRFS4bagd15h3m72MB7y0gAeA8NJu9oLE6vNhiA4ElmrbY3ltHw1NMeNYofF6rfj
         Zjg+jcsqm11AUV0McAOO8hB0p9eyzYjcZ2RsP+sbaPghGHtpxCLUJLKENh4v7PnPb4Sy
         SHxA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20251104; t=1779903843; x=1780508643;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;
        bh=3sU0RPFbAlDPXpf7+JC6NZ9VwzjnBo5QhV+gWzHYteo=;
        b=Z1H6LXWxRSxH+Q+A6yBgEg0ynPNS5eSy2No+XxVRscAZ6dXTHEiITbDuCXKKb0sSwN
         /onEwxBfGmnPt5mL2unxx0ljPV1rMy6j/CsC+v7jqQdP0SQf8WKCZiO/mPXtlRKq/eSz
         Dxi0txm2GhJOebrneAXXLVjViAo8Mzc/jh4+xGzYzKLhc7tKqSB/lI+49TghcCBaCRfb
         6mh8ZT/CJTLTLB2txxlFrnu/Omsxa9hHY1b08YbIHgmy4mZSWvAqw9JC35fvFG+g9Mft
         FupOkek4GfqoM67P8jrpON00Dk+YFiAjDy0GOktkoo4XfiTZSp/L92wchP4M/zcgfthN
         LgTg==
X-Forwarded-Encrypted: i=1;
 AFNElJ+Mc1cu5gc+VamcoHsA7d7/PgdHystzltVCObdlf35uKWfSAy1Uj5r+nZRCf/40QqXTBNWxAvNXJdw4JOY=@vger.kernel.org
X-Gm-Message-State: AOJu0YxZqId+7rq/+scRqeggI3eCRVkzni95Kj3VmZog8TnS6tVcqqWj
	GwHcq8ag6DxqgGkPS3EjLM2I9Hwj8woYrpUw6jeuwzYTVR11gu6e5bmdzu8lkNYthinWGHAVzv4
	gwR/mouKmO3txEA==
X-Received: from plbbf3.prod.google.com ([2002:a17:902:b903:b0:2be:b234:7438])
 (user=jmattson job=prod-delivery.src-stubby-dispatcher) by
 2002:a17:903:32ce:b0:2bd:eeb6:ff1b with SMTP id
 d9443c01a7336-2beb0390f7dmr272457635ad.4.1779903842482;
 Wed, 27 May 2026 10:44:02 -0700 (PDT)
Date: Wed, 27 May 2026 10:43:43 -0700
In-Reply-To: <20260527174347.2356165-1-jmattson@google.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
Mime-Version: 1.0
References: <20260527174347.2356165-1-jmattson@google.com>
X-Mailer: git-send-email 2.54.0.794.g4f17f83d09-goog
Message-ID: <20260527174347.2356165-2-jmattson@google.com>
Subject: [PATCH v4 1/5] KVM: x86: Consolidate CPUID fault handling for
 emulator and interception logic
From: Jim Mattson <jmattson@google.com>
To: seanjc@google.com, pbonzini@redhat.com, tglx@kernel.org, mingo@redhat.com,
	bp@alien8.de, dave.hansen@linux.intel.com, x86@kernel.org, hpa@zytor.com,
	shuah@kernel.org, kvm@vger.kernel.org, linux-kernel@vger.kernel.org,
	linux-kselftest@vger.kernel.org, ctpence@google.com, David.Kaplan@amd.com,
	binbin.wu@linux.intel.com
Cc: Jim Mattson <jmattson@google.com>
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

From: Sean Christopherson <seanjc@google.com>

Extract the logic for emulating CPUID faulting (where CPUID #GPs at CPL>0
outside of SMM) into a dedicated helper and use the helper for both the
full emulator and the intercepted-CPUID paths.

Opportunistically drop kvm_require_cpl(), as kvm_emulate_cpuid() was the
one and only user.

No functional change intended.

Signed-off-by: Sean Christopherson <seanjc@google.com>
[jim: Add EXPORT_STATIC_CALL_GPL(kvm_x86_get_cpl) so that KVM vendor
modules can call kvm_is_cpuid_allowed(). Fix typo in commit message.]
Signed-off-by: Jim Mattson <jmattson@google.com>
Reviewed-by: Binbin Wu <binbin.wu@linux.intel.com>
---
 arch/x86/include/asm/kvm_host.h |  1 -
 arch/x86/kvm/cpuid.c            |  5 +++--
 arch/x86/kvm/cpuid.h            |  8 ++++++++
 arch/x86/kvm/emulate.c          |  6 +-----
 arch/x86/kvm/kvm_emulate.h      |  1 +
 arch/x86/kvm/x86.c              | 19 +++++++------------
 6 files changed, 20 insertions(+), 20 deletions(-)

diff --git a/arch/x86/include/asm/kvm_host.h b/arch/x86/include/asm/kvm_hos=
t.h
index d72051150bac..4c22b338ac7b 100644
--- a/arch/x86/include/asm/kvm_host.h
+++ b/arch/x86/include/asm/kvm_host.h
@@ -2321,7 +2321,6 @@ static inline void kvm_inject_emulated_page_fault(str=
uct kvm_vcpu *vcpu,
 	__kvm_inject_emulated_page_fault(vcpu, fault, false);
 }
=20
-bool kvm_require_cpl(struct kvm_vcpu *vcpu, int required_cpl);
 bool kvm_require_dr(struct kvm_vcpu *vcpu, int dr);
=20
 static inline int __kvm_irq_line_state(unsigned long *irq_state,
diff --git a/arch/x86/kvm/cpuid.c b/arch/x86/kvm/cpuid.c
index e69156b54cff..1c95d1fa3ead 100644
--- a/arch/x86/kvm/cpuid.c
+++ b/arch/x86/kvm/cpuid.c
@@ -2161,9 +2161,10 @@ int kvm_emulate_cpuid(struct kvm_vcpu *vcpu)
 {
 	u32 eax, ebx, ecx, edx;
=20
-	if (!is_smm(vcpu) && cpuid_fault_enabled(vcpu) &&
-	    !kvm_require_cpl(vcpu, 0))
+	if (!kvm_is_cpuid_allowed(vcpu)) {
+		kvm_queue_exception_e(vcpu, GP_VECTOR, 0);
 		return 1;
+	}
=20
 	eax =3D kvm_rax_read(vcpu);
 	ecx =3D kvm_rcx_read(vcpu);
diff --git a/arch/x86/kvm/cpuid.h b/arch/x86/kvm/cpuid.h
index 039b8e6f40ba..bc4a8428b836 100644
--- a/arch/x86/kvm/cpuid.h
+++ b/arch/x86/kvm/cpuid.h
@@ -7,6 +7,8 @@
 #include <asm/processor.h>
 #include <uapi/asm/kvm_para.h>
=20
+#include "smm.h"
+
 extern u32 kvm_cpu_caps[NR_KVM_CPU_CAPS] __read_mostly;
 extern bool kvm_is_configuring_cpu_caps __read_mostly;
=20
@@ -192,6 +194,12 @@ static inline bool cpuid_fault_enabled(struct kvm_vcpu=
 *vcpu)
 		  MSR_MISC_FEATURES_ENABLES_CPUID_FAULT;
 }
=20
+static inline bool kvm_is_cpuid_allowed(struct kvm_vcpu *vcpu)
+{
+	return !cpuid_fault_enabled(vcpu) || is_smm(vcpu) ||
+	       !kvm_x86_call(get_cpl)(vcpu);
+}
+
 static __always_inline void kvm_cpu_cap_clear(unsigned int x86_feature)
 {
 	unsigned int x86_leaf =3D __feature_leaf(x86_feature);
diff --git a/arch/x86/kvm/emulate.c b/arch/x86/kvm/emulate.c
index 0a17a9ee6f32..585a8ceab220 100644
--- a/arch/x86/kvm/emulate.c
+++ b/arch/x86/kvm/emulate.c
@@ -3594,12 +3594,8 @@ static int em_sti(struct x86_emulate_ctxt *ctxt)
 static int em_cpuid(struct x86_emulate_ctxt *ctxt)
 {
 	u32 eax, ebx, ecx, edx;
-	u64 msr =3D 0;
=20
-	ctxt->ops->get_msr(ctxt, MSR_MISC_FEATURES_ENABLES, &msr);
-	if (!ctxt->ops->is_smm(ctxt) &&
-	    (msr & MSR_MISC_FEATURES_ENABLES_CPUID_FAULT) &&
-	    ctxt->ops->cpl(ctxt))
+	if (!ctxt->ops->is_cpuid_allowed(ctxt))
 		return emulate_gp(ctxt, 0);
=20
 	eax =3D reg_read(ctxt, VCPU_REGS_RAX);
diff --git a/arch/x86/kvm/kvm_emulate.h b/arch/x86/kvm/kvm_emulate.h
index f5df31a52996..3e375af15c03 100644
--- a/arch/x86/kvm/kvm_emulate.h
+++ b/arch/x86/kvm/kvm_emulate.h
@@ -230,6 +230,7 @@ struct x86_emulate_ops {
 			 struct x86_instruction_info *info,
 			 enum x86_intercept_stage stage);
=20
+	bool (*is_cpuid_allowed)(struct x86_emulate_ctxt *ctxt);
 	bool (*get_cpuid)(struct x86_emulate_ctxt *ctxt, u32 *eax, u32 *ebx,
 			  u32 *ecx, u32 *edx, bool exact_only);
 	bool (*guest_has_movbe)(struct x86_emulate_ctxt *ctxt);
diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c
index 1578c0ecbbd1..72bd3cddb026 100644
--- a/arch/x86/kvm/x86.c
+++ b/arch/x86/kvm/x86.c
@@ -151,6 +151,7 @@ struct kvm_x86_ops kvm_x86_ops __read_mostly;
 #include <asm/kvm-x86-ops.h>
 EXPORT_STATIC_CALL_GPL(kvm_x86_get_cs_db_l_bits);
 EXPORT_STATIC_CALL_GPL(kvm_x86_cache_reg);
+EXPORT_STATIC_CALL_GPL(kvm_x86_get_cpl);
=20
 static bool __read_mostly ignore_msrs =3D 0;
 module_param(ignore_msrs, bool, 0644);
@@ -1022,18 +1023,6 @@ void kvm_queue_exception_e(struct kvm_vcpu *vcpu, un=
signed nr, u32 error_code)
 }
 EXPORT_SYMBOL_FOR_KVM_INTERNAL(kvm_queue_exception_e);
=20
-/*
- * Checks if cpl <=3D required_cpl; if true, return true.  Otherwise queue
- * a #GP and return false.
- */
-bool kvm_require_cpl(struct kvm_vcpu *vcpu, int required_cpl)
-{
-	if (kvm_x86_call(get_cpl)(vcpu) <=3D required_cpl)
-		return true;
-	kvm_queue_exception_e(vcpu, GP_VECTOR, 0);
-	return false;
-}
-
 bool kvm_require_dr(struct kvm_vcpu *vcpu, int dr)
 {
 	if ((dr !=3D 4 && dr !=3D 5) || !kvm_is_cr4_bit_set(vcpu, X86_CR4_DE))
@@ -8829,6 +8818,11 @@ static int emulator_intercept(struct x86_emulate_ctx=
t *ctxt,
 					     &ctxt->exception);
 }
=20
+static bool emulator_is_cpuid_allowed(struct x86_emulate_ctxt *ctxt)
+{
+	return kvm_is_cpuid_allowed(emul_to_vcpu(ctxt));
+}
+
 static bool emulator_get_cpuid(struct x86_emulate_ctxt *ctxt,
 			      u32 *eax, u32 *ebx, u32 *ecx, u32 *edx,
 			      bool exact_only)
@@ -8966,6 +8960,7 @@ static const struct x86_emulate_ops emulate_ops =3D {
 	.wbinvd              =3D emulator_wbinvd,
 	.fix_hypercall       =3D emulator_fix_hypercall,
 	.intercept           =3D emulator_intercept,
+	.is_cpuid_allowed    =3D emulator_is_cpuid_allowed,
 	.get_cpuid           =3D emulator_get_cpuid,
 	.guest_has_movbe     =3D emulator_guest_has_movbe,
 	.guest_has_fxsr      =3D emulator_guest_has_fxsr,
--=20
2.54.0.794.g4f17f83d09-goog
From nobody Mon Jun  8 17:47:14 2026
Received: from mail-pj1-f74.google.com (mail-pj1-f74.google.com
 [209.85.216.74])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id C5BC342316B
	for <linux-kernel@vger.kernel.org>; Wed, 27 May 2026 17:44:04 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.216.74
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1779903847; cv=none;
 b=YKVZTQwlegtOIfHsVvK4YkECErwJtzTLiK5MlIlH8nfgs1kELrq/C9hWxsQrDbSaP3bwwaoNvPdctqC4OvlaDClex+MB5BW1Bu2p0Qjry56y5oNStq3qBQ2Or4tOfrcZQWBgCPa7B41M9U6KNPzXLc7sHF3QHrRJRiWisJzBMzk=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1779903847; c=relaxed/simple;
	bh=L4aBmkZscckHzJgdPCoO860adQzZJzD5ueN+5Mn4SDc=;
	h=Date:In-Reply-To:Mime-Version:References:Message-ID:Subject:From:
	 To:Cc:Content-Type;
 b=GOGDLRJWD6NGsXbzJn8QBbKKHiNJADLRtqE1JuGPSFDoDymSyqzgTxbkCBZFiUqtdP7/D2GQGp+392b04obPLX1sfc1zcYQs6jZbIn2uW20cfNSurKzzfJjlEhnIvwGrTu1CTR1MEuJEMjve4BVLAl0gl8DhUVzEQRELF3NV8j4=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com;
 spf=pass smtp.mailfrom=flex--jmattson.bounces.google.com;
 dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b=p0jZs7YK; arc=none smtp.client-ip=209.85.216.74
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=flex--jmattson.bounces.google.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b="p0jZs7YK"
Received: by mail-pj1-f74.google.com with SMTP id
 98e67ed59e1d1-367fd7b8825so11921623a91.0
        for <linux-kernel@vger.kernel.org>;
 Wed, 27 May 2026 10:44:04 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20251104; t=1779903843; x=1780508643;
 darn=vger.kernel.org;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:from:to:cc:subject:date:message-id:reply-to;
        bh=EXpVA1sbhGRZnbOHNVkVkLddfm7uEN4lJTAwg2kEFqs=;
        b=p0jZs7YK5iaAdyhVawF04ot3M/lf2ggSVdsONqbwSedNe7CdKQ89r4YZZf5xVUfaKS
         b2RDFh5aYjyZ8RnCEn3r9P+s5vENh2J6YEJTUK4L8e5MUMyCOn4GUeQBfHV0NF5vvT/K
         fR0mPaoSqZleYRphZWDATKt2IMl4wgLOrKWXaDp65Mre0+tENgoaOaiTC2s84UTvydg/
         8Y+h26lEZxdNBVK86Di6em88ZfeI2jqFlmBP84jAze5bPGV4I4IdtUBomO1tVZ1Y7znm
         x8j09Bzo9Opl751NHHERHRDORRg03r4P+adcFcwiGa1uOO9f6HA+f2N9Trmfu+inxvEg
         2LQw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20251104; t=1779903843; x=1780508643;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;
        bh=EXpVA1sbhGRZnbOHNVkVkLddfm7uEN4lJTAwg2kEFqs=;
        b=LKbM4/icUDywL1qVw0f2EFpfZ7zH0GnlshiBFvXP+yC4ttqTFJzEdWDihaLNs+V4iX
         zSw/YA3rpxMScCZNtb0utSzzlcWIINVFBIQRgoFwA/co5U+/tHpVLEMoVC8nuBLMUH5U
         YJ9E8apm1fguGF+F9KIc+ck3Ed8v5EQGBJ2JOQ6mr9VZW4NQ/N6MTRAyl8zfvX8k0i4b
         BkkW8c1jKpWirSKUQ0KTJHzB7LWQNVQ0e9o/ea3o7xLwc7Lei5LFI9115B/kX+KJpbtP
         CiSGdgzm4rFssEscABzO/PAcI4IEgzWrQ33DTUemZ+Wh9Q1qV10KIzSohcAOc0gGC33v
         rM5w==
X-Forwarded-Encrypted: i=1;
 AFNElJ/AqYjOvKH+hGed/XvlmIsxGqMeLw6DVC++w+Oq7mN6tkFE+UdKsn63g8zsxDCu6nR6Qc31HeVeKni+RiU=@vger.kernel.org
X-Gm-Message-State: AOJu0Yz6/3GhnKAyVKEqaq1x4BCsUpBJVeSo5vgwww+boniLQWM/5k+X
	SL6Cw2xAty/n2nO/n5D8KMCHKyhsPbkBWhQhDxHW4iFeDj6nlJf4CwsdVG8Xcy2Ix7rsxloETd0
	L1lMgJ4jHnT+4Jw==
X-Received: from pjuf23.prod.google.com ([2002:a17:90a:ce17:b0:36a:e4aa:ca7c])
 (user=jmattson job=prod-delivery.src-stubby-dispatcher) by
 2002:a17:90b:37cc:b0:36a:aa9:eea0 with SMTP id
 98e67ed59e1d1-36a6749e856mr22442343a91.4.1779903843377;
 Wed, 27 May 2026 10:44:03 -0700 (PDT)
Date: Wed, 27 May 2026 10:43:44 -0700
In-Reply-To: <20260527174347.2356165-1-jmattson@google.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
Mime-Version: 1.0
References: <20260527174347.2356165-1-jmattson@google.com>
X-Mailer: git-send-email 2.54.0.794.g4f17f83d09-goog
Message-ID: <20260527174347.2356165-3-jmattson@google.com>
Subject: [PATCH v4 2/5] KVM: x86: Prioritize CPUID faulting over CPUID
 VM-exits in nested VMX
From: Jim Mattson <jmattson@google.com>
To: seanjc@google.com, pbonzini@redhat.com, tglx@kernel.org, mingo@redhat.com,
	bp@alien8.de, dave.hansen@linux.intel.com, x86@kernel.org, hpa@zytor.com,
	shuah@kernel.org, kvm@vger.kernel.org, linux-kernel@vger.kernel.org,
	linux-kselftest@vger.kernel.org, ctpence@google.com, David.Kaplan@amd.com,
	binbin.wu@linux.intel.com
Cc: Jim Mattson <jmattson@google.com>, Sashiko <sashiko-bot@kernel.org>
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

Per the Intel SDM, "Certain exceptions have priority over VM exits.  These
include invalid-opcode exceptions, faults based on privilege level, and
general-protection exceptions that are based on checking I/O permission
bits in the task-state segment (TSS)."

Ensure that when L2 executes CPUID at CPL > 0 while L1 has enabled CPUID
faulting, KVM intercepts the exit in L0 and queues #GP rather than
forwarding the CPUID VM-exit to L1.

Empirical testing confirms that this #GP has higher precedence than a CPUID
VM-exit on Granite Rapids (F/M/S 6/0xad/1).

Fixes: db2336a80489 ("KVM: x86: virtualize cpuid faulting")
Reported-by: Sashiko <sashiko-bot@kernel.org>
Closes: https://sashiko.dev/#/patchset/20260513224608.1859737-1-jmattson%40=
google.com?part=3D3
Signed-off-by: Jim Mattson <jmattson@google.com>
---
 arch/x86/kvm/vmx/nested.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/arch/x86/kvm/vmx/nested.c b/arch/x86/kvm/vmx/nested.c
index a78ce0080963..30dcabc899a2 100644
--- a/arch/x86/kvm/vmx/nested.c
+++ b/arch/x86/kvm/vmx/nested.c
@@ -6552,6 +6552,8 @@ static bool nested_vmx_l0_wants_exit(struct kvm_vcpu =
*vcpu,
 			nested_evmcs_l2_tlb_flush_enabled(vcpu) &&
 			kvm_hv_is_tlb_flush_hcall(vcpu);
 #endif
+	case EXIT_REASON_CPUID:
+		return !kvm_is_cpuid_allowed(vcpu);
 	default:
 		break;
 	}
--=20
2.54.0.794.g4f17f83d09-goog
From nobody Mon Jun  8 17:47:14 2026
Received: from mail-pf1-f201.google.com (mail-pf1-f201.google.com
 [209.85.210.201])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id F3AED450909
	for <linux-kernel@vger.kernel.org>; Wed, 27 May 2026 17:44:05 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.210.201
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1779903848; cv=none;
 b=dOaW0sqsWN5GvydigC8AZoGNQXV8OaARoaxbhOFxPw790p/ixhnAVL7UabXndCWPbiRAtK1hEuqvEp0d6GTiXprB+pk94K1PvI+h+pX6IRH9y4LdpR/XOZNxhhV9rFxLhMuwgcKvnp873oYQgNB41C8rOQl+JAAakrucxj5DMLo=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1779903848; c=relaxed/simple;
	bh=YxP5krwdaVeOHE62Vd0PtLNRMCzqWyUDf/4m/oTbqYY=;
	h=Date:In-Reply-To:Mime-Version:References:Message-ID:Subject:From:
	 To:Cc:Content-Type;
 b=l6b3XtHTSx89BqdutJyrqQs4I5LwSJXkKdWWncsb8gHVxQArF/YxK6f3len9nWyS6bWlWNOPLsBYHL3i/FaOfSxxoOmHZJ1CJWDlapAXEV5HOcnx2kMuuKSFQJFkqj1842Txdj2R+r28awpan/Z6ZtpQGLMzm7ANuX5MsOPGKqA=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com;
 spf=pass smtp.mailfrom=flex--jmattson.bounces.google.com;
 dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b=d7sPZDLK; arc=none smtp.client-ip=209.85.210.201
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=flex--jmattson.bounces.google.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b="d7sPZDLK"
Received: by mail-pf1-f201.google.com with SMTP id
 d2e1a72fcca58-83536dc3be5so13881534b3a.1
        for <linux-kernel@vger.kernel.org>;
 Wed, 27 May 2026 10:44:05 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20251104; t=1779903845; x=1780508645;
 darn=vger.kernel.org;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:from:to:cc:subject:date:message-id:reply-to;
        bh=9qEcLhasCephgp3AS7VyEnF08Tw7w+64XAN+eU0Mxdw=;
        b=d7sPZDLK/mQVhUOG8LhwZ/IlmW2xfdFHHbZ7uGFAe5QJAhRl2CNDFc7Uw9q2dn9UNG
         QHA2wvsixvOY1Oal5VOcyek3x5xhIKLm///cfT1FagNDQsBY5zsiHI1xidS5myr6pYl5
         +hRKIYUGYpDuBpto/sC9N9G3Ha0xroguKBkWhvswvS6z2X5aBZ0cGZ/ArQ5v3RU7u4Xe
         ffBH5yX4ZXZ6AuIHalMWTMCZRyylQ6EIiIhPOx7erEeAcHKqO14Iy9GGNejWLfr6CrYt
         qqGuJMJ7HnCKHqkqQb2C5TmriCioya+7Nul4AlkCeL4U5sqEPDymMYhuZ2+Qk54/BAdS
         hGcw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20251104; t=1779903845; x=1780508645;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;
        bh=9qEcLhasCephgp3AS7VyEnF08Tw7w+64XAN+eU0Mxdw=;
        b=IwAsPDYNTcSKKd64+ufaPgsLp/JOKJLKz8oII8A3dRS7nn2LjuhNBzmr4pqQmSQWCK
         ll2OVAga8XOEgoRdrtxvS806/F2wTUJZhG15FpWV/ZUIMARBwv0EL7zM3ZVZ7Nd7NfHa
         EfWVaAiwAMKjP+KHuzv29KvYpHgi1iNlivAIsM5xPIeipQYA/nHWGGspItkGDct6Brqx
         AzBN+uhWBhGw2SHmuFS9cyhQVcN5rkpMa6NZ7KlwyUoauSWvVlvFDkvGqOrgvnV11JuF
         3zzdfZnE6S15pOtQoihiw7ERDhaR7XoXZya/z+wCqIg+TXjsRxgtWW2WAUfTPt9Jzk4e
         5hVg==
X-Forwarded-Encrypted: i=1;
 AFNElJ879FdiCHmcK0N4UGBdOKHhuRDzKRxzBxmGcNcicjZiVhJzByVU7OYEmrt5HcbmQ8XUStomnQQty/WLf/8=@vger.kernel.org
X-Gm-Message-State: AOJu0Yz3V2TsI3OtoPIKlD/O3cN/nx0TUcP4c4FMsvh+Z+TbgdgvmCml
	2QGKDnuLY7X38wG6U72EVs74t5SLTIiyzYM5nJKG+dweWtkbcda4ggCB114qAd+CC12VtLXM7OT
	yUISvfvZEbH8nZA==
X-Received: from pfkk16.prod.google.com ([2002:aa7:90d0:0:b0:841:9a0c:2108])
 (user=jmattson job=prod-delivery.src-stubby-dispatcher) by
 2002:a05:6a00:4fc1:b0:83e:b47f:8994 with SMTP id
 d2e1a72fcca58-8415f0e87f7mr25477524b3a.6.1779903844354;
 Wed, 27 May 2026 10:44:04 -0700 (PDT)
Date: Wed, 27 May 2026 10:43:45 -0700
In-Reply-To: <20260527174347.2356165-1-jmattson@google.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
Mime-Version: 1.0
References: <20260527174347.2356165-1-jmattson@google.com>
X-Mailer: git-send-email 2.54.0.794.g4f17f83d09-goog
Message-ID: <20260527174347.2356165-4-jmattson@google.com>
Subject: [PATCH v4 3/5] KVM: x86: Remove supports_cpuid_fault() helper
From: Jim Mattson <jmattson@google.com>
To: seanjc@google.com, pbonzini@redhat.com, tglx@kernel.org, mingo@redhat.com,
	bp@alien8.de, dave.hansen@linux.intel.com, x86@kernel.org, hpa@zytor.com,
	shuah@kernel.org, kvm@vger.kernel.org, linux-kernel@vger.kernel.org,
	linux-kselftest@vger.kernel.org, ctpence@google.com, David.Kaplan@amd.com,
	binbin.wu@linux.intel.com
Cc: Jim Mattson <jmattson@google.com>
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

The function, supports_cpuid_fault(), tests specifically for guest support
of Intel's CPUID faulting feature. It does not test for guest support of
AMD's CPUID faulting feature.

To avoid confusion, remove the helper.

Suggested-by: Sean Christopherson <seanjc@google.com>
Signed-off-by: Jim Mattson <jmattson@google.com>
Reviewed-by: Binbin Wu <binbin.wu@linux.intel.com>
---
 arch/x86/kvm/cpuid.h | 5 -----
 arch/x86/kvm/x86.c   | 2 +-
 2 files changed, 1 insertion(+), 6 deletions(-)

diff --git a/arch/x86/kvm/cpuid.h b/arch/x86/kvm/cpuid.h
index bc4a8428b836..95d09ccbf951 100644
--- a/arch/x86/kvm/cpuid.h
+++ b/arch/x86/kvm/cpuid.h
@@ -183,11 +183,6 @@ static inline int guest_cpuid_stepping(struct kvm_vcpu=
 *vcpu)
 	return x86_stepping(best->eax);
 }
=20
-static inline bool supports_cpuid_fault(struct kvm_vcpu *vcpu)
-{
-	return vcpu->arch.msr_platform_info & MSR_PLATFORM_INFO_CPUID_FAULT;
-}
-
 static inline bool cpuid_fault_enabled(struct kvm_vcpu *vcpu)
 {
 	return vcpu->arch.msr_misc_features_enables &
diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c
index 72bd3cddb026..d5a2d794c3c9 100644
--- a/arch/x86/kvm/x86.c
+++ b/arch/x86/kvm/x86.c
@@ -4264,7 +4264,7 @@ int kvm_set_msr_common(struct kvm_vcpu *vcpu, struct =
msr_data *msr_info)
 	case MSR_MISC_FEATURES_ENABLES:
 		if (data & ~MSR_MISC_FEATURES_ENABLES_CPUID_FAULT ||
 		    (data & MSR_MISC_FEATURES_ENABLES_CPUID_FAULT &&
-		     !supports_cpuid_fault(vcpu)))
+		     !(vcpu->arch.msr_platform_info & MSR_PLATFORM_INFO_CPUID_FAULT)))
 			return 1;
 		vcpu->arch.msr_misc_features_enables =3D data;
 		break;
--=20
2.54.0.794.g4f17f83d09-goog
From nobody Mon Jun  8 17:47:14 2026
Received: from mail-pf1-f201.google.com (mail-pf1-f201.google.com
 [209.85.210.201])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id D4E4044DB9D
	for <linux-kernel@vger.kernel.org>; Wed, 27 May 2026 17:44:06 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.210.201
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1779903849; cv=none;
 b=AlM8qvSrOpOvaebePOHXjzmAq7ZTZiWviVqDSFZ0AZ62m/Ry/2gPQnCmAtqccRhlYEUVV1e2z+ddtwH9S6JoubXp7frlcYASwDnBni0TIb0ejR9w1saKL1neFwbwE3yii2UGxs24Zj6e3VqbQh86xklUKfwgzXZwNC9EVz9r7po=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1779903849; c=relaxed/simple;
	bh=g92puMUS5q4qjw4cCB0B3jIHADA2n8iUKrYZu5tW+Vs=;
	h=Date:In-Reply-To:Mime-Version:References:Message-ID:Subject:From:
	 To:Cc:Content-Type;
 b=hvIrVbujxr6dej/TDdh/kP+RkVk99NrHb6WjOErZV9jBVflFK1ayRN1fmk8dI55mFe6sHwdxRR8MXl/S0e1EOs/wW4QUo8C/X0HxT0MnFSilhyoCetbk+qiNjueqBbwwUlxEG7V6RkPfrx+SeCAK8v2sET51wtVfA0wXIeNzd5w=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com;
 spf=pass smtp.mailfrom=flex--jmattson.bounces.google.com;
 dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b=czn7fz4L; arc=none smtp.client-ip=209.85.210.201
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=flex--jmattson.bounces.google.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b="czn7fz4L"
Received: by mail-pf1-f201.google.com with SMTP id
 d2e1a72fcca58-841d02525b5so2095708b3a.0
        for <linux-kernel@vger.kernel.org>;
 Wed, 27 May 2026 10:44:06 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20251104; t=1779903846; x=1780508646;
 darn=vger.kernel.org;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:from:to:cc:subject:date:message-id:reply-to;
        bh=k3wATNCkoFXn3WUzHEjzhnXj8xnV0EDTL1EvmQz7WMw=;
        b=czn7fz4L9v1GLjG5p1O7OX+5XbP14kY/kHZ48DoZ//vtbR/7lN6KRp1crQ42GiyBX4
         ipLIAkNEon6Bv41gRCMhJtwDFRpOIS/809c0nwRkkQmqd5lVXoueRkY0O246NE5LrNdh
         3/otNJMmeNUBlNqEnvVDFz4F+pDJAXi2W0Z4BVXkD0isnXw0H+6KtRxKVM98wZLFGbgW
         PW1WyodesY96RHJV51hBUvJNXJh3W7d7VkIqm8cVlR9mEYl16qIdLkrmFZX3P00vXcqC
         GEC/ZOzkw1Ghtzo8suJjYpwQ5jg/tUp/TWq9FwK81Qii7zadyBAK+2fT0e/vmzi1QgEL
         5wSg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20251104; t=1779903846; x=1780508646;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;
        bh=k3wATNCkoFXn3WUzHEjzhnXj8xnV0EDTL1EvmQz7WMw=;
        b=XYBcvbkSsfHWIFPGzbeQVNlq1ye9rucuxk8QQLYWqa4MvT51q1JYPyjgr7oeRtxG4f
         tzyG0wSbIhCRuJcoSgu650TYX7R2zNwzDp2mCXXswvAuaAVUdo58QyajG5pEXJ4cDppS
         cnHxUKxX+3v7PSr3tCh5PrPVXGqnUZRhl24RuLHNl8GsafkEAqv0dX41cSS4+b8DLQKQ
         1p+WV+keJWMxVIt5cjCuOlEaM9MmTzKjS8mVayGr5Pfgb7ONxXnmJj9RMQ7e0CrVpBnl
         EhZwi44TjdUQ1o9V+BO/6kqE6U06os1oW/net5ReQZd42ovva2i1c7JrJahP5LYS8dbd
         E1CQ==
X-Forwarded-Encrypted: i=1;
 AFNElJ+5RoGJgkkORT5JvDLxMdlukF4u1PybUi3GM+hBfg3BfOOk2dNG6oSCBpzQE/ebVNF/eOf7jU/o3QsKCzc=@vger.kernel.org
X-Gm-Message-State: AOJu0Yxnqt8Y+BBX+dy2/BcFPu4I5R5rmaiT+ZX9jDkRyAe+gv5Bme3+
	EMZTJr67QnSMb885A17COg7vGLTd4jc5RFQi7wPYfIfzEZ3BxBIntyvHeZmoRZWpaKXBW0ihXCN
	IoCx/KCMHAMXLzA==
X-Received: from pfuj10.prod.google.com
 ([2002:a05:6a00:130a:b0:836:6e32:7280])
 (user=jmattson job=prod-delivery.src-stubby-dispatcher) by
 2002:a05:6a00:715:b0:841:69e4:f21b with SMTP id
 d2e1a72fcca58-84169e4f7f5mr15277392b3a.39.1779903845550;
 Wed, 27 May 2026 10:44:05 -0700 (PDT)
Date: Wed, 27 May 2026 10:43:46 -0700
In-Reply-To: <20260527174347.2356165-1-jmattson@google.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
Mime-Version: 1.0
References: <20260527174347.2356165-1-jmattson@google.com>
X-Mailer: git-send-email 2.54.0.794.g4f17f83d09-goog
Message-ID: <20260527174347.2356165-5-jmattson@google.com>
Subject: [PATCH v4 4/5] KVM: x86: Virtualize AMD CPUID faulting
From: Jim Mattson <jmattson@google.com>
To: seanjc@google.com, pbonzini@redhat.com, tglx@kernel.org, mingo@redhat.com,
	bp@alien8.de, dave.hansen@linux.intel.com, x86@kernel.org, hpa@zytor.com,
	shuah@kernel.org, kvm@vger.kernel.org, linux-kernel@vger.kernel.org,
	linux-kselftest@vger.kernel.org, ctpence@google.com, David.Kaplan@amd.com,
	binbin.wu@linux.intel.com
Cc: Jim Mattson <jmattson@google.com>
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

On AMD CPUs, CPUID faulting support is advertised via
CPUID.80000021H:EAX.CpuidUserDis[bit 17] and enabled by setting
HWCR.CpuidUserDis[bit 35].

Advertise the feature to userspace regardless of host CPU support. Allow
writes to HWCR to set bit 35 when the guest CPUID advertises
CpuidUserDis. Update cpuid_fault_enabled() to check HWCR.CpuidUserDis as
well as MSR_FEATURE_ENABLES.CPUID_GP_ON_CPL_GT_0.

Unlike VMX, SVM prioritizes the CPUID intercept over the #GP induced by
CPUID faulting.[1] This behavior has been confirmed on a Turin CPU (F/M/S
1AH/2/1).

Link: https://lore.kernel.org/r/DS7PR12MB82011943131DF5415365E19E940B2@DS7P=
R12MB8201.namprd12.prod.outlook.com [1]
Signed-off-by: Jim Mattson <jmattson@google.com>
---
 arch/x86/include/asm/msr-index.h |  1 +
 arch/x86/kvm/cpuid.c             |  2 +-
 arch/x86/kvm/cpuid.h             |  5 +++--
 arch/x86/kvm/x86.c               | 18 ++++++++++++------
 4 files changed, 17 insertions(+), 9 deletions(-)

diff --git a/arch/x86/include/asm/msr-index.h b/arch/x86/include/asm/msr-in=
dex.h
index a14a0f43e04a..f534f150d1c5 100644
--- a/arch/x86/include/asm/msr-index.h
+++ b/arch/x86/include/asm/msr-index.h
@@ -898,6 +898,7 @@
 #define MSR_K7_HWCR_IRPERF_EN_BIT	30
 #define MSR_K7_HWCR_IRPERF_EN		BIT_ULL(MSR_K7_HWCR_IRPERF_EN_BIT)
 #define MSR_K7_HWCR_CPUID_USER_DIS_BIT	35
+#define MSR_K7_HWCR_CPUID_USER_DIS	BIT_ULL(MSR_K7_HWCR_CPUID_USER_DIS_BIT)
 #define MSR_K7_FID_VID_CTL		0xc0010041
 #define MSR_K7_FID_VID_STATUS		0xc0010042
 #define MSR_K7_HWCR_CPB_DIS_BIT		25
diff --git a/arch/x86/kvm/cpuid.c b/arch/x86/kvm/cpuid.c
index 1c95d1fa3ead..8e5340dd2621 100644
--- a/arch/x86/kvm/cpuid.c
+++ b/arch/x86/kvm/cpuid.c
@@ -1248,7 +1248,7 @@ void kvm_initialize_cpu_caps(void)
 		F(AUTOIBRS),
 		EMULATED_F(NO_SMM_CTL_MSR),
 		/* PrefetchCtlMsr */
-		/* GpOnUserCpuid */
+		EMULATED_F(GP_ON_USER_CPUID),
 		/* EPSF */
 		F(PREFETCHI),
 		F(AVX512_BMM),
diff --git a/arch/x86/kvm/cpuid.h b/arch/x86/kvm/cpuid.h
index 95d09ccbf951..fc96ba86c644 100644
--- a/arch/x86/kvm/cpuid.h
+++ b/arch/x86/kvm/cpuid.h
@@ -185,8 +185,9 @@ static inline int guest_cpuid_stepping(struct kvm_vcpu =
*vcpu)
=20
 static inline bool cpuid_fault_enabled(struct kvm_vcpu *vcpu)
 {
-	return vcpu->arch.msr_misc_features_enables &
-		  MSR_MISC_FEATURES_ENABLES_CPUID_FAULT;
+	return (vcpu->arch.msr_misc_features_enables &
+		MSR_MISC_FEATURES_ENABLES_CPUID_FAULT) ||
+		(vcpu->arch.msr_hwcr & MSR_K7_HWCR_CPUID_USER_DIS);
 }
=20
 static inline bool kvm_is_cpuid_allowed(struct kvm_vcpu *vcpu)
diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c
index d5a2d794c3c9..54c552efb59e 100644
--- a/arch/x86/kvm/x86.c
+++ b/arch/x86/kvm/x86.c
@@ -4002,22 +4002,28 @@ int kvm_set_msr_common(struct kvm_vcpu *vcpu, struc=
t msr_data *msr_info)
 		break;
 	case MSR_EFER:
 		return set_efer(vcpu, msr_info);
-	case MSR_K7_HWCR:
-		data &=3D ~(u64)0x40;	/* ignore flush filter disable */
-		data &=3D ~(u64)0x100;	/* ignore ignne emulation enable */
-		data &=3D ~(u64)0x8;	/* ignore TLB cache disable */
-
+	case MSR_K7_HWCR: {
 		/*
 		 * Allow McStatusWrEn and TscFreqSel. (Linux guests from v3.2
 		 * through at least v6.6 whine if TscFreqSel is clear,
 		 * depending on F/M/S.
 		 */
-		if (data & ~(BIT_ULL(18) | BIT_ULL(24))) {
+		u64 valid =3D BIT_ULL(18) | BIT_ULL(24);
+
+		data &=3D ~(u64)0x40;	/* ignore flush filter disable */
+		data &=3D ~(u64)0x100;	/* ignore ignne emulation enable */
+		data &=3D ~(u64)0x8;	/* ignore TLB cache disable */
+
+		if (guest_cpu_cap_has(vcpu, X86_FEATURE_GP_ON_USER_CPUID))
+			valid |=3D MSR_K7_HWCR_CPUID_USER_DIS;
+
+		if (data & ~valid) {
 			kvm_pr_unimpl_wrmsr(vcpu, msr, data);
 			return 1;
 		}
 		vcpu->arch.msr_hwcr =3D data;
 		break;
+	}
 	case MSR_FAM10H_MMIO_CONF_BASE:
 		if (data !=3D 0) {
 			kvm_pr_unimpl_wrmsr(vcpu, msr, data);
--=20
2.54.0.794.g4f17f83d09-goog
From nobody Mon Jun  8 17:47:14 2026
Received: from mail-pl1-f202.google.com (mail-pl1-f202.google.com
 [209.85.214.202])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 8BB0D4534A3
	for <linux-kernel@vger.kernel.org>; Wed, 27 May 2026 17:44:07 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.214.202
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1779903849; cv=none;
 b=sE+KvfqUBA8RCxwDJj0VsBwvlZK8WFd4yMuKlj/MgBGKYmUiFhcFO0B7Qmm6eHyiKzNaNDCbUL7bcJ3kzusG/AnXrzrhagodvQmajqz5kzem8HQsEwD2Qd2J4IHAsaLcGZO/ACZxXMkcr/FYhTjiSHG2nh9e4s0LJ299UQ2qPfI=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1779903849; c=relaxed/simple;
	bh=77ZuH98Z/7cwSOPku138FSNXa6+3lR22DIlZyZ/iZdU=;
	h=Date:In-Reply-To:Mime-Version:References:Message-ID:Subject:From:
	 To:Cc:Content-Type;
 b=Ha9/GmTx8PMwz9IO4YqEeO5goIiwXFT2JjaWf/T797/MEqxidpc6/kQv8pdmj/Y0pJqbA5cgu2ZZe1ho824m8DOSSXSyGA0XEsBNp5Td07cR61lfI4ets4sk9jL3UwYzFpghyMBuv2ReXPiN7tN0WuP3Jw/cKG013mZ2mi4fya4=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com;
 spf=pass smtp.mailfrom=flex--jmattson.bounces.google.com;
 dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b=K73a8olv; arc=none smtp.client-ip=209.85.214.202
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=reject dis=none) header.from=google.com
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=flex--jmattson.bounces.google.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=google.com header.i=@google.com
 header.b="K73a8olv"
Received: by mail-pl1-f202.google.com with SMTP id
 d9443c01a7336-2baf7378ad0so127433335ad.0
        for <linux-kernel@vger.kernel.org>;
 Wed, 27 May 2026 10:44:07 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20251104; t=1779903847; x=1780508647;
 darn=vger.kernel.org;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:from:to:cc:subject:date:message-id:reply-to;
        bh=O7VlkQudn+G7xM0z/ouPzrwYiSQV/Sy22jTIFn2bz+c=;
        b=K73a8olvk3exIXE3XtX0zm8DdFXDZEh21iOfYy4tWd5kxu8HRSfSBnCfVoAeIDlozU
         q9ER81R+SDzc9nxC5PTKzTLGqRxrjpcFvdufSziAWcD7yjTcJfFeUFuiGMQgNibuDpIy
         NwIClkkIxE6uFptUtLW62Zl2Gerfxt6b0nNEd/VX5ApeVHunjMbHcWfD1+7ef2T6rbiO
         Beag8V9xjM8zgc/LsubV9EDbd3OUN1J5K1cAZyDgVHdZCieCC0J1U8WKOlEQmcKs3ych
         JONQgrEm19EnklUI3y/vPKLXohQczQvp6IWA09svUUopLhDUdNsVNstBwcAyEn07nAmR
         IXFA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20251104; t=1779903847; x=1780508647;
        h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
         :date:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;
        bh=O7VlkQudn+G7xM0z/ouPzrwYiSQV/Sy22jTIFn2bz+c=;
        b=RVZBCXirScCahwB/0VEZ5LZdgjthzjmWHhmx8buL4HEX6WKa8fPFYcjYFToBL81PKO
         bMt6hI6+GDA84Ca1ldPMhNjkc94ALd7zVSzNvTlrgcTwfsXeid4+WLToozn6ySJV/E2D
         UGlSTnWY1Dx4+Wq9CkmtlBf8twtT10m/R4gf0lV1I1DoBbwD3eO/b4NxmG/MReWcBhW9
         9K8f2pBqZvstc7b3KXGP980WGpvkOAcX7/vgnrirDyYHBPRbbSRLlOV9Rlx8A23ixc5t
         OS5lnP41ZfWmI8eEV4sN/H29RLpJNXjWf0tM9lv7pK7QM0f1Bb8ehcxHrI0Oc7AbTBjt
         R0xg==
X-Forwarded-Encrypted: i=1;
 AFNElJ8fLtwrw9c8Y/KNHkSpSlx2g1idLuk4mA9IYq4/Xes6wr9A5ejzF+B3Kig4LSxpkkKyyqSUdqrq+priztM=@vger.kernel.org
X-Gm-Message-State: AOJu0YydIHQ/pcyMODgfpdk2Dbe3z4peu+mV6hVITODEDQVQgFKQm3X2
	gvwIP0dgXnf9tJzHff9OlESwkeHP9FcyPpz1bmc/XpYsfB9iVX7hha5lp5CEUD/fMu9+ydVDjB4
	VZ7YUyOTSF1Gpqw==
X-Received: from plkz6.prod.google.com ([2002:a17:902:7086:b0:2b2:488e:b71])
 (user=jmattson job=prod-delivery.src-stubby-dispatcher) by
 2002:a17:902:ebcd:b0:2b7:88d8:efde with SMTP id
 d9443c01a7336-2beb0365d7bmr270523025ad.7.1779903846519;
 Wed, 27 May 2026 10:44:06 -0700 (PDT)
Date: Wed, 27 May 2026 10:43:47 -0700
In-Reply-To: <20260527174347.2356165-1-jmattson@google.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
Mime-Version: 1.0
References: <20260527174347.2356165-1-jmattson@google.com>
X-Mailer: git-send-email 2.54.0.794.g4f17f83d09-goog
Message-ID: <20260527174347.2356165-6-jmattson@google.com>
Subject: [PATCH v4 5/5] KVM: selftests: Update hwcr_msr_test for CPUID
 faulting bit
From: Jim Mattson <jmattson@google.com>
To: seanjc@google.com, pbonzini@redhat.com, tglx@kernel.org, mingo@redhat.com,
	bp@alien8.de, dave.hansen@linux.intel.com, x86@kernel.org, hpa@zytor.com,
	shuah@kernel.org, kvm@vger.kernel.org, linux-kernel@vger.kernel.org,
	linux-kselftest@vger.kernel.org, ctpence@google.com, David.Kaplan@amd.com,
	binbin.wu@linux.intel.com
Cc: Jim Mattson <jmattson@google.com>
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

Add BIT_ULL(35) (CpuidUserDis) to the valid mask in hwcr_msr_test, now that
KVM accepts writes to this bit when the guest CPUID advertises
CpuidUserDis.

Signed-off-by: Jim Mattson <jmattson@google.com>
---
 tools/testing/selftests/kvm/include/x86/processor.h | 1 +
 tools/testing/selftests/kvm/x86/hwcr_msr_test.c     | 9 +++++++--
 2 files changed, 8 insertions(+), 2 deletions(-)

diff --git a/tools/testing/selftests/kvm/include/x86/processor.h b/tools/te=
sting/selftests/kvm/include/x86/processor.h
index 06878e7c7347..513e4a1075fa 100644
--- a/tools/testing/selftests/kvm/include/x86/processor.h
+++ b/tools/testing/selftests/kvm/include/x86/processor.h
@@ -226,6 +226,7 @@ struct kvm_x86_cpu_feature {
 #define X86_FEATURE_SEV			KVM_X86_CPU_FEATURE(0x8000001F, 0, EAX, 1)
 #define X86_FEATURE_SEV_ES		KVM_X86_CPU_FEATURE(0x8000001F, 0, EAX, 3)
 #define X86_FEATURE_SEV_SNP		KVM_X86_CPU_FEATURE(0x8000001F, 0, EAX, 4)
+#define	X86_FEATURE_GP_ON_USER_CPUID	KVM_X86_CPU_FEATURE(0x80000021, 0, EA=
X, 17)
 #define	X86_FEATURE_PERFMON_V2		KVM_X86_CPU_FEATURE(0x80000022, 0, EAX, 0)
 #define	X86_FEATURE_LBR_PMC_FREEZE	KVM_X86_CPU_FEATURE(0x80000022, 0, EAX,=
 2)
=20
diff --git a/tools/testing/selftests/kvm/x86/hwcr_msr_test.c b/tools/testin=
g/selftests/kvm/x86/hwcr_msr_test.c
index 8e20a03b3329..53b7971aa072 100644
--- a/tools/testing/selftests/kvm/x86/hwcr_msr_test.c
+++ b/tools/testing/selftests/kvm/x86/hwcr_msr_test.c
@@ -11,12 +11,17 @@
 void test_hwcr_bit(struct kvm_vcpu *vcpu, unsigned int bit)
 {
 	const u64 ignored =3D BIT_ULL(3) | BIT_ULL(6) | BIT_ULL(8);
-	const u64 valid =3D BIT_ULL(18) | BIT_ULL(24);
-	const u64 legal =3D ignored | valid;
+	u64 valid =3D BIT_ULL(18) | BIT_ULL(24);
 	u64 val =3D BIT_ULL(bit);
 	u64 actual;
+	u64 legal;
 	int r;
=20
+	if (kvm_cpu_has(X86_FEATURE_GP_ON_USER_CPUID))
+		valid |=3D BIT_ULL(35);
+
+	legal =3D ignored | valid;
+
 	r =3D _vcpu_set_msr(vcpu, MSR_K7_HWCR, val);
 	TEST_ASSERT(val & ~legal ? !r : r =3D=3D 1,
 		    "Expected KVM_SET_MSRS(MSR_K7_HWCR) =3D 0x%lx to %s",
--=20
2.54.0.794.g4f17f83d09-goog