From mboxrd@z Thu Jan  1 00:00:00 1970
From: Jun Nakajima <jun.nakajima@intel.com>
Subject: [PATCH v3 08/13] nEPT: Some additional comments
Date: Wed,  8 May 2013 17:53:20 -0700
Message-ID: <1368060805-2790-8-git-send-email-jun.nakajima@intel.com>
References: <1368060805-2790-1-git-send-email-jun.nakajima@intel.com>
 <1368060805-2790-2-git-send-email-jun.nakajima@intel.com>
 <1368060805-2790-3-git-send-email-jun.nakajima@intel.com>
 <1368060805-2790-4-git-send-email-jun.nakajima@intel.com>
 <1368060805-2790-5-git-send-email-jun.nakajima@intel.com>
 <1368060805-2790-6-git-send-email-jun.nakajima@intel.com>
 <1368060805-2790-7-git-send-email-jun.nakajima@intel.com>
To: kvm@vger.kernel.org
Return-path: <kvm-owner@vger.kernel.org>
Received: from mail-da0-f46.google.com ([209.85.210.46]:60798 "EHLO
	mail-da0-f46.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
	with ESMTP id S1755154Ab3EIAxo (ORCPT <rfc822;kvm@vger.kernel.org>);
	Wed, 8 May 2013 20:53:44 -0400
Received: by mail-da0-f46.google.com with SMTP id e20so1270871dak.5
        for <kvm@vger.kernel.org>; Wed, 08 May 2013 17:53:44 -0700 (PDT)
Received: from localhost (c-98-207-34-191.hsd1.ca.comcast.net. [98.207.34.191])
        by mx.google.com with ESMTPSA id vz8sm1185883pac.20.2013.05.08.17.53.42
        for <kvm@vger.kernel.org>
        (version=TLSv1.2 cipher=RC4-SHA bits=128/128);
        Wed, 08 May 2013 17:53:43 -0700 (PDT)
In-Reply-To: <1368060805-2790-7-git-send-email-jun.nakajima@intel.com>
Sender: kvm-owner@vger.kernel.org
List-ID: <kvm.vger.kernel.org>

Some additional comments to preexisting code:
Explain who (L0 or L1) handles EPT violation and misconfiguration exits.
Don't mention "shadow on either EPT or shadow" as the only two options.

Signed-off-by: Nadav Har'El <nyh@il.ibm.com>
Signed-off-by: Jun Nakajima <jun.nakajima@intel.com>
Signed-off-by: Xinhao Xu <xinhao.xu@intel.com>
---
 arch/x86/kvm/vmx.c | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/arch/x86/kvm/vmx.c b/arch/x86/kvm/vmx.c
index db8df4c..17d8b89 100644
--- a/arch/x86/kvm/vmx.c
+++ b/arch/x86/kvm/vmx.c
@@ -6534,7 +6534,20 @@ static bool nested_vmx_exit_handled(struct kvm_vcpu *vcpu)
 		return nested_cpu_has2(vmcs12,
 			SECONDARY_EXEC_VIRTUALIZE_APIC_ACCESSES);
 	case EXIT_REASON_EPT_VIOLATION:
+		/*
+		 * L0 always deals with the EPT violation. If nested EPT is
+		 * used, and the nested mmu code discovers that the address is
+		 * missing in the guest EPT table (EPT12), the EPT violation
+		 * will be injected with nested_ept_inject_page_fault()
+		 */
+		return 0;
 	case EXIT_REASON_EPT_MISCONFIG:
+		/*
+		 * L2 never uses directly L1's EPT, but rather L0's own EPT
+		 * table (shadow on EPT) or a merged EPT table that L0 built
+		 * (EPT on EPT). So any problems with the structure of the
+		 * table is L0's fault.
+		 */
 		return 0;
 	case EXIT_REASON_PREEMPTION_TIMER:
 		return vmcs12->pin_based_vm_exec_control &
-- 
1.8.1.2