From: Sean Christopherson <sean.j.christopherson@intel.com>
To: Oliver Upton <oupton@google.com>
Cc: kvm@vger.kernel.org, Paolo Bonzini <pbonzini@redhat.com>,
Jim Mattson <jmattson@google.com>,
Peter Shier <pshier@google.com>
Subject: Re: [PATCH v2 3/5] KVM: x86: Deliver exception payload on KVM_GET_VCPU_EVENTS
Date: Mon, 3 Feb 2020 11:48:06 -0800 [thread overview]
Message-ID: <20200203194806.GC19638@linux.intel.com> (raw)
In-Reply-To: <20200128092715.69429-4-oupton@google.com>
On Tue, Jan 28, 2020 at 01:27:13AM -0800, Oliver Upton wrote:
> KVM doesn't utilize exception payloads by default, as this behavior
> diverges from the expectations of the userspace API. However, this
> constraint only applies if KVM is servicing a KVM_GET_VCPU_EVENTS ioctl
> before delivering the exception.
>
> Use exception payloads unconditionally if the vcpu is in guest mode.
This sentence is super confusing. It doesn't align with the code, which
is clearly handling "not is in guest mode". And KVM already uses payloads
unconditionally, it's only the deferring behavior that is changing.
> Deliver the exception payload before completing a KVM_GET_VCPU_EVENTS
> to ensure API compatibility.
>
> Signed-off-by: Oliver Upton <oupton@google.com>
> ---
> arch/x86/kvm/x86.c | 29 ++++++++++++++++-------------
> 1 file changed, 16 insertions(+), 13 deletions(-)
>
> diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c
> index 7a341c0c978a..9f080101618c 100644
> --- a/arch/x86/kvm/x86.c
> +++ b/arch/x86/kvm/x86.c
> @@ -497,19 +497,7 @@ static void kvm_multiple_exception(struct kvm_vcpu *vcpu,
> vcpu->arch.exception.error_code = error_code;
> vcpu->arch.exception.has_payload = has_payload;
> vcpu->arch.exception.payload = payload;
> - /*
> - * In guest mode, payload delivery should be deferred,
> - * so that the L1 hypervisor can intercept #PF before
> - * CR2 is modified (or intercept #DB before DR6 is
> - * modified under nVMX). However, for ABI
> - * compatibility with KVM_GET_VCPU_EVENTS and
> - * KVM_SET_VCPU_EVENTS, we can't delay payload
> - * delivery unless userspace has enabled this
> - * functionality via the per-VM capability,
> - * KVM_CAP_EXCEPTION_PAYLOAD.
> - */
> - if (!vcpu->kvm->arch.exception_payload_enabled ||
> - !is_guest_mode(vcpu))
> + if (!is_guest_mode(vcpu))
> kvm_deliver_exception_payload(vcpu);
> return;
> }
> @@ -3790,6 +3778,21 @@ static void kvm_vcpu_ioctl_x86_get_vcpu_events(struct kvm_vcpu *vcpu,
> {
> process_nmi(vcpu);
>
> + /*
> + * In guest mode, payload delivery should be deferred,
> + * so that the L1 hypervisor can intercept #PF before
> + * CR2 is modified (or intercept #DB before DR6 is
> + * modified under nVMX). However, for ABI
> + * compatibility with KVM_GET_VCPU_EVENTS and
> + * KVM_SET_VCPU_EVENTS, we can't delay payload
> + * delivery unless userspace has enabled this
> + * functionality via the per-VM capability,
> + * KVM_CAP_EXCEPTION_PAYLOAD.
> + */
This comment needs to be rewritten. It makes sense in the context of
kvm_multiple_exception(), here it's just confusing.
> + if (!vcpu->kvm->arch.exception_payload_enabled &&
> + vcpu->arch.exception.pending && vcpu->arch.exception.has_payload)
> + kvm_deliver_exception_payload(vcpu);
Crushing CR2/DR6 just because userspace is retrieving info can't possibly
be correct. If it somehow is correct then this needs big fat comment.
What is the ABI compatibility issue? E.g. can KVM simply hide the payload
info on KVM_GET_VCPU_EVENT and then drop it on KVM_SET_VCPU_EVENTS?
> +
> /*
> * The API doesn't provide the instruction length for software
> * exceptions, so don't report them. As long as the guest RIP
> --
> 2.25.0.341.g760bfbb309-goog
>
next prev parent reply other threads:[~2020-02-03 19:48 UTC|newest]
Thread overview: 15+ messages / expand[flat|nested] mbox.gz Atom feed top
2020-01-28 9:27 [PATCH v2 0/5] Handle monitor trap flag during instruction emulation Oliver Upton
2020-01-28 9:27 ` [PATCH v2 1/5] KVM: x86: Mask off reserved bit from #DB exception payload Oliver Upton
2020-01-28 9:27 ` [PATCH v2 2/5] KVM: nVMX: Handle pending #DB when injecting INIT VM-exit Oliver Upton
2020-02-03 19:13 ` Sean Christopherson
2020-02-03 23:00 ` Sean Christopherson
2020-01-28 9:27 ` [PATCH v2 3/5] KVM: x86: Deliver exception payload on KVM_GET_VCPU_EVENTS Oliver Upton
2020-02-03 19:48 ` Sean Christopherson [this message]
2020-01-28 9:27 ` [PATCH v2 4/5] KVM: nVMX: Emulate MTF when performing instruction emulation Oliver Upton
2020-02-03 22:58 ` Sean Christopherson
2020-02-06 10:42 ` Oliver Upton
2021-08-13 0:23 ` Jim Mattson
2021-08-13 16:35 ` Sean Christopherson
2021-08-13 17:03 ` Jim Mattson
2020-01-28 9:27 ` [kvm-unit-tests PATCH v2 5/5] x86: VMX: Add tests for monitor trap flag Oliver Upton
2020-01-28 9:39 ` [PATCH v2 0/5] Handle monitor trap flag during instruction emulation Oliver Upton
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20200203194806.GC19638@linux.intel.com \
--to=sean.j.christopherson@intel.com \
--cc=jmattson@google.com \
--cc=kvm@vger.kernel.org \
--cc=oupton@google.com \
--cc=pbonzini@redhat.com \
--cc=pshier@google.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox