From: Jon Kohler <jon@nutanix.com>
To: Sean Christopherson <seanjc@google.com>,
Paolo Bonzini <pbonzini@redhat.com>,
Thomas Gleixner <tglx@linutronix.de>,
Ingo Molnar <mingo@redhat.com>, Borislav Petkov <bp@alien8.de>,
Dave Hansen <dave.hansen@linux.intel.com>,
x86@kernel.org, "H. Peter Anvin" <hpa@zytor.com>,
kvm@vger.kernel.org, linux-kernel@vger.kernel.org
Cc: Jon Kohler <jon@nutanix.com>,
Emanuele Giuseppe Esposito <eesposit@redhat.com>,
Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
Subject: [PATCH] KVM: x86: Expose ARCH_CAP_FB_CLEAR when invulnerable to MDS
Date: Mon, 31 Mar 2025 21:49:31 -0700 [thread overview]
Message-ID: <20250401044931.793203-1-jon@nutanix.com> (raw)
Expose FB_CLEAR in arch_capabilities for certain MDS-invulnerable cases
to support live migration from older hardware (e.g., Cascade Lake, Ice
Lake) to newer hardware (e.g., Sapphire Rapids or higher). This ensures
compatibility when user space has previously configured vCPUs to see
FB_CLEAR (ARCH_CAPABILITIES Bit 17).
Newer hardware sets the following bits but does not set FB_CLEAR, which
can prevent user space from configuring a matching setup:
ARCH_CAP_MDS_NO
ARCH_CAP_TAA_NO
ARCH_CAP_PSDP_NO
ARCH_CAP_FBSDP_NO
ARCH_CAP_SBDR_SSDP_NO
This change has minimal impact, as these bit combinations already mark
the host as MMIO immune (via arch_cap_mmio_immune()) and set
disable_fb_clear in vmx_update_fb_clear_dis(), resulting in no
additional overhead.
Cc: Emanuele Giuseppe Esposito <eesposit@redhat.com>
Cc: Paolo Bonzini <pbonzini@redhat.com>
Cc: Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
Signed-off-by: Jon Kohler <jon@nutanix.com>
---
arch/x86/kvm/x86.c | 14 ++++++++++++++
1 file changed, 14 insertions(+)
diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c
index c841817a914a..2a4337aa78cd 100644
--- a/arch/x86/kvm/x86.c
+++ b/arch/x86/kvm/x86.c
@@ -1641,6 +1641,20 @@ static u64 kvm_get_arch_capabilities(void)
if (!boot_cpu_has_bug(X86_BUG_GDS) || gds_ucode_mitigated())
data |= ARCH_CAP_GDS_NO;
+ /*
+ * User space might set FB_CLEAR when starting a vCPU on a system
+ * that does not enumerate FB_CLEAR but is also invulnerable to
+ * other various MDS related bugs. To allow live migration from
+ * hosts that do implement FB_CLEAR, leave it enabled.
+ */
+ if ((data & ARCH_CAP_MDS_NO) &&
+ (data & ARCH_CAP_TAA_NO) &&
+ (data & ARCH_CAP_PSDP_NO) &&
+ (data & ARCH_CAP_FBSDP_NO) &&
+ (data & ARCH_CAP_SBDR_SSDP_NO)) {
+ data |= ARCH_CAP_FB_CLEAR;
+ }
+
return data;
}
--
2.43.0
next reply other threads:[~2025-04-01 4:22 UTC|newest]
Thread overview: 3+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-04-01 4:49 Jon Kohler [this message]
2025-04-02 13:36 ` [PATCH] KVM: x86: Expose ARCH_CAP_FB_CLEAR when invulnerable to MDS Sean Christopherson
2025-04-02 13:46 ` Jon Kohler
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20250401044931.793203-1-jon@nutanix.com \
--to=jon@nutanix.com \
--cc=bp@alien8.de \
--cc=dave.hansen@linux.intel.com \
--cc=eesposit@redhat.com \
--cc=hpa@zytor.com \
--cc=kvm@vger.kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=mingo@redhat.com \
--cc=pawan.kumar.gupta@linux.intel.com \
--cc=pbonzini@redhat.com \
--cc=seanjc@google.com \
--cc=tglx@linutronix.de \
--cc=x86@kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox