From: Magnus Kulke <magnuskulke@linux.microsoft.com>
To: qemu-devel@nongnu.org
Cc: kvm@vger.kernel.org, "Magnus Kulke" <magnuskulke@microsoft.com>,
"Wei Liu" <liuwe@microsoft.com>,
"Michael S. Tsirkin" <mst@redhat.com>,
"Cédric Le Goater" <clg@redhat.com>,
"Zhao Liu" <zhao1.liu@intel.com>,
"Richard Henderson" <richard.henderson@linaro.org>,
"Paolo Bonzini" <pbonzini@redhat.com>,
"Wei Liu" <wei.liu@kernel.org>,
"Magnus Kulke" <magnuskulke@linux.microsoft.com>,
"Alex Williamson" <alex@shazbot.org>,
"Marcel Apfelbaum" <marcel.apfelbaum@gmail.com>,
"Philippe Mathieu-Daudé" <philmd@linaro.org>,
"Marcelo Tosatti" <mtosatti@redhat.com>
Subject: [PATCH 24/34] target/i386/mshv: migrate SIMP and SIEFP state
Date: Fri, 17 Apr 2026 12:56:08 +0200 [thread overview]
Message-ID: <20260417105618.3621-25-magnuskulke@linux.microsoft.com> (raw)
In-Reply-To: <20260417105618.3621-1-magnuskulke@linux.microsoft.com>
This part SynIC state is retrieved from the hypervisor via aligned state
pages:
- Add new synic source file
- Centralize the synic_enabled() check
- r/w pages from the hyper via aligned pages
- only handle pages when synic is enabled
- add buffers for migration to VM state
Signed-off-by: Magnus Kulke <magnuskulke@linux.microsoft.com>
---
include/system/mshv_int.h | 7 ++
target/i386/cpu.h | 5 ++
target/i386/machine.c | 26 ++++++
target/i386/mshv/meson.build | 1 +
target/i386/mshv/mshv-cpu.c | 64 +++++++++++++++
target/i386/mshv/msr.c | 7 +-
target/i386/mshv/synic.c | 155 +++++++++++++++++++++++++++++++++++
7 files changed, 260 insertions(+), 5 deletions(-)
create mode 100644 target/i386/mshv/synic.c
diff --git a/include/system/mshv_int.h b/include/system/mshv_int.h
index 29b363e73e..80df4030c5 100644
--- a/include/system/mshv_int.h
+++ b/include/system/mshv_int.h
@@ -119,4 +119,11 @@ int mshv_init_msrs(const CPUState *cpu);
int mshv_get_msrs(CPUState *cpu);
int mshv_set_msrs(const CPUState *cpu);
+/* synic */
+int mshv_get_simp(int cpu_fd, uint8_t *page);
+int mshv_set_simp(int cpu_fd, const uint8_t *page);
+int mshv_get_siefp(int cpu_fd, uint8_t *page);
+int mshv_set_siefp(int cpu_fd, const uint8_t *page);
+bool mshv_synic_enabled(const CPUState *cpu);
+
#endif
diff --git a/target/i386/cpu.h b/target/i386/cpu.h
index 0b539155c4..d010d26146 100644
--- a/target/i386/cpu.h
+++ b/target/i386/cpu.h
@@ -33,6 +33,7 @@
#include "qemu/cpu-float.h"
#include "qemu/timer.h"
#include "standard-headers/asm-x86/kvm_para.h"
+#include "hw/hyperv/hvgdk_mini.h"
#define XEN_NR_VIRQS 24
@@ -2291,6 +2292,10 @@ typedef struct CPUArchState {
#if defined(CONFIG_HVF) || defined(CONFIG_MSHV) || defined(CONFIG_WHPX)
void *emu_mmio_buf;
#endif
+#if defined(CONFIG_MSHV)
+ uint8_t hv_simp_page[HV_HYP_PAGE_SIZE];
+ uint8_t hv_siefp_page[HV_HYP_PAGE_SIZE];
+#endif
uint64_t mcg_cap;
uint64_t mcg_ctl;
diff --git a/target/i386/machine.c b/target/i386/machine.c
index 48a2a4b319..f94cc544b3 100644
--- a/target/i386/machine.c
+++ b/target/i386/machine.c
@@ -952,6 +952,29 @@ static const VMStateDescription vmstate_msr_hyperv_reenlightenment = {
}
};
+#ifdef CONFIG_MSHV
+static bool mshv_synic_vp_state_needed(void *opaque)
+{
+ X86CPU *cpu = opaque;
+ CPUX86State *env = &cpu->env;
+
+ /* Only migrate SIMP/SIEFP if SynIC is enabled */
+ return env->msr_hv_synic_control & 1;
+}
+
+static const VMStateDescription vmstate_mshv_synic_vp_state = {
+ .name = "cpu/mshv_synic_vp_state",
+ .version_id = 1,
+ .minimum_version_id = 1,
+ .needed = mshv_synic_vp_state_needed,
+ .fields = (const VMStateField[]) {
+ VMSTATE_BUFFER(env.hv_simp_page, X86CPU),
+ VMSTATE_BUFFER(env.hv_siefp_page, X86CPU),
+ VMSTATE_END_OF_LIST()
+ }
+};
+#endif
+
static bool avx512_needed(void *opaque)
{
X86CPU *cpu = opaque;
@@ -1916,6 +1939,9 @@ const VMStateDescription vmstate_x86_cpu = {
&vmstate_cet,
#ifdef TARGET_X86_64
&vmstate_apx,
+#endif
+#ifdef CONFIG_MSHV
+ &vmstate_mshv_synic_vp_state,
#endif
NULL
}
diff --git a/target/i386/mshv/meson.build b/target/i386/mshv/meson.build
index f44e84688d..a847a6c74c 100644
--- a/target/i386/mshv/meson.build
+++ b/target/i386/mshv/meson.build
@@ -4,6 +4,7 @@ i386_mshv_ss.add(files(
'mshv-apic.c',
'mshv-cpu.c',
'msr.c',
+ 'synic.c',
))
i386_system_ss.add_all(when: 'CONFIG_MSHV', if_true: i386_mshv_ss)
diff --git a/target/i386/mshv/mshv-cpu.c b/target/i386/mshv/mshv-cpu.c
index 760fcfe8da..36549857ae 100644
--- a/target/i386/mshv/mshv-cpu.c
+++ b/target/i386/mshv/mshv-cpu.c
@@ -128,6 +128,33 @@ static int get_lapic(CPUState *cpu)
return 0;
}
+static int get_synic_state(CPUState *cpu)
+{
+ X86CPU *x86cpu = X86_CPU(cpu);
+ CPUX86State *env = &x86cpu->env;
+ int cpu_fd = mshv_vcpufd(cpu);
+ int ret;
+
+ /* SIMP/SIEFP can only be read when SynIC is enabled */
+ if (!mshv_synic_enabled(cpu)) {
+ return 0;
+ }
+
+ ret = mshv_get_simp(cpu_fd, env->hv_simp_page);
+ if (ret < 0) {
+ error_report("failed to get simp state");
+ return -1;
+ }
+
+ ret = mshv_get_siefp(cpu_fd, env->hv_siefp_page);
+ if (ret < 0) {
+ error_report("failed to get siefp state");
+ return -1;
+ }
+
+ return 0;
+}
+
static void populate_fpu(const hv_register_assoc *assocs, X86CPU *x86cpu)
{
union hv_register_value value;
@@ -585,6 +612,11 @@ int mshv_arch_load_vcpu_state(CPUState *cpu)
return ret;
}
+ ret = get_synic_state(cpu);
+ if (ret < 0) {
+ return ret;
+ }
+
return 0;
}
@@ -1000,6 +1032,33 @@ static int set_lapic(const CPUState *cpu)
return 0;
}
+static int set_synic_state(const CPUState *cpu)
+{
+ X86CPU *x86cpu = X86_CPU(cpu);
+ CPUX86State *env = &x86cpu->env;
+ int cpu_fd = mshv_vcpufd(cpu);
+ int ret;
+
+ /* SIMP/SIEFP can only be written when SynIC is enabled */
+ if (!mshv_synic_enabled(cpu)) {
+ return 0;
+ }
+
+ ret = mshv_set_simp(cpu_fd, env->hv_simp_page);
+ if (ret < 0) {
+ error_report("failed to set simp state");
+ return -1;
+ }
+
+ ret = mshv_set_siefp(cpu_fd, env->hv_siefp_page);
+ if (ret < 0) {
+ error_report("failed to set siefp state");
+ return -1;
+ }
+
+ return 0;
+}
+
int mshv_arch_store_vcpu_state(const CPUState *cpu)
{
int ret;
@@ -1036,6 +1095,11 @@ int mshv_arch_store_vcpu_state(const CPUState *cpu)
return ret;
}
+ ret = set_synic_state(cpu);
+ if (ret < 0) {
+ return ret;
+ }
+
return 0;
}
diff --git a/target/i386/mshv/msr.c b/target/i386/mshv/msr.c
index b985500797..a2d48249e9 100644
--- a/target/i386/mshv/msr.c
+++ b/target/i386/mshv/msr.c
@@ -334,7 +334,6 @@ int mshv_get_msrs(CPUState *cpu)
size_t i, j;
uint32_t name;
X86CPU *x86cpu = X86_CPU(cpu);
- bool synic_enabled;
set_hv_name_in_assocs(assocs, n_assocs);
@@ -362,8 +361,7 @@ int mshv_get_msrs(CPUState *cpu)
store_in_env(cpu, assocs, n_assocs);
/* Read SINT MSRs only if SynIC is enabled */
- synic_enabled = x86cpu->env.msr_hv_synic_control & 1;
- if (synic_enabled) {
+ if (mshv_synic_enabled(cpu)) {
QEMU_BUILD_BUG_ON(MSHV_MSR_TOTAL_COUNT < HV_SINT_COUNT);
for (i = 0; i < HV_SINT_COUNT; i++) {
@@ -417,7 +415,6 @@ int mshv_set_msrs(const CPUState *cpu)
int ret;
size_t i, j;
X86CPU *x86cpu = X86_CPU(cpu);
- bool synic_enabled = x86cpu->env.msr_hv_synic_control & 1;
load_from_env(cpu, assocs, n_assocs);
@@ -451,7 +448,7 @@ int mshv_set_msrs(const CPUState *cpu)
}
/* SINT MSRs can only be written if SCONTROL has been set, so we split */
- if (synic_enabled) {
+ if (mshv_synic_enabled(cpu)) {
QEMU_BUILD_BUG_ON(MSHV_MSR_TOTAL_COUNT < HV_SINT_COUNT);
for (i = 0; i < HV_SINT_COUNT; i++) {
diff --git a/target/i386/mshv/synic.c b/target/i386/mshv/synic.c
new file mode 100644
index 0000000000..8f9fee6ed7
--- /dev/null
+++ b/target/i386/mshv/synic.c
@@ -0,0 +1,155 @@
+/*
+ * QEMU MSHV SynIC support
+ *
+ * Copyright Microsoft, Corp. 2026
+ *
+ * Authors: Magnus Kulke <magnuskulke@microsoft.com>
+ *
+ * SPDX-License-Identifier: GPL-2.0-or-later
+ */
+
+#include "qemu/osdep.h"
+#include "qemu/memalign.h"
+#include "qemu/error-report.h"
+
+#include "system/mshv.h"
+#include "system/mshv_int.h"
+
+#include "linux/mshv.h"
+#include "hw/hyperv/hvgdk_mini.h"
+#include "cpu.h"
+
+#include <sys/ioctl.h>
+
+bool mshv_synic_enabled(const CPUState *cpu)
+{
+ X86CPU *x86cpu = X86_CPU(cpu);
+
+ return x86cpu->env.msr_hv_synic_control & 1;
+}
+
+static int get_vp_state(int cpu_fd, struct mshv_get_set_vp_state *state)
+{
+ int ret;
+
+ ret = ioctl(cpu_fd, MSHV_GET_VP_STATE, state);
+ if (ret < 0) {
+ error_report("failed to get vp state: %s", strerror(errno));
+ return -1;
+ }
+
+ return 0;
+}
+
+static int set_vp_state(int cpu_fd, const struct mshv_get_set_vp_state *state)
+{
+ int ret;
+
+ ret = ioctl(cpu_fd, MSHV_SET_VP_STATE, state);
+ if (ret < 0) {
+ error_report("failed to set vp state: %s", strerror(errno));
+ return -1;
+ }
+
+ return 0;
+}
+
+int mshv_get_simp(int cpu_fd, uint8_t *page)
+{
+ int ret;
+ void *buffer;
+ struct mshv_get_set_vp_state args = {0};
+
+ buffer = qemu_memalign(HV_HYP_PAGE_SIZE, HV_HYP_PAGE_SIZE);
+ args.buf_ptr = (uint64_t)buffer;
+ args.buf_sz = HV_HYP_PAGE_SIZE;
+ args.type = MSHV_VP_STATE_SIMP;
+
+ ret = get_vp_state(cpu_fd, &args);
+
+ if (ret < 0) {
+ qemu_vfree(buffer);
+ error_report("failed to get simp");
+ return -1;
+ }
+
+ memcpy(page, buffer, HV_HYP_PAGE_SIZE);
+ qemu_vfree(buffer);
+
+ return 0;
+}
+
+int mshv_set_simp(int cpu_fd, const uint8_t *page)
+{
+ int ret;
+ void *buffer;
+ struct mshv_get_set_vp_state args = {0};
+
+ buffer = qemu_memalign(HV_HYP_PAGE_SIZE, HV_HYP_PAGE_SIZE);
+ args.buf_ptr = (uint64_t)buffer;
+ args.buf_sz = HV_HYP_PAGE_SIZE;
+ args.type = MSHV_VP_STATE_SIMP;
+
+ assert(page);
+ memcpy(buffer, page, HV_HYP_PAGE_SIZE);
+
+ ret = set_vp_state(cpu_fd, &args);
+ qemu_vfree(buffer);
+
+ if (ret < 0) {
+ error_report("failed to set simp");
+ return -1;
+ }
+
+ return 0;
+}
+
+int mshv_get_siefp(int cpu_fd, uint8_t *page)
+{
+ int ret;
+ void *buffer;
+ struct mshv_get_set_vp_state args = {0};
+
+ buffer = qemu_memalign(HV_HYP_PAGE_SIZE, HV_HYP_PAGE_SIZE);
+ args.buf_ptr = (uint64_t)buffer;
+ args.buf_sz = HV_HYP_PAGE_SIZE;
+ args.type = MSHV_VP_STATE_SIEFP,
+
+ ret = get_vp_state(cpu_fd, &args);
+
+ if (ret < 0) {
+ qemu_vfree(buffer);
+ error_report("failed to get siefp");
+ return -1;
+ }
+
+ memcpy(page, buffer, HV_HYP_PAGE_SIZE);
+ qemu_vfree(buffer);
+
+ return 0;
+}
+
+int mshv_set_siefp(int cpu_fd, const uint8_t *page)
+{
+ int ret;
+ void *buffer;
+ struct mshv_get_set_vp_state args = {0};
+
+ buffer = qemu_memalign(HV_HYP_PAGE_SIZE, HV_HYP_PAGE_SIZE);
+ args.buf_ptr = (uint64_t)buffer;
+ args.buf_sz = HV_HYP_PAGE_SIZE;
+ args.type = MSHV_VP_STATE_SIEFP,
+
+ assert(page);
+ memcpy(buffer, page, HV_HYP_PAGE_SIZE);
+
+ ret = set_vp_state(cpu_fd, &args);
+ qemu_vfree(buffer);
+
+ if (ret < 0) {
+ error_report("failed to set simp");
+ return -1;
+ }
+
+ return 0;
+}
--
2.34.1
next prev parent reply other threads:[~2026-04-17 10:57 UTC|newest]
Thread overview: 40+ messages / expand[flat|nested] mbox.gz Atom feed top
2026-04-17 10:55 [PATCH 00/34] Add migration support to the MSHV accelerator Magnus Kulke
2026-04-17 10:55 ` [PATCH 01/34] target/i386/mshv: use arch_load/store_reg fns Magnus Kulke
2026-04-17 10:55 ` [PATCH 02/34] target/i386/mshv: use generic FPU/xcr0 state Magnus Kulke
2026-04-17 10:55 ` [PATCH 03/34] target/i386/mshv: impl init/load/store_vcpu_state Magnus Kulke
2026-04-17 10:55 ` [PATCH 04/34] accel/accel-irq: add AccelRouteChange abstraction Magnus Kulke
2026-04-17 10:55 ` [PATCH 05/34] accel/accel-irq: add generic begin_route_changes Magnus Kulke
2026-04-17 10:55 ` [PATCH 06/34] accel/accel-irq: add generic commit_route_changes Magnus Kulke
2026-04-17 10:55 ` [PATCH 07/34] accel/mshv: add irq_routes to state Magnus Kulke
2026-04-17 10:55 ` [PATCH 08/34] accel/mshv: update s->irq_routes in add_msi_route Magnus Kulke
2026-04-17 10:55 ` [PATCH 09/34] accel/mshv: update s->irq_routes in update_msi_route Magnus Kulke
2026-04-17 10:55 ` [PATCH 10/34] accel/mshv: update s->irq_routes in release_virq Magnus Kulke
2026-04-17 10:55 ` [PATCH 11/34] accel/mshv: use s->irq_routes in commit_routes Magnus Kulke
2026-04-17 10:55 ` [PATCH 12/34] accel/mshv: reserve ioapic routes on s->irq_routes Magnus Kulke
2026-04-17 10:55 ` [PATCH 13/34] accel/mshv: remove redundant msi controller Magnus Kulke
2026-04-17 10:55 ` [PATCH 14/34] target/i386/mshv: move apic logic into own file Magnus Kulke
2026-04-17 10:55 ` [PATCH 15/34] target/i386/mshv: remove redundant apic helpers Magnus Kulke
2026-04-17 10:56 ` [PATCH 16/34] target/i386/mshv: migrate LAPIC state Magnus Kulke
2026-04-17 11:54 ` Mohamed Mediouni
2026-04-20 11:37 ` Magnus Kulke
2026-04-17 10:56 ` [PATCH 17/34] target/i386/mshv: move msr code to arch Magnus Kulke
2026-04-17 10:56 ` [PATCH 18/34] accel/mshv: store partition proc features Magnus Kulke
2026-04-17 10:56 ` [PATCH 19/34] target/i386/mshv: expose msvh_get_generic_regs Magnus Kulke
2026-04-17 10:56 ` [PATCH 20/34] target/i386/mshv: migrate MSRs Magnus Kulke
2026-04-17 10:56 ` [PATCH 21/34] target/i386/mshv: migrate MTRR MSRs Magnus Kulke
2026-04-17 10:56 ` [PATCH 22/34] target/i386/mshv: migrate Synic SINT MSRs Magnus Kulke
2026-04-17 10:56 ` [PATCH 23/34] target/i386/mshv: migrate CET/SS MSRs Magnus Kulke
2026-04-17 10:56 ` Magnus Kulke [this message]
2026-04-17 10:56 ` [PATCH 25/34] target/i386/mshv: migrate STIMER state Magnus Kulke
2026-04-17 10:56 ` [PATCH 26/34] accel/mshv: introduce SaveVMHandler Magnus Kulke
2026-04-17 10:56 ` [PATCH 27/34] accel/mshv: write synthetic MSRs after migration Magnus Kulke
2026-04-17 10:56 ` [PATCH 28/34] accel/mshv: migrate REFERENCE_TIME Magnus Kulke
2026-04-17 10:56 ` [PATCH 29/34] target/i386/mshv: migrate pending ints/excs Magnus Kulke
2026-04-17 10:56 ` [PATCH 30/34] target/i386: add de/compaction to xsave_helper Magnus Kulke
2026-04-17 11:56 ` Mohamed Mediouni
2026-04-18 17:46 ` Mohamed Mediouni
2026-04-20 12:02 ` Magnus Kulke
2026-04-17 10:56 ` [PATCH 31/34] target/i386/mshv: migrate XSAVE state Magnus Kulke
2026-04-17 10:56 ` [PATCH 32/34] target/i386/mshv: reconstruct hflags after load Magnus Kulke
2026-04-17 10:56 ` [PATCH 33/34] target/i386/mshv: migrate MP_STATE Magnus Kulke
2026-04-17 10:56 ` [PATCH 34/34] accel/mshv: enable dirty page tracking Magnus Kulke
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20260417105618.3621-25-magnuskulke@linux.microsoft.com \
--to=magnuskulke@linux.microsoft.com \
--cc=alex@shazbot.org \
--cc=clg@redhat.com \
--cc=kvm@vger.kernel.org \
--cc=liuwe@microsoft.com \
--cc=magnuskulke@microsoft.com \
--cc=marcel.apfelbaum@gmail.com \
--cc=mst@redhat.com \
--cc=mtosatti@redhat.com \
--cc=pbonzini@redhat.com \
--cc=philmd@linaro.org \
--cc=qemu-devel@nongnu.org \
--cc=richard.henderson@linaro.org \
--cc=wei.liu@kernel.org \
--cc=zhao1.liu@intel.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox