From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <kvm-owner@kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from vger.kernel.org (vger.kernel.org [23.128.96.18])
	by smtp.lore.kernel.org (Postfix) with ESMTP id 9EB99C433FE
	for <kvm@archiver.kernel.org>; Mon, 18 Apr 2022 15:51:49 +0000 (UTC)
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1345787AbiDRPy0 (ORCPT <rfc822;kvm@archiver.kernel.org>);
        Mon, 18 Apr 2022 11:54:26 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:46954 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1346358AbiDRPw4 (ORCPT <rfc822;kvm@vger.kernel.org>);
        Mon, 18 Apr 2022 11:52:56 -0400
Received: from mail-pg1-x52a.google.com (mail-pg1-x52a.google.com [IPv6:2607:f8b0:4864:20::52a])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id D6CD12AE28
        for <kvm@vger.kernel.org>; Mon, 18 Apr 2022 08:36:01 -0700 (PDT)
Received: by mail-pg1-x52a.google.com with SMTP id t184so6511995pgd.4
        for <kvm@vger.kernel.org>; Mon, 18 Apr 2022 08:36:01 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20210112;
        h=date:from:to:cc:subject:message-id:references:mime-version
         :content-disposition:in-reply-to;
        bh=QviqotR2gz/eMDzQiY33X7gSHfXUDsED7iwPy8uZ8ik=;
        b=YRHLSgzUndeIFUkty4Lmq/0J9dKNIekDC9tgukXyxi0heyP2Q5YwFHIR4QOKMge983
         +dkkaXjhgCr4bGk4fnhTquTeuwlQqE2diD4U4vk8ZZq3L3l1mrandDqHCVKBdEVXElyE
         9CyeGdXhx122zipo/+pcnDNxkAHdxfr03G1318xWNIkadw9CxHhobfV+yTdy1/X/+piQ
         k4VBNAa6Czb/bByfTLtVVGC6KSmBn66clYOCRyKX5J633+LiO/rQE2OaF9+BFf/Nu5Li
         xxfudcdPAdBg9TqaDdnMoquyh5xWSS5OfnpajZPi9UUdoTH8CK4DjHLgS+Lce7X3pjYS
         kaNQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20210112;
        h=x-gm-message-state:date:from:to:cc:subject:message-id:references
         :mime-version:content-disposition:in-reply-to;
        bh=QviqotR2gz/eMDzQiY33X7gSHfXUDsED7iwPy8uZ8ik=;
        b=fUoX8tgHifJuKOWlqDjbQlCoBqfG832Xd67NWVvDVlnDSV+Mz4ercIrqO6uwNnjH/q
         dzEPgpqpG+27REqSMbRNWqz7+cqUR/LdsyYNCifcJo03OzM58rRIIhgUuUwDikIvY2bE
         Sq1RRhzAOyuz+shqoXOxqW1k/1ZiJqKC9NZfW7he9XbB03yjL6cqdiLWJ4EwC1oICrbp
         RrqxUna2bYs65kG9LuY1YMvKgE2EsoG9mCZJL+SsI9dSF6K8Xuzqe7Wdvp89Lb1m9sLa
         zGnZ8IWZwn6qKjTjwsa3U8XnIDuKJFChZaD1n67sG6PnDhJTh0anePmShopX81TWammF
         cQeA==
X-Gm-Message-State: AOAM530Jfl1+QcP04epAtTb6ykVbtL4e45yNe1K8LG4zJDzBKeCG1ZZd
        1k5AFh/xqaiuSBI9xDiO9kS2zu35xUwDyg==
X-Google-Smtp-Source: ABdhPJwGRrtNegpZSzpZ1sifIOwowHypSLOZC0tItIpT/pTq/gRtnL+nJ7wOBcg1VcHkJVSC7myJYA==
X-Received: by 2002:a65:6d09:0:b0:3aa:1ecf:8848 with SMTP id bf9-20020a656d09000000b003aa1ecf8848mr1369951pgb.55.1650296161135;
        Mon, 18 Apr 2022 08:36:01 -0700 (PDT)
Received: from google.com (157.214.185.35.bc.googleusercontent.com. [35.185.214.157])
        by smtp.gmail.com with ESMTPSA id g3-20020a056a000b8300b0050a833a491bsm3104774pfj.197.2022.04.18.08.36.00
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Mon, 18 Apr 2022 08:36:00 -0700 (PDT)
Date:   Mon, 18 Apr 2022 15:35:57 +0000
From:   Sean Christopherson <seanjc@google.com>
To:     Maxim Levitsky <mlevitsk@redhat.com>
Cc:     Paolo Bonzini <pbonzini@redhat.com>,
        Vitaly Kuznetsov <vkuznets@redhat.com>,
        Wanpeng Li <wanpengli@tencent.com>,
        Jim Mattson <jmattson@google.com>,
        Joerg Roedel <joro@8bytes.org>, kvm@vger.kernel.org,
        linux-kernel@vger.kernel.org, Gaoning Pan <pgn@zju.edu.cn>,
        Yongkang Jia <kangel@zju.edu.cn>
Subject: Re: [PATCH 2/4] KVM: nVMX: Defer APICv updates while L2 is active
 until L1 is active
Message-ID: <Yl2FXfCjvkNgM4w3@google.com>
References: <20220416034249.2609491-1-seanjc@google.com>
 <20220416034249.2609491-3-seanjc@google.com>
 <227adbe6e8d82ad4c5a803c117d4231808a0e451.camel@redhat.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <227adbe6e8d82ad4c5a803c117d4231808a0e451.camel@redhat.com>
Precedence: bulk
List-ID: <kvm.vger.kernel.org>
X-Mailing-List: kvm@vger.kernel.org

On Mon, Apr 18, 2022, Maxim Levitsky wrote:
> On Sat, 2022-04-16 at 03:42 +0000, Sean Christopherson wrote:
> When L2 uses APICv/AVIC, we just safely passthrough its usage to the real hardware.
> 
> If we were to to need to inhibit it, we would have to emulate APICv/AVIC so that L1 would
> still think that it can use it - thankfully there is no need for that.

What if L1 passes through IRQs and all MSRs to L2?  E.g. if L2 activates Auto EOI
via WRMSR, then arguably it is KVM's responsibility to disable APICv in vmcs02 _and_
vmcs01 in order to handle the Auto EOI properly.  L1 isn't expecting a VM-Exit, so
KVM can't safely punt to L1 even if conceptually we think that it's L1's problem.

It's a contrived scenario, but technically possible.