From: Sean Christopherson <seanjc@google.com>
To: Kishen Maloor <kishen.maloor@intel.com>
Cc: kvm@vger.kernel.org, pbonzini@redhat.com, mlevitsk@redhat.com,
zheyuma97@gmail.com,
Michal Wilczynski <michal.wilczynski@intel.com>
Subject: Re: [PATCH v3 2/2] KVM: x86: nSVM/nVMX: Fix RSM logic leading to L2 VM-Entries
Date: Fri, 16 Aug 2024 10:22:56 -0700 [thread overview]
Message-ID: <Zr-K8Gd0ynQJ_V6n@google.com> (raw)
In-Reply-To: <20240501202934.1365061-3-kishen.maloor@intel.com>
Sorry for the super slow review, I was dreading looking at KVM's SMM mess :-)
On Wed, May 01, 2024, Kishen Maloor wrote:
> diff --git a/arch/x86/kvm/smm.c b/arch/x86/kvm/smm.c
> index d06d43d8d2aa..b1dac967f1a5 100644
> --- a/arch/x86/kvm/smm.c
> +++ b/arch/x86/kvm/smm.c
> @@ -633,8 +633,16 @@ int emulator_leave_smm(struct x86_emulate_ctxt *ctxt)
>
> #ifdef CONFIG_X86_64
> if (guest_cpuid_has(vcpu, X86_FEATURE_LM))
> - return rsm_load_state_64(ctxt, &smram.smram64);
> + ret = rsm_load_state_64(ctxt, &smram.smram64);
> else
> #endif
> - return rsm_load_state_32(ctxt, &smram.smram32);
> + ret = rsm_load_state_32(ctxt, &smram.smram32);
> +
> + /*
> + * Set nested_run_pending to ensure completion of a nested VM-Entry
> + */
> + if (ret == X86EMUL_CONTINUE && ctxt->ops->is_guest_mode(ctxt))
No need to bounce through the emulation context, this can simply be
if (ret == X86EMUL_CONTINUE && is_guest_mode(vcpu))
> + vcpu->arch.nested_run_pending = 1;
That said, while I 100% agree that KVM shouldn't set nested_run_pending before
loading state from SMRAM, I think it's actually the wrong fix. I am fairly certain
that the real issue is that KVM is synthesizing shutdown _for L2_. Neither the
the SDM and APM state that a shutdown on RSM to guest mode can trigger a VM-Exit,
Intel's pseudocode explicitly says state is loaded from SMRAM before transitioning
the CPU back to non-root mode, and AMD saves VMCB state in SMRAM, i.e. it's not
treated differently (like Intel does for VMX state).
So, the more correct, and amusingly easier, fix is to forcibly leave nested mode
prior to signalling shutdown. I'll post a patch for that.
I think I'll also grab patch 1 and post it in a slightly larger cleanup series
at some point. Making nested_run_pending a common field is worthwhile regardless
of this SMM mess.
prev parent reply other threads:[~2024-08-16 17:22 UTC|newest]
Thread overview: 4+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-05-01 20:29 [PATCH v3 0/2] Address syzkaller warnings in nested VM-Exit after RSM Kishen Maloor
2024-05-01 20:29 ` [PATCH v3 1/2] KVM: x86: nSVM/nVMX: Move nested_run_pending to kvm_vcpu_arch Kishen Maloor
2024-05-01 20:29 ` [PATCH v3 2/2] KVM: x86: nSVM/nVMX: Fix RSM logic leading to L2 VM-Entries Kishen Maloor
2024-08-16 17:22 ` Sean Christopherson [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=Zr-K8Gd0ynQJ_V6n@google.com \
--to=seanjc@google.com \
--cc=kishen.maloor@intel.com \
--cc=kvm@vger.kernel.org \
--cc=michal.wilczynski@intel.com \
--cc=mlevitsk@redhat.com \
--cc=pbonzini@redhat.com \
--cc=zheyuma97@gmail.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox