From 4fc427d906ca62a45e7a2232917123e9b8d07262 Mon Sep 17 00:00:00 2001 From: Thomas Lamprecht Date: Tue, 2 Aug 2022 09:17:19 +0200 Subject: [PATCH] rebase patches on top of Ubuntu-5.19.0-14.14 (generated with debian/scripts/import-upstream-tag) Signed-off-by: Thomas Lamprecht --- ...ides-for-missing-ACS-capabilities-4..patch | 4 +- ...r-em_sysexit-should-update-ctxt-mode.patch | 31 --- ...-bug-introduce-ASSERT_STRUCT_OFFSET.patch} | 0 ...-em_sysexit-should-update-ctxt-mode.patch} | 2 +- ...-introduce-emulator_recalc_and_set_m.patch | 158 ------------- ...introduce-emulator_recalc_and_set_m.patch} | 10 +- ...update-the-emulation-mode-after-rsm.patch} | 4 +- ...update-the-emulation-mode-after-CR0.patch} | 4 +- ...smm-add-structs-for-KVM-s-smram-lay.patch} | 8 +- ...-smm-use-smram-structs-in-the-common.patch | 214 ++++++++++++++++++ ...smm-use-smram-struct-for-32-bit-smr.patch} | 28 +-- ...smm-use-smram-struct-for-64-bit-smr.patch} | 30 +-- ... 0017-KVM-x86-SVM-use-smram-structs.patch} | 55 ++--- ...t-save-SVM-state-to-SMRAM-when-VM-is.patch | 40 ++++ ...smm-preserve-interrupt-shadow-in-SM.patch} | 95 ++++---- ...-Adjust-log_max_qp-to-be-18-at-most.patch} | 4 +- ...e-steal-time-cache-if-MSR-value-cha.patch} | 6 +- ...port-preemption-if-the-steal-time-c.patch} | 10 +- ...-emulator-remove-assign_eip_near-far.patch | 127 ----------- ...-update-the-emulation-mode-after-rsm.patch | 34 --- ...-update-the-emulation-mode-after-CR0.patch | 46 ---- ...-smm-add-structs-for-KVM-s-smram-lay.patch | 166 -------------- 22 files changed, 384 insertions(+), 692 deletions(-) delete mode 100644 patches/kernel/0008-KVM-x86-emulator-em_sysexit-should-update-ctxt-mode.patch rename patches/kernel/{0007-bug-introduce-ASSERT_STRUCT_OFFSET.patch => 0008-bug-introduce-ASSERT_STRUCT_OFFSET.patch} (100%) rename patches/kernel/{0020-KVM-x86-emulator-em_sysexit-should-update-ctxt-mode.patch => 0009-KVM-x86-emulator-em_sysexit-should-update-ctxt-mode.patch} (96%) delete mode 100644 patches/kernel/0009-KVM-x86-emulator-introduce-emulator_recalc_and_set_m.patch rename patches/kernel/{0021-KVM-x86-emulator-introduce-update_emulation_mode.patch => 0010-KVM-x86-emulator-introduce-emulator_recalc_and_set_m.patch} (94%) rename patches/kernel/{0010-KVM-x86-emulator-update-the-emulation-mode-after-rsm.patch => 0011-KVM-x86-emulator-update-the-emulation-mode-after-rsm.patch} (91%) rename patches/kernel/{0011-KVM-x86-emulator-update-the-emulation-mode-after-CR0.patch => 0012-KVM-x86-emulator-update-the-emulation-mode-after-CR0.patch} (93%) rename patches/kernel/{0012-KVM-x86-emulator-smm-add-structs-for-KVM-s-smram-lay.patch => 0013-KVM-x86-emulator-smm-add-structs-for-KVM-s-smram-lay.patch} (97%) create mode 100644 patches/kernel/0014-KVM-x86-emulator-smm-use-smram-structs-in-the-common.patch rename patches/kernel/{0026-KVM-x86-emulator-smm-use-smram-struct-for-32-bit-smr.patch => 0015-KVM-x86-emulator-smm-use-smram-struct-for-32-bit-smr.patch} (92%) rename patches/kernel/{0027-KVM-x86-emulator-smm-use-smram-struct-for-64-bit-smr.patch => 0016-KVM-x86-emulator-smm-use-smram-struct-for-64-bit-smr.patch} (92%) rename patches/kernel/{0028-KVM-x86-SVM-use-smram-structs.patch => 0017-KVM-x86-SVM-use-smram-structs.patch} (58%) create mode 100644 patches/kernel/0018-KVM-x86-SVM-don-t-save-SVM-state-to-SMRAM-when-VM-is.patch rename patches/kernel/{0029-KVM-x86-emulator-smm-preserve-interrupt-shadow-in-SM.patch => 0019-KVM-x86-emulator-smm-preserve-interrupt-shadow-in-SM.patch} (67%) rename patches/kernel/{0013-net-mlx5-Adjust-log_max_qp-to-be-18-at-most.patch => 0020-net-mlx5-Adjust-log_max_qp-to-be-18-at-most.patch} (94%) rename patches/kernel/{0014-KVM-x86-revalidate-steal-time-cache-if-MSR-value-cha.patch => 0021-KVM-x86-revalidate-steal-time-cache-if-MSR-value-cha.patch} (93%) rename patches/kernel/{0015-KVM-x86-do-not-report-preemption-if-the-steal-time-c.patch => 0022-KVM-x86-do-not-report-preemption-if-the-steal-time-c.patch} (87%) delete mode 100644 patches/kernel/0022-KVM-x86-emulator-remove-assign_eip_near-far.patch delete mode 100644 patches/kernel/0023-KVM-x86-emulator-update-the-emulation-mode-after-rsm.patch delete mode 100644 patches/kernel/0024-KVM-x86-emulator-update-the-emulation-mode-after-CR0.patch delete mode 100644 patches/kernel/0025-KVM-x86-emulator-smm-add-structs-for-KVM-s-smram-lay.patch diff --git a/patches/kernel/0003-pci-Enable-overrides-for-missing-ACS-capabilities-4..patch b/patches/kernel/0003-pci-Enable-overrides-for-missing-ACS-capabilities-4..patch index 045ea41..90fda68 100644 --- a/patches/kernel/0003-pci-Enable-overrides-for-missing-ACS-capabilities-4..patch +++ b/patches/kernel/0003-pci-Enable-overrides-for-missing-ACS-capabilities-4..patch @@ -55,10 +55,10 @@ Signed-off-by: Thomas Lamprecht 2 files changed, 111 insertions(+) diff --git a/Documentation/admin-guide/kernel-parameters.txt b/Documentation/admin-guide/kernel-parameters.txt -index a1f0f78654a4..64a76d922869 100644 +index f47bfb27e3f2..6ec68ee888c3 100644 --- a/Documentation/admin-guide/kernel-parameters.txt +++ b/Documentation/admin-guide/kernel-parameters.txt -@@ -4092,6 +4092,15 @@ +@@ -4094,6 +4094,15 @@ Also, it enforces the PCI Local Bus spec rule that those bits should be 0 in system reset events (useful for kexec/kdump cases). diff --git a/patches/kernel/0008-KVM-x86-emulator-em_sysexit-should-update-ctxt-mode.patch b/patches/kernel/0008-KVM-x86-emulator-em_sysexit-should-update-ctxt-mode.patch deleted file mode 100644 index 9f95213..0000000 --- a/patches/kernel/0008-KVM-x86-emulator-em_sysexit-should-update-ctxt-mode.patch +++ /dev/null @@ -1,31 +0,0 @@ -From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001 -From: Maxim Levitsky -Date: Wed, 3 Aug 2022 18:50:00 +0300 -Subject: [PATCH] KVM: x86: emulator: em_sysexit should update ctxt->mode - -This is one of the instructions that can change the -processor mode. - -Note that this is likely a benign bug, because the only problematic -mode change is from 32 bit to 64 bit which can lead to truncation of RIP, -and it is not possible to do with sysexit, -since sysexit running in 32 bit mode will be limited to 32 bit version. - -Signed-off-by: Maxim Levitsky -Signed-off-by: Thomas Lamprecht ---- - arch/x86/kvm/emulate.c | 1 + - 1 file changed, 1 insertion(+) - -diff --git a/arch/x86/kvm/emulate.c b/arch/x86/kvm/emulate.c -index 89b11e7dca8a..93349b54ef56 100644 ---- a/arch/x86/kvm/emulate.c -+++ b/arch/x86/kvm/emulate.c -@@ -2875,6 +2875,7 @@ static int em_sysexit(struct x86_emulate_ctxt *ctxt) - ops->set_segment(ctxt, ss_sel, &ss, 0, VCPU_SREG_SS); - - ctxt->_eip = rdx; -+ ctxt->mode = usermode; - *reg_write(ctxt, VCPU_REGS_RSP) = rcx; - - return X86EMUL_CONTINUE; diff --git a/patches/kernel/0007-bug-introduce-ASSERT_STRUCT_OFFSET.patch b/patches/kernel/0008-bug-introduce-ASSERT_STRUCT_OFFSET.patch similarity index 100% rename from patches/kernel/0007-bug-introduce-ASSERT_STRUCT_OFFSET.patch rename to patches/kernel/0008-bug-introduce-ASSERT_STRUCT_OFFSET.patch diff --git a/patches/kernel/0020-KVM-x86-emulator-em_sysexit-should-update-ctxt-mode.patch b/patches/kernel/0009-KVM-x86-emulator-em_sysexit-should-update-ctxt-mode.patch similarity index 96% rename from patches/kernel/0020-KVM-x86-emulator-em_sysexit-should-update-ctxt-mode.patch rename to patches/kernel/0009-KVM-x86-emulator-em_sysexit-should-update-ctxt-mode.patch index fb18441..329757d 100644 --- a/patches/kernel/0020-KVM-x86-emulator-em_sysexit-should-update-ctxt-mode.patch +++ b/patches/kernel/0009-KVM-x86-emulator-em_sysexit-should-update-ctxt-mode.patch @@ -1,6 +1,6 @@ From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001 From: Maxim Levitsky -Date: Tue, 21 Jun 2022 18:08:52 +0300 +Date: Wed, 3 Aug 2022 18:50:00 +0300 Subject: [PATCH] KVM: x86: emulator: em_sysexit should update ctxt->mode This is one of the instructions that can change the diff --git a/patches/kernel/0009-KVM-x86-emulator-introduce-emulator_recalc_and_set_m.patch b/patches/kernel/0009-KVM-x86-emulator-introduce-emulator_recalc_and_set_m.patch deleted file mode 100644 index a8ab820..0000000 --- a/patches/kernel/0009-KVM-x86-emulator-introduce-emulator_recalc_and_set_m.patch +++ /dev/null @@ -1,158 +0,0 @@ -From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001 -From: Maxim Levitsky -Date: Wed, 3 Aug 2022 18:50:01 +0300 -Subject: [PATCH] KVM: x86: emulator: introduce emulator_recalc_and_set_mode - -Some instructions update the cpu execution mode, which needs -to update the emulation mode. - -Extract this code, and make assign_eip_far use it. - -assign_eip_far now reads CS, instead of getting it via a parameter, -which is ok, because callers always assign CS to the -same value before calling it. - -No functional change is intended. - -Signed-off-by: Maxim Levitsky -Signed-off-by: Thomas Lamprecht ---- - arch/x86/kvm/emulate.c | 85 ++++++++++++++++++++++++++++-------------- - 1 file changed, 57 insertions(+), 28 deletions(-) - -diff --git a/arch/x86/kvm/emulate.c b/arch/x86/kvm/emulate.c -index 93349b54ef56..61b38c03606a 100644 ---- a/arch/x86/kvm/emulate.c -+++ b/arch/x86/kvm/emulate.c -@@ -792,8 +792,7 @@ static int linearize(struct x86_emulate_ctxt *ctxt, - ctxt->mode, linear); - } - --static inline int assign_eip(struct x86_emulate_ctxt *ctxt, ulong dst, -- enum x86emul_mode mode) -+static inline int assign_eip(struct x86_emulate_ctxt *ctxt, ulong dst) - { - ulong linear; - int rc; -@@ -803,41 +802,71 @@ static inline int assign_eip(struct x86_emulate_ctxt *ctxt, ulong dst, - - if (ctxt->op_bytes != sizeof(unsigned long)) - addr.ea = dst & ((1UL << (ctxt->op_bytes << 3)) - 1); -- rc = __linearize(ctxt, addr, &max_size, 1, false, true, mode, &linear); -+ rc = __linearize(ctxt, addr, &max_size, 1, false, true, ctxt->mode, &linear); - if (rc == X86EMUL_CONTINUE) - ctxt->_eip = addr.ea; - return rc; - } - -+static inline int emulator_recalc_and_set_mode(struct x86_emulate_ctxt *ctxt) -+{ -+ u64 efer; -+ struct desc_struct cs; -+ u16 selector; -+ u32 base3; -+ -+ ctxt->ops->get_msr(ctxt, MSR_EFER, &efer); -+ -+ if (!ctxt->ops->get_cr(ctxt, 0) & X86_CR0_PE) { -+ /* Real mode. cpu must not have long mode active */ -+ if (efer & EFER_LMA) -+ return X86EMUL_UNHANDLEABLE; -+ ctxt->mode = X86EMUL_MODE_REAL; -+ return X86EMUL_CONTINUE; -+ } -+ -+ if (ctxt->eflags & X86_EFLAGS_VM) { -+ /* Protected/VM86 mode. cpu must not have long mode active */ -+ if (efer & EFER_LMA) -+ return X86EMUL_UNHANDLEABLE; -+ ctxt->mode = X86EMUL_MODE_VM86; -+ return X86EMUL_CONTINUE; -+ } -+ -+ if (!ctxt->ops->get_segment(ctxt, &selector, &cs, &base3, VCPU_SREG_CS)) -+ return X86EMUL_UNHANDLEABLE; -+ -+ if (efer & EFER_LMA) { -+ if (cs.l) { -+ /* Proper long mode */ -+ ctxt->mode = X86EMUL_MODE_PROT64; -+ } else if (cs.d) { -+ /* 32 bit compatibility mode*/ -+ ctxt->mode = X86EMUL_MODE_PROT32; -+ } else { -+ ctxt->mode = X86EMUL_MODE_PROT16; -+ } -+ } else { -+ /* Legacy 32 bit / 16 bit mode */ -+ ctxt->mode = cs.d ? X86EMUL_MODE_PROT32 : X86EMUL_MODE_PROT16; -+ } -+ -+ return X86EMUL_CONTINUE; -+} -+ - static inline int assign_eip_near(struct x86_emulate_ctxt *ctxt, ulong dst) - { -- return assign_eip(ctxt, dst, ctxt->mode); -+ return assign_eip(ctxt, dst); - } - --static int assign_eip_far(struct x86_emulate_ctxt *ctxt, ulong dst, -- const struct desc_struct *cs_desc) -+static int assign_eip_far(struct x86_emulate_ctxt *ctxt, ulong dst) - { -- enum x86emul_mode mode = ctxt->mode; -- int rc; -+ int rc = emulator_recalc_and_set_mode(ctxt); - --#ifdef CONFIG_X86_64 -- if (ctxt->mode >= X86EMUL_MODE_PROT16) { -- if (cs_desc->l) { -- u64 efer = 0; -+ if (rc != X86EMUL_CONTINUE) -+ return rc; - -- ctxt->ops->get_msr(ctxt, MSR_EFER, &efer); -- if (efer & EFER_LMA) -- mode = X86EMUL_MODE_PROT64; -- } else -- mode = X86EMUL_MODE_PROT32; /* temporary value */ -- } --#endif -- if (mode == X86EMUL_MODE_PROT16 || mode == X86EMUL_MODE_PROT32) -- mode = cs_desc->d ? X86EMUL_MODE_PROT32 : X86EMUL_MODE_PROT16; -- rc = assign_eip(ctxt, dst, mode); -- if (rc == X86EMUL_CONTINUE) -- ctxt->mode = mode; -- return rc; -+ return assign_eip(ctxt, dst); - } - - static inline int jmp_rel(struct x86_emulate_ctxt *ctxt, int rel) -@@ -2171,7 +2200,7 @@ static int em_jmp_far(struct x86_emulate_ctxt *ctxt) - if (rc != X86EMUL_CONTINUE) - return rc; - -- rc = assign_eip_far(ctxt, ctxt->src.val, &new_desc); -+ rc = assign_eip_far(ctxt, ctxt->src.val); - /* Error handling is not implemented. */ - if (rc != X86EMUL_CONTINUE) - return X86EMUL_UNHANDLEABLE; -@@ -2249,7 +2278,7 @@ static int em_ret_far(struct x86_emulate_ctxt *ctxt) - &new_desc); - if (rc != X86EMUL_CONTINUE) - return rc; -- rc = assign_eip_far(ctxt, eip, &new_desc); -+ rc = assign_eip_far(ctxt, eip); - /* Error handling is not implemented. */ - if (rc != X86EMUL_CONTINUE) - return X86EMUL_UNHANDLEABLE; -@@ -3469,7 +3498,7 @@ static int em_call_far(struct x86_emulate_ctxt *ctxt) - if (rc != X86EMUL_CONTINUE) - return rc; - -- rc = assign_eip_far(ctxt, ctxt->src.val, &new_desc); -+ rc = assign_eip_far(ctxt, ctxt->src.val); - if (rc != X86EMUL_CONTINUE) - goto fail; - diff --git a/patches/kernel/0021-KVM-x86-emulator-introduce-update_emulation_mode.patch b/patches/kernel/0010-KVM-x86-emulator-introduce-emulator_recalc_and_set_m.patch similarity index 94% rename from patches/kernel/0021-KVM-x86-emulator-introduce-update_emulation_mode.patch rename to patches/kernel/0010-KVM-x86-emulator-introduce-emulator_recalc_and_set_m.patch index 1ccc27d..94d6af0 100644 --- a/patches/kernel/0021-KVM-x86-emulator-introduce-update_emulation_mode.patch +++ b/patches/kernel/0010-KVM-x86-emulator-introduce-emulator_recalc_and_set_m.patch @@ -1,7 +1,7 @@ From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001 From: Maxim Levitsky -Date: Tue, 21 Jun 2022 18:08:53 +0300 -Subject: [PATCH] KVM: x86: emulator: introduce update_emulation_mode +Date: Wed, 3 Aug 2022 18:50:01 +0300 +Subject: [PATCH] KVM: x86: emulator: introduce emulator_recalc_and_set_mode Some instructions update the cpu execution mode, which needs to update the emulation mode. @@ -21,7 +21,7 @@ Signed-off-by: Thomas Lamprecht 1 file changed, 57 insertions(+), 28 deletions(-) diff --git a/arch/x86/kvm/emulate.c b/arch/x86/kvm/emulate.c -index 13181819d52c..36c6f7897b1f 100644 +index 13181819d52c..9411046e9ee0 100644 --- a/arch/x86/kvm/emulate.c +++ b/arch/x86/kvm/emulate.c @@ -793,8 +793,7 @@ static int linearize(struct x86_emulate_ctxt *ctxt, @@ -45,7 +45,7 @@ index 13181819d52c..36c6f7897b1f 100644 return rc; } -+static inline int update_emulation_mode(struct x86_emulate_ctxt *ctxt) ++static inline int emulator_recalc_and_set_mode(struct x86_emulate_ctxt *ctxt) +{ + u64 efer; + struct desc_struct cs; @@ -103,7 +103,7 @@ index 13181819d52c..36c6f7897b1f 100644 { - enum x86emul_mode mode = ctxt->mode; - int rc; -+ int rc = update_emulation_mode(ctxt); ++ int rc = emulator_recalc_and_set_mode(ctxt); -#ifdef CONFIG_X86_64 - if (ctxt->mode >= X86EMUL_MODE_PROT16) { diff --git a/patches/kernel/0010-KVM-x86-emulator-update-the-emulation-mode-after-rsm.patch b/patches/kernel/0011-KVM-x86-emulator-update-the-emulation-mode-after-rsm.patch similarity index 91% rename from patches/kernel/0010-KVM-x86-emulator-update-the-emulation-mode-after-rsm.patch rename to patches/kernel/0011-KVM-x86-emulator-update-the-emulation-mode-after-rsm.patch index 27c7b88..dbdd16d 100644 --- a/patches/kernel/0010-KVM-x86-emulator-update-the-emulation-mode-after-rsm.patch +++ b/patches/kernel/0011-KVM-x86-emulator-update-the-emulation-mode-after-rsm.patch @@ -17,10 +17,10 @@ Signed-off-by: Thomas Lamprecht 1 file changed, 5 insertions(+) diff --git a/arch/x86/kvm/emulate.c b/arch/x86/kvm/emulate.c -index 61b38c03606a..f2a0a34f4687 100644 +index 9411046e9ee0..c646a37a8831 100644 --- a/arch/x86/kvm/emulate.c +++ b/arch/x86/kvm/emulate.c -@@ -2653,6 +2653,11 @@ static int em_rsm(struct x86_emulate_ctxt *ctxt) +@@ -2654,6 +2654,11 @@ static int em_rsm(struct x86_emulate_ctxt *ctxt) if (ret != X86EMUL_CONTINUE) goto emulate_shutdown; diff --git a/patches/kernel/0011-KVM-x86-emulator-update-the-emulation-mode-after-CR0.patch b/patches/kernel/0012-KVM-x86-emulator-update-the-emulation-mode-after-CR0.patch similarity index 93% rename from patches/kernel/0011-KVM-x86-emulator-update-the-emulation-mode-after-CR0.patch rename to patches/kernel/0012-KVM-x86-emulator-update-the-emulation-mode-after-CR0.patch index 8c1d1e4..7feea6f 100644 --- a/patches/kernel/0011-KVM-x86-emulator-update-the-emulation-mode-after-CR0.patch +++ b/patches/kernel/0012-KVM-x86-emulator-update-the-emulation-mode-after-CR0.patch @@ -19,10 +19,10 @@ Signed-off-by: Thomas Lamprecht 1 file changed, 13 insertions(+), 1 deletion(-) diff --git a/arch/x86/kvm/emulate.c b/arch/x86/kvm/emulate.c -index f2a0a34f4687..874d124438d1 100644 +index c646a37a8831..508316b9f195 100644 --- a/arch/x86/kvm/emulate.c +++ b/arch/x86/kvm/emulate.c -@@ -3645,11 +3645,23 @@ static int em_movbe(struct x86_emulate_ctxt *ctxt) +@@ -3646,11 +3646,23 @@ static int em_movbe(struct x86_emulate_ctxt *ctxt) static int em_cr_write(struct x86_emulate_ctxt *ctxt) { diff --git a/patches/kernel/0012-KVM-x86-emulator-smm-add-structs-for-KVM-s-smram-lay.patch b/patches/kernel/0013-KVM-x86-emulator-smm-add-structs-for-KVM-s-smram-lay.patch similarity index 97% rename from patches/kernel/0012-KVM-x86-emulator-smm-add-structs-for-KVM-s-smram-lay.patch rename to patches/kernel/0013-KVM-x86-emulator-smm-add-structs-for-KVM-s-smram-lay.patch index 5f1b391..7d15d6e 100644 --- a/patches/kernel/0012-KVM-x86-emulator-smm-add-structs-for-KVM-s-smram-lay.patch +++ b/patches/kernel/0013-KVM-x86-emulator-smm-add-structs-for-KVM-s-smram-lay.patch @@ -17,10 +17,10 @@ Signed-off-by: Thomas Lamprecht 3 files changed, 225 insertions(+) diff --git a/arch/x86/kvm/emulate.c b/arch/x86/kvm/emulate.c -index 874d124438d1..bf1238152318 100644 +index 508316b9f195..b16353468b61 100644 --- a/arch/x86/kvm/emulate.c +++ b/arch/x86/kvm/emulate.c -@@ -5850,3 +5850,9 @@ bool emulator_can_use_gpa(struct x86_emulate_ctxt *ctxt) +@@ -5851,3 +5851,9 @@ bool emulator_can_use_gpa(struct x86_emulate_ctxt *ctxt) return true; } @@ -267,10 +267,10 @@ index 8dff25d267b7..0eb13204bbc2 100644 #if defined(CONFIG_X86_32) #define X86EMUL_MODE_HOST X86EMUL_MODE_PROT32 diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c -index dbaff0c7c8c2..aec63cebe0b7 100644 +index c48fed8ac5b1..1b6f92546f3d 100644 --- a/arch/x86/kvm/x86.c +++ b/arch/x86/kvm/x86.c -@@ -13009,6 +13009,7 @@ EXPORT_TRACEPOINT_SYMBOL_GPL(kvm_vmgexit_msr_protocol_exit); +@@ -13119,6 +13119,7 @@ EXPORT_TRACEPOINT_SYMBOL_GPL(kvm_vmgexit_msr_protocol_exit); static int __init kvm_x86_init(void) { kvm_mmu_x86_module_init(); diff --git a/patches/kernel/0014-KVM-x86-emulator-smm-use-smram-structs-in-the-common.patch b/patches/kernel/0014-KVM-x86-emulator-smm-use-smram-structs-in-the-common.patch new file mode 100644 index 0000000..ff6692d --- /dev/null +++ b/patches/kernel/0014-KVM-x86-emulator-smm-use-smram-structs-in-the-common.patch @@ -0,0 +1,214 @@ +From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001 +From: Maxim Levitsky +Date: Wed, 3 Aug 2022 18:50:06 +0300 +Subject: [PATCH] KVM: x86: emulator/smm: use smram structs in the common code + +Switch from using a raw array to 'union kvm_smram'. + +Signed-off-by: Maxim Levitsky +Signed-off-by: Thomas Lamprecht +--- + arch/x86/include/asm/kvm_host.h | 5 +++-- + arch/x86/kvm/emulate.c | 12 +++++++----- + arch/x86/kvm/kvm_emulate.h | 3 ++- + arch/x86/kvm/svm/svm.c | 8 ++++++-- + arch/x86/kvm/vmx/vmx.c | 4 ++-- + arch/x86/kvm/x86.c | 16 ++++++++-------- + 6 files changed, 28 insertions(+), 20 deletions(-) + +diff --git a/arch/x86/include/asm/kvm_host.h b/arch/x86/include/asm/kvm_host.h +index 9217bd6cf0d1..65e05d56602f 100644 +--- a/arch/x86/include/asm/kvm_host.h ++++ b/arch/x86/include/asm/kvm_host.h +@@ -202,6 +202,7 @@ typedef enum exit_fastpath_completion fastpath_t; + + struct x86_emulate_ctxt; + struct x86_exception; ++union kvm_smram; + enum x86_intercept; + enum x86_intercept_stage; + +@@ -1550,8 +1551,8 @@ struct kvm_x86_ops { + void (*setup_mce)(struct kvm_vcpu *vcpu); + + int (*smi_allowed)(struct kvm_vcpu *vcpu, bool for_injection); +- int (*enter_smm)(struct kvm_vcpu *vcpu, char *smstate); +- int (*leave_smm)(struct kvm_vcpu *vcpu, const char *smstate); ++ int (*enter_smm)(struct kvm_vcpu *vcpu, union kvm_smram *smram); ++ int (*leave_smm)(struct kvm_vcpu *vcpu, const union kvm_smram *smram); + void (*enable_smi_window)(struct kvm_vcpu *vcpu); + + int (*mem_enc_ioctl)(struct kvm *kvm, void __user *argp); +diff --git a/arch/x86/kvm/emulate.c b/arch/x86/kvm/emulate.c +index b16353468b61..05c4d9dfbced 100644 +--- a/arch/x86/kvm/emulate.c ++++ b/arch/x86/kvm/emulate.c +@@ -2582,16 +2582,18 @@ static int rsm_load_state_64(struct x86_emulate_ctxt *ctxt, + static int em_rsm(struct x86_emulate_ctxt *ctxt) + { + unsigned long cr0, cr4, efer; +- char buf[512]; ++ const union kvm_smram smram; + u64 smbase; + int ret; + ++ BUILD_BUG_ON(sizeof(smram) != 512); ++ + if ((ctxt->ops->get_hflags(ctxt) & X86EMUL_SMM_MASK) == 0) + return emulate_ud(ctxt); + + smbase = ctxt->ops->get_smbase(ctxt); + +- ret = ctxt->ops->read_phys(ctxt, smbase + 0xfe00, buf, sizeof(buf)); ++ ret = ctxt->ops->read_phys(ctxt, smbase + 0xfe00, (void *)&smram, sizeof(smram)); + if (ret != X86EMUL_CONTINUE) + return X86EMUL_UNHANDLEABLE; + +@@ -2641,15 +2643,15 @@ static int em_rsm(struct x86_emulate_ctxt *ctxt) + * state (e.g. enter guest mode) before loading state from the SMM + * state-save area. + */ +- if (ctxt->ops->leave_smm(ctxt, buf)) ++ if (ctxt->ops->leave_smm(ctxt, &smram)) + goto emulate_shutdown; + + #ifdef CONFIG_X86_64 + if (emulator_has_longmode(ctxt)) +- ret = rsm_load_state_64(ctxt, buf); ++ ret = rsm_load_state_64(ctxt, (const char *)&smram); + else + #endif +- ret = rsm_load_state_32(ctxt, buf); ++ ret = rsm_load_state_32(ctxt, (const char *)&smram); + + if (ret != X86EMUL_CONTINUE) + goto emulate_shutdown; +diff --git a/arch/x86/kvm/kvm_emulate.h b/arch/x86/kvm/kvm_emulate.h +index 0eb13204bbc2..04ac0cef8b57 100644 +--- a/arch/x86/kvm/kvm_emulate.h ++++ b/arch/x86/kvm/kvm_emulate.h +@@ -19,6 +19,7 @@ + struct x86_emulate_ctxt; + enum x86_intercept; + enum x86_intercept_stage; ++union kvm_smram; + + struct x86_exception { + u8 vector; +@@ -235,7 +236,7 @@ struct x86_emulate_ops { + + unsigned (*get_hflags)(struct x86_emulate_ctxt *ctxt); + void (*exiting_smm)(struct x86_emulate_ctxt *ctxt); +- int (*leave_smm)(struct x86_emulate_ctxt *ctxt, const char *smstate); ++ int (*leave_smm)(struct x86_emulate_ctxt *ctxt, const union kvm_smram *smram); + void (*triple_fault)(struct x86_emulate_ctxt *ctxt); + int (*set_xcr)(struct x86_emulate_ctxt *ctxt, u32 index, u64 xcr); + }; +diff --git a/arch/x86/kvm/svm/svm.c b/arch/x86/kvm/svm/svm.c +index 44bbf25dfeb9..68c9a771b457 100644 +--- a/arch/x86/kvm/svm/svm.c ++++ b/arch/x86/kvm/svm/svm.c +@@ -4299,12 +4299,14 @@ static int svm_smi_allowed(struct kvm_vcpu *vcpu, bool for_injection) + return 1; + } + +-static int svm_enter_smm(struct kvm_vcpu *vcpu, char *smstate) ++static int svm_enter_smm(struct kvm_vcpu *vcpu, union kvm_smram *smram) + { + struct vcpu_svm *svm = to_svm(vcpu); + struct kvm_host_map map_save; + int ret; + ++ char *smstate = (char *)smram; ++ + if (!is_guest_mode(vcpu)) + return 0; + +@@ -4346,7 +4348,7 @@ static int svm_enter_smm(struct kvm_vcpu *vcpu, char *smstate) + return 0; + } + +-static int svm_leave_smm(struct kvm_vcpu *vcpu, const char *smstate) ++static int svm_leave_smm(struct kvm_vcpu *vcpu, const union kvm_smram *smram) + { + struct vcpu_svm *svm = to_svm(vcpu); + struct kvm_host_map map, map_save; +@@ -4354,6 +4356,8 @@ static int svm_leave_smm(struct kvm_vcpu *vcpu, const char *smstate) + struct vmcb *vmcb12; + int ret; + ++ const char *smstate = (const char *)smram; ++ + if (!guest_cpuid_has(vcpu, X86_FEATURE_LM)) + return 0; + +diff --git a/arch/x86/kvm/vmx/vmx.c b/arch/x86/kvm/vmx/vmx.c +index be7c19374fdd..26803e4d64c6 100644 +--- a/arch/x86/kvm/vmx/vmx.c ++++ b/arch/x86/kvm/vmx/vmx.c +@@ -7725,7 +7725,7 @@ static int vmx_smi_allowed(struct kvm_vcpu *vcpu, bool for_injection) + return !is_smm(vcpu); + } + +-static int vmx_enter_smm(struct kvm_vcpu *vcpu, char *smstate) ++static int vmx_enter_smm(struct kvm_vcpu *vcpu, union kvm_smram *smram) + { + struct vcpu_vmx *vmx = to_vmx(vcpu); + +@@ -7739,7 +7739,7 @@ static int vmx_enter_smm(struct kvm_vcpu *vcpu, char *smstate) + return 0; + } + +-static int vmx_leave_smm(struct kvm_vcpu *vcpu, const char *smstate) ++static int vmx_leave_smm(struct kvm_vcpu *vcpu, const union kvm_smram *smram) + { + struct vcpu_vmx *vmx = to_vmx(vcpu); + int ret; +diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c +index 1b6f92546f3d..e48e7b7b8dde 100644 +--- a/arch/x86/kvm/x86.c ++++ b/arch/x86/kvm/x86.c +@@ -7853,9 +7853,9 @@ static void emulator_exiting_smm(struct x86_emulate_ctxt *ctxt) + } + + static int emulator_leave_smm(struct x86_emulate_ctxt *ctxt, +- const char *smstate) ++ const union kvm_smram *smram) + { +- return static_call(kvm_x86_leave_smm)(emul_to_vcpu(ctxt), smstate); ++ return static_call(kvm_x86_leave_smm)(emul_to_vcpu(ctxt), smram); + } + + static void emulator_triple_fault(struct x86_emulate_ctxt *ctxt) +@@ -9764,25 +9764,25 @@ static void enter_smm(struct kvm_vcpu *vcpu) + struct kvm_segment cs, ds; + struct desc_ptr dt; + unsigned long cr0; +- char buf[512]; ++ union kvm_smram smram; + +- memset(buf, 0, 512); ++ memset(smram.bytes, 0, sizeof(smram.bytes)); + #ifdef CONFIG_X86_64 + if (guest_cpuid_has(vcpu, X86_FEATURE_LM)) +- enter_smm_save_state_64(vcpu, buf); ++ enter_smm_save_state_64(vcpu, (char *)&smram); + else + #endif +- enter_smm_save_state_32(vcpu, buf); ++ enter_smm_save_state_32(vcpu, (char *)&smram); + + /* + * Give enter_smm() a chance to make ISA-specific changes to the vCPU + * state (e.g. leave guest mode) after we've saved the state into the + * SMM state-save area. + */ +- static_call(kvm_x86_enter_smm)(vcpu, buf); ++ static_call(kvm_x86_enter_smm)(vcpu, &smram); + + kvm_smm_changed(vcpu, true); +- kvm_vcpu_write_guest(vcpu, vcpu->arch.smbase + 0xfe00, buf, sizeof(buf)); ++ kvm_vcpu_write_guest(vcpu, vcpu->arch.smbase + 0xfe00, &smram, sizeof(smram)); + + if (static_call(kvm_x86_get_nmi_mask)(vcpu)) + vcpu->arch.hflags |= HF_SMM_INSIDE_NMI_MASK; diff --git a/patches/kernel/0026-KVM-x86-emulator-smm-use-smram-struct-for-32-bit-smr.patch b/patches/kernel/0015-KVM-x86-emulator-smm-use-smram-struct-for-32-bit-smr.patch similarity index 92% rename from patches/kernel/0026-KVM-x86-emulator-smm-use-smram-struct-for-32-bit-smr.patch rename to patches/kernel/0015-KVM-x86-emulator-smm-use-smram-struct-for-32-bit-smr.patch index 227af97..9a04725 100644 --- a/patches/kernel/0026-KVM-x86-emulator-smm-use-smram-struct-for-32-bit-smr.patch +++ b/patches/kernel/0015-KVM-x86-emulator-smm-use-smram-struct-for-32-bit-smr.patch @@ -1,6 +1,6 @@ From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001 From: Maxim Levitsky -Date: Tue, 21 Jun 2022 18:08:59 +0300 +Date: Wed, 3 Aug 2022 18:50:07 +0300 Subject: [PATCH] KVM: x86: emulator/smm: use smram struct for 32 bit smram load/restore @@ -15,16 +15,16 @@ Signed-off-by: Thomas Lamprecht 2 files changed, 60 insertions(+), 96 deletions(-) diff --git a/arch/x86/kvm/emulate.c b/arch/x86/kvm/emulate.c -index 76c407167449..1442e5090d10 100644 +index 05c4d9dfbced..47bb09f02304 100644 --- a/arch/x86/kvm/emulate.c +++ b/arch/x86/kvm/emulate.c -@@ -2355,25 +2355,17 @@ static void rsm_set_desc_flags(struct desc_struct *desc, u32 flags) +@@ -2359,25 +2359,17 @@ static void rsm_set_desc_flags(struct desc_struct *desc, u32 flags) desc->type = (flags >> 8) & 15; } -static int rsm_load_seg_32(struct x86_emulate_ctxt *ctxt, const char *smstate, +static void rsm_load_seg_32(struct x86_emulate_ctxt *ctxt, -+ struct kvm_smm_seg_state_32 *state, ++ const struct kvm_smm_seg_state_32 *state, + u16 selector, int n) { @@ -50,12 +50,12 @@ index 76c407167449..1442e5090d10 100644 } #ifdef CONFIG_X86_64 -@@ -2444,63 +2436,46 @@ static int rsm_enter_protected_mode(struct x86_emulate_ctxt *ctxt, +@@ -2448,63 +2440,46 @@ static int rsm_enter_protected_mode(struct x86_emulate_ctxt *ctxt, } static int rsm_load_state_32(struct x86_emulate_ctxt *ctxt, - const char *smstate) -+ struct kvm_smram_state_32 *smstate) ++ const struct kvm_smram_state_32 *smstate) { - struct desc_struct desc; struct desc_ptr dt; @@ -135,17 +135,17 @@ index 76c407167449..1442e5090d10 100644 } #ifdef CONFIG_X86_64 -@@ -2645,7 +2620,7 @@ static int em_rsm(struct x86_emulate_ctxt *ctxt) - ret = rsm_load_state_64(ctxt, buf); +@@ -2651,7 +2626,7 @@ static int em_rsm(struct x86_emulate_ctxt *ctxt) + ret = rsm_load_state_64(ctxt, (const char *)&smram); else #endif -- ret = rsm_load_state_32(ctxt, buf); -+ ret = rsm_load_state_32(ctxt, (struct kvm_smram_state_32 *)buf); +- ret = rsm_load_state_32(ctxt, (const char *)&smram); ++ ret = rsm_load_state_32(ctxt, &smram.smram32); if (ret != X86EMUL_CONTINUE) goto emulate_shutdown; diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c -index c48fed8ac5b1..077abd7c0771 100644 +index e48e7b7b8dde..eb029c131d0d 100644 --- a/arch/x86/kvm/x86.c +++ b/arch/x86/kvm/x86.c @@ -9618,22 +9618,18 @@ static u32 enter_smm_get_segment_flags(struct kvm_segment *seg) @@ -258,11 +258,11 @@ index c48fed8ac5b1..077abd7c0771 100644 #ifdef CONFIG_X86_64 @@ -9772,7 +9761,7 @@ static void enter_smm(struct kvm_vcpu *vcpu) - enter_smm_save_state_64(vcpu, buf); + enter_smm_save_state_64(vcpu, (char *)&smram); else #endif -- enter_smm_save_state_32(vcpu, buf); -+ enter_smm_save_state_32(vcpu, (struct kvm_smram_state_32 *)buf); +- enter_smm_save_state_32(vcpu, (char *)&smram); ++ enter_smm_save_state_32(vcpu, &smram.smram32); /* * Give enter_smm() a chance to make ISA-specific changes to the vCPU diff --git a/patches/kernel/0027-KVM-x86-emulator-smm-use-smram-struct-for-64-bit-smr.patch b/patches/kernel/0016-KVM-x86-emulator-smm-use-smram-struct-for-64-bit-smr.patch similarity index 92% rename from patches/kernel/0027-KVM-x86-emulator-smm-use-smram-struct-for-64-bit-smr.patch rename to patches/kernel/0016-KVM-x86-emulator-smm-use-smram-struct-for-64-bit-smr.patch index deafe0b..60ce973 100644 --- a/patches/kernel/0027-KVM-x86-emulator-smm-use-smram-struct-for-64-bit-smr.patch +++ b/patches/kernel/0016-KVM-x86-emulator-smm-use-smram-struct-for-64-bit-smr.patch @@ -1,6 +1,6 @@ From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001 From: Maxim Levitsky -Date: Tue, 21 Jun 2022 18:09:00 +0300 +Date: Wed, 3 Aug 2022 18:50:08 +0300 Subject: [PATCH] KVM: x86: emulator/smm: use smram struct for 64 bit smram load/restore @@ -16,17 +16,17 @@ Signed-off-by: Thomas Lamprecht 2 files changed, 62 insertions(+), 101 deletions(-) diff --git a/arch/x86/kvm/emulate.c b/arch/x86/kvm/emulate.c -index 1442e5090d10..d34ed0475128 100644 +index 47bb09f02304..265535d167a5 100644 --- a/arch/x86/kvm/emulate.c +++ b/arch/x86/kvm/emulate.c -@@ -2369,24 +2369,16 @@ static void rsm_load_seg_32(struct x86_emulate_ctxt *ctxt, +@@ -2373,24 +2373,16 @@ static void rsm_load_seg_32(struct x86_emulate_ctxt *ctxt, } #ifdef CONFIG_X86_64 -static int rsm_load_seg_64(struct x86_emulate_ctxt *ctxt, const char *smstate, - int n) +static void rsm_load_seg_64(struct x86_emulate_ctxt *ctxt, -+ struct kvm_smm_seg_state_64 *state, ++ const struct kvm_smm_seg_state_64 *state, + int n) { struct desc_struct desc; @@ -51,12 +51,12 @@ index 1442e5090d10..d34ed0475128 100644 } #endif -@@ -2480,71 +2472,49 @@ static int rsm_load_state_32(struct x86_emulate_ctxt *ctxt, +@@ -2484,71 +2476,49 @@ static int rsm_load_state_32(struct x86_emulate_ctxt *ctxt, #ifdef CONFIG_X86_64 static int rsm_load_state_64(struct x86_emulate_ctxt *ctxt, - const char *smstate) -+ struct kvm_smram_state_64 *smstate) ++ const struct kvm_smram_state_64 *smstate) { - struct desc_struct desc; struct desc_ptr dt; @@ -144,17 +144,17 @@ index 1442e5090d10..d34ed0475128 100644 return X86EMUL_CONTINUE; } -@@ -2617,7 +2587,7 @@ static int em_rsm(struct x86_emulate_ctxt *ctxt) +@@ -2623,7 +2593,7 @@ static int em_rsm(struct x86_emulate_ctxt *ctxt) #ifdef CONFIG_X86_64 if (emulator_has_longmode(ctxt)) -- ret = rsm_load_state_64(ctxt, buf); -+ ret = rsm_load_state_64(ctxt, (struct kvm_smram_state_64 *)buf); +- ret = rsm_load_state_64(ctxt, (const char *)&smram); ++ ret = rsm_load_state_64(ctxt, &smram.smram64); else #endif - ret = rsm_load_state_32(ctxt, (struct kvm_smram_state_32 *)buf); + ret = rsm_load_state_32(ctxt, &smram.smram32); diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c -index 077abd7c0771..f7b2fe174574 100644 +index eb029c131d0d..0cd48992f619 100644 --- a/arch/x86/kvm/x86.c +++ b/arch/x86/kvm/x86.c @@ -9633,20 +9633,17 @@ static void enter_smm_save_seg_32(struct kvm_vcpu *vcpu, @@ -269,11 +269,11 @@ index 077abd7c0771..f7b2fe174574 100644 #endif @@ -9758,7 +9749,7 @@ static void enter_smm(struct kvm_vcpu *vcpu) - memset(buf, 0, 512); + memset(smram.bytes, 0, sizeof(smram.bytes)); #ifdef CONFIG_X86_64 if (guest_cpuid_has(vcpu, X86_FEATURE_LM)) -- enter_smm_save_state_64(vcpu, buf); -+ enter_smm_save_state_64(vcpu, (struct kvm_smram_state_64 *)buf); +- enter_smm_save_state_64(vcpu, (char *)&smram); ++ enter_smm_save_state_64(vcpu, &smram.smram64); else #endif - enter_smm_save_state_32(vcpu, (struct kvm_smram_state_32 *)buf); + enter_smm_save_state_32(vcpu, &smram.smram32); diff --git a/patches/kernel/0028-KVM-x86-SVM-use-smram-structs.patch b/patches/kernel/0017-KVM-x86-SVM-use-smram-structs.patch similarity index 58% rename from patches/kernel/0028-KVM-x86-SVM-use-smram-structs.patch rename to patches/kernel/0017-KVM-x86-SVM-use-smram-structs.patch index e291d7d..184c4d6 100644 --- a/patches/kernel/0028-KVM-x86-SVM-use-smram-structs.patch +++ b/patches/kernel/0017-KVM-x86-SVM-use-smram-structs.patch @@ -1,6 +1,6 @@ From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001 From: Maxim Levitsky -Date: Tue, 21 Jun 2022 18:09:01 +0300 +Date: Wed, 3 Aug 2022 18:50:09 +0300 Subject: [PATCH] KVM: x86: SVM: use smram structs This removes the last user of put_smstate/GET_SMSTATE so @@ -13,14 +13,14 @@ Signed-off-by: Maxim Levitsky Signed-off-by: Thomas Lamprecht --- arch/x86/include/asm/kvm_host.h | 6 ------ - arch/x86/kvm/svm/svm.c | 28 +++++++++++++++++----------- - 2 files changed, 17 insertions(+), 17 deletions(-) + arch/x86/kvm/svm/svm.c | 21 ++++++--------------- + 2 files changed, 6 insertions(+), 21 deletions(-) diff --git a/arch/x86/include/asm/kvm_host.h b/arch/x86/include/asm/kvm_host.h -index 9217bd6cf0d1..7d9fd7dcbacd 100644 +index 65e05d56602f..33c14d167de2 100644 --- a/arch/x86/include/asm/kvm_host.h +++ b/arch/x86/include/asm/kvm_host.h -@@ -2041,12 +2041,6 @@ static inline int kvm_cpu_get_apicid(int mps_cpu) +@@ -2042,12 +2042,6 @@ static inline int kvm_cpu_get_apicid(int mps_cpu) #endif } @@ -34,18 +34,15 @@ index 9217bd6cf0d1..7d9fd7dcbacd 100644 int memslot_rmap_alloc(struct kvm_memory_slot *slot, unsigned long npages); diff --git a/arch/x86/kvm/svm/svm.c b/arch/x86/kvm/svm/svm.c -index 44bbf25dfeb9..e26084734c1b 100644 +index 68c9a771b457..23ad430207c5 100644 --- a/arch/x86/kvm/svm/svm.c +++ b/arch/x86/kvm/svm/svm.c -@@ -4301,6 +4301,7 @@ static int svm_smi_allowed(struct kvm_vcpu *vcpu, bool for_injection) - - static int svm_enter_smm(struct kvm_vcpu *vcpu, char *smstate) - { -+ struct kvm_smram_state_64 *smram = (struct kvm_smram_state_64 *)smstate; - struct vcpu_svm *svm = to_svm(vcpu); +@@ -4305,15 +4305,11 @@ static int svm_enter_smm(struct kvm_vcpu *vcpu, union kvm_smram *smram) struct kvm_host_map map_save; int ret; -@@ -4308,10 +4309,17 @@ static int svm_enter_smm(struct kvm_vcpu *vcpu, char *smstate) + +- char *smstate = (char *)smram; +- if (!is_guest_mode(vcpu)) return 0; @@ -53,37 +50,27 @@ index 44bbf25dfeb9..e26084734c1b 100644 - put_smstate(u64, smstate, 0x7ed8, 1); - /* FEE0h - SVM Guest VMCB Physical Address */ - put_smstate(u64, smstate, 0x7ee0, svm->nested.vmcb12_gpa); -+ /* -+ * 32 bit SMRAM format doesn't preserve EFER and SVM state. -+ * SVM should not be enabled by the userspace without marking -+ * the CPU as at least long mode capable. -+ */ -+ -+ if (!guest_cpuid_has(vcpu, X86_FEATURE_SVM)) -+ return 1; -+ -+ smram->svm_guest_flag = 1; -+ smram->svm_guest_vmcb_gpa = svm->nested.vmcb12_gpa; ++ smram->smram64.svm_guest_flag = 1; ++ smram->smram64.svm_guest_vmcb_gpa = svm->nested.vmcb12_gpa; svm->vmcb->save.rax = vcpu->arch.regs[VCPU_REGS_RAX]; svm->vmcb->save.rsp = vcpu->arch.regs[VCPU_REGS_RSP]; -@@ -4348,9 +4356,9 @@ static int svm_enter_smm(struct kvm_vcpu *vcpu, char *smstate) - - static int svm_leave_smm(struct kvm_vcpu *vcpu, const char *smstate) +@@ -4352,28 +4348,23 @@ static int svm_leave_smm(struct kvm_vcpu *vcpu, const union kvm_smram *smram) { -+ struct kvm_smram_state_64 *smram = (struct kvm_smram_state_64 *)smstate; struct vcpu_svm *svm = to_svm(vcpu); struct kvm_host_map map, map_save; - u64 saved_efer, vmcb12_gpa; struct vmcb *vmcb12; int ret; -@@ -4358,18 +4366,16 @@ static int svm_leave_smm(struct kvm_vcpu *vcpu, const char *smstate) +- const char *smstate = (const char *)smram; +- + if (!guest_cpuid_has(vcpu, X86_FEATURE_LM)) return 0; /* Non-zero if SMI arrived while vCPU was in guest mode. */ - if (!GET_SMSTATE(u64, smstate, 0x7ed8)) -+ if (!smram->svm_guest_flag) ++ if (!smram->smram64.svm_guest_flag) return 0; if (!guest_cpuid_has(vcpu, X86_FEATURE_SVM)) @@ -91,21 +78,21 @@ index 44bbf25dfeb9..e26084734c1b 100644 - saved_efer = GET_SMSTATE(u64, smstate, 0x7ed0); - if (!(saved_efer & EFER_SVME)) -+ if (!(smram->efer & EFER_SVME)) ++ if (!(smram->smram64.efer & EFER_SVME)) return 1; - vmcb12_gpa = GET_SMSTATE(u64, smstate, 0x7ee0); - if (kvm_vcpu_map(vcpu, gpa_to_gfn(vmcb12_gpa), &map) == -EINVAL) -+ if (kvm_vcpu_map(vcpu, gpa_to_gfn(smram->svm_guest_vmcb_gpa), &map) == -EINVAL) ++ if (kvm_vcpu_map(vcpu, gpa_to_gfn(smram->smram64.svm_guest_vmcb_gpa), &map) == -EINVAL) return 1; ret = 1; -@@ -4395,7 +4401,7 @@ static int svm_leave_smm(struct kvm_vcpu *vcpu, const char *smstate) +@@ -4399,7 +4390,7 @@ static int svm_leave_smm(struct kvm_vcpu *vcpu, const union kvm_smram *smram) vmcb12 = map.hva; nested_copy_vmcb_control_to_cache(svm, &vmcb12->control); nested_copy_vmcb_save_to_cache(svm, &vmcb12->save); - ret = enter_svm_guest_mode(vcpu, vmcb12_gpa, vmcb12, false); -+ ret = enter_svm_guest_mode(vcpu, smram->svm_guest_vmcb_gpa, vmcb12, false); ++ ret = enter_svm_guest_mode(vcpu, smram->smram64.svm_guest_vmcb_gpa, vmcb12, false); if (ret) goto unmap_save; diff --git a/patches/kernel/0018-KVM-x86-SVM-don-t-save-SVM-state-to-SMRAM-when-VM-is.patch b/patches/kernel/0018-KVM-x86-SVM-don-t-save-SVM-state-to-SMRAM-when-VM-is.patch new file mode 100644 index 0000000..b0300b5 --- /dev/null +++ b/patches/kernel/0018-KVM-x86-SVM-don-t-save-SVM-state-to-SMRAM-when-VM-is.patch @@ -0,0 +1,40 @@ +From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001 +From: Maxim Levitsky +Date: Wed, 3 Aug 2022 18:50:10 +0300 +Subject: [PATCH] KVM: x86: SVM: don't save SVM state to SMRAM when VM is not + long mode capable + +When the guest CPUID doesn't have support for long mode, 32 bit SMRAM +layout is used and it has no support for preserving EFER and/or SVM +state. + +Note that this isn't relevant to running 32 bit guests on VM which is +long mode capable - such VM can still run 32 bit guests in compatibility +mode. + +Signed-off-by: Maxim Levitsky +Signed-off-by: Thomas Lamprecht +--- + arch/x86/kvm/svm/svm.c | 9 +++++++++ + 1 file changed, 9 insertions(+) + +diff --git a/arch/x86/kvm/svm/svm.c b/arch/x86/kvm/svm/svm.c +index 23ad430207c5..69ebe1dca33d 100644 +--- a/arch/x86/kvm/svm/svm.c ++++ b/arch/x86/kvm/svm/svm.c +@@ -4308,6 +4308,15 @@ static int svm_enter_smm(struct kvm_vcpu *vcpu, union kvm_smram *smram) + if (!is_guest_mode(vcpu)) + return 0; + ++ /* ++ * 32 bit SMRAM format doesn't preserve EFER and SVM state. ++ * SVM should not be enabled by the userspace without marking ++ * the CPU as at least long mode capable. ++ */ ++ ++ if (!guest_cpuid_has(vcpu, X86_FEATURE_LM)) ++ return 1; ++ + smram->smram64.svm_guest_flag = 1; + smram->smram64.svm_guest_vmcb_gpa = svm->nested.vmcb12_gpa; + diff --git a/patches/kernel/0029-KVM-x86-emulator-smm-preserve-interrupt-shadow-in-SM.patch b/patches/kernel/0019-KVM-x86-emulator-smm-preserve-interrupt-shadow-in-SM.patch similarity index 67% rename from patches/kernel/0029-KVM-x86-emulator-smm-preserve-interrupt-shadow-in-SM.patch rename to patches/kernel/0019-KVM-x86-emulator-smm-preserve-interrupt-shadow-in-SM.patch index 7c813c7..1ca1174 100644 --- a/patches/kernel/0029-KVM-x86-emulator-smm-preserve-interrupt-shadow-in-SM.patch +++ b/patches/kernel/0019-KVM-x86-emulator-smm-preserve-interrupt-shadow-in-SM.patch @@ -1,6 +1,6 @@ From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001 From: Maxim Levitsky -Date: Tue, 21 Jun 2022 18:09:02 +0300 +Date: Wed, 3 Aug 2022 18:50:11 +0300 Subject: [PATCH] KVM: x86: emulator/smm: preserve interrupt shadow in SMRAM When #SMI is asserted, the CPU can be in interrupt shadow @@ -25,16 +25,16 @@ Signed-off-by: Maxim Levitsky Signed-off-by: Thomas Lamprecht --- arch/x86/kvm/emulate.c | 17 ++++++++++++++--- - arch/x86/kvm/kvm_emulate.h | 13 ++++++++++--- + arch/x86/kvm/kvm_emulate.h | 10 ++++++---- arch/x86/kvm/x86.c | 12 ++++++++++++ - 3 files changed, 36 insertions(+), 6 deletions(-) + 3 files changed, 32 insertions(+), 7 deletions(-) diff --git a/arch/x86/kvm/emulate.c b/arch/x86/kvm/emulate.c -index d34ed0475128..f4373213bef8 100644 +index 265535d167a5..3fb0518121db 100644 --- a/arch/x86/kvm/emulate.c +++ b/arch/x86/kvm/emulate.c -@@ -2431,7 +2431,7 @@ static int rsm_load_state_32(struct x86_emulate_ctxt *ctxt, - struct kvm_smram_state_32 *smstate) +@@ -2435,7 +2435,7 @@ static int rsm_load_state_32(struct x86_emulate_ctxt *ctxt, + const struct kvm_smram_state_32 *smstate) { struct desc_ptr dt; - int i; @@ -42,7 +42,7 @@ index d34ed0475128..f4373213bef8 100644 ctxt->eflags = smstate->eflags | X86_EFLAGS_FIXED; ctxt->_eip = smstate->eip; -@@ -2466,8 +2466,16 @@ static int rsm_load_state_32(struct x86_emulate_ctxt *ctxt, +@@ -2470,8 +2470,16 @@ static int rsm_load_state_32(struct x86_emulate_ctxt *ctxt, ctxt->ops->set_smbase(ctxt, smstate->smbase); @@ -61,7 +61,7 @@ index d34ed0475128..f4373213bef8 100644 } #ifdef CONFIG_X86_64 -@@ -2516,6 +2524,9 @@ static int rsm_load_state_64(struct x86_emulate_ctxt *ctxt, +@@ -2520,6 +2528,9 @@ static int rsm_load_state_64(struct x86_emulate_ctxt *ctxt, rsm_load_seg_64(ctxt, &smstate->fs, VCPU_SREG_FS); rsm_load_seg_64(ctxt, &smstate->gs, VCPU_SREG_GS); @@ -72,10 +72,10 @@ index d34ed0475128..f4373213bef8 100644 } #endif diff --git a/arch/x86/kvm/kvm_emulate.h b/arch/x86/kvm/kvm_emulate.h -index 3bbf7c1c5b18..e7acf0052389 100644 +index 04ac0cef8b57..d5707b3f254c 100644 --- a/arch/x86/kvm/kvm_emulate.h +++ b/arch/x86/kvm/kvm_emulate.h -@@ -231,6 +231,7 @@ struct x86_emulate_ops { +@@ -233,6 +233,7 @@ struct x86_emulate_ops { bool (*guest_has_rdpid)(struct x86_emulate_ctxt *ctxt); void (*set_nmi_mask)(struct x86_emulate_ctxt *ctxt, bool masked); @@ -83,39 +83,52 @@ index 3bbf7c1c5b18..e7acf0052389 100644 unsigned (*get_hflags)(struct x86_emulate_ctxt *ctxt); void (*exiting_smm)(struct x86_emulate_ctxt *ctxt); -@@ -498,7 +499,9 @@ struct kvm_smram_state_32 { - u32 reserved1[62]; /* FE00 - FEF7 */ - u32 smbase; /* FEF8 */ - u32 smm_revision; /* FEFC */ -- u32 reserved2[5]; /* FF00-FF13 */ -+ u32 reserved2[4]; /* FF00-FF0F*/ -+ /* int_shadow is KVM extension*/ -+ u32 int_shadow; /* FF10 */ - /* CR4 is not present in Intel/AMD SMRAM image*/ - u32 cr4; /* FF14 */ - u32 reserved3[5]; /* FF18 */ -@@ -570,13 +573,17 @@ struct kvm_smram_state_64 { - struct kvm_smm_seg_state_64 idtr; /* FE80 (R/O) */ - struct kvm_smm_seg_state_64 tr; /* FE90 (R/O) */ +@@ -496,7 +497,8 @@ struct kvm_smram_state_32 { + u32 reserved1[62]; + u32 smbase; + u32 smm_revision; +- u32 reserved2[5]; ++ u32 reserved2[4]; ++ u32 int_shadow; /* KVM extension */ + u32 cr4; /* CR4 is not present in Intel/AMD SMRAM image */ + u32 reserved3[5]; -- /* I/O restart and auto halt restart are not implemented by KVM */ -+ /* -+ * I/O restart and auto halt restart are not implemented by KVM -+ * int_shadow is KVM's extension -+ */ -+ - u64 io_restart_rip; /* FEA0 (R/O) */ - u64 io_restart_rcx; /* FEA8 (R/O) */ - u64 io_restart_rsi; /* FEB0 (R/O) */ - u64 io_restart_rdi; /* FEB8 (R/O) */ - u32 io_restart_dword; /* FEC0 (R/O) */ -- u32 reserved1; /* FEC4 */ -+ u32 int_shadow; /* FEC4 (R/O) */ - u8 io_instruction_restart; /* FEC8 (R/W) */ - u8 auto_halt_restart; /* FEC9 (R/W) */ - u8 reserved2[6]; /* FECA-FECF */ +@@ -544,6 +546,7 @@ static inline void __check_smram32_offsets(void) + __CHECK_SMRAM32_OFFSET(smbase, 0xFEF8); + __CHECK_SMRAM32_OFFSET(smm_revision, 0xFEFC); + __CHECK_SMRAM32_OFFSET(reserved2, 0xFF00); ++ __CHECK_SMRAM32_OFFSET(int_shadow, 0xFF10); + __CHECK_SMRAM32_OFFSET(cr4, 0xFF14); + __CHECK_SMRAM32_OFFSET(reserved3, 0xFF18); + __CHECK_SMRAM32_OFFSET(ds, 0xFF2C); +@@ -603,7 +606,7 @@ struct kvm_smram_state_64 { + u64 io_restart_rsi; + u64 io_restart_rdi; + u32 io_restart_dword; +- u32 reserved1; ++ u32 int_shadow; + u8 io_inst_restart; + u8 auto_hlt_restart; + u8 reserved2[6]; +@@ -641,7 +644,6 @@ struct kvm_smram_state_64 { + u64 gprs[16]; /* GPRS in a reversed "natural" X86 order (R15/R14/../RCX/RAX.) */ + }; + +- + static inline void __check_smram64_offsets(void) + { + #define __CHECK_SMRAM64_OFFSET(field, offset) \ +@@ -662,7 +664,7 @@ static inline void __check_smram64_offsets(void) + __CHECK_SMRAM64_OFFSET(io_restart_rsi, 0xFEB0); + __CHECK_SMRAM64_OFFSET(io_restart_rdi, 0xFEB8); + __CHECK_SMRAM64_OFFSET(io_restart_dword, 0xFEC0); +- __CHECK_SMRAM64_OFFSET(reserved1, 0xFEC4); ++ __CHECK_SMRAM64_OFFSET(int_shadow, 0xFEC4); + __CHECK_SMRAM64_OFFSET(io_inst_restart, 0xFEC8); + __CHECK_SMRAM64_OFFSET(auto_hlt_restart, 0xFEC9); + __CHECK_SMRAM64_OFFSET(reserved2, 0xFECA); diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c -index f7b2fe174574..2072d994b06f 100644 +index 0cd48992f619..424ea7ce3a96 100644 --- a/arch/x86/kvm/x86.c +++ b/arch/x86/kvm/x86.c @@ -7840,6 +7840,11 @@ static void emulator_set_nmi_mask(struct x86_emulate_ctxt *ctxt, bool masked) diff --git a/patches/kernel/0013-net-mlx5-Adjust-log_max_qp-to-be-18-at-most.patch b/patches/kernel/0020-net-mlx5-Adjust-log_max_qp-to-be-18-at-most.patch similarity index 94% rename from patches/kernel/0013-net-mlx5-Adjust-log_max_qp-to-be-18-at-most.patch rename to patches/kernel/0020-net-mlx5-Adjust-log_max_qp-to-be-18-at-most.patch index 0696c0c..38dca6f 100644 --- a/patches/kernel/0013-net-mlx5-Adjust-log_max_qp-to-be-18-at-most.patch +++ b/patches/kernel/0020-net-mlx5-Adjust-log_max_qp-to-be-18-at-most.patch @@ -23,10 +23,10 @@ Signed-off-by: Thomas Lamprecht 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/drivers/net/ethernet/mellanox/mlx5/core/main.c b/drivers/net/ethernet/mellanox/mlx5/core/main.c -index ef196cb764e2..2ad8027cb745 100644 +index c9b4e50a593e..95f26624b57c 100644 --- a/drivers/net/ethernet/mellanox/mlx5/core/main.c +++ b/drivers/net/ethernet/mellanox/mlx5/core/main.c -@@ -526,7 +526,7 @@ static int handle_hca_cap(struct mlx5_core_dev *dev, void *set_ctx) +@@ -524,7 +524,7 @@ static int handle_hca_cap(struct mlx5_core_dev *dev, void *set_ctx) /* Check log_max_qp from HCA caps to set in current profile */ if (prof->log_max_qp == LOG_MAX_SUPPORTED_QPS) { diff --git a/patches/kernel/0014-KVM-x86-revalidate-steal-time-cache-if-MSR-value-cha.patch b/patches/kernel/0021-KVM-x86-revalidate-steal-time-cache-if-MSR-value-cha.patch similarity index 93% rename from patches/kernel/0014-KVM-x86-revalidate-steal-time-cache-if-MSR-value-cha.patch rename to patches/kernel/0021-KVM-x86-revalidate-steal-time-cache-if-MSR-value-cha.patch index 3b19c89..bcc611e 100644 --- a/patches/kernel/0014-KVM-x86-revalidate-steal-time-cache-if-MSR-value-cha.patch +++ b/patches/kernel/0021-KVM-x86-revalidate-steal-time-cache-if-MSR-value-cha.patch @@ -31,10 +31,10 @@ Signed-off-by: Thomas Lamprecht 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c -index aec63cebe0b7..a99eec435652 100644 +index 424ea7ce3a96..12b6dde48d03 100644 --- a/arch/x86/kvm/x86.c +++ b/arch/x86/kvm/x86.c -@@ -3356,6 +3356,7 @@ static void record_steal_time(struct kvm_vcpu *vcpu) +@@ -3380,6 +3380,7 @@ static void record_steal_time(struct kvm_vcpu *vcpu) struct gfn_to_hva_cache *ghc = &vcpu->arch.st.cache; struct kvm_steal_time __user *st; struct kvm_memslots *slots; @@ -42,7 +42,7 @@ index aec63cebe0b7..a99eec435652 100644 u64 steal; u32 version; -@@ -3373,13 +3374,12 @@ static void record_steal_time(struct kvm_vcpu *vcpu) +@@ -3397,13 +3398,12 @@ static void record_steal_time(struct kvm_vcpu *vcpu) slots = kvm_memslots(vcpu->kvm); if (unlikely(slots->generation != ghc->generation || diff --git a/patches/kernel/0015-KVM-x86-do-not-report-preemption-if-the-steal-time-c.patch b/patches/kernel/0022-KVM-x86-do-not-report-preemption-if-the-steal-time-c.patch similarity index 87% rename from patches/kernel/0015-KVM-x86-do-not-report-preemption-if-the-steal-time-c.patch rename to patches/kernel/0022-KVM-x86-do-not-report-preemption-if-the-steal-time-c.patch index d34ed9a..7343a43 100644 --- a/patches/kernel/0015-KVM-x86-do-not-report-preemption-if-the-steal-time-c.patch +++ b/patches/kernel/0022-KVM-x86-do-not-report-preemption-if-the-steal-time-c.patch @@ -26,18 +26,18 @@ Signed-off-by: Thomas Lamprecht 1 file changed, 2 insertions(+) diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c -index a99eec435652..a088f5e76966 100644 +index 12b6dde48d03..d915dc8a964a 100644 --- a/arch/x86/kvm/x86.c +++ b/arch/x86/kvm/x86.c -@@ -4603,6 +4603,7 @@ static void kvm_steal_time_set_preempted(struct kvm_vcpu *vcpu) +@@ -4629,6 +4629,7 @@ static void kvm_steal_time_set_preempted(struct kvm_vcpu *vcpu) struct kvm_steal_time __user *st; struct kvm_memslots *slots; static const u8 preempted = KVM_VCPU_PREEMPTED; + gpa_t gpa = vcpu->arch.st.msr_val & KVM_STEAL_VALID_BITS; - if (!(vcpu->arch.st.msr_val & KVM_MSR_ENABLED)) - return; -@@ -4617,6 +4618,7 @@ static void kvm_steal_time_set_preempted(struct kvm_vcpu *vcpu) + /* + * The vCPU can be marked preempted if and only if the VM-Exit was on +@@ -4656,6 +4657,7 @@ static void kvm_steal_time_set_preempted(struct kvm_vcpu *vcpu) slots = kvm_memslots(vcpu->kvm); if (unlikely(slots->generation != ghc->generation || diff --git a/patches/kernel/0022-KVM-x86-emulator-remove-assign_eip_near-far.patch b/patches/kernel/0022-KVM-x86-emulator-remove-assign_eip_near-far.patch deleted file mode 100644 index ee565d7..0000000 --- a/patches/kernel/0022-KVM-x86-emulator-remove-assign_eip_near-far.patch +++ /dev/null @@ -1,127 +0,0 @@ -From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001 -From: Maxim Levitsky -Date: Tue, 21 Jun 2022 18:08:54 +0300 -Subject: [PATCH] KVM: x86: emulator: remove assign_eip_near/far - -Now the assign_eip_far just updates the emulation mode in addition to -updating the rip, it doesn't make sense to keep that function. - -Move mode update to the callers and remove these functions. - -No functional change is intended. - -Signed-off-by: Maxim Levitsky -Signed-off-by: Thomas Lamprecht ---- - arch/x86/kvm/emulate.c | 47 +++++++++++++++++++++--------------------- - 1 file changed, 24 insertions(+), 23 deletions(-) - -diff --git a/arch/x86/kvm/emulate.c b/arch/x86/kvm/emulate.c -index 36c6f7897b1f..c4e3f9103870 100644 ---- a/arch/x86/kvm/emulate.c -+++ b/arch/x86/kvm/emulate.c -@@ -855,24 +855,9 @@ static inline int update_emulation_mode(struct x86_emulate_ctxt *ctxt) - return X86EMUL_CONTINUE; - } - --static inline int assign_eip_near(struct x86_emulate_ctxt *ctxt, ulong dst) --{ -- return assign_eip(ctxt, dst); --} -- --static int assign_eip_far(struct x86_emulate_ctxt *ctxt, ulong dst) --{ -- int rc = update_emulation_mode(ctxt); -- -- if (rc != X86EMUL_CONTINUE) -- return rc; -- -- return assign_eip(ctxt, dst); --} -- - static inline int jmp_rel(struct x86_emulate_ctxt *ctxt, int rel) - { -- return assign_eip_near(ctxt, ctxt->_eip + rel); -+ return assign_eip(ctxt, ctxt->_eip + rel); - } - - static int linear_read_system(struct x86_emulate_ctxt *ctxt, ulong linear, -@@ -2201,7 +2186,12 @@ static int em_jmp_far(struct x86_emulate_ctxt *ctxt) - if (rc != X86EMUL_CONTINUE) - return rc; - -- rc = assign_eip_far(ctxt, ctxt->src.val); -+ rc = update_emulation_mode(ctxt); -+ if (rc != X86EMUL_CONTINUE) -+ return rc; -+ -+ rc = assign_eip(ctxt, ctxt->src.val); -+ - /* Error handling is not implemented. */ - if (rc != X86EMUL_CONTINUE) - return X86EMUL_UNHANDLEABLE; -@@ -2211,7 +2201,7 @@ static int em_jmp_far(struct x86_emulate_ctxt *ctxt) - - static int em_jmp_abs(struct x86_emulate_ctxt *ctxt) - { -- return assign_eip_near(ctxt, ctxt->src.val); -+ return assign_eip(ctxt, ctxt->src.val); - } - - static int em_call_near_abs(struct x86_emulate_ctxt *ctxt) -@@ -2220,7 +2210,7 @@ static int em_call_near_abs(struct x86_emulate_ctxt *ctxt) - long int old_eip; - - old_eip = ctxt->_eip; -- rc = assign_eip_near(ctxt, ctxt->src.val); -+ rc = assign_eip(ctxt, ctxt->src.val); - if (rc != X86EMUL_CONTINUE) - return rc; - ctxt->src.val = old_eip; -@@ -2258,7 +2248,7 @@ static int em_ret(struct x86_emulate_ctxt *ctxt) - if (rc != X86EMUL_CONTINUE) - return rc; - -- return assign_eip_near(ctxt, eip); -+ return assign_eip(ctxt, eip); - } - - static int em_ret_far(struct x86_emulate_ctxt *ctxt) -@@ -2279,7 +2269,13 @@ static int em_ret_far(struct x86_emulate_ctxt *ctxt) - &new_desc); - if (rc != X86EMUL_CONTINUE) - return rc; -- rc = assign_eip_far(ctxt, eip); -+ -+ rc = update_emulation_mode(ctxt); -+ if (rc != X86EMUL_CONTINUE) -+ return rc; -+ -+ rc = assign_eip(ctxt, eip); -+ - /* Error handling is not implemented. */ - if (rc != X86EMUL_CONTINUE) - return X86EMUL_UNHANDLEABLE; -@@ -3499,7 +3495,12 @@ static int em_call_far(struct x86_emulate_ctxt *ctxt) - if (rc != X86EMUL_CONTINUE) - return rc; - -- rc = assign_eip_far(ctxt, ctxt->src.val); -+ rc = update_emulation_mode(ctxt); -+ if (rc != X86EMUL_CONTINUE) -+ return rc; -+ -+ rc = assign_eip(ctxt, ctxt->src.val); -+ - if (rc != X86EMUL_CONTINUE) - goto fail; - -@@ -3532,7 +3533,7 @@ static int em_ret_near_imm(struct x86_emulate_ctxt *ctxt) - rc = emulate_pop(ctxt, &eip, ctxt->op_bytes); - if (rc != X86EMUL_CONTINUE) - return rc; -- rc = assign_eip_near(ctxt, eip); -+ rc = assign_eip(ctxt, eip); - if (rc != X86EMUL_CONTINUE) - return rc; - rsp_increment(ctxt, ctxt->src.val); diff --git a/patches/kernel/0023-KVM-x86-emulator-update-the-emulation-mode-after-rsm.patch b/patches/kernel/0023-KVM-x86-emulator-update-the-emulation-mode-after-rsm.patch deleted file mode 100644 index 63d6f48..0000000 --- a/patches/kernel/0023-KVM-x86-emulator-update-the-emulation-mode-after-rsm.patch +++ /dev/null @@ -1,34 +0,0 @@ -From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001 -From: Maxim Levitsky -Date: Tue, 21 Jun 2022 18:08:55 +0300 -Subject: [PATCH] KVM: x86: emulator: update the emulation mode after rsm - -This ensures that RIP will be correctly written back, -because the RSM instruction can switch the CPU mode from -32 bit (or less) to 64 bit. - -This fixes a guest crash in case the #SMI is received -while the guest runs a code from an address > 32 bit. - -Signed-off-by: Maxim Levitsky -Signed-off-by: Thomas Lamprecht ---- - arch/x86/kvm/emulate.c | 5 +++++ - 1 file changed, 5 insertions(+) - -diff --git a/arch/x86/kvm/emulate.c b/arch/x86/kvm/emulate.c -index c4e3f9103870..03a761397599 100644 ---- a/arch/x86/kvm/emulate.c -+++ b/arch/x86/kvm/emulate.c -@@ -2650,6 +2650,11 @@ static int em_rsm(struct x86_emulate_ctxt *ctxt) - if (ret != X86EMUL_CONTINUE) - goto emulate_shutdown; - -+ -+ ret = update_emulation_mode(ctxt); -+ if (ret != X86EMUL_CONTINUE) -+ goto emulate_shutdown; -+ - /* - * Note, the ctxt->ops callbacks are responsible for handling side - * effects when writing MSRs and CRs, e.g. MMU context resets, CPUID diff --git a/patches/kernel/0024-KVM-x86-emulator-update-the-emulation-mode-after-CR0.patch b/patches/kernel/0024-KVM-x86-emulator-update-the-emulation-mode-after-CR0.patch deleted file mode 100644 index c08181c..0000000 --- a/patches/kernel/0024-KVM-x86-emulator-update-the-emulation-mode-after-CR0.patch +++ /dev/null @@ -1,46 +0,0 @@ -From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001 -From: Maxim Levitsky -Date: Tue, 21 Jun 2022 18:08:56 +0300 -Subject: [PATCH] KVM: x86: emulator: update the emulation mode after CR0 write - -CR0.PE toggles real/protected mode, thus its update -should update the emulation mode. - -This is likely a benign bug because there is no writeback -of state, other than the RIP increment, and when toggling -CR0.PE, the CPU has to execute code from a very low memory address. - -Signed-off-by: Maxim Levitsky -Signed-off-by: Thomas Lamprecht ---- - arch/x86/kvm/emulate.c | 13 ++++++++++++- - 1 file changed, 12 insertions(+), 1 deletion(-) - -diff --git a/arch/x86/kvm/emulate.c b/arch/x86/kvm/emulate.c -index 03a761397599..76c407167449 100644 ---- a/arch/x86/kvm/emulate.c -+++ b/arch/x86/kvm/emulate.c -@@ -3647,11 +3647,22 @@ static int em_movbe(struct x86_emulate_ctxt *ctxt) - - static int em_cr_write(struct x86_emulate_ctxt *ctxt) - { -- if (ctxt->ops->set_cr(ctxt, ctxt->modrm_reg, ctxt->src.val)) -+ int cr_num = ctxt->modrm_reg; -+ int r; -+ -+ if (ctxt->ops->set_cr(ctxt, cr_num, ctxt->src.val)) - return emulate_gp(ctxt, 0); - - /* Disable writeback. */ - ctxt->dst.type = OP_NONE; -+ -+ if (cr_num == 0) { -+ /* CR0 write might have updated CR0.PE */ -+ r = update_emulation_mode(ctxt); -+ if (r != X86EMUL_CONTINUE) -+ return r; -+ } -+ - return X86EMUL_CONTINUE; - } - diff --git a/patches/kernel/0025-KVM-x86-emulator-smm-add-structs-for-KVM-s-smram-lay.patch b/patches/kernel/0025-KVM-x86-emulator-smm-add-structs-for-KVM-s-smram-lay.patch deleted file mode 100644 index 790197c..0000000 --- a/patches/kernel/0025-KVM-x86-emulator-smm-add-structs-for-KVM-s-smram-lay.patch +++ /dev/null @@ -1,166 +0,0 @@ -From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001 -From: Maxim Levitsky -Date: Tue, 21 Jun 2022 18:08:58 +0300 -Subject: [PATCH] KVM: x86: emulator/smm: add structs for KVM's smram layout - -Those structs will be used to read/write the smram state image. - -Also document the differences between KVM's SMRAM layout and SMRAM -layout that is used by real Intel/AMD cpus. - -Signed-off-by: Maxim Levitsky -Signed-off-by: Thomas Lamprecht ---- - arch/x86/kvm/kvm_emulate.h | 139 +++++++++++++++++++++++++++++++++++++ - 1 file changed, 139 insertions(+) - -diff --git a/arch/x86/kvm/kvm_emulate.h b/arch/x86/kvm/kvm_emulate.h -index 8dff25d267b7..3bbf7c1c5b18 100644 ---- a/arch/x86/kvm/kvm_emulate.h -+++ b/arch/x86/kvm/kvm_emulate.h -@@ -481,6 +481,145 @@ enum x86_intercept { - nr_x86_intercepts - }; - -+ -+/* -+ * 32 bit KVM's emulated SMM layout -+ * Loosely based on Intel's layout -+ */ -+ -+struct kvm_smm_seg_state_32 { -+ u32 flags; -+ u32 limit; -+ u32 base; -+} __packed; -+ -+struct kvm_smram_state_32 { -+ -+ u32 reserved1[62]; /* FE00 - FEF7 */ -+ u32 smbase; /* FEF8 */ -+ u32 smm_revision; /* FEFC */ -+ u32 reserved2[5]; /* FF00-FF13 */ -+ /* CR4 is not present in Intel/AMD SMRAM image*/ -+ u32 cr4; /* FF14 */ -+ u32 reserved3[5]; /* FF18 */ -+ -+ /* -+ * Segment state is not present/documented in the -+ * Intel/AMD SMRAM image -+ */ -+ struct kvm_smm_seg_state_32 ds; /* FF2C */ -+ struct kvm_smm_seg_state_32 fs; /* FF38 */ -+ struct kvm_smm_seg_state_32 gs; /* FF44 */ -+ /* idtr has only base and limit*/ -+ struct kvm_smm_seg_state_32 idtr; /* FF50 */ -+ struct kvm_smm_seg_state_32 tr; /* FF5C */ -+ u32 reserved; /* FF68 */ -+ /* gdtr has only base and limit*/ -+ struct kvm_smm_seg_state_32 gdtr; /* FF6C */ -+ struct kvm_smm_seg_state_32 ldtr; /* FF78 */ -+ struct kvm_smm_seg_state_32 es; /* FF84 */ -+ struct kvm_smm_seg_state_32 cs; /* FF90 */ -+ struct kvm_smm_seg_state_32 ss; /* FF9C */ -+ -+ u32 es_sel; /* FFA8 */ -+ u32 cs_sel; /* FFAC */ -+ u32 ss_sel; /* FFB0 */ -+ u32 ds_sel; /* FFB4 */ -+ u32 fs_sel; /* FFB8 */ -+ u32 gs_sel; /* FFBC */ -+ u32 ldtr_sel; /* FFC0 */ -+ u32 tr_sel; /* FFC4 */ -+ -+ u32 dr7; /* FFC8 */ -+ u32 dr6; /* FFCC */ -+ -+ /* GPRS in the "natural" X86 order (RAX/RCX/RDX.../RDI)*/ -+ u32 gprs[8]; /* FFD0-FFEC */ -+ -+ u32 eip; /* FFF0 */ -+ u32 eflags; /* FFF4 */ -+ u32 cr3; /* FFF8 */ -+ u32 cr0; /* FFFC */ -+} __packed; -+ -+/* -+ * 64 bit KVM's emulated SMM layout -+ * Based on AMD64 layout -+ */ -+ -+struct kvm_smm_seg_state_64 { -+ u16 selector; -+ u16 attributes; -+ u32 limit; -+ u64 base; -+}; -+ -+struct kvm_smram_state_64 { -+ struct kvm_smm_seg_state_64 es; /* FE00 (R/O) */ -+ struct kvm_smm_seg_state_64 cs; /* FE10 (R/O) */ -+ struct kvm_smm_seg_state_64 ss; /* FE20 (R/O) */ -+ struct kvm_smm_seg_state_64 ds; /* FE30 (R/O) */ -+ struct kvm_smm_seg_state_64 fs; /* FE40 (R/O) */ -+ struct kvm_smm_seg_state_64 gs; /* FE50 (R/O) */ -+ -+ /* gdtr has only base and limit*/ -+ struct kvm_smm_seg_state_64 gdtr; /* FE60 (R/O) */ -+ struct kvm_smm_seg_state_64 ldtr; /* FE70 (R/O) */ -+ -+ /* idtr has only base and limit*/ -+ struct kvm_smm_seg_state_64 idtr; /* FE80 (R/O) */ -+ struct kvm_smm_seg_state_64 tr; /* FE90 (R/O) */ -+ -+ /* I/O restart and auto halt restart are not implemented by KVM */ -+ u64 io_restart_rip; /* FEA0 (R/O) */ -+ u64 io_restart_rcx; /* FEA8 (R/O) */ -+ u64 io_restart_rsi; /* FEB0 (R/O) */ -+ u64 io_restart_rdi; /* FEB8 (R/O) */ -+ u32 io_restart_dword; /* FEC0 (R/O) */ -+ u32 reserved1; /* FEC4 */ -+ u8 io_instruction_restart; /* FEC8 (R/W) */ -+ u8 auto_halt_restart; /* FEC9 (R/W) */ -+ u8 reserved2[6]; /* FECA-FECF */ -+ -+ u64 efer; /* FED0 (R/O) */ -+ -+ /* -+ * Implemented on AMD only, to store current SVM guest address. -+ * svm_guest_virtual_int has unknown purpose, not implemented. -+ */ -+ -+ u64 svm_guest_flag; /* FED8 (R/O) */ -+ u64 svm_guest_vmcb_gpa; /* FEE0 (R/O) */ -+ u64 svm_guest_virtual_int; /* FEE8 (R/O) */ -+ -+ u32 reserved3[3]; /* FEF0-FEFB */ -+ u32 smm_revison; /* FEFC (R/O) */ -+ u32 smbase; /* FFF0 (R/W) */ -+ u32 reserved4[5]; /* FF04-FF17 */ -+ -+ /* SSP and SVM fields below are not implemented by KVM */ -+ u64 ssp; /* FF18 (R/W) */ -+ u64 svm_guest_pat; /* FF20 (R/O) */ -+ u64 svm_host_efer; /* FF28 (R/O) */ -+ u64 svm_host_cr4; /* FF30 (R/O) */ -+ u64 svm_host_cr3; /* FF38 (R/O) */ -+ u64 svm_host_cr0; /* FF40 (R/O) */ -+ -+ u64 cr4; /* FF48 (R/O) */ -+ u64 cr3; /* FF50 (R/O) */ -+ u64 cr0; /* FF58 (R/O) */ -+ -+ u64 dr7; /* FF60 (R/O) */ -+ u64 dr6; /* FF68 (R/O) */ -+ -+ u64 rflags; /* FF70 (R/W) */ -+ u64 rip; /* FF78 (R/W) */ -+ -+ /* GPRS in a reversed "natural" X86 order (R15/R14/../RCX/RAX.) */ -+ u64 gprs[16]; /* FF80-FFFF (R/W) */ -+}; -+ -+ - /* Host execution mode. */ - #if defined(CONFIG_X86_32) - #define X86EMUL_MODE_HOST X86EMUL_MODE_PROT32