Received: by 2002:a25:1985:0:0:0:0:0 with SMTP id 127csp4680914ybz;
        Tue, 28 Apr 2020 16:18:42 -0700 (PDT)
X-Google-Smtp-Source: APiQypI7nkI60r+E1mxj4FdbqKQ341nMsPC61mQ4gIh2Zk+eSI+0xSeNMstnl1Ja9hBMOftshWTL
X-Received: by 2002:a17:906:edc2:: with SMTP id sb2mr104237ejb.129.1588115921892;
        Tue, 28 Apr 2020 16:18:41 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1588115921; cv=none;
        d=google.com; s=arc-20160816;
        b=IwcRWbTlWn85L0PqamxnUgSMupnHYcHlDsR/FxjZKK7gfmvN/2Avl7vMhuALWb7jvT
         VCa0dKj81i29+M2MY+Ssi1TM1BGyki6YUVIP0nhVCvvURyTwNMuT+FrzwUzxNQWXkFFf
         F/VBSyPxw7mQdDo7LWpPQj99YL3qwo9pMGzE3lq1quK08W3zNUs8T4zo5Ou5LEUs6wLI
         MhipSk3fQNOQXZBR0WanElD/1EDdDFlBGlD3Q4l7C0OUWvCMMvxHzusZdUkSq/s+rK9H
         1K/aqSZ6vjRss8V6nffQ79xDbZM+JFQfV47MmZ+CJQ3e8XrzuFweijdLAdeLfLr6bX9/
         ZEVg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:content-transfer-encoding:cc:to:subject
         :message-id:date:from:in-reply-to:references:mime-version
         :dkim-signature;
        bh=r4RxKLheQFWjLght4V80HIUjV5cwhunpMukZ0Rx77a0=;
        b=yLRe5O6ExaM9xb5qh/ozPiTKoTa/1wSywMA6w/Qe31+8KHuNAtbyQzeOJuFJFRCZb9
         vaY6bNptJIzvRBnBWWlgYJR+ySvixQlQe1SeJ5JWc/mpxd5ftGoaUVM1bhA5ZdqcVHxB
         olndXum49EHbtbuImWyFzGBiwoSibXxKgod6locbgURGseAAz8GaZruJPL/gFEamwWvJ
         3MPIuozqz+10bM4Pn65Zfy6KqbjHHpu+mecbr0Yqsp8xDDRNUP8i5TR5gBmnO9/lVTf3
         X+a4JIaWobdB/grhpmUv226ADtUM7xu5pj2ApLrBNhJ+MjRKifeBm/TwMogHxNVDuzpX
         4Zkg==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@google.com header.s=20161025 header.b="a3/ZV658";
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id y11si135943edr.151.2020.04.28.16.18.17;
        Tue, 28 Apr 2020 16:18:41 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@google.com header.s=20161025 header.b="a3/ZV658";
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1726426AbgD1XQ3 (ORCPT <rfc822;0330sisy@gmail.com> + 99 others);
        Tue, 28 Apr 2020 19:16:29 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:60290 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-FAIL-OK-FAIL)
        by vger.kernel.org with ESMTP id S1725853AbgD1XQ3 (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Tue, 28 Apr 2020 19:16:29 -0400
Received: from mail-il1-x141.google.com (mail-il1-x141.google.com [IPv6:2607:f8b0:4864:20::141])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id E13A9C03C1AC
        for <linux-kernel@vger.kernel.org>; Tue, 28 Apr 2020 16:16:28 -0700 (PDT)
Received: by mail-il1-x141.google.com with SMTP id r2so637957ilo.6
        for <linux-kernel@vger.kernel.org>; Tue, 28 Apr 2020 16:16:28 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20161025;
        h=mime-version:references:in-reply-to:from:date:message-id:subject:to
         :cc:content-transfer-encoding;
        bh=r4RxKLheQFWjLght4V80HIUjV5cwhunpMukZ0Rx77a0=;
        b=a3/ZV658yISvrO9+1UU27T1GAwKxt14HXqvoXKFBaCbW3Lp5mY7UffdoYOa95wNEf3
         U+grmPC6Pf8E1N9kq2HAsoeLDAt+iMAyNDZKvehqIc6NcWOBIhIjh5XB0ZJoGK023wA4
         mar6i3VfAxK6wgli1oe4eJa4AK2wnngnNaHmCDFzAKTG+jNUNK1djtgDXV34yiEIxk8D
         z/TwGO99pgXFch32y5rw9GZ87Fbonh62nDyONUFchBOMD4ps/qBzc4TmyHKcOZ3anD8j
         VHtd+tp8KEE1sF1675bCwZfrpPrs/HV+dDRUMpGbdy2vTWxhynJ8yOA5zbcjBRlm+Ijb
         fwGg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:references:in-reply-to:from:date
         :message-id:subject:to:cc:content-transfer-encoding;
        bh=r4RxKLheQFWjLght4V80HIUjV5cwhunpMukZ0Rx77a0=;
        b=AyQfK7P/KmjiCpdcrnIp5iXFfmL0i19yIMtFfA/Z+R6v3SYoWgVmnk/IM3B4AVNqz5
         1GKLSZrpcpTL+Jtynv72C1Ks/wFobLbX/F1ygRFQTl6fRlp/z9uKBZ1oA1+GGyMokkJc
         kj5lkRg5ManJXOD50sTsr1Rj3Tt7MkjfQJ4ITXcaFO4pWXara8WnIGNmk4piNn0VH93L
         I/Otnm+Kg5eO2cXPCndgRsqBWhy/SwGjMgnvwtPZxyUoMrWblaEhwSysHhd7OROimhtG
         RFKgytsPW2ia9dggyo6XjKm0zfVGaLz1eKOezAzLi/8KueICnwCGQ1hw7gXHzmiMniUl
         Mg9Q==
X-Gm-Message-State: AGi0PuZYzCySqGB8qkVPoeSmAX6Epdqe7zJ0nvwdwMfzlPIXaSICZHPd
        d9B0O/lx60gNMXeyGppNFhJuhzzIU2Tz/GcF9jHXqw==
X-Received: by 2002:a92:3d85:: with SMTP id k5mr29689400ilf.26.1588115787754;
 Tue, 28 Apr 2020 16:16:27 -0700 (PDT)
MIME-Version: 1.0
References: <20200423022550.15113-1-sean.j.christopherson@intel.com>
 <20200423022550.15113-10-sean.j.christopherson@intel.com> <CALMp9eSuYqeVmWhb6q7T5DAW_Npbuin_N1+sbWjvcu0zTqiwsQ@mail.gmail.com>
 <20200428225949.GP12735@linux.intel.com>
In-Reply-To: <20200428225949.GP12735@linux.intel.com>
From:   Jim Mattson <jmattson@google.com>
Date:   Tue, 28 Apr 2020 16:16:16 -0700
Message-ID: <CALMp9eRFfEB1avbQv0O0V=EGrJdSNTxg8Z-BONmQ--dV66CuAg@mail.gmail.com>
Subject: Re: [PATCH 09/13] KVM: nVMX: Prioritize SMI over nested IRQ/NMI
To:     Sean Christopherson <sean.j.christopherson@intel.com>
Cc:     Paolo Bonzini <pbonzini@redhat.com>,
        Vitaly Kuznetsov <vkuznets@redhat.com>,
        Wanpeng Li <wanpengli@tencent.com>,
        Joerg Roedel <joro@8bytes.org>, kvm list <kvm@vger.kernel.org>,
        LKML <linux-kernel@vger.kernel.org>,
        Oliver Upton <oupton@google.com>,
        Peter Shier <pshier@google.com>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Tue, Apr 28, 2020 at 3:59 PM Sean Christopherson
<sean.j.christopherson@intel.com> wrote:
>
> On Tue, Apr 28, 2020 at 03:04:02PM -0700, Jim Mattson wrote:
> > On Wed, Apr 22, 2020 at 7:26 PM Sean Christopherson
> > <sean.j.christopherson@intel.com> wrote:
> > >
> > > Check for an unblocked SMI in vmx_check_nested_events() so that pendi=
ng
> > > SMIs are correctly prioritized over IRQs and NMIs when the latter eve=
nts
> > > will trigger VM-Exit.  This also fixes an issue where an SMI that was
> > > marked pending while processing a nested VM-Enter wouldn't trigger an
> > > immediate exit, i.e. would be incorrectly delayed until L2 happened t=
o
> > > take a VM-Exit.
> > >
> > > Fixes: 64d6067057d96 ("KVM: x86: stubs for SMM support")
> > > Signed-off-by: Sean Christopherson <sean.j.christopherson@intel.com>
> > > ---
> > >  arch/x86/kvm/vmx/nested.c | 6 ++++++
> > >  1 file changed, 6 insertions(+)
> > >
> > > diff --git a/arch/x86/kvm/vmx/nested.c b/arch/x86/kvm/vmx/nested.c
> > > index 1fdaca5fd93d..8c16b190816b 100644
> > > --- a/arch/x86/kvm/vmx/nested.c
> > > +++ b/arch/x86/kvm/vmx/nested.c
> > > @@ -3750,6 +3750,12 @@ static int vmx_check_nested_events(struct kvm_=
vcpu *vcpu)
> > >                 return 0;
> > >         }
> > >
> > > +       if (vcpu->arch.smi_pending && !is_smm(vcpu)) {
> > > +               if (block_nested_events)
> > > +                       return -EBUSY;
> > > +               goto no_vmexit;
> > > +       }
> > > +
> >
> > From the SDM, volume 3:
> >
> > =E2=80=A2 System-management interrupts (SMIs), INIT signals, and higher
> > priority events take priority over MTF VM exits.
> >
> > I think this block needs to be moved up.
>
> Hrm.  It definitely needs to be moved above the preemption timer, though =
I
> can't find any public documentation about the preemption timer's priority=
.
> Preemption timer is lower priority than MTF, ergo it's not in the same
> class as SMI.
>
> Regarding SMI vs. MTF and #DB trap, to actually prioritize SMIs above MTF
> and #DBs, we'd need to save/restore MTF and pending #DBs via SMRAM.  I
> think it makes sense to take the easy road and keep SMI after the traps,
> with a comment to say it's technically wrong but not worth fixing.

Pending debug exceptions should just go in the pending debug
exceptions field. End of story and end of complications. I don't
understand why kvm is so averse to using this field the way it was
intended.

As for the MTF, section 34.14.1 of the SDM, volume 3, clearly states:

The pseudocode above makes reference to the saving of VMX-critical
state. This state consists of the following:
(1) SS.DPL (the current privilege level); (2) RFLAGS.VM; (3) the state
of blocking by STI and by MOV SS (see
Table 24-3 in Section 24.4.2); (4) the state of virtual-NMI blocking
(only if the processor is in VMX non-root oper-
ation and the =E2=80=9Cvirtual NMIs=E2=80=9D VM-execution control is 1); an=
d (5) an
indication of whether an MTF VM exit is pending
(see Section 25.5.2). These data may be saved internal to the
processor or in the VMCS region of the current
VMCS. Processors that do not support SMI recognition while there is
blocking by STI or by MOV SS need not save
the state of such blocking.

I haven't really looked at kvm's implementation of SMM (because Google
doesn't support it), but it seems that the "MTF VM exit is pending"
bit should be trivial to deal with. I assume we save the other
VMX-critical state somewhere!