Received: by 2002:a05:6902:102b:0:0:0:0 with SMTP id x11csp779802ybt;
        Fri, 26 Jun 2020 11:20:14 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJx8yZOEnMgeZ/3WwpB2A9+Wk2MlvXz8UuVbUeYQTwTGHCDlB7I/AgvkQzTea5w5wqC0Pnfd
X-Received: by 2002:a05:6402:13d0:: with SMTP id a16mr4625237edx.269.1593195614590;
        Fri, 26 Jun 2020 11:20:14 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1593195614; cv=none;
        d=google.com; s=arc-20160816;
        b=K3yUo8yJo6pw847R/8QNuH9Ofz5eFgT1fN4GGhZBo9Rgr0h1Oie/mf3t/CoziYytZt
         MEveiNAZGlXTZ0j9tCVK296Vk0rGI1ZQwY26TGvAF5rasGININKi+Pw6JJU6zBU1ctUM
         lDE6hZEakPBDFxz11nm8t7vxCpZmNtr+LwEkRpqS+2pmcuGggq2sZoZmknQ0nqpmSuJf
         qhQJn27f1qARVXBO+GxplzjolH6zWwdBFvIetcMj9vGcDfCqSX5lPCEtL8sUgp8rtPtv
         kHy0lVHwpwSm7/4FoVvjrLGtDRyB4BECOQNSHqzc04LFVZIzCPp8Fw8M97w3nGeOyxVz
         3YPg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:in-reply-to:content-disposition
         :mime-version:references:message-id:subject:cc:to:from:date
         :dkim-signature;
        bh=Mh8Kb7lcXyeDUsTLpHNhFiDt09C/jNnPC1a+PBHnv+Y=;
        b=EH3TeInVmWWnq2dWh+FWwBAt7pbChvymbPiHh5qnq47rBGVxc0XzLx/XyXDyJCerRD
         +Bpl41wi5Av/PYpSNYyxJTfQkD9gwXBRnqj3KeZlikTcYf3uDtr1uEGNlcc24sRwQIO+
         oYQqcF1yzrLgwc5Yts9kmtzFJ5jjorQFlbH4xbazKLnHiI4Fmt51+Nd+fiUTeSZMmgrw
         k59Uz6alz8iaYzszDBHMvH/W7PCrtXMYYWwoSCDbARC9o3jbpVfQYUlEh7BlcbVNmuxO
         guUjLnJS8y+HiXDyQQL8FVpBqemXuDcD6y+VLG/BtnELVK23oP9MKAJMes9ZwVkftqYh
         g07w==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b=ZGFksRhY;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id w19si9419884eju.41.2020.06.26.11.19.51;
        Fri, 26 Jun 2020 11:20:14 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b=ZGFksRhY;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1726022AbgFZSHk (ORCPT <rfc822;schlichte.alexander@gmail.com>
        + 99 others); Fri, 26 Jun 2020 14:07:40 -0400
Received: from us-smtp-1.mimecast.com ([205.139.110.61]:27489 "EHLO
        us-smtp-delivery-1.mimecast.com" rhost-flags-OK-OK-OK-FAIL)
        by vger.kernel.org with ESMTP id S1725971AbgFZSHj (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Fri, 26 Jun 2020 14:07:39 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com;
        s=mimecast20190719; t=1593194857;
        h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
         to:to:cc:cc:mime-version:mime-version:content-type:content-type:
         in-reply-to:in-reply-to:references:references;
        bh=Mh8Kb7lcXyeDUsTLpHNhFiDt09C/jNnPC1a+PBHnv+Y=;
        b=ZGFksRhYusONU+ujPVhtbAVXqU4+kjgpmMlxFMZ60AL9hvuOCRJFp3/rmVrM6OR9SbF2fs
        1wRZzUnX+n1aV4M00oU0Z6+PUBDc8tszEUiNO5XmtoSPWGbCLHG1KZFG3d8l/RhlRlGMV+
        +Ii3t/k0/dw/yF+821I1CTEiKqQR/Zs=
Received: from mail-qv1-f71.google.com (mail-qv1-f71.google.com
 [209.85.219.71]) (Using TLS) by relay.mimecast.com with ESMTP id
 us-mta-88-rv41IwgbPLy4r2LVlVOSrA-1; Fri, 26 Jun 2020 14:07:36 -0400
X-MC-Unique: rv41IwgbPLy4r2LVlVOSrA-1
Received: by mail-qv1-f71.google.com with SMTP id r12so6952821qvk.3
        for <linux-kernel@vger.kernel.org>; Fri, 26 Jun 2020 11:07:36 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:date:from:to:cc:subject:message-id:references
         :mime-version:content-disposition:in-reply-to;
        bh=Mh8Kb7lcXyeDUsTLpHNhFiDt09C/jNnPC1a+PBHnv+Y=;
        b=tpV5388z/63mLuh1RpebXOCsSPhKfgK12cI1im3RoL/Hke9rM37Y9aSnYuyKYkMnh0
         BonXmK/vHi17j1SlWTlp1ev467/nclvQsU6Kl28d4QPMZ0aW3AQXmPkFhnXQJrPFKZ4C
         j6n+XA9AKWk+QYO08oPlKysTpx+iDydns2E7iuwBjpmdZLT0o2w0O5UTzcM1DdHdhwEU
         Mn3m+pYYDt1usfPYOC1wH/q8WES7inYd8lJrav26eICgXWTFC+8dGQT+7v2Li+l5TN58
         glVS/RWk+h0QJ6QUlTQUh63OmhNi1nJdzz0oMAMb16liIJXhQfMgeCYUOrAvRhYiJO0M
         m+OA==
X-Gm-Message-State: AOAM533M7+zbUHOFf3N6DKpmyk/GIWIidNAnuwcxP6eJ9mkahlK20tov
        AUUTzj8RVLXYF7QnsLzn6Hznn8Ki8S3Vrf92XNaEtiXptsJ4eQ9lPQCa1MRUx9+DMth0uRiU4RI
        gB85ZjzBElw4xsnrnz9u9DETx
X-Received: by 2002:ac8:4143:: with SMTP id e3mr3974343qtm.28.1593194855160;
        Fri, 26 Jun 2020 11:07:35 -0700 (PDT)
X-Received: by 2002:ac8:4143:: with SMTP id e3mr3974318qtm.28.1593194854928;
        Fri, 26 Jun 2020 11:07:34 -0700 (PDT)
Received: from xz-x1 ([2607:9880:19c0:32::2])
        by smtp.gmail.com with ESMTPSA id v2sm8827585qtq.8.2020.06.26.11.07.33
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Fri, 26 Jun 2020 11:07:34 -0700 (PDT)
Date:   Fri, 26 Jun 2020 14:07:32 -0400
From:   Peter Xu <peterx@redhat.com>
To:     Sean Christopherson <sean.j.christopherson@intel.com>
Cc:     Paolo Bonzini <pbonzini@redhat.com>, linux-kernel@vger.kernel.org,
        kvm@vger.kernel.org, Vitaly Kuznetsov <vkuznets@redhat.com>
Subject: Re: [PATCH 1/2] KVM: X86: Move ignore_msrs handling upper the stack
Message-ID: <20200626180732.GB175520@xz-x1>
References: <20200622220442.21998-1-peterx@redhat.com>
 <20200622220442.21998-2-peterx@redhat.com>
 <20200625061544.GC2141@linux.intel.com>
 <1cebc562-89e9-3806-bb3c-771946fc64f3@redhat.com>
 <20200625162540.GC3437@linux.intel.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
In-Reply-To: <20200625162540.GC3437@linux.intel.com>
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Thu, Jun 25, 2020 at 09:25:40AM -0700, Sean Christopherson wrote:
> diff --git a/arch/x86/kvm/cpuid.c b/arch/x86/kvm/cpuid.c
> index 5eb618dbf211..64322446e590 100644
> --- a/arch/x86/kvm/cpuid.c
> +++ b/arch/x86/kvm/cpuid.c
> @@ -1013,9 +1013,9 @@ bool kvm_cpuid(struct kvm_vcpu *vcpu, u32 *eax, u32 *ebx,
>                 *ebx = entry->ebx;
>                 *ecx = entry->ecx;
>                 *edx = entry->edx;
> -               if (function == 7 && index == 0) {
> +               if (function == 7 && index == 0 && (*ebx | (F(RTM) | F(HLE))) {
>                         u64 data;
> -                       if (!__kvm_get_msr(vcpu, MSR_IA32_TSX_CTRL, &data, true) &&
> +                       if (!kvm_get_msr(vcpu, MSR_IA32_TSX_CTRL, &data) &&
>                             (data & TSX_CTRL_CPUID_CLEAR))
>                                 *ebx &= ~(F(RTM) | F(HLE));
>                 }
> 
> 
> On VMX, MSR_IA32_TSX_CTRL will be added to the so called shared MSR array
> regardless of whether or not it is being advertised to userspace (this is
> a bug in its own right).  Using the host_initiated variant means KVM will
> incorrectly bypass VMX's ARCH_CAP_TSX_CTRL_MSR check, i.e. incorrectly
> clear the bits if userspace is being weird and stuffed MSR_IA32_TSX_CTRL
> without advertising it to the guest.

Btw, would it be more staightforward to check "vcpu->arch.arch_capabilities &
ARCH_CAP_TSX_CTRL_MSR" rather than "*ebx | (F(RTM) | F(HLE))" even if we want
to have such a fix?

-- 
Peter Xu