Received: by 2002:a05:6a10:9848:0:0:0:0 with SMTP id x8csp907079pxf; Thu, 25 Mar 2021 17:42:10 -0700 (PDT) X-Google-Smtp-Source: ABdhPJx2A47hubS1X9APV4luJCnIgJbuD5AWQwFr9NgHrwSYy3RUfaqGaS84Kke2r7lEy27g9G1B X-Received: by 2002:a50:ef0a:: with SMTP id m10mr12036770eds.261.1616719330033; Thu, 25 Mar 2021 17:42:10 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1616719330; cv=none; d=google.com; s=arc-20160816; b=vmo6a6B1gIWmbm5wrXhutM4LGB4as75OTZ+XpJURfc9JdLKsqQ4aub7+q6jRYE8RKU jO+8b76GKi9DbZ7lNgyCVcQG35yFv9qZMq8FGxe51hKY7aB8Xk1IaAIdoio3RdqWwt+2 MTA3kFk1vFNUe6xuSiU+pa4goBI7keGuiFz20cw6VI2WxgVUeaE0pClzWMCU0VNb8N1O V8leG1Zw+LgNuRnX4PN/6N5C5FWuet6Vy4v9E0rd2TQKIOKpVJRjhMfoxM6ccKpPTMkA oJ4cFr5hf4ccJTD9d/MZZkXAoChGuNQB8Mb5iyxUVOEqgShR0Owb4A82GlaXMLMJ57eY EGMQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:cc:to:subject:message-id:date:from:in-reply-to :references:mime-version:dkim-signature; bh=WudPpAp2zodSuwqYyO3R50R/8DSntKfLN/wH7uYSYrM=; b=y9jOLphu3ThZQNB25EKe+NZ7MF05vCkxh3loHfctIsXdzBa19aeQM9+cdEwBFEGiHI /N+dkuj1PGhCKQ07rz1Bo5vUlb3WZWhp88vXQbP+kX66YONTqQMeb/Ci2RLxbshD6PKa F0fZhcMjrBYcAQ836oYgaBYSVVpf5YWLrkRDNy+GAmPXKUmG9uszM2Tm1kE2tqLmNvKK MPdD/cfWPHIOVvd5QFmfNlpLtZFoSAig4TVPlZ1Hq+aOdd1teCAU4dalTYHCnFmGB09z 6LqlUA9ngfz3Ac/6taqHRD7l326Gx9fcPmvbk4Rc2uqrIXAgCvzeFvn0btN6jAppaW9C /LOQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@gmail.com header.s=20161025 header.b="Vn0/vMYa"; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id ds7si6196546ejc.214.2021.03.25.17.41.45; Thu, 25 Mar 2021 17:42:10 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@gmail.com header.s=20161025 header.b="Vn0/vMYa"; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S229920AbhCZAkp (ORCPT + 99 others); Thu, 25 Mar 2021 20:40:45 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:42082 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229761AbhCZAkd (ORCPT ); Thu, 25 Mar 2021 20:40:33 -0400 Received: from mail-qt1-x82e.google.com (mail-qt1-x82e.google.com [IPv6:2607:f8b0:4864:20::82e]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 9FCA2C06174A; Thu, 25 Mar 2021 17:40:30 -0700 (PDT) Received: by mail-qt1-x82e.google.com with SMTP id 1so2534046qtb.0; Thu, 25 Mar 2021 17:40:30 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=WudPpAp2zodSuwqYyO3R50R/8DSntKfLN/wH7uYSYrM=; b=Vn0/vMYaXMe4R2XpupDYgbUI/t7lV9nXGuYlJoSC+dKymcCPiqM9rgCQOKQ9RTxykZ jlHhgZdCnCYFfa7lkUGZKHhQeeLn0D5tPJUvM7RsykxlwbhizYawUTci8sAmPalZmKJR fTQqFPWmEbqkQUcgjcGclbf4y3S943k7/o1/mojMBgPHGBRW9eCRKUEN+8NPXGjbJV8G +CzWvTBSst/kjYaWzvZGy4UVC4huLEGjeFoEBLNxfY3a0gvbYO/mHMvEsOy0ElCTj64A lfYtc/9BFTHCwJ//X0KMU535ukgBGASMOY+0xsvg3kWdu87FSjbA9tO+ljQjfQ9d2BFF p9zA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=WudPpAp2zodSuwqYyO3R50R/8DSntKfLN/wH7uYSYrM=; b=ij0ivtTy/AgEsgrb61nDpQRgV/g5tFQaMSVL8/YYI51OvyHQyXNSn5OTi/xHla+7u5 +b5z+T6h2SEUcJcT/5yYJTrJ+W6j7/mYGqFsN7boLL0ffJAlE4lY+Fsp7vfZRG77o+J+ GfnZ8+iqDLz9QftToyje3TM4nHyUikbFM2HVv1okaWiziK/7PVxN+DFKlTl8aFM79t2L gzgnbTVEa+nQA5MJE6r3oo2UB30qRoa9KA9Ya0jhVqmw0I7wiQPr820Ug/tjIFONvhdO xUOfZCHnFUhGhZ5Iqbg05NzY2tgzGubV6v/SRn/FqAPW6vx9trZp0DcFLZLn5Yqc+NMv TS2Q== X-Gm-Message-State: AOAM533KP4o7ExnGkqwLyEijtnTSoXN4PoZWcLzosQpIc4B95vmfzZ9x 8Lj0+v2Yk68RN8HA7ussoxjre5sCjXzQ+X+L4g== X-Received: by 2002:aed:2ee7:: with SMTP id k94mr10029267qtd.135.1616719229894; Thu, 25 Mar 2021 17:40:29 -0700 (PDT) MIME-Version: 1.0 References: <20210323023726.28343-1-lihaiwei.kernel@gmail.com> In-Reply-To: From: Haiwei Li Date: Fri, 26 Mar 2021 08:39:50 +0800 Message-ID: Subject: Re: [PATCH] KVM: VMX: Check the corresponding bits according to the intel sdm To: Sean Christopherson Cc: LKML , kvm list , Paolo Bonzini , Vitaly Kuznetsov , Wanpeng Li , Jim Mattson , Joerg Roedel , Haiwei Li Content-Type: text/plain; charset="UTF-8" Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Thu, Mar 25, 2021 at 11:49 PM Sean Christopherson wrote: > > On Thu, Mar 25, 2021, Haiwei Li wrote: > > On Tue, Mar 23, 2021 at 10:37 AM wrote: > > > > > > From: Haiwei Li > > > > > > According to IA-32 SDM Vol.3D "A.1 BASIC VMX INFORMATION", two inspections > > > are missing. > > > * Bit 31 is always 0. Earlier versions of this manual specified that the > > > VMCS revision identifier was a 32-bit field in bits 31:0 of this MSR. For > > > all processors produced prior to this change, bit 31 of this MSR was read > > > as 0. > > > * The values of bits 47:45 and bits 63:57 are reserved and are read as 0. > > > > > > Signed-off-by: Haiwei Li > > > --- > > > arch/x86/kvm/vmx/vmx.c | 14 ++++++++++++++ > > > 1 file changed, 14 insertions(+) > > > > > > diff --git a/arch/x86/kvm/vmx/vmx.c b/arch/x86/kvm/vmx/vmx.c > > > index 32cf828..0d6d13c 100644 > > > --- a/arch/x86/kvm/vmx/vmx.c > > > +++ b/arch/x86/kvm/vmx/vmx.c > > > @@ -2577,6 +2577,20 @@ static __init int setup_vmcs_config(struct vmcs_config *vmcs_conf, > > > > > > rdmsr(MSR_IA32_VMX_BASIC, vmx_msr_low, vmx_msr_high); > > > > > > + /* > > > + * IA-32 SDM Vol 3D: Bit 31 is always 0. > > > + * For all earlier processors, bit 31 of this MSR was read as 0. > > > + */ > > > + if (vmx_msr_low & (1u<<31)) > > > + return -EIO; > > > > Drop this code as Jim said. > > > > > + > > > + /* > > > + * IA-32 SDM Vol 3D: bits 47:45 and bits 63:57 are reserved and are read > > > + * as 0. > > > + */ > > > + if (vmx_msr_high & 0xfe00e000) > > > + return -EIO; > > > > Is this ok? Can we pick up the part? :) > > No. "Reserved and are read as 0" does not guarantee the bits will always be > reserved. There are very few bits used for feature enumeration in x86 that are > guaranteed to be '0' for all eternity. > > The whole point of reserving bits in registers is so that the CPU vendor, Intel > in this case, can introduce new features and enumerate them to software without > colliding with existing features or breaking software. E.g. if Intel adds a new > feature and uses any of these bits to enumerate the feature, this check would > prevent KVM from loading on CPUs that support the feature. Got it, only explicit restrictions should be checked. Thanks. -- Haiwei Li