Received: by 2002:a05:6a10:a841:0:0:0:0 with SMTP id d1csp1795907pxy;
        Fri, 23 Apr 2021 17:56:05 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJzMIQ0FcBe/U79MxywuKe7ZmjDiyigxD+bEddrlbJFqU3oC4X3w1ihFDyvFcdQG9OwkiW2a
X-Received: by 2002:a17:906:7806:: with SMTP id u6mr6577633ejm.130.1619225765727;
        Fri, 23 Apr 2021 17:56:05 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1619225765; cv=none;
        d=google.com; s=arc-20160816;
        b=Dp/f5uewD0ridmh9BLNYXR26zNGhMmYkmJTnxQtyuZpswhe+yzxKvmlOj5a2ANXFum
         O3eRmEDRa80fLFOqlULoT5KcjqZx3i2if676iAKXwAjdBDSEut9V/hhuaBknKgj+DDyX
         QNbxvmYBM3yupWQC/8SB5FQalShOghfx4+ltpMuMWaXMVLo8g1nlwOl/R4WOyTAAuONn
         gZlajdruiGCaiesaNnWpvX9jogCLWDqsymjVfe80QLR7zom7u1X94ksiHLkRCzLAJZDi
         ienuI5zQY3DHbYCp+igd3eduUDx8JiLSHOHBBWlASJPihADWxsJ46c0wgXk7Yn8qAyMU
         hADg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:cc:to:from:subject:references:mime-version
         :message-id:in-reply-to:date:reply-to:dkim-signature;
        bh=BsJdegcuVAgkFqlKM15IX9VerfL7fgnioVjMhrNs33k=;
        b=C/g1Puq0S+o+J1c+ReIcSP8lcfFaAnRtmvCvNhq2IlMaPJAU4dmKK/WxGG73PuZNbD
         m0E9z2xfhZKcmRrXZWTJLeoQCIEPvp2RLCPRcZVKT4yU0+FgmhEsitQTQNAMuNu/IMhR
         zM15do41U/zOMJg8DoWE5pq7oqjb2lCink2j9ctbhH9sd7gwzjDX/Ya5MzssO5oHWioB
         9dYX3APSoJl2O/rTNp1g5rlG0FQnsRZtz6RMKDmir/pmk4Lc6GhnOfbEUmyzMP849CiA
         SFd/JkOT7+C+oyU0WAFZSbepd4M1fYKhw1nv7PDxoONGiYbIL8zP4YdShcxtmvnfY5mr
         dQsw==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@google.com header.s=20161025 header.b=vLlkN+LU;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id b1si6797453ejh.35.2021.04.23.17.55.42;
        Fri, 23 Apr 2021 17:56:05 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@google.com header.s=20161025 header.b=vLlkN+LU;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S244499AbhDXAxP (ORCPT <rfc822;liu.h.jason@gmail.com>
        + 99 others); Fri, 23 Apr 2021 20:53:15 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:36966 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S244479AbhDXAvo (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Fri, 23 Apr 2021 20:51:44 -0400
Received: from mail-yb1-xb49.google.com (mail-yb1-xb49.google.com [IPv6:2607:f8b0:4864:20::b49])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 1D8F2C061378
        for <linux-kernel@vger.kernel.org>; Fri, 23 Apr 2021 17:47:56 -0700 (PDT)
Received: by mail-yb1-xb49.google.com with SMTP id n129-20020a2527870000b02904ed02e1aab5so14640774ybn.21
        for <linux-kernel@vger.kernel.org>; Fri, 23 Apr 2021 17:47:56 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20161025;
        h=reply-to:date:in-reply-to:message-id:mime-version:references
         :subject:from:to:cc;
        bh=BsJdegcuVAgkFqlKM15IX9VerfL7fgnioVjMhrNs33k=;
        b=vLlkN+LUxUzZtGrOzpsmPmPjsmrhAnES/tWoBJJAyibAJP7P+KimwEM8v/xj1BDKMC
         lXBRoAMO9dPZhq3w9t/iBTqjbi4qgn6+fD3Nrwqwu7RJu7eTeAX3GBs0sgulKAQHxGBC
         TCnXsZeo8VIbirryF19u2K/pH+fusn98DIKywWHtCeTR5cFWqrm+su5xf8Ai77gXGOYY
         Wf7h65B9fb4f6LJuWuPQRLIOmjkEOVHv0QluCrjL85hA9eDHjcp8h/bf35+Nzg40Kx/P
         4FmVIlL1eHGsjH4XBMx+8O7l2U8NzcI7oOWzah/msl0AKrrwW62V8OnCHuUQnPuOEAhw
         hgGQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:reply-to:date:in-reply-to:message-id
         :mime-version:references:subject:from:to:cc;
        bh=BsJdegcuVAgkFqlKM15IX9VerfL7fgnioVjMhrNs33k=;
        b=JVAp3Tw3MACw1BUKGFkDwoSs7DLmz66nHIzbGIbaGgHuVwYCMsvjpEgFYgvGV/q3Ys
         gUTo+0azFfz/cq4HiaQD2HhZ/4tmQ3q8Y3OF1Qae5uXX97SHy8FdgurRLUwX7LARaxty
         vq5RwLkX7DgroaTYvmCi5CdhuDv6WdsjyJ7p8dfmvFPB/E6cawVM4aAy/CBsXuAjrlDV
         E+EAES37pppPMG+Oqs0xYLImaPXr8RYzyrD8tgh6g8OuI5I36jLwqUH1SBo+XN7FOyQl
         p2xNtHHFZHceVAEX0NMoyC2cSFWdPUtHiXDY2Bo9aipcWA3Xf8rwLU5mkhA6ab5YKe6i
         L3gg==
X-Gm-Message-State: AOAM530cSJwU2fTtNMa8fL+qrXpxdzDUoVrvoji6ayT0Qg+3VY0TWTTl
        SVmRp9nAqzYQzlADQAr3Y5uePkYDdTQ=
X-Received: from seanjc798194.pdx.corp.google.com ([2620:15c:f:10:ad52:3246:e190:f070])
 (user=seanjc job=sendgmr) by 2002:a25:5883:: with SMTP id m125mr8938555ybb.171.1619225275305;
 Fri, 23 Apr 2021 17:47:55 -0700 (PDT)
Reply-To: Sean Christopherson <seanjc@google.com>
Date:   Fri, 23 Apr 2021 17:46:27 -0700
In-Reply-To: <20210424004645.3950558-1-seanjc@google.com>
Message-Id: <20210424004645.3950558-26-seanjc@google.com>
Mime-Version: 1.0
References: <20210424004645.3950558-1-seanjc@google.com>
X-Mailer: git-send-email 2.31.1.498.g6c1eba8ee3d-goog
Subject: [PATCH 25/43] KVM: VMX: Pull GUEST_CR3 from the VMCS iff CR3 load
 exiting is disabled
From:   Sean Christopherson <seanjc@google.com>
To:     Paolo Bonzini <pbonzini@redhat.com>
Cc:     Sean Christopherson <seanjc@google.com>,
        Vitaly Kuznetsov <vkuznets@redhat.com>,
        Wanpeng Li <wanpengli@tencent.com>,
        Jim Mattson <jmattson@google.com>,
        Joerg Roedel <joro@8bytes.org>, kvm@vger.kernel.org,
        linux-kernel@vger.kernel.org
Content-Type: text/plain; charset="UTF-8"
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

Tweak the logic for grabbing vmcs.GUEST_CR3 in vmx_cache_reg() to look
directly at the execution controls, as opposed to effectively inferring
the controls from vCPUs state.  Inferring the controls isn't wrong, but it
creates a very subtle dependency between the caching logic, the state of
vcpu->arch.cr0 (via is_paging()), and the behavior of vmx_set_cr0().

Using the execution controls doesn't completely eliminate the dependency
in vmx_set_cr0(), e.g. neglecting to cache CR3 before enabling
interception would still break the guest, but it does reduce the
code dependency and mostly eliminate the logical dependency (that CR3
loads are intercepted in certain scenarios).  Eliminating the sublte
read of vcpu->arch.cr0 will also allow for additional cleanup in
vmx_set_cr0().

Signed-off-by: Sean Christopherson <seanjc@google.com>
---
 arch/x86/kvm/vmx/vmx.c | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/arch/x86/kvm/vmx/vmx.c b/arch/x86/kvm/vmx/vmx.c
index e42ae77e4b82..596c8f9766ac 100644
--- a/arch/x86/kvm/vmx/vmx.c
+++ b/arch/x86/kvm/vmx/vmx.c
@@ -2370,8 +2370,11 @@ static void vmx_cache_reg(struct kvm_vcpu *vcpu, enum kvm_reg reg)
 		vcpu->arch.cr0 |= vmcs_readl(GUEST_CR0) & guest_owned_bits;
 		break;
 	case VCPU_EXREG_CR3:
-		if (is_unrestricted_guest(vcpu) ||
-		    (enable_ept && is_paging(vcpu)))
+		/*
+		 * When intercepting CR3 loads, e.g. for shadowing paging, KVM's
+		 * CR3 is loaded into hardware, not the guest's CR3.
+		 */
+		if (!(exec_controls_get(to_vmx(vcpu)) & CPU_BASED_CR3_LOAD_EXITING))
 			vcpu->arch.cr3 = vmcs_readl(GUEST_CR3);
 		break;
 	case VCPU_EXREG_CR4:
-- 
2.31.1.498.g6c1eba8ee3d-goog