Received: by 2002:a05:6a10:206:0:0:0:0 with SMTP id 6csp4926519pxj;
        Tue, 22 Jun 2021 11:00:24 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJyIbBszt6r2sthulPcV97+zKFL6W2KDlrxj1GURCmf0sokT2oUVnftGwYdD83zIU0f9gmux
X-Received: by 2002:a6b:7714:: with SMTP id n20mr3691250iom.126.1624384824162;
        Tue, 22 Jun 2021 11:00:24 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1624384824; cv=none;
        d=google.com; s=arc-20160816;
        b=XudCmUj6lMlhuZ07et2rfJ0t/P7quPFtP23tPqxs0JI0gKxNiep17SSXtnGSb4iSOY
         9AWdWMeLT8uJ0NeF0wrokzRrnRZ57MTHlHyhJbI2C+/P0VgJyKVTHM5dYReQeZY/z/8l
         vaNe4CByRU214k5Uh3jFLau1WSjkCBwGR//Bm9w6ASsQnxVZ1dQwIx5vz9gY676i0pyr
         AkSylfVt13K37eJBQkvHINH9oHuvzVPy6oA2NidRJ7sh12U1D40lt5g+StfLQLk0+aOP
         do8iKBQsMuLgCgyr+os7NU86WUfDZMAAVG2m96jVjyQL4+7r4p/6JxPuC+y8KxJHm0wx
         32eg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:cc:to:from:subject:references:mime-version
         :message-id:in-reply-to:date:reply-to:dkim-signature;
        bh=gKgtnO0li3XctR1LlcZ0sfmT/BtRonO0rdROZiYa21Q=;
        b=yc1k0DEFpEzjqucxizHVQcdrWwhCiawAUsqKC0eX8b6k+todfvCit/6fwHiXIw2x6s
         1Jopav7w1nXfthJ+aB7fSQhMspdQXuq5pr8ejVGG+p6mu0i4+xrYU4dpbOUkYvt67u4L
         aSZ2a00uuA8ybGOT+0eJFLMeJXzRJLlcl4gRPW+9GkUeoDwIPFA84EZofFz6KfdcLwK5
         nEuvTdbSyKWOMemPbnb+odS2s/dI5w+qOsagfgOgao8q8ylrdc/B3q19QiVtzs5C0soV
         uVLwsX7NOYoJ/mZuiYbYFjwPYxAmCmbeq5x6RANh3ACFxasQNaH7MPzBziTw+OoW/ca9
         rq0w==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@google.com header.s=20161025 header.b=Sex7lUei;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id u18si16265885ilg.79.2021.06.22.11.00.10;
        Tue, 22 Jun 2021 11:00:24 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@google.com header.s=20161025 header.b=Sex7lUei;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S232723AbhFVSBb (ORCPT <rfc822;maciejromanfijalkowski@gmail.com>
        + 99 others); Tue, 22 Jun 2021 14:01:31 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:37652 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S232661AbhFVSBG (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Tue, 22 Jun 2021 14:01:06 -0400
Received: from mail-qk1-x749.google.com (mail-qk1-x749.google.com [IPv6:2607:f8b0:4864:20::749])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id AFBA0C0611BD
        for <linux-kernel@vger.kernel.org>; Tue, 22 Jun 2021 10:58:31 -0700 (PDT)
Received: by mail-qk1-x749.google.com with SMTP id b6-20020a05620a1266b02903b10c5cfa93so841054qkl.13
        for <linux-kernel@vger.kernel.org>; Tue, 22 Jun 2021 10:58:31 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20161025;
        h=reply-to:date:in-reply-to:message-id:mime-version:references
         :subject:from:to:cc;
        bh=gKgtnO0li3XctR1LlcZ0sfmT/BtRonO0rdROZiYa21Q=;
        b=Sex7lUeipn7tR+V0xF1ACQQZL4w0FGipBVhvq6RwEVTjOP3LMZ2SwGQeCkBG51CTy7
         J9seSG7oKa6S5aBAg+yP9LAAz0n8y0YYm1xzGnfCyGheGzdGzfkDHR4BVLfvgN9x5zg9
         I9VtGIP+0i3VJqaw7QDgV7feV49meyBvHZNcDAb4iG3oZnS1qh/xNl88MqnwQLrrQnj7
         M2K0KZSQmGA4zHYDfEkX2SUnKHmwKcULBMcyzKop+9KmdLUlvEMGaN07XrFJlZKPDJFe
         Bt1DmrpQr1goRbZh30CBFX7VtgM7JiJpvJg+fvHTp0AfaGhU3igcdKLznJ2hnwkWr/uU
         h+tg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:reply-to:date:in-reply-to:message-id
         :mime-version:references:subject:from:to:cc;
        bh=gKgtnO0li3XctR1LlcZ0sfmT/BtRonO0rdROZiYa21Q=;
        b=i5X+zX8l55XTYZIlFScwLKMJ52Vwk8NPCSsDq8LwHUtxdFgDQqgQwIq9YZlhWw0PcY
         X4WN9v+jWMZhF4qzHP/bUXM5g1vGfGw9oSk6y3gGAbu1ng4QiV0n9vyeRJW8+HtP60rD
         lqu1ZfbTFbZlkjNcCgyzM43Dzn+5cfoPjcz6C1GJrU/BK4uoTlgdF52qrobDgkouFk4Y
         9td+NNN7PxwXNlMV64yjVjWjiUvmHy0WIJhl4+P1AXRh2GgWndhIsVgUbJnGn3Aol3HQ
         YnYAm04anikR0k430cqYQ+NgMrv0NsIBhMYAv2byZUgao+EpTpFfdBkiw3eJuMcdxSPG
         Ayag==
X-Gm-Message-State: AOAM530e65O9Jcyw8MjylT+ymwELS7iTbGzysmPE4JGe5pMS+mziIfpJ
        12GduYN8NayuRuKcR1OXByQOQsW1qWw=
X-Received: from seanjc798194.pdx.corp.google.com ([2620:15c:f:10:5722:92ce:361f:3832])
 (user=seanjc job=sendgmr) by 2002:a25:2fd4:: with SMTP id v203mr5378244ybv.434.1624384710554;
 Tue, 22 Jun 2021 10:58:30 -0700 (PDT)
Reply-To: Sean Christopherson <seanjc@google.com>
Date:   Tue, 22 Jun 2021 10:57:00 -0700
In-Reply-To: <20210622175739.3610207-1-seanjc@google.com>
Message-Id: <20210622175739.3610207-16-seanjc@google.com>
Mime-Version: 1.0
References: <20210622175739.3610207-1-seanjc@google.com>
X-Mailer: git-send-email 2.32.0.288.g62a8d224e6-goog
Subject: [PATCH 15/54] KVM: nSVM: Add a comment to document why nNPT uses
 vmcb01, not vCPU state
From:   Sean Christopherson <seanjc@google.com>
To:     Paolo Bonzini <pbonzini@redhat.com>
Cc:     Sean Christopherson <seanjc@google.com>,
        Vitaly Kuznetsov <vkuznets@redhat.com>,
        Wanpeng Li <wanpengli@tencent.com>,
        Jim Mattson <jmattson@google.com>,
        Joerg Roedel <joro@8bytes.org>, kvm@vger.kernel.org,
        linux-kernel@vger.kernel.org,
        Yu Zhang <yu.c.zhang@linux.intel.com>,
        Maxim Levitsky <mlevitsk@redhat.com>
Content-Type: text/plain; charset="UTF-8"
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

Add a comment in the nested NPT initialization flow to call out that it
intentionally uses vmcb01 instead current vCPU state to get the effective
hCR4 and hEFER for L1's NPT context.

Note, despite nSVM's efforts to handle the case where vCPU state doesn't
reflect L1 state, the MMU may still do the wrong thing due to pulling
state from the vCPU instead of the passed in CR0/CR4/EFER values.  This
will be addressed in future commits.

Signed-off-by: Sean Christopherson <seanjc@google.com>
---
 arch/x86/kvm/svm/nested.c | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/arch/x86/kvm/svm/nested.c b/arch/x86/kvm/svm/nested.c
index 9f0e7ed672b2..33b2f9337e26 100644
--- a/arch/x86/kvm/svm/nested.c
+++ b/arch/x86/kvm/svm/nested.c
@@ -98,6 +98,12 @@ static void nested_svm_init_mmu_context(struct kvm_vcpu *vcpu)
 	WARN_ON(mmu_is_nested(vcpu));
 
 	vcpu->arch.mmu = &vcpu->arch.guest_mmu;
+
+	/*
+	 * L1's CR4 and EFER are stuffed into vmcb01 by the caller.  Note, when
+	 * called via KVM_SET_NESTED_STATE, that state may _not_ match current
+	 * vCPU state.  CR0.WP is explicitly ignored, while CR0.PG is required.
+	 */
 	kvm_init_shadow_npt_mmu(vcpu, X86_CR0_PG, svm->vmcb01.ptr->save.cr4,
 				svm->vmcb01.ptr->save.efer,
 				svm->nested.ctl.nested_cr3);
-- 
2.32.0.288.g62a8d224e6-goog