Received: by 2002:a05:6a10:f3d0:0:0:0:0 with SMTP id a16csp4050020pxv;
        Tue, 13 Jul 2021 09:35:14 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJw3hJbAd/BogucgeW5NgPnYcfXZGBLqBul9laLleF6b0Zg3fvMdof0YTWMisXsW+d/TbMHu
X-Received: by 2002:a17:906:8158:: with SMTP id z24mr6818381ejw.359.1626194113899;
        Tue, 13 Jul 2021 09:35:13 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1626194113; cv=none;
        d=google.com; s=arc-20160816;
        b=RNSZmXlGuYh1mazpTMy7NZ6zCIxCTEvNqs1cUHAb59vi6WuRV/ZfpbW/EYSFC7yyI9
         XMCS+7hW5MU3niQJpEjnJ4KD9Py1IytwdtItmRtoNLFRHOl9lvWf4vsx09cEj1nS1dlQ
         TDBexIbY08/6sxL2tLSkHtf+YLHTVLx+FdIF7fiOPPSw0L0zMwmQSfmNxHhMbjalixb5
         T8xNh4opD1mRyIQOKix+hylYi920mgqQZ/MxXX8NU71RGNMOGwTOo3Ea46FYp8jcjg3/
         N/a5HP2iGIpa9ZRZzwBdeHMrSz75EJiUgMzq4BpWsa5t6mqnqYOkV9uT7LVxrTOmPEwm
         13hQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:cc:to:from:subject
         :references:mime-version:message-id:in-reply-to:date:reply-to
         :dkim-signature;
        bh=yeyM8miFXVfhYCiRacpfh4x5/Y1VXoOxcgLbMzodMTs=;
        b=TasYo8DCts8dn1OeFaTzRSiFVrf+WdgsPmDUrTHF2S1li1RKex+BiENZqlrSc+0a00
         IQRxnB9KAgiI2LK18j7eW4WtSW9JgCEo3pCE68X7PQ4AH3GGatn6mJvYtkXd0oVMG7px
         3CCGKiO2/nTT5EQtw+l6uu+nC4TfXDdMRxIT+8kQ2bMLVEUnY5/onyEoy2naSNluyVc3
         ZCuWhltqMiGGfIaF+lDA6B1+DsTezY2ntve+Bz3IDqR4BLM1ZHRw7pGX5musma1l6ntq
         9nxRaa5LD3cChBWP7EE2hUjm0yIID19eozkFCtABKvku7+554t0pM86l8xbo+F6HUsAo
         TjiQ==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@google.com header.s=20161025 header.b=gmkIzyul;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id eb13si3622476edb.380.2021.07.13.09.34.46;
        Tue, 13 Jul 2021 09:35:13 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@google.com header.s=20161025 header.b=gmkIzyul;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S232254AbhGMQg2 (ORCPT <rfc822;manishshakya.nd@gmail.com>
        + 99 others); Tue, 13 Jul 2021 12:36:28 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:44936 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S231793AbhGMQg1 (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Tue, 13 Jul 2021 12:36:27 -0400
Received: from mail-qk1-x74a.google.com (mail-qk1-x74a.google.com [IPv6:2607:f8b0:4864:20::74a])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 57F62C0613DD
        for <linux-kernel@vger.kernel.org>; Tue, 13 Jul 2021 09:33:37 -0700 (PDT)
Received: by mail-qk1-x74a.google.com with SMTP id o189-20020a378cc60000b02903b2ccd94ea1so17373017qkd.19
        for <linux-kernel@vger.kernel.org>; Tue, 13 Jul 2021 09:33:37 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20161025;
        h=reply-to:date:in-reply-to:message-id:mime-version:references
         :subject:from:to:cc:content-transfer-encoding;
        bh=yeyM8miFXVfhYCiRacpfh4x5/Y1VXoOxcgLbMzodMTs=;
        b=gmkIzyulalQgm0iUkw5EyMI4acmPrftCi/JxE0avsh261tlyjOsTc8y3eCFLK4U2xj
         4kMtA7UeZ8G5aJwgY7KEbGInJGWrQqEEns3qJzuxuW1KoLj+KPqVhRXa0Mt3TrLYfPOw
         bPgGWsWO3VwZM0GLigsA92jIZERVIPFwD20MS1hpLdwc/3nHnwpHDXzLMwM+fIw8XtM4
         vSwAXaSy0sE8JwcIfU4EsYGfBiRWfzfaM/qXn3KuCFDZIuneUXZkhevPebN5elEwjjry
         xtDF80ue9AK2pfDYCLUCGxX5PzK2swNv30wmbASC+CHfCAkc+LG0Cngbqzk6ruE/8OgZ
         IZIA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:reply-to:date:in-reply-to:message-id
         :mime-version:references:subject:from:to:cc
         :content-transfer-encoding;
        bh=yeyM8miFXVfhYCiRacpfh4x5/Y1VXoOxcgLbMzodMTs=;
        b=o56UqhOPvWJka+MM2Muh1Fk4QMTta9+WzZCXfr+jbSCAYlakzDGo2gLIZBXg6/15qO
         nIqsZacqFYEasQXHZnOW6mHH0v1st6N0VVU8kOB8i0+T5ZPTyWQvVrZS0yNwWLuDMsLY
         rBtnezoMeFhEZ4tseRmw3ivBoL1Xi+CVg2yKGjF3xIk++qTXbo79s554wxIpFqHrYU2z
         uVaBu64eIw7leYKC53c2tQUKrhzTKiO/t48P8uKdjo6Csl8mhc9X2czyaLbAR+ePkViy
         LMdHpz/67edEaAzSiMMqkaHQ1qUCDHccgSRBCrUnXpkz/SqJPraRyqmbHasrXqjuAyRn
         0JOQ==
X-Gm-Message-State: AOAM531J0LswMjA+0LDhuNljtmHDZnyjk4qm9BYmQu0VdyjSEMqpTIiL
        3aBSbBrxOcNoMSkMLLBL72jv0/tX1fU=
X-Received: from seanjc798194.pdx.corp.google.com ([2620:15c:90:200:825e:11a1:364b:8109])
 (user=seanjc job=sendgmr) by 2002:a0c:b44b:: with SMTP id e11mr5841955qvf.38.1626194016387;
 Tue, 13 Jul 2021 09:33:36 -0700 (PDT)
Reply-To: Sean Christopherson <seanjc@google.com>
Date:   Tue, 13 Jul 2021 09:32:39 -0700
In-Reply-To: <20210713163324.627647-1-seanjc@google.com>
Message-Id: <20210713163324.627647-2-seanjc@google.com>
Mime-Version: 1.0
References: <20210713163324.627647-1-seanjc@google.com>
X-Mailer: git-send-email 2.32.0.93.g670b81a890-goog
Subject: [PATCH v2 01/46] KVM: x86: Flush the guest's TLB on INIT
From:   Sean Christopherson <seanjc@google.com>
To:     Paolo Bonzini <pbonzini@redhat.com>
Cc:     Sean Christopherson <seanjc@google.com>,
        Vitaly Kuznetsov <vkuznets@redhat.com>,
        Wanpeng Li <wanpengli@tencent.com>,
        Jim Mattson <jmattson@google.com>,
        Joerg Roedel <joro@8bytes.org>, kvm@vger.kernel.org,
        linux-kernel@vger.kernel.org, Reiji Watanabe <reijiw@google.com>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

Flush the guest's TLB on INIT, as required by Intel's SDM.  Although
AMD's APM states that the TLBs are unchanged by INIT, it's not clear that
that's correct as the APM also states that the TLB is flush on "External
initialization of the processor."  Regardless, relying on the guest to be
paranoid is unnecessarily risky, while an unnecessary flush is benign
from a functional perspective and likely has no measurable impact on
guest performance.

Note, as of the April 2021 version of Intels' SDM, it also contradicts
itself with respect to TLB flushing.  The overview of INIT explicitly
calls out the TLBs as being invalidated, while a table later in the same
section says they are unchanged.

  9.1 INITIALIZATION OVERVIEW:
    The major difference is that during an INIT, the internal caches, MSRs,
    MTRRs, and x87 FPU state are left unchanged (although, the TLBs and BTB
    are invalidated as with a hardware reset)

  Table 9-1:

  Register                    Power up    Reset      INIT
  Data and Code Cache, TLBs:  Invalid[6]  Invalid[6] Unchanged

Given Core2's erratum[*] about global TLB entries not being flush on INIT,
it's safe to assume that the table is simply wrong.

  AZ28. INIT Does Not Clear Global Entries in the TLB
  Problem: INIT may not flush a TLB entry when:
    =E2=80=A2 The processor is in protected mode with paging enabled and th=
e page global enable
      flag is set (PGE bit of CR4 register)
    =E2=80=A2 G bit for the page table entry is set
    =E2=80=A2 TLB entry is present in TLB when INIT occurs
    =E2=80=A2 Software may encounter unexpected page fault or incorrect add=
ress translation due
      to a TLB entry erroneously left in TLB after INIT.

  Workaround: Write to CR3, CR4 (setting bits PSE, PGE or PAE) or CR0 (sett=
ing
              bits PG or PE) registers before writing to memory early in BI=
OS
              code to clear all the global entries from TLB.

  Status: For the steppings affected, see the Summary Tables of Changes.

[*] https://www.intel.com/content/dam/support/us/en/documents/processors/mo=
bile/celeron/sb/320121.pdf

Fixes: 6aa8b732ca01 ("[PATCH] kvm: userspace interface")
Signed-off-by: Sean Christopherson <seanjc@google.com>
---
 arch/x86/kvm/x86.c | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c
index 8166ad113fb2..4ffc4ca7d7b0 100644
--- a/arch/x86/kvm/x86.c
+++ b/arch/x86/kvm/x86.c
@@ -10867,6 +10867,18 @@ void kvm_vcpu_reset(struct kvm_vcpu *vcpu, bool in=
it_event)
 	 */
 	if (old_cr0 & X86_CR0_PG)
 		kvm_mmu_reset_context(vcpu);
+
+	/*
+	 * Intel's SDM states that all TLB entries are flushed on INIT.  AMD's
+	 * APM states the TLBs are untouched by INIT, but it also states that
+	 * the TLBs are flushed on "External initialization of the processor."
+	 * Flush the guest TLB regardless of vendor, there is no meaningful
+	 * benefit in relying on the guest to flush the TLB immediately after
+	 * INIT.  A spurious TLB flush is benign and likely negligible from a
+	 * performance perspective.
+	 */
+	if (init_event)
+		kvm_make_request(KVM_REQ_TLB_FLUSH_GUEST, vcpu);
 }
=20
 void kvm_vcpu_deliver_sipi_vector(struct kvm_vcpu *vcpu, u8 vector)
--=20
2.32.0.93.g670b81a890-goog