Received: by 2002:a05:6a10:f3d0:0:0:0:0 with SMTP id a16csp4050385pxv;
        Tue, 13 Jul 2021 09:35:41 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJwbR+IW/h91CQIS/qH7Xk+oomIx0//BKJwLMqFjtxpRuHRir1Zyd5OBqA7pQZXz8N797vS2
X-Received: by 2002:a05:6402:524e:: with SMTP id t14mr6965658edd.212.1626194141076;
        Tue, 13 Jul 2021 09:35:41 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1626194141; cv=none;
        d=google.com; s=arc-20160816;
        b=bPfNYYcvVOocIXamecjOfE+L/n6pwAaEOq9kl13NRaNs96VyEvQM5+kba8R15+e2+B
         owy6mALEgtxOnCcii+eaeKcHG9vjBzs9UgM/C3z2W74X84gSPsNoCfRKU43gwqU3FyYN
         bQ6r8yloqlcwbeqjGk/kLhi6NvGgYS5bVs5t/QJx3QEDSlCNFrI4eqMu6ozs6++KBFfP
         baUXHgjMjgB9rnhqGUxirfzYUeyEB7WapXFLrFChjHQ3Y7y6QMq6G3uUaztxrREtiytV
         z8TR77+kfiaUGVD8Qre4jyJz5HMTxfmHf9q3NTKC7u7mtuUIJvr+LdwFU+1v/CxeSC6U
         racA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:cc:to:from:subject:references:mime-version
         :message-id:in-reply-to:date:reply-to:dkim-signature;
        bh=AGAjMyxP8Kz+nybtWUECIkFt/HGEOoMESc1mkCwzAiw=;
        b=gwXoj+xvOvGtzcF55ImBKzauKiNmDbrYY77B6lVk9GbJo2xVVdbo5fau6HYmLWr5WD
         xtLLwm031zz9scSwUDFi2XDqjH4tXZCh8ZstZrXnK/hz5KDGFBuFkt1/L5J+RQywe6Sy
         ZqOiSVnOILPIJ3DcCfXkiKeQwj3HvY6TMykoDnKmWzmsv1LnhBjzDTtRdqU4KWvukE14
         c3hdw5makiKMf2y2TGKFp12UeUC4n0ZJsnrZkvBN+YGye9Uu4JwxuLADKCuD1XtAlT2O
         1cc0+ntYa7mjV9kP3YEVrRdz5m/bfRcoE4/o99bKhcF5Emm5yGeibhkCF7MsH2/yORg2
         eUwQ==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@google.com header.s=20161025 header.b=UCQx6DBF;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id g26si15668625edu.548.2021.07.13.09.35.13;
        Tue, 13 Jul 2021 09:35:41 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@google.com header.s=20161025 header.b=UCQx6DBF;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S233668AbhGMQgk (ORCPT <rfc822;manishshakya.nd@gmail.com>
        + 99 others); Tue, 13 Jul 2021 12:36:40 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:44988 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S233375AbhGMQgg (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Tue, 13 Jul 2021 12:36:36 -0400
Received: from mail-yb1-xb4a.google.com (mail-yb1-xb4a.google.com [IPv6:2607:f8b0:4864:20::b4a])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id CBD7EC0613DD
        for <linux-kernel@vger.kernel.org>; Tue, 13 Jul 2021 09:33:44 -0700 (PDT)
Received: by mail-yb1-xb4a.google.com with SMTP id 132-20020a25158a0000b029055791ebe1e6so27977970ybv.20
        for <linux-kernel@vger.kernel.org>; Tue, 13 Jul 2021 09:33:44 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20161025;
        h=reply-to:date:in-reply-to:message-id:mime-version:references
         :subject:from:to:cc;
        bh=AGAjMyxP8Kz+nybtWUECIkFt/HGEOoMESc1mkCwzAiw=;
        b=UCQx6DBF7jZuuIBk/LPOaIgpig7BPufPBP1HccKEpPWjOVUUq2+vOZCpyk45K55qfp
         IkuPgFkVYU4NmkVbDXfrYp/H5AaJ7Z+DcRzUrLSCLZfOnxLnPUj08XVdXKqz8sAuYuuf
         Q8/+nsvzS7H9XvNpXs5ViM+41tnfVgbpU7l+P7tno+mb1Uo26SRvha9xzM2KvWSW5L8C
         ndiUikKd7/v8Flub24h2PE485cDvfS5vRnYIzDM16YMR/fFrJlaGPWFStEhUGkvp1HUh
         xAPbEHG9+4CH0XASSTBS4FdMeBpMtV/mPuAaWrm4G/rUytfIQOlUEle9k2NlpI/ojg0A
         U70g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:reply-to:date:in-reply-to:message-id
         :mime-version:references:subject:from:to:cc;
        bh=AGAjMyxP8Kz+nybtWUECIkFt/HGEOoMESc1mkCwzAiw=;
        b=KVD1iZmStkefuo2GkPmgYC5qkaTYfwKGhgQVwnPAcccQ5t+aGDY5XD2I0rPz5kJPSy
         qxP87u73KtQ0Mx2h5RRb5VybSDTbKfS4fr88UPiTgPvAx8QTy/WcTl56x0t5W9qClwPT
         nqxtNteUETvUtfXLu82y/3dtow6D+BVVZbjH9oNtkJiDIORawVupnTgcXem6GYbtiKmu
         bFMFX1Z9xFgCVZ16rHHuMApDh4pOguuTBQHvqgAOObXTACYZzDgF2EAPF+7uENqV2ZbO
         sNTi6TV1LjWhxLPOIFboG+JyX9fEAPNSfMA6kcOCZunQqDgwo8vFOve08YAzfrvwdxv0
         v5vw==
X-Gm-Message-State: AOAM53010eiCsDkxQbJCzLaC+dG34LEj0QQTlFNykZ9iY+MeIcyIfMmb
        s1D9bJjCxHZDEDIPY5AbLs6AWhezJsQ=
X-Received: from seanjc798194.pdx.corp.google.com ([2620:15c:90:200:825e:11a1:364b:8109])
 (user=seanjc job=sendgmr) by 2002:a25:b55:: with SMTP id 82mr6710404ybl.501.1626194024052;
 Tue, 13 Jul 2021 09:33:44 -0700 (PDT)
Reply-To: Sean Christopherson <seanjc@google.com>
Date:   Tue, 13 Jul 2021 09:32:43 -0700
In-Reply-To: <20210713163324.627647-1-seanjc@google.com>
Message-Id: <20210713163324.627647-6-seanjc@google.com>
Mime-Version: 1.0
References: <20210713163324.627647-1-seanjc@google.com>
X-Mailer: git-send-email 2.32.0.93.g670b81a890-goog
Subject: [PATCH v2 05/46] KVM: SVM: Require exact CPUID.0x1 match when
 stuffing EDX at INIT
From:   Sean Christopherson <seanjc@google.com>
To:     Paolo Bonzini <pbonzini@redhat.com>
Cc:     Sean Christopherson <seanjc@google.com>,
        Vitaly Kuznetsov <vkuznets@redhat.com>,
        Wanpeng Li <wanpengli@tencent.com>,
        Jim Mattson <jmattson@google.com>,
        Joerg Roedel <joro@8bytes.org>, kvm@vger.kernel.org,
        linux-kernel@vger.kernel.org, Reiji Watanabe <reijiw@google.com>
Content-Type: text/plain; charset="UTF-8"
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

Do not allow an inexact CPUID "match" when querying the guest's CPUID.0x1
to stuff EDX during INIT.  In the common case, where the guest CPU model
is an AMD variant, allowing an inexact match is a nop since KVM doesn't
emulate Intel's goofy "out-of-range" logic for AMD and Hygon.  If the
vCPU model happens to be an Intel variant, an inexact match is possible
if and only if the max CPUID leaf is precisely '0'. Aside from the fact
that there's probably no CPU in existence with a single CPUID leaf, if
the max CPUID leaf is '0', that means that CPUID.0.EAX is '0', and thus
an inexact match for CPUID.0x1.EAX will also yield '0'.

So, with lots of twisty logic, no functional change intended.

Reviewed-by: Reiji Watanabe <reijiw@google.com>
Signed-off-by: Sean Christopherson <seanjc@google.com>
---
 arch/x86/kvm/svm/svm.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/arch/x86/kvm/svm/svm.c b/arch/x86/kvm/svm/svm.c
index 2150642e1bef..12e49dc16efe 100644
--- a/arch/x86/kvm/svm/svm.c
+++ b/arch/x86/kvm/svm/svm.c
@@ -1359,7 +1359,7 @@ static void svm_vcpu_reset(struct kvm_vcpu *vcpu, bool init_event)
 	}
 	init_vmcb(vcpu);
 
-	kvm_cpuid(vcpu, &eax, &dummy, &dummy, &dummy, false);
+	kvm_cpuid(vcpu, &eax, &dummy, &dummy, &dummy, true);
 	kvm_rdx_write(vcpu, eax);
 
 	if (kvm_vcpu_apicv_active(vcpu) && !init_event)
-- 
2.32.0.93.g670b81a890-goog