Received: by 2002:a05:6358:4e97:b0:b3:742d:4702 with SMTP id ce23csp2510654rwb;
        Mon, 15 Aug 2022 06:45:49 -0700 (PDT)
X-Google-Smtp-Source: AA6agR5pvjEXM0e1M2+IMIY6r4ke+FIgQX6vg4Mr16CziOhXKLp8mg7FPhNwqa7oiYBOjoRHe9nb
X-Received: by 2002:a17:907:a064:b0:730:726f:c62c with SMTP id ia4-20020a170907a06400b00730726fc62cmr10576775ejc.86.1660571149452;
        Mon, 15 Aug 2022 06:45:49 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1660571149; cv=none;
        d=google.com; s=arc-20160816;
        b=gg5g//fyx6FzzBJKoJLLnm5/mXh0q48m9uaobjPpmuypNvlCwXdc/B1KpUeS8ZiCfp
         qQNDMBGwmOefswn1LCRD7JyUk6GXZaC5ZIlB8cshD4GOl3/82wz60kA8lNrgiiAMrA9+
         YgvUJ8ePy9j832rwduXYX/bq2vQ47+hor6BmiaD/CW2bSHhl4VfcGwIbsU7T8V0vRzND
         ajM/aqYGg6gQ6Vr8nCsXvCVDJFT0TIGJirPQsqvU8QWuiuRO+RpYVixLTcgWvJ8u5aRN
         J1Zw++GDTIKUyBX0i8VVMptKwmCh3p1UiIqV2X+OsO37mwHvE6xR/OUL4bgv/SwuIuf1
         hCzA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:mime-version
         :user-agent:references:in-reply-to:date:cc:to:from:subject
         :message-id:dkim-signature;
        bh=Zp+SY9WJSpph5Cd4FsOVThBt8VK08HhqVJA59O9rE/U=;
        b=PFdD1HFGAO0D3Mptr3cvBk/IMCJgm3LJP4DOKmf4QvqA9NpMjkTEsMRFkP9+KK1oSf
         AsS1FrzcFjF4UcNsTEyXLqzfvX9PYD+bKoVt3Cgb6oHdRBIMTPo046AhO4mXJcHHOC5r
         Op2xPCSeDMRSc83NoaXCXX8bV2pTZXHxxQH6vje1ZpjqzuIFnvrk1W1e/P7lVQ32iVHa
         vpEyc4D9IWqQToIBblrEI6ZP0AuGAt5Zw3WNLNmEJ7FnEmJtHpqB4hy/tK/w8ibkKRlE
         +ZuNWA4Fpz4+VBNRHPO1LFm/hju/iPnwZUzw/R3F6c7qeiWD8a0DES4NRTz1vfn1ZP7V
         AQ/A==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b=cAuk20xc;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id j9-20020a05640211c900b0043e57ef5606si10467554edw.9.2022.08.15.06.45.23;
        Mon, 15 Aug 2022 06:45:49 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b=cAuk20xc;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S233182AbiHONcp (ORCPT <rfc822;andrew.melo@gmail.com>
        + 99 others); Mon, 15 Aug 2022 09:32:45 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:44844 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S232651AbiHONcN (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Mon, 15 Aug 2022 09:32:13 -0400
Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.129.124])
        by lindbergh.monkeyblade.net (Postfix) with ESMTP id 2D38815718
        for <linux-kernel@vger.kernel.org>; Mon, 15 Aug 2022 06:32:13 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com;
        s=mimecast20190719; t=1660570332;
        h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
         to:to:cc:cc:mime-version:mime-version:content-type:content-type:
         content-transfer-encoding:content-transfer-encoding:
         in-reply-to:in-reply-to:references:references;
        bh=Zp+SY9WJSpph5Cd4FsOVThBt8VK08HhqVJA59O9rE/U=;
        b=cAuk20xcZ4vMcHMS94Y+BvuKl8Kh1/z4+2UMR8E79HV/2QhqO/hcyc8Qfi1o1XRNcdoizi
        3l1rRMe93tNxo77pUCsPPP9RipxfShFekgfm0fpvvdpjN6JUHf+h1NonUnzeyHoynjl4Be
        qRrfvKYwS4qTUNylWHAmubia3evuPxw=
Received: from mail-qk1-f197.google.com (mail-qk1-f197.google.com
 [209.85.222.197]) by relay.mimecast.com with ESMTP with STARTTLS
 (version=TLSv1.3, cipher=TLS_AES_128_GCM_SHA256) id
 us-mta-225-0NEuVpXqNLyKiD8H_Z6cyw-1; Mon, 15 Aug 2022 09:32:03 -0400
X-MC-Unique: 0NEuVpXqNLyKiD8H_Z6cyw-1
Received: by mail-qk1-f197.google.com with SMTP id f16-20020a05620a409000b006bacc0fcf23so6971214qko.13
        for <linux-kernel@vger.kernel.org>; Mon, 15 Aug 2022 06:32:03 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20210112;
        h=content-transfer-encoding:mime-version:user-agent:references
         :in-reply-to:date:cc:to:from:subject:message-id:x-gm-message-state
         :from:to:cc;
        bh=Zp+SY9WJSpph5Cd4FsOVThBt8VK08HhqVJA59O9rE/U=;
        b=VHkBs+DCQ1L92GqZYwfSA6HKIy7Rm8rWa3SfavzkGSvqX3r8zJp5xVvtRjSJptgGUI
         lhEpqW1ZyW/ufEUAyRno2bHM5ctl0NvkWliaUORMk+kdw1U1/v6UzleKYSWn9zPtgiOV
         fhdTfg1+ZBwgWQlYt/KWf1Bmwsm0XHu/jLt/Hw7lNUOYRWNhX46IeQl7/AUWx7Ubk/+b
         nrPcZvBiyA9l4ZZjQSUrm2yIWqCwnPhP7KjcSYMry3G0Lgs7m/FHBHZxQxK/Cccm+dAS
         k7ziHPxLa+K1QVS5/NctgU0KVNX/A8uvAgGFkPpd/ss8DiiCcLbSEDPCrIKO8ZY8aYKJ
         ihnQ==
X-Gm-Message-State: ACgBeo1id3IbLcrKq22N+5DrJakdb1KO10nxVGDGEd1+tWm17iILRzew
        llIxAn6nu6DxWJuPMlphJQpeRo6C7zcQripawY0g0iIEH7i238S03SdgZp+hqhCWL0pE3noNntx
        oIe0znt9KMmpuTQILN56JRu+N
X-Received: by 2002:a05:622a:12:b0:343:7535:6981 with SMTP id x18-20020a05622a001200b0034375356981mr12072904qtw.287.1660570323014;
        Mon, 15 Aug 2022 06:32:03 -0700 (PDT)
X-Received: by 2002:a05:622a:12:b0:343:7535:6981 with SMTP id x18-20020a05622a001200b0034375356981mr12072887qtw.287.1660570322774;
        Mon, 15 Aug 2022 06:32:02 -0700 (PDT)
Received: from [10.35.4.238] (bzq-82-81-161-50.red.bezeqint.net. [82.81.161.50])
        by smtp.gmail.com with ESMTPSA id h4-20020ac81384000000b00342fb07944fsm8001736qtj.82.2022.08.15.06.32.00
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Mon, 15 Aug 2022 06:32:02 -0700 (PDT)
Message-ID: <26f6e26110b99e0a8cace173a221694d4e94cc1c.camel@redhat.com>
Subject: Re: [PATCH v2 1/9] KVM: x86: check validity of argument to
 KVM_SET_MP_STATE
From:   Maxim Levitsky <mlevitsk@redhat.com>
To:     Paolo Bonzini <pbonzini@redhat.com>, linux-kernel@vger.kernel.org,
        kvm@vger.kernel.org
Cc:     seanjc@google.com, vkuznets@redhat.com
Date:   Mon, 15 Aug 2022 16:31:58 +0300
In-Reply-To: <20220811210605.402337-2-pbonzini@redhat.com>
References: <20220811210605.402337-1-pbonzini@redhat.com>
         <20220811210605.402337-2-pbonzini@redhat.com>
Content-Type: text/plain; charset="UTF-8"
User-Agent: Evolution 3.40.4 (3.40.4-5.fc34) 
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-Spam-Status: No, score=-2.8 required=5.0 tests=BAYES_00,DKIMWL_WL_HIGH,
        DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_LOW,
        SPF_HELO_NONE,SPF_NONE,T_SCC_BODY_TEXT_LINE autolearn=unavailable
        autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Thu, 2022-08-11 at 17:05 -0400, Paolo Bonzini wrote:
> An invalid argument to KVM_SET_MP_STATE has no effect other than making the
> vCPU fail to run at the next KVM_RUN.  Since it is extremely unlikely that
> any userspace is relying on it, fail with -EINVAL just like for other
> architectures.
> 
> Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
> ---
>  arch/x86/kvm/x86.c | 20 +++++++++++++++++---
>  1 file changed, 17 insertions(+), 3 deletions(-)
> 
> diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c
> index 132d662d9713..c44348bb6ef2 100644
> --- a/arch/x86/kvm/x86.c
> +++ b/arch/x86/kvm/x86.c
> @@ -10653,7 +10653,8 @@ static inline int vcpu_block(struct kvm_vcpu *vcpu)
>         case KVM_MP_STATE_INIT_RECEIVED:
>                 break;
>         default:
> -               return -EINTR;
> +               WARN_ON(1);

Very small nitpick: Maybe WARN_ON_ONCE after all? 
(but I don't see any way after this patch to have invalid mp_state)

> +               break;



>         }
>         return 1;
>  }
> @@ -11094,9 +11095,22 @@ int kvm_arch_vcpu_ioctl_set_mpstate(struct kvm_vcpu *vcpu,
>  
>         vcpu_load(vcpu);
>  
> -       if (!lapic_in_kernel(vcpu) &&
> -           mp_state->mp_state != KVM_MP_STATE_RUNNABLE)
> +       switch (mp_state->mp_state) {
> +       case KVM_MP_STATE_UNINITIALIZED:
> +       case KVM_MP_STATE_HALTED:
> +       case KVM_MP_STATE_AP_RESET_HOLD:
> +       case KVM_MP_STATE_INIT_RECEIVED:
> +       case KVM_MP_STATE_SIPI_RECEIVED:
> +               if (!lapic_in_kernel(vcpu))
> +                       goto out;
> +               break;
> +
> +       case KVM_MP_STATE_RUNNABLE:
> +               break;
> +
> +       default:
>                 goto out;
> +       }
>  
>         /*
>          * KVM_MP_STATE_INIT_RECEIVED means the processor is in



Reviewed-by: Maxim Levitsky <mlevitsk@redhat.com>

Best regards,
	Maxim Levitsky