Received: by 2002:a05:6358:1087:b0:cb:c9d3:cd90 with SMTP id j7csp461945rwi;
        Thu, 27 Oct 2022 03:48:03 -0700 (PDT)
X-Google-Smtp-Source: AMsMyM6SHJRbNI1GmGALT2nWiSEzUIyVHFSyE5yEM6GztTgehIslgTzMBZ0AogyRW7s9iPYCg7j9
X-Received: by 2002:a17:902:a5c9:b0:182:3c47:6e86 with SMTP id t9-20020a170902a5c900b001823c476e86mr48150773plq.152.1666867683162;
        Thu, 27 Oct 2022 03:48:03 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1666867683; cv=none;
        d=google.com; s=arc-20160816;
        b=pCIr8vaWtXDz8FZLMZpoRlPzDKsMk6vE5yco4a2vLh+9P0ZOqTQGTOz1Mjyda+gJIj
         4Ac+LebJlOHd6eMYBdNckrjJ2szpkgIh4uo8cLgm/QhikuwfmWJIX8/RbGOrufTWkP3U
         yO2xfwPJDS0l5lrNMP1O1FdQHzmpWai4RaNpvI0DPqe04EtN+8bNQGXf0mXdPqK4FF6+
         1VDR4EeJZt8lYcyIT0p0StqX89mLrnsUcZQhx6H2U6IPM/Bh9i4c3pDGWHltALFDFb4T
         lDPx3giBrBnSggSZZWJymlDp3wRs7BQB3J/CFF9FirrTPIUFlGvz5rVXNGjD/6COgiUE
         h77w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:in-reply-to:from
         :references:cc:to:content-language:subject:user-agent:mime-version
         :date:message-id:dkim-signature;
        bh=j5JXrVLSkFVjgCWLE6WTZNlJEm+FHDGGhWaBYEuOMJE=;
        b=iNvO3fylloc1vCygqkwfPDoO9+9rBhyx/5Ql6G0ngWFXHDhlf2Eh5AUkWJGSRg7ky7
         WhpMwkoKBqGRBvbck7iWCVUurSdcND2rrQVg8oLvuf4L+NeDcGpIC2BfTMtd9HFoM28H
         ivcDplx/jA97/Oqwl5Jj792yc03dUnVpyGJ1ZnLx9bE+WynjJ1Aw1Ufx0s7BRXEZhqun
         oRrKAoqS/EDusqnF70fUa9vB5FFUpNAT14KwwYYRQ+POBDcVKsgR9kxfwVAsqp4p6oSz
         gFgmox2KE3Ggn6KQA85v18uqP8SKInYxW0COZVirKxYi3xfHJd/N7Nu9yAwrDTgsexXg
         jzMQ==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b=YSSAvG6H;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id b14-20020a170903228e00b00186a2274386si1380440plh.469.2022.10.27.03.47.51;
        Thu, 27 Oct 2022 03:48:03 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b=YSSAvG6H;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S235453AbiJ0KaP (ORCPT <rfc822;arvinlake4755@gmail.com>
        + 99 others); Thu, 27 Oct 2022 06:30:15 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:58264 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S235028AbiJ0K36 (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Thu, 27 Oct 2022 06:29:58 -0400
Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.129.124])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 6139E13F8D
        for <linux-kernel@vger.kernel.org>; Thu, 27 Oct 2022 03:29:44 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com;
        s=mimecast20190719; t=1666866583;
        h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
         to:to:cc:cc:mime-version:mime-version:content-type:content-type:
         content-transfer-encoding:content-transfer-encoding:
         in-reply-to:in-reply-to:references:references;
        bh=j5JXrVLSkFVjgCWLE6WTZNlJEm+FHDGGhWaBYEuOMJE=;
        b=YSSAvG6HIeYDaOYX/UAOdQcr6EqCHjOJM8sb97TGgx6SECKIBOm4dNcbtA7Rqf46PDUA9y
        gjjXX3P12OXMDZ86EeyXWDTr52j/g0ZlFJqNdPXhYmRdY6q1VD7xpD61pessNjXzm5+LZw
        6npJCiz08G93JS3/SAufyYShPj4ol0w=
Received: from mail-wm1-f69.google.com (mail-wm1-f69.google.com
 [209.85.128.69]) by relay.mimecast.com with ESMTP with STARTTLS
 (version=TLSv1.3, cipher=TLS_AES_128_GCM_SHA256) id
 us-mta-133-8-Tj0Hi1NBinHee72DFc4g-1; Thu, 27 Oct 2022 06:29:42 -0400
X-MC-Unique: 8-Tj0Hi1NBinHee72DFc4g-1
Received: by mail-wm1-f69.google.com with SMTP id f1-20020a1cc901000000b003cf475763b6so384280wmb.3
        for <linux-kernel@vger.kernel.org>; Thu, 27 Oct 2022 03:29:42 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20210112;
        h=content-transfer-encoding:in-reply-to:from:references:cc:to
         :content-language:subject:user-agent:mime-version:date:message-id
         :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;
        bh=j5JXrVLSkFVjgCWLE6WTZNlJEm+FHDGGhWaBYEuOMJE=;
        b=R+2c9ODW2ySBPwLFYSeTaZQ6EWvl4o7HjBB6r1CRc7Y+3I4p+xFXXW5VWW+uxyST1p
         2AQ2JAe1ZNSxtXgToR9I5vIJoVgR+9PoPVibSUKf4840zBfFp7meVdfrQ1lxX4hP6/nE
         6LjSCHhXlETlRPNysbGdxE+ETiEBOcd6qS6fOJTSzL4HeqYZZmJ/vpMduN3Cba/JERhD
         JO8Qh723c0jMCm4XZsMVWkOMDt2gGiBEhqUBGdpGpDD7PBxpBLgZl5erfn12bQNGSZxs
         lwIx326tiVFDsVnVvKthdFm7fjsEIOklk8Mptsb/pBm3kdTVDyms/BzxDao69d4bqJFW
         2UsA==
X-Gm-Message-State: ACrzQf1S7pOpU8/dbmLPGTYg3iOAfvFTv0Wwg0WYRkvFaCS9EP/7AfSj
        1S+if7DtG9WmkHUiL4B0zKJsoL0GnmIK5CsDJZA4Lm9XsPPyZq1ejq99OpyHeBYkhflAoPLbyZG
        G2MEMAFm1ohfZ+ByOFD1KmPfd
X-Received: by 2002:a05:6000:1885:b0:22e:7851:b257 with SMTP id a5-20020a056000188500b0022e7851b257mr31136914wri.418.1666866581170;
        Thu, 27 Oct 2022 03:29:41 -0700 (PDT)
X-Received: by 2002:a05:6000:1885:b0:22e:7851:b257 with SMTP id a5-20020a056000188500b0022e7851b257mr31136890wri.418.1666866580826;
        Thu, 27 Oct 2022 03:29:40 -0700 (PDT)
Received: from ?IPV6:2001:b07:6468:f312:1c09:f536:3de6:228c? ([2001:b07:6468:f312:1c09:f536:3de6:228c])
        by smtp.googlemail.com with ESMTPSA id n4-20020a056000170400b002302dc43d77sm845574wrc.115.2022.10.27.03.29.39
        (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128);
        Thu, 27 Oct 2022 03:29:39 -0700 (PDT)
Message-ID: <4d421aec-e151-7761-58c7-032c3168d5f2@redhat.com>
Date:   Thu, 27 Oct 2022 12:29:38 +0200
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101
 Thunderbird/102.2.1
Subject: Re: [PATCH] KVM: vmx/nested: avoid blindly setting
 SECONDARY_EXEC_ENCLS_EXITING when sgx is enabled
Content-Language: en-US
To:     Sean Christopherson <seanjc@google.com>,
        Emanuele Giuseppe Esposito <eesposit@redhat.com>
Cc:     kvm@vger.kernel.org, Thomas Gleixner <tglx@linutronix.de>,
        Ingo Molnar <mingo@redhat.com>, Borislav Petkov <bp@alien8.de>,
        Dave Hansen <dave.hansen@linux.intel.com>, x86@kernel.org,
        "H. Peter Anvin" <hpa@zytor.com>, Bandan Das <bsd@redhat.com>,
        linux-kernel@vger.kernel.org, stable@vger.kernel.org
References: <20221025123749.2201649-1-eesposit@redhat.com>
 <Y1gbAA0JVo9g3joi@google.com>
From:   Paolo Bonzini <pbonzini@redhat.com>
In-Reply-To: <Y1gbAA0JVo9g3joi@google.com>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
X-Spam-Status: No, score=-2.6 required=5.0 tests=BAYES_00,DKIMWL_WL_HIGH,
        DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,NICE_REPLY_A,
        RCVD_IN_DNSWL_NONE,RCVD_IN_MSPIKE_H2,SPF_HELO_NONE,SPF_NONE
        autolearn=ham autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On 10/25/22 19:21, Sean Christopherson wrote:
> Shortlog scope is still wrong, should be "KVM: nVMX:"
> 
> The shortlog is also somewhat is misleading/confusing, as it's not at all obvious
> that "sgx enabled" means "KVM's sgx_module param is enabled" and not "SGX is enabled
> in the system".
> 
> E.g.
> 
>    KVM: nVMX: Advertise ENCLS_EXITING to L1 iff SGX is fully supported

Queued with this commit message:

---
KVM: VMX: fully disable SGX if SECONDARY_EXEC_ENCLS_EXITING unavailable

Clear enable_sgx if ENCLS-exiting is not supported, i.e. if SGX cannot be
virtualized.  When KVM is loaded, adjust_vmx_controls checks that the
bit is available before enabling the feature; however, other parts of the
code check enable_sgx and not clearing the variable caused two different
bugs, mostly affecting nested virtualization scenarios.

First, because enable_sgx remained true, SECONDARY_EXEC_ENCLS_EXITING
would be marked available in the capability MSR that are accessed by a
nested hypervisor.  KVM would then propagate the control from vmcs12
to vmcs02 even if it isn't supported by the processor, thus causing an
unexpected VM-Fail (exit code 0x7) in L1.

Second, vmx_set_cpu_caps() would not clear the SGX bits when hardware
support is unavailable.  This is a much less problematic bug as it only
happens if SGX is soft-disabled (available in the processor but hidden
in CPUID) or if SGX is supported for bare metal but not in the VMCS
(will never happen when running on bare metal, but can theoertically
happen when running in a VM).

Last but not least, this ensures that module params in sysfs reflect
KVM's actual configuration.

RHBZ: https://bugzilla.redhat.com/show_bug.cgi?id=2127128
Fixes: 72add915fbd5 ("KVM: VMX: Enable SGX virtualization for SGX1, SGX2 and LC")
Cc: stable@vger.kernel.org
Suggested-by: Sean Christopherson <seanjc@google.com>
Suggested-by: Bandan Das <bsd@redhat.com>
Signed-off-by: Emanuele Giuseppe Esposito <eesposit@redhat.com>
Message-Id: <20221025123749.2201649-1-eesposit@redhat.com>
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
---

The bug is strictly speaking not in nVMX, although that's where most
of the symptoms surface.

Paolo