git.baikalelectronics.ru Git - kernel.git/commit

KVM: VMX: Ignore userspace MSR filters for x2APIC

Rework the resetting of the MSR bitmap for x2APIC MSRs to ignore userspace
filtering. Allowing userspace to intercept reads to x2APIC MSRs when
APICV is fully enabled for the guest simply can't work; the LAPIC and thus
virtual APIC is in-kernel and cannot be directly accessed by userspace.
To keep things simple we will in fact forbid intercepting x2APIC MSRs
altogether, independent of the default_allow setting.

Cc: Alexander Graf <graf@amazon.com>
Cc: Aaron Lewis <aaronlewis@google.com>
Cc: Peter Xu <peterx@redhat.com>
Signed-off-by: Sean Christopherson <sean.j.christopherson@intel.com>
Message-Id: <20201005195532.8674-3-sean.j.christopherson@intel.com>
[Modified to operate even if APICv is disabled, adjust documentation. - Paolo]
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>

author	Sean Christopherson <sean.j.christopherson@intel.com>
	Mon, 5 Oct 2020 19:55:32 +0000 (12:55 -0700)
committer	Paolo Bonzini <pbonzini@redhat.com>
	Wed, 21 Oct 2020 21:36:19 +0000 (17:36 -0400)
commit	bb4c4bcf0e0a999283c68063c85c67a8e2c78ba5
tree	7e361e6dc7e02b8c61e1d052df738594529c70d4	tree \| snapshot
parent	3e9171a0448a42d0c1d4c89ff3758c6782c6effd	commit \| diff

Documentation/virt/kvm/api.rst		diff \| blob \| history
arch/x86/kvm/vmx/vmx.c		diff \| blob \| history
arch/x86/kvm/x86.c		diff \| blob \| history