git.baikalelectronics.ru Git - kernel.git/commit

author	Sean Christopherson <seanjc@google.com>
	Tue, 22 Jun 2021 17:56:47 +0000 (10:56 -0700)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Fri, 3 Sep 2021 08:08:16 +0000 (10:08 +0200)
commit	fe5a40b31af38285a939697ecfa589500ad9f646
tree	fdd495e399c18f0e0f12c744bafcd8b409bdaa00	tree \| snapshot
parent	c69edc5859dca7cb1629815ccce91aefbce54acc	commit \| diff

KVM: x86/mmu: Treat NX as used (not reserved) for all !TDP shadow MMUs

commit 112022bdb5bc372e00e6e43cb88ee38ea67b97bd upstream

Mark NX as being used for all non-nested shadow MMUs, as KVM will set the
NX bit for huge SPTEs if the iTLB mutli-hit mitigation is enabled.
Checking the mitigation itself is not sufficient as it can be toggled on
at any time and KVM doesn't reset MMU contexts when that happens. KVM
could reset the contexts, but that would require purging all SPTEs in all
MMUs, for no real benefit. And, KVM already forces EFER.NX=1 when TDP is
disabled (for WP=0, SMEP=1, NX=0), so technically NX is never reserved
for shadow MMUs.

Fixes: 78311cba7f22 ("kvm: mmu: ITLB_MULTIHIT mitigation")
Cc: stable@vger.kernel.org
Signed-off-by: Sean Christopherson <seanjc@google.com>
Message-Id: <20210622175739.3610207-3-seanjc@google.com>
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
[sudip: use old path]
Signed-off-by: Sudip Mukherjee <sudipm.mukherjee@gmail.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>