[PATCH RFC 15/22] KVM: x86: hyper-v: Honor... | linux-hyperv

[PATCH RFC 00/22] KVM: x86: hyper-v: Fine-grained access check to Hyper-V hypercalls and MSRs · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-13
[PATCH RFC 01/22] asm-generic/hyperv: add HV_STATUS_ACCESS_DENIED definition · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-13
Re: [PATCH RFC 01/22] asm-generic/hyperv: add HV_STATUS_ACCESS_DENIED definition · Wei Liu <wei.liu@kernel.org> · 2021-04-15
Re: [PATCH RFC 01/22] asm-generic/hyperv: add HV_STATUS_ACCESS_DENIED definition · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-15
Re: [PATCH RFC 01/22] asm-generic/hyperv: add HV_STATUS_ACCESS_DENIED definition · Wei Liu <wei.liu@kernel.org> · 2021-04-16
[PATCH RFC 02/22] KVM: x86: hyper-v: Cache guest CPUID leaves determining features availability · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-13
[PATCH RFC 03/22] KVM: x86: hyper-v: Honor HV_MSR_VP_RUNTIME_AVAILABLE privilege bit · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-13
[PATCH RFC 04/22] KVM: x86: hyper-v: Honor HV_MSR_TIME_REF_COUNT_AVAILABLE privilege bit · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-13
[PATCH RFC 05/22] KVM: x86: hyper-v: Honor HV_MSR_HYPERCALL_AVAILABLE privilege bit · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-13
[PATCH RFC 06/22] KVM: x86: hyper-v: Honor HV_MSR_VP_INDEX_AVAILABLE privilege bit · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-13
[PATCH RFC 07/22] KVM: x86: hyper-v: Honor HV_MSR_RESET_AVAILABLE privilege bit · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-13
[PATCH RFC 08/22] KVM: x86: hyper-v: Honor HV_MSR_REFERENCE_TSC_AVAILABLE privilege bit · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-13
[PATCH RFC 09/22] KVM: x86: hyper-v: Honor HV_MSR_SYNIC_AVAILABLE privilege bit · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-13
[PATCH RFC 10/22] KVM: x86: hyper-v: Honor HV_MSR_SYNTIMER_AVAILABLE privilege bit · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-13
[PATCH RFC 11/22] KVM: x86: hyper-v: Honor HV_MSR_APIC_ACCESS_AVAILABLE privilege bit · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-13
[PATCH RFC 12/22] KVM: x86: hyper-v: Honor HV_ACCESS_FREQUENCY_MSRS privilege bit · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-13
[PATCH RFC 13/22] KVM: x86: hyper-v: Honor HV_ACCESS_REENLIGHTENMENT privilege bit · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-13
[PATCH RFC 14/22] KVM: x86: hyper-v: Honor HV_FEATURE_GUEST_CRASH_MSR_AVAILABLE privilege bit · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-13
[PATCH RFC 15/22] KVM: x86: hyper-v: Honor HV_FEATURE_GUEST_CRASH_MSR_AVAILABLE privilege bit · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-13
[PATCH RFC 16/22] KVM: x86: hyper-v: Honor HV_STIMER_DIRECT_MODE_AVAILABLE privilege bit · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-13
[PATCH RFC 17/22] KVM: x86: hyper-v: Honor HV_POST_MESSAGES privilege bit · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-13
[PATCH RFC 18/22] KVM: x86: hyper-v: Honor HV_SIGNAL_EVENTS privilege bit · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-13
[PATCH RFC 20/22] KVM: x86: hyper-v: Honor HV_X64_REMOTE_TLB_FLUSH_RECOMMENDED bit · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-13
[PATCH RFC 21/22] KVM: x86: hyper-v: Honor HV_X64_CLUSTER_IPI_RECOMMENDED bit · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-13
[PATCH RFC 22/22] KVM: x86: hyper-v: Check access to HVCALL_NOTIFY_LONG_SPIN_WAIT hypercall · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-13
[PATCH RFC 19/22] KVM: x86: hyper-v: Honor HV_DEBUGGING privilege bit · Vitaly Kuznetsov <vkuznets@redhat.com> · 2021-04-13

STALE1874d

Revisions (3)

2021-04-13 rfc current
2021-04-19 v1 [diff vs current]
2021-05-21 v2 [diff vs current]

[PATCH RFC 15/22] KVM: x86: hyper-v: Honor HV_FEATURE_GUEST_CRASH_MSR_AVAILABLE privilege bit

From: Vitaly Kuznetsov <vkuznets@redhat.com>
Date: 2021-04-13 12:28:34
Also in: kvm, lkml
Subsystem: kernel virtual machine for x86 (kvm/x86), kvm x86 hyper-v (kvm/hyper-v), the rest, x86 architecture (32-bit and 64-bit) · Maintainers: Sean Christopherson, Paolo Bonzini, Vitaly Kuznetsov, Linus Torvalds, Thomas Gleixner, Ingo Molnar, Borislav Petkov, Dave Hansen

Synthetic debugging MSRs (HV_X64_MSR_SYNDBG_CONTROL,
HV_X64_MSR_SYNDBG_STATUS, HV_X64_MSR_SYNDBG_SEND_BUFFER,
HV_X64_MSR_SYNDBG_RECV_BUFFER, HV_X64_MSR_SYNDBG_PENDING_BUFFER,
HV_X64_MSR_SYNDBG_OPTIONS) are only available to guest when
HV_FEATURE_GUEST_CRASH_MSR_AVAILABLE bit is exposed.

Signed-off-by: Vitaly Kuznetsov <vkuznets@redhat.com>
---
 arch/x86/kvm/hyperv.c | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/arch/x86/kvm/hyperv.c b/arch/x86/kvm/hyperv.c
index 0678f1012ed7..1299847c89ba 100644
--- a/arch/x86/kvm/hyperv.c
+++ b/arch/x86/kvm/hyperv.c

@@ -312,7 +312,9 @@ static int syndbg_set_msr(struct kvm_vcpu *vcpu, u32 msr, u64 data, bool host)
 {
 	struct kvm_hv_syndbg *syndbg = to_hv_syndbg(vcpu);
 
-	if (!kvm_hv_is_syndbg_enabled(vcpu) && !host)
+	if (unlikely(!host && (!kvm_hv_is_syndbg_enabled(vcpu) ||
+			       !(to_hv_vcpu(vcpu)->cpuid_cache.features_edx &
+				 HV_FEATURE_DEBUG_MSRS_AVAILABLE))))
 		return 1;
 
 	trace_kvm_hv_syndbg_set_msr(vcpu->vcpu_id,

@@ -351,7 +353,9 @@ static int syndbg_get_msr(struct kvm_vcpu *vcpu, u32 msr, u64 *pdata, bool host)
 {
 	struct kvm_hv_syndbg *syndbg = to_hv_syndbg(vcpu);
 
-	if (!kvm_hv_is_syndbg_enabled(vcpu) && !host)
+	if (unlikely(!host && (!kvm_hv_is_syndbg_enabled(vcpu) ||
+			       !(to_hv_vcpu(vcpu)->cpuid_cache.features_edx &
+				 HV_FEATURE_DEBUG_MSRS_AVAILABLE))))
 		return 1;
 
 	switch (msr) {

-- 
2.30.2

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help