Re: [PATCH] KVM: x86: Fix ERAPS RAP clear on INVPCID single-context invalidation

Next message: Aditya Gupta: "[PATCH v2 2/3] ppc/pnv: Refactor PNV PCI hotplug driver"
Previous message: Sean Christopherson: "Re: [PATCH] kvm: fix typo in call_once.h comment"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Sean Christopherson

Date: Wed May 27 2026 - 14:11:07 EST

On Mon, 18 May 2026 13:59:56 +0000, Emily Ehlert wrote:
> Use kvm_register_mark_dirty() instead of kvm_register_is_dirty() to
> actually mark VCPU_EXREG_ERAPS as dirty when emulating
> INVPCID_TYPE_SINGLE_CTXT. kvm_register_is_dirty() is a read-only
> predicate whose return value is discarded, making the call a no-op.
> Without this fix, a single-context INVPCID will not trigger a RAP clear
> on the next VMRUN, breaking the ERAPS security guarantee.
>
> [...]

Applied to kvm-x86 fixes, thanks!

[1/1] KVM: x86: Fix ERAPS RAP clear on INVPCID single-context invalidation
https://github.com/kvm-x86/linux/commit/b60621c5121c

--
https://github.com/kvm-x86/linux/tree/next