[patch 33/60] KVM: Avoid instruction emulation when event deliveryis pending

From: Greg KH
Date: Mon Aug 18 2008 - 14:59:55 EST

Next message: Greg KH: "[patch 34/60] KVM: task switch: translate guest segment limit tovirt-extension byte granular field"
Previous message: Greg KH: "[patch 32/60] KVM: task switch: use seg regs provided by subarchinstead of reading from GDT"
In reply to: Greg KH: "[patch 32/60] KVM: task switch: use seg regs provided by subarchinstead of reading from GDT"
Next in thread: Greg KH: "[patch 34/60] KVM: task switch: translate guest segment limit tovirt-extension byte granular field"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

2.6.26-stable review patch. If anyone has any objections, please let us know.

------------------
From: Avi Kivity <avi@xxxxxxxxxxxx>

(cherry-picked from commit 577bdc496614ced56d999bbb425e85adf2386490)

When an event (such as an interrupt) is injected, and the stack is
shadowed (and therefore write protected), the guest will exit. The
current code will see that the stack is shadowed and emulate a few
instructions, each time postponing the injection. Eventually the
injection may succeed, but at that time the guest may be unwilling
to accept the interrupt (for example, the TPR may have changed).

This occurs every once in a while during a Windows 2008 boot.

Fix by unshadowing the fault address if the fault was due to an event
injection.

Signed-off-by: Avi Kivity <avi@xxxxxxxxxxxx>
Signed-off-by: Greg Kroah-Hartman <gregkh@xxxxxxx>

---
arch/x86/kvm/mmu.c | 1 +
arch/x86/kvm/svm.c | 7 ++++++-
arch/x86/kvm/vmx.c | 2 ++
3 files changed, 9 insertions(+), 1 deletion(-)

--- a/arch/x86/kvm/mmu.c
+++ b/arch/x86/kvm/mmu.c
@@ -1792,6 +1792,7 @@ int kvm_mmu_unprotect_page_virt(struct k
spin_unlock(&vcpu->kvm->mmu_lock);
return r;
}
+EXPORT_SYMBOL_GPL(kvm_mmu_unprotect_page_virt);

void __kvm_mmu_free_some_pages(struct kvm_vcpu *vcpu)
{
--- a/arch/x86/kvm/svm.c
+++ b/arch/x86/kvm/svm.c
@@ -1007,13 +1007,18 @@ static int pf_interception(struct vcpu_s
struct kvm *kvm = svm->vcpu.kvm;
u64 fault_address;
u32 error_code;
+ bool event_injection = false;

if (!irqchip_in_kernel(kvm) &&
- is_external_interrupt(exit_int_info))
+ is_external_interrupt(exit_int_info)) {
+ event_injection = true;
push_irq(&svm->vcpu, exit_int_info & SVM_EVTINJ_VEC_MASK);
+ }

fault_address = svm->vmcb->control.exit_info_2;
error_code = svm->vmcb->control.exit_info_1;
+ if (event_injection)
+ kvm_mmu_unprotect_page_virt(&svm->vcpu, fault_address);
return kvm_mmu_page_fault(&svm->vcpu, fault_address, error_code);
}

--- a/arch/x86/kvm/vmx.c
+++ b/arch/x86/kvm/vmx.c
@@ -2258,6 +2258,8 @@ static int handle_exception(struct kvm_v
cr2 = vmcs_readl(EXIT_QUALIFICATION);
KVMTRACE_3D(PAGE_FAULT, vcpu, error_code, (u32)cr2,
(u32)((u64)cr2 >> 32), handler);
+ if (vect_info & VECTORING_INFO_VALID_MASK)
+ kvm_mmu_unprotect_page_virt(vcpu, cr2);
return kvm_mmu_page_fault(vcpu, cr2, error_code);
}

--
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Greg KH: "[patch 34/60] KVM: task switch: translate guest segment limit tovirt-extension byte granular field"
Previous message: Greg KH: "[patch 32/60] KVM: task switch: use seg regs provided by subarchinstead of reading from GDT"
In reply to: Greg KH: "[patch 32/60] KVM: task switch: use seg regs provided by subarchinstead of reading from GDT"
Next in thread: Greg KH: "[patch 34/60] KVM: task switch: translate guest segment limit tovirt-extension byte granular field"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]