KVM: x86: More precisely identify NMI from guest when handling PMI

sean-jc · Peter Zijlstra · commit db215756ae59 · 2021-11-17T14:49:09.000+01:00
Differentiate between IRQ and NMI for KVM's PMC overflow callback, which was originally invoked in response to an NMI that arrived while the guest was running, but was inadvertantly changed to fire on IRQs as well when support for perf without PMU/NMI was added to KVM. In practice, this should be a nop as the PMC overflow callback shouldn't be reached, but it's a cheap and easy fix that also better documents the situation. Note, this also doesn't completely prevent false positives if perf somehow ends up calling into KVM, e.g. an NMI can arrive in host after KVM sets its flag. Fixes: dd60d21 ("KVM: x86: Fix perf timer mode IP reporting") Signed-off-by: Sean Christopherson <seanjc@google.com> Signed-off-by: Peter Zijlstra (Intel) <peterz@infradead.org> Reviewed-by: Paolo Bonzini <pbonzini@redhat.com> Link: https://lore.kernel.org/r/20211111020738.2512932-12-seanjc@google.com
diff --git a/arch/x86/kvm/svm/svm.c b/arch/x86/kvm/svm/svm.c
@@ -3931,7 +3931,7 @@ static __no_kcsan fastpath_t svm_vcpu_run(struct kvm_vcpu *vcpu)
 	}
 
 	if (unlikely(svm->vmcb->control.exit_code == SVM_EXIT_NMI))
-		kvm_before_interrupt(vcpu);
+		kvm_before_interrupt(vcpu, KVM_HANDLING_NMI);
 
 	kvm_load_host_xsave_state(vcpu);
 	stgi();
diff --git a/arch/x86/kvm/vmx/vmx.c b/arch/x86/kvm/vmx/vmx.c
@@ -6317,7 +6317,9 @@ void vmx_do_interrupt_nmi_irqoff(unsigned long entry);
 static void handle_interrupt_nmi_irqoff(struct kvm_vcpu *vcpu,
 					unsigned long entry)
 {
-	kvm_before_interrupt(vcpu);
+	bool is_nmi = entry == (unsigned long)asm_exc_nmi_noist;
+
+	kvm_before_interrupt(vcpu, is_nmi ? KVM_HANDLING_NMI : KVM_HANDLING_IRQ);
 	vmx_do_interrupt_nmi_irqoff(entry);
 	kvm_after_interrupt(vcpu);
 }
diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c
@@ -9896,7 +9896,7 @@ static int vcpu_enter_guest(struct kvm_vcpu *vcpu)
 	 * interrupts on processors that implement an interrupt shadow, the
 	 * stat.exits increment will do nicely.
 	 */
-	kvm_before_interrupt(vcpu);
+	kvm_before_interrupt(vcpu, KVM_HANDLING_IRQ);
 	local_irq_enable();
 	++vcpu->stat.exits;
 	local_irq_disable();
diff --git a/arch/x86/kvm/x86.h b/arch/x86/kvm/x86.h
@@ -385,9 +385,16 @@ static inline bool kvm_cstate_in_guest(struct kvm *kvm)
 	return kvm->arch.cstate_in_guest;
 }
 
-static inline void kvm_before_interrupt(struct kvm_vcpu *vcpu)
+enum kvm_intr_type {
+	/* Values are arbitrary, but must be non-zero. */
+	KVM_HANDLING_IRQ = 1,
+	KVM_HANDLING_NMI,
+};
+
+static inline void kvm_before_interrupt(struct kvm_vcpu *vcpu,
+					enum kvm_intr_type intr)
 {
-	WRITE_ONCE(vcpu->arch.handling_intr_from_guest, 1);
+	WRITE_ONCE(vcpu->arch.handling_intr_from_guest, (u8)intr);
 }
 
 static inline void kvm_after_interrupt(struct kvm_vcpu *vcpu)
@@ -397,7 +404,7 @@ static inline void kvm_after_interrupt(struct kvm_vcpu *vcpu)
 
 static inline bool kvm_handling_nmi_from_guest(struct kvm_vcpu *vcpu)
 {
-	return !!vcpu->arch.handling_intr_from_guest;
+	return vcpu->arch.handling_intr_from_guest == KVM_HANDLING_NMI;
 }
 
 static inline bool kvm_pat_valid(u64 data)

Original file line number	Diff line number	Diff line change
`@@ -3931,7 +3931,7 @@ static __no_kcsan fastpath_t svm_vcpu_run(struct kvm_vcpu *vcpu)`
`3931`	`3931`	`}`
`3932`	`3932`
`3933`	`3933`	`if (unlikely(svm->vmcb->control.exit_code == SVM_EXIT_NMI))`
`3934`		`- kvm_before_interrupt(vcpu);`
	`3934`	`+ kvm_before_interrupt(vcpu, KVM_HANDLING_NMI);`
`3935`	`3935`
`3936`	`3936`	`kvm_load_host_xsave_state(vcpu);`
`3937`	`3937`	`stgi();`
Original file line number	Diff line number	Diff line change
`@@ -6317,7 +6317,9 @@ void vmx_do_interrupt_nmi_irqoff(unsigned long entry);`
`6317`	`6317`	`static void handle_interrupt_nmi_irqoff(struct kvm_vcpu *vcpu,`
`6318`	`6318`	`unsigned long entry)`
`6319`	`6319`	`{`
`6320`		`- kvm_before_interrupt(vcpu);`
	`6320`	`+ bool is_nmi = entry == (unsigned long)asm_exc_nmi_noist;`
	`6321`	`+`
	`6322`	`+ kvm_before_interrupt(vcpu, is_nmi ? KVM_HANDLING_NMI : KVM_HANDLING_IRQ);`
`6321`	`6323`	`vmx_do_interrupt_nmi_irqoff(entry);`
`6322`	`6324`	`kvm_after_interrupt(vcpu);`
`6323`	`6325`	`}`
Original file line number	Diff line number	Diff line change
`@@ -385,9 +385,16 @@ static inline bool kvm_cstate_in_guest(struct kvm *kvm)`
`385`	`385`	`return kvm->arch.cstate_in_guest;`
`386`	`386`	`}`
`387`	`387`
`388`		`-static inline void kvm_before_interrupt(struct kvm_vcpu *vcpu)`
	`388`	`+enum kvm_intr_type {`
	`389`	`+ /* Values are arbitrary, but must be non-zero. */`
	`390`	`+ KVM_HANDLING_IRQ = 1,`
	`391`	`+ KVM_HANDLING_NMI,`
	`392`	`+};`
	`393`	`+`
	`394`	`+static inline void kvm_before_interrupt(struct kvm_vcpu *vcpu,`
	`395`	`+ enum kvm_intr_type intr)`
`389`	`396`	`{`
`390`		`- WRITE_ONCE(vcpu->arch.handling_intr_from_guest, 1);`
	`397`	`+ WRITE_ONCE(vcpu->arch.handling_intr_from_guest, (u8)intr);`
`391`	`398`	`}`
`392`	`399`
`393`	`400`	`static inline void kvm_after_interrupt(struct kvm_vcpu *vcpu)`
`@@ -397,7 +404,7 @@ static inline void kvm_after_interrupt(struct kvm_vcpu *vcpu)`
`397`	`404`
`398`	`405`	`static inline bool kvm_handling_nmi_from_guest(struct kvm_vcpu *vcpu)`
`399`	`406`	`{`
`400`		`- return !!vcpu->arch.handling_intr_from_guest;`
	`407`	`+ return vcpu->arch.handling_intr_from_guest == KVM_HANDLING_NMI;`
`401`	`408`	`}`
`402`	`409`
`403`	`410`	`static inline bool kvm_pat_valid(u64 data)`