REORDER: pKVM: VMX: CPU reprivilege functionality

Reprivilege feature allows host to boot as bare metal in case of pKVM
initialization failure. All deprivileged cpus(VMX non-root mode) will be
transitioned back to VMX root mode and then to non-VMX mode so that host
can boot without pKVM.

Signed-off-by: Vineeth Pillai (Google) <vineeth@bitbyteword.org>

Author: Vineeth Pillai (Google)

arch/x86/kvm/pkvm/Makefile

@@ -39,7 +39,7 @@ pkvm-hyp-y			+= $(kernel-lib)/sort.o $(kernel-lib)/bsearch.o \
 kvm				:= ..
 pkvm-hyp-y			+= $(kvm)/x86.o $(kvm)/cpuid.o
 
-pkvm-hyp-$(CONFIG_PKVM_INTEL)	+= vmx/host_vmentry.o vmx/host_vmx.o \
+pkvm-hyp-$(CONFIG_PKVM_INTEL)	+= vmx/host_vmentry.o vmx/host_vmx.o vmx/host_repriv.o \
 				   $(kvm)/vmx/vmx.o vmx/idt.o vmx/ept.o \
 				   $(kvm)/vmx/main.o
 

arch/x86/kvm/pkvm/vmx/host_repriv.c

@@ -0,0 +1,166 @@
+// SPDX-License-Identifier: GPL-2.0
+/*
+ * Copyright (C) 2025 Google
+ */
+
+#include <vmx/vmx.h>
+#include "host_vmx.h"
+#include "vcpu_regs.h"
+
+struct host_cpu_state {
+	unsigned long cr0, cr3, cr4;
+	unsigned long rip, rsp;
+	unsigned long rflags;
+	unsigned long fsbase, gsbase;
+	unsigned long long debugctl, perf_global_ctrl;
+	unsigned long long sysenter_cs, sysenter_esp, sysenter_eip;
+	unsigned long long efer, cr_pat;
+	unsigned short cs, ds, es, fs, gs, ss;
+
+	struct desc_ptr gdt, idt;
+};
+
+static inline void read_host_cpu_state(struct host_cpu_state *hcs)
+{
+	hcs->rsp = vmcs_readl(GUEST_RSP);
+	hcs->rip = vmcs_readl(GUEST_RIP) + vmcs_read32(VM_EXIT_INSTRUCTION_LEN);
+	hcs->rflags = vmcs_readl(GUEST_RFLAGS);
+
+	hcs->ds = vmcs_read16(GUEST_DS_SELECTOR);
+	hcs->es = vmcs_read16(GUEST_ES_SELECTOR);
+	hcs->fs = vmcs_read16(GUEST_FS_SELECTOR);
+	hcs->gs = vmcs_read16(GUEST_GS_SELECTOR);
+	hcs->ss = vmcs_read16(GUEST_SS_SELECTOR);
+	hcs->cs = vmcs_read16(GUEST_CS_SELECTOR);
+
+	hcs->fsbase = vmcs_readl(GUEST_FS_BASE);
+	hcs->gsbase = vmcs_readl(GUEST_GS_BASE);
+
+	hcs->gdt.address = vmcs_readl(GUEST_GDTR_BASE);
+	hcs->gdt.size = vmcs_read32(GUEST_GDTR_LIMIT);
+	hcs->idt.address = vmcs_readl(GUEST_IDTR_BASE);
+	hcs->idt.size = vmcs_read32(GUEST_IDTR_LIMIT);
+
+	hcs->debugctl = vmcs_read64(GUEST_IA32_DEBUGCTL);
+	hcs->perf_global_ctrl = vmcs_read64(GUEST_IA32_PERF_GLOBAL_CTRL);
+	hcs->sysenter_cs = vmcs_read32(GUEST_SYSENTER_CS);
+	hcs->sysenter_esp = vmcs_readl(GUEST_SYSENTER_ESP);
+	hcs->sysenter_eip = vmcs_readl(GUEST_SYSENTER_EIP);
+	hcs->efer = vmcs_read64(GUEST_IA32_EFER);
+	hcs->cr_pat = vmcs_read64(GUEST_IA32_PAT);
+
+	hcs->cr0 = vmcs_readl(GUEST_CR0);
+	hcs->cr3 = vmcs_readl(GUEST_CR3);
+	hcs->cr4 = vmcs_readl(GUEST_CR4);
+}
+
+#define PKVM_WRITE_CR(crnum, val) \
+static inline void __pkvm_write_cr##crnum(unsigned long val) \
+{							\
+	asm volatile("mov %0,%%cr" #crnum : "+r" (val) : : "memory"); \
+}
+
+PKVM_WRITE_CR(0, val)
+PKVM_WRITE_CR(3, val)
+PKVM_WRITE_CR(4, val)
+
+/*
+ * Restores register state from memory pointed by rdi
+ * offset: offset of register backup in memory
+ * dest_reg: register to be restored.
+ */
+#define STRINGIFY(x) #x
+#define RESTORE_VCPU_REG(offset, dest_reg) \
+	"mov " STRINGIFY(offset) "(%%rdi), %%" #dest_reg "\n"
+
+
+static inline void restore_host_special_regs(struct host_cpu_state *hcs)
+{
+	struct desc_struct *gdt_desc;
+	tss_desc *tss;
+
+	/* Reset the busy bit to reload TR */
+	gdt_desc = (struct desc_struct *)(hcs->gdt.address);
+	tss = (tss_desc *)&gdt_desc[GDT_ENTRY_TSS];
+	tss->type = DESC_TSS;
+
+	__pkvm_write_cr4(hcs->cr4);
+	__pkvm_write_cr0(hcs->cr0);
+	__pkvm_write_cr3(hcs->cr3);
+
+	wrmsrq_safe(MSR_CORE_PERF_GLOBAL_CTRL, hcs->perf_global_ctrl);
+	wrmsrq(MSR_IA32_DEBUGCTLMSR, hcs->debugctl);
+	wrmsrq(MSR_IA32_SYSENTER_CS, hcs->sysenter_cs);
+	wrmsrq(MSR_IA32_SYSENTER_ESP, hcs->sysenter_esp);
+	wrmsrq(MSR_IA32_SYSENTER_EIP, hcs->sysenter_eip);
+	wrmsrq(MSR_IA32_CR_PAT, hcs->cr_pat);
+	wrmsrq(MSR_EFER, hcs->efer);
+
+	asm volatile (
+		"lgdt %0\n"
+		"lidt %1\n"
+		"ltr %w2\n"
+		"mov %3, %%ds\n"
+		"mov %4, %%es\n"
+		"mov %5, %%fs\n"
+		"mov %6, %%gs\n"
+
+		:
+		: "m"(hcs->gdt), "m"(hcs->idt), "q"(GDT_ENTRY_TSS*8),
+		  "m"(hcs->ds), "m"(hcs->es), "m"(hcs->fs), "m"(hcs->gs)
+		: "memory"
+	);
+
+	wrmsrl(MSR_FS_BASE, hcs->fsbase);
+	wrmsrl(MSR_GS_BASE, hcs->gsbase);
+}
+
+/* Restores host cpu state and returns to host in VMX root mode. */
+void pkvm_vmx_reprivilege_cpu(unsigned long *vcpu_regs)
+{
+	static struct host_cpu_state hcs;
+
+	read_host_cpu_state(&hcs);
+	restore_host_special_regs(&hcs);
+
+	asm volatile(
+		/* Update stack as expected by iretq */
+		"pushq %0\n"
+		"pushq %1\n"
+		"pushq %2\n"
+		"pushq %3\n"
+		"pushq %4\n"
+
+		/* Restore general purpose registers */
+		RESTORE_VCPU_REG(VCPU_RCX, rcx)
+		RESTORE_VCPU_REG(VCPU_RDX, rdx)
+		RESTORE_VCPU_REG(VCPU_RBX, rbx)
+		RESTORE_VCPU_REG(VCPU_RBP, rbp)
+		RESTORE_VCPU_REG(VCPU_RSI, rsi)
+		RESTORE_VCPU_REG(VCPU_R8, r8)
+		RESTORE_VCPU_REG(VCPU_R9, r9)
+		RESTORE_VCPU_REG(VCPU_R10, r10)
+		RESTORE_VCPU_REG(VCPU_R11, r11)
+		RESTORE_VCPU_REG(VCPU_R12, r12)
+		RESTORE_VCPU_REG(VCPU_R13, r13)
+		RESTORE_VCPU_REG(VCPU_R14, r14)
+		RESTORE_VCPU_REG(VCPU_R15, r15)
+
+		/* Restore RDI (last!) */
+		RESTORE_VCPU_REG(VCPU_RDI, rdi)
+
+		/*
+		 * We are not technically returning from the hypercall, but set
+		 * RAX to zero to indicate to host that reprivilege succeeded.
+		 */
+		"xor %%rax, %%rax\n"
+
+		"iretq\n"
+
+		:
+		: "m"(hcs.ss), "m"(hcs.rsp), "m"(hcs.rflags),
+		  "m"(hcs.cs), "m"(hcs.rip), "D"(vcpu_regs)
+		: "memory", "cc"
+	);
+}
+STACK_FRAME_NON_STANDARD(pkvm_vmx_reprivilege_cpu);

arch/x86/kvm/pkvm/vmx/host_vmx.c

@@ -34,6 +34,7 @@ static struct pkvm_init_ops vmx_init_ops = {
 	.host_mmu_init = pkvm_host_ept_init,
 	.host_mmu_finalize = pkvm_host_ept_finalize,
 	.hyp_global_init = pkvm_vmx_init,
+	.reprivilege_cpu = pkvm_vmx_reprivilege_cpu,
 };
 
 static void skip_emulated_instruction(void)

arch/x86/kvm/pkvm/vmx/host_vmx.h

@@ -12,4 +12,6 @@ static inline void request_host_immediate_exit(struct vcpu_vmx *vmx)
 
 void pkvm_host_vmexit_main(struct vcpu_vmx *vmx);
 
+void pkvm_vmx_reprivilege_cpu(unsigned long *vcpu_regs);
+
 #endif /* __PKVM_VMX_HOST_VMX_H */

arch/x86/kvm/vmx/pkvm_init.c

@@ -1123,7 +1123,49 @@ static __init int pkvm_hyp_init(void)
 
 static __init void pkvm_host_reprivilege_cpu(void *data)
 {
-	/* TODO: Implement reprivilege logic. */
+	unsigned long flags;
+	int cpu = get_cpu();
+	int ret;
+
+	if (!this_cpu_read(deprivileged)) {
+		put_cpu();
+		return;
+	}
+
+	local_irq_save(flags);
+
+	/*
+	 * Load the RW GDT page for reprivilege code
+	 * to reload TR.
+	 */
+	load_direct_gdt(cpu);
+
+	/*
+	 * Intel CET requires indirect jmp/call to return to
+	 * endbr64 instruction. So we can't use kvm_hypercall
+	 * here.
+	 */
+	asm volatile(
+		"vmcall\n"
+		"endbr64\n"
+		: "=a"(ret)
+		: "a"(__pkvm__reprivilege_cpu)
+		: "memory");
+
+	/* Switch back to RO GDT page */
+	load_fixmap_gdt(cpu);
+
+	if (!ret) {
+		this_cpu_write(deprivileged, false);
+		kvm_cpu_vmxoff();
+		pr_info("%s: CPU%d back in host mode\n", __func__, cpu);
+	} else {
+		pr_warn("%s: CPU%d failed to reprivilege(err=%d)\n", __func__, cpu, ret);
+	}
+
+	local_irq_restore(flags);
+
+	put_cpu();
 }
 
 static __init void pkvm_host_reprivilege_cpus(void)