From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <SRS0=bJfN=D7=vger.kernel.org=stable-owner@kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
X-Spam-Level: 
X-Spam-Status: No, score=-9.8 required=3.0 tests=BAYES_00,DKIMWL_WL_HIGH,
	DKIM_SIGNED,DKIM_VALID,HEADER_FROM_DIFFERENT_DOMAINS,INCLUDES_PATCH,
	MAILING_LIST_MULTI,SIGNED_OFF_BY,SPF_HELO_NONE,SPF_PASS,URIBL_BLOCKED
	autolearn=ham autolearn_force=no version=3.4.0
Received: from mail.kernel.org (mail.kernel.org [198.145.29.99])
	by smtp.lore.kernel.org (Postfix) with ESMTP id A0E73C4363A
	for <stable@archiver.kernel.org>; Sat, 24 Oct 2020 09:49:24 +0000 (UTC)
Received: from vger.kernel.org (vger.kernel.org [23.128.96.18])
	by mail.kernel.org (Postfix) with ESMTP id 540152225F
	for <stable@archiver.kernel.org>; Sat, 24 Oct 2020 09:49:24 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org;
	s=default; t=1603532964;
	bh=WTO4yehyQEZZN4jkSCUJSbrY53GEqCBLnCGqGrTbq8k=;
	h=Subject:To:Cc:From:Date:List-ID:From;
	b=TcEjsSkhcvyx8HWab8+oBOFFhr7TcdmKddEIpowf3l4VI1b3N6ngJfXnf8bONXDUZ
	 BfpW6LeUhFfkwhPp6nONBG6yCELQzp1oy2448DrQ+pVQ0flIqrwff/vfn4eJpURYB/
	 bdRHTLtOWflyx2zxPMyDpwgSOzJUHl7HvikTYPJU=
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1760551AbgJXJtX (ORCPT <rfc822;stable@archiver.kernel.org>);
        Sat, 24 Oct 2020 05:49:23 -0400
Received: from wforward2-smtp.messagingengine.com ([64.147.123.31]:59933 "EHLO
        wforward2-smtp.messagingengine.com" rhost-flags-OK-OK-OK-OK)
        by vger.kernel.org with ESMTP id S1760550AbgJXJtW (ORCPT
        <rfc822;stable@vger.kernel.org>); Sat, 24 Oct 2020 05:49:22 -0400
Received: from compute4.internal (compute4.nyi.internal [10.202.2.44])
        by mailforward.west.internal (Postfix) with ESMTP id DCFBBC0C;
        Sat, 24 Oct 2020 05:49:20 -0400 (EDT)
Received: from mailfrontend1 ([10.202.2.162])
  by compute4.internal (MEProxy); Sat, 24 Oct 2020 05:49:21 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=
        messagingengine.com; h=cc:content-transfer-encoding:content-type
        :date:from:message-id:mime-version:subject:to:x-me-proxy
        :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm1; bh=Hbbldm
        wZ8IYwJA0QCxDa43FSE2SkokrEyHdcFuV47bY=; b=CH3r5dv/QK38UWscq/ZhY7
        oQjQos9yj16K8gnOc+qQsNz+0cojINBTjL536o5C81nTTjXmgWEfuzZE9o735qFx
        WhKZ+2aCoC0kHwCXRleO75e/7KJlzoWKhUbjkXbmYVZYtWBqV3MO74QGI68TZ+3I
        0ZvrR0EAwGnBZHbjGmXKk6SC9EhmoNX3J/BXh769HDFeguLJ6DaiWjjBB6IWS2oG
        m7sUjAJeDXUjalDSqTBiOOPo5Rmi8pFHXeZ/Pfeim1KUIOU3OtSqJN/492mPPWDX
        GhMI2kNoGGopDlP6KeeLrONZUmgeLASj0y9rFghHuISd4NzP2X17uPsX84KxEmyA
        ==
X-ME-Sender: <xms:n_iTX6ayhBhKhIL6_Sq-PqXaUlgHueGpnH82yIixUtD3Rruzhar8AQ>
    <xme:n_iTX9ZQ_5WGwFouRsch3SPsehX6R_JgQ5CIPQTHb21rpURbfDpCmYRjOXVAqNQUv
    3-qSRC3w8_ZPg>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedujedrkedvgddvtdcutefuodetggdotefrodftvf
    curfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfghnecu
    uegrihhlohhuthemuceftddtnecunecujfgurhepuffvhfffkfggtgfgsehtkeertddttd
    flnecuhfhrohhmpeeoghhrvghgkhhhsehlihhnuhigfhhouhhnuggrthhiohhnrdhorhhg
    qeenucggtffrrghtthgvrhhnpeeiteevheeuvdfhtdfgvdeiieehheefleevveehjedute
    evueevledujeejgfetheenucfkphepkeefrdekiedrjeegrdeigeenucevlhhushhtvghr
    ufhiiigvpedtnecurfgrrhgrmhepmhgrihhlfhhrohhmpehgrhgvgheskhhrohgrhhdrtg
    homh
X-ME-Proxy: <xmx:n_iTX08H_lBi8jGNU8DBaN8D3dpYow_Tw1QG3iieJBUhnbTAHJgLBA>
    <xmx:n_iTX8qCcToGgsrLG6VZ7Jlp1Q7QbEflF9zBpJQc9ZBow-v0ZcCZVQ>
    <xmx:n_iTX1rwUdhi-iw82anNNBKqgTDRKTB65uqO0HjF3OY2Y54F9P8sJA>
    <xmx:oPiTX83upCYm6-uD0v2vDH4-dH0hUi3S6O0VUhai2Fwb1thO1vwls9SkaSU>
Received: from localhost (83-86-74-64.cable.dynamic.v4.ziggo.nl [83.86.74.64])
        by mail.messagingengine.com (Postfix) with ESMTPA id 79EEB3280060;
        Sat, 24 Oct 2020 05:49:19 -0400 (EDT)
Subject: FAILED: patch "[PATCH] KVM: x86: Intercept LA57 to inject #GP fault when it's" failed to apply to 4.14-stable tree
To:     laijs@linux.alibaba.com, jiangshanlai@gmail.com,
        pbonzini@redhat.com, sean.j.christopherson@intel.com
Cc:     <stable@vger.kernel.org>
From:   <gregkh@linuxfoundation.org>
Date:   Sat, 24 Oct 2020 11:49:49 +0200
Message-ID: <16035329891242@kroah.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=ANSI_X3.4-1968
Content-Transfer-Encoding: 8bit
Precedence: bulk
List-ID: <stable.vger.kernel.org>
X-Mailing-List: stable@vger.kernel.org


The patch below does not apply to the 4.14-stable tree.
If someone wants it applied there, or to any other stable or longterm
tree, then please email the backport, including the original git commit
id to <stable@vger.kernel.org>.

thanks,

greg k-h

------------------ original commit in Linus's tree ------------------

>From 6e1d849fa3296526e64b75fa227b6377cd0fd3da Mon Sep 17 00:00:00 2001
From: Lai Jiangshan <laijs@linux.alibaba.com>
Date: Tue, 29 Sep 2020 21:16:55 -0700
Subject: [PATCH] KVM: x86: Intercept LA57 to inject #GP fault when it's
 reserved

Unconditionally intercept changes to CR4.LA57 so that KVM correctly
injects a #GP fault if the guest attempts to set CR4.LA57 when it's
supported in hardware but not exposed to the guest.

Long term, KVM needs to properly handle CR4 bits that can be under guest
control but also may be reserved from the guest's perspective.  But, KVM
currently sets the CR4 guest/host mask only during vCPU creation, and
reworking flows to change that will take a bit of elbow grease.

Even if/when generic support for intercepting reserved bits exists, it's
probably not worth letting the guest set CR4.LA57 directly.  LA57 can't
be toggled while long mode is enabled, thus it's all but guaranteed to
be set once (maybe twice, e.g. by BIOS and kernel) during boot and never
touched again.  On the flip side, letting the guest own CR4.LA57 may
incur extra VMREADs.  In other words, this temporary "hack" is probably
also the right long term fix.

Fixes: fd8cb433734e ("KVM: MMU: Expose the LA57 feature to VM.")
Cc: stable@vger.kernel.org
Cc: Lai Jiangshan <jiangshanlai@gmail.com>
Signed-off-by: Lai Jiangshan <laijs@linux.alibaba.com>
[sean: rewrote changelog]
Signed-off-by: Sean Christopherson <sean.j.christopherson@intel.com>
Message-Id: <20200930041659.28181-2-sean.j.christopherson@intel.com>
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>

diff --git a/arch/x86/kvm/kvm_cache_regs.h b/arch/x86/kvm/kvm_cache_regs.h
index cfe83d4ae625..ca0781b41df9 100644
--- a/arch/x86/kvm/kvm_cache_regs.h
+++ b/arch/x86/kvm/kvm_cache_regs.h
@@ -7,7 +7,7 @@
 #define KVM_POSSIBLE_CR0_GUEST_BITS X86_CR0_TS
 #define KVM_POSSIBLE_CR4_GUEST_BITS				  \
 	(X86_CR4_PVI | X86_CR4_DE | X86_CR4_PCE | X86_CR4_OSFXSR  \
-	 | X86_CR4_OSXMMEXCPT | X86_CR4_LA57 | X86_CR4_PGE | X86_CR4_TSD)
+	 | X86_CR4_OSXMMEXCPT | X86_CR4_PGE | X86_CR4_TSD)
 
 #define BUILD_KVM_GPR_ACCESSORS(lname, uname)				      \
 static __always_inline unsigned long kvm_##lname##_read(struct kvm_vcpu *vcpu)\