git.ipfire.org Git - thirdparty/kernel/stable.git/commit

author	Marc Zyngier <maz@kernel.org>
	Thu, 20 Nov 2025 17:25:26 +0000 (17:25 +0000)
committer	Oliver Upton <oupton@kernel.org>
	Mon, 24 Nov 2025 22:29:14 +0000 (14:29 -0800)
commit	78ffc28456f5981f0e54007fe124e20610abd0ea
tree	adb1bd5884bd3e587afc41fea669dec0326cc5b6	tree
parent	6dd333c8942b2e5bb5927af843b56ec2857db7c7	commit \| diff

KVM: arm64: GICv3: Force exit to sync ICH_HCR_EL2.En

FEAT_NV2 is pretty terrible for anything that tries to enforce immediate
effects, and writing to ICH_HCR_EL2 in the hope to disable a maintenance
interrupt is vain. This only hits memory, and the guest hasn't cleared
anything -- the MI will fire.

For example, running the vgic_irq test under NV results in about 800
maintenance interrupts being actually handled by the L1 guest,
when none were expected.

As a cheap workaround, read back ICH_MISR_EL2 after writing 0 to
ICH_HCR_EL2. This is very cheap on real HW, and causes a trap to
the host in NV, giving it the opportunity to retire the pending MI.
With this, the above test runs to completion without any MI being
actually handled.

Yes, this is really poor...

Tested-by: Fuad Tabba <tabba@google.com>
Reviewed-by: Fuad Tabba <tabba@google.com>
Signed-off-by: Marc Zyngier <maz@kernel.org>
Tested-by: Mark Brown <broonie@kernel.org>
Link: https://msgid.link/20251120172540.2267180-37-maz@kernel.org
Signed-off-by: Oliver Upton <oupton@kernel.org>

arch/arm64/kvm/hyp/vgic-v3-sr.c		diff \| blob \| blame \| history
arch/arm64/kvm/vgic/vgic-v3-nested.c		diff \| blob \| blame \| history