git.ipfire.org Git - thirdparty/linux.git/commit

author	Kai Huang <kai.huang@intel.com>
	Sun, 13 Jul 2025 22:20:20 +0000 (10:20 +1200)
committer	Sean Christopherson <seanjc@google.com>
	Tue, 15 Jul 2025 14:05:13 +0000 (07:05 -0700)
commit	b24bbb534c2da4a9a99a23525e9c24a0be7ec6f4
tree	2737d12a1b8e51f7bdc2675426ade807a501f685	tree
parent	073b3eca08f915d9b92818ed8c30123c54058206	commit \| diff

KVM: x86: Reject KVM_SET_TSC_KHZ vCPU ioctl for TSC protected guest

Reject KVM_SET_TSC_KHZ vCPU ioctl if guest's TSC is protected and not
changeable by KVM, and update the documentation to reflect it.

For such TSC protected guests, e.g. TDX guests, typically the TSC is
configured once at VM level before any vCPU are created and remains
unchanged during VM's lifetime. KVM provides the KVM_SET_TSC_KHZ VM
scope ioctl to allow the userspace VMM to configure the TSC of such VM.
After that the userspace VMM is not supposed to call the KVM_SET_TSC_KHZ
vCPU scope ioctl anymore when creating the vCPU.

The de facto userspace VMM Qemu does this for TDX guests. The upcoming
SEV-SNP guests with Secure TSC should follow.

Note, TDX support hasn't been fully released as of the "buggy" commit,
i.e. there is no established ABI to break.

Fixes: adafea110600 ("KVM: x86: Add infrastructure for secure TSC")
Suggested-by: Sean Christopherson <seanjc@google.com>
Signed-off-by: Kai Huang <kai.huang@intel.com>
Reviewed-by: Xiaoyao Li <xiaoyao.li@intel.com>
Reviewed-by: Nikunj A Dadhania <nikunj@amd.com>
Link: https://lore.kernel.org/r/71bbdf87fdd423e3ba3a45b57642c119ee2dd98c.1752444335.git.kai.huang@intel.com
Signed-off-by: Sean Christopherson <seanjc@google.com>

Documentation/virt/kvm/api.rst		diff \| blob \| blame \| history
arch/x86/kvm/x86.c		diff \| blob \| blame \| history