git.ipfire.org Git - thirdparty/kernel/stable.git/commit

author	Jim Mattson <jmattson@google.com>
	Thu, 5 Feb 2026 23:15:26 +0000 (15:15 -0800)
committer	Paolo Bonzini <pbonzini@redhat.com>
	Wed, 11 Mar 2026 17:41:11 +0000 (18:41 +0100)
commit	e2ffe85b6d2bb7780174b87aa4468a39be17eb81
tree	83437b13f6baa6b934ee738601715f8a3de68531	tree \| snapshot
parent	b54e4707a64be93a8ab3348e32e89817229b5eaa	commit \| diff

KVM: x86: Introduce KVM_X86_QUIRK_VMCS12_ALLOW_FREEZE_IN_SMM

Add KVM_X86_QUIRK_VMCS12_ALLOW_FREEZE_IN_SMM to allow L1 to set
FREEZE_IN_SMM in vmcs12's GUEST_IA32_DEBUGCTL field, as permitted
prior to commit 6b1dd26544d0 ("KVM: VMX: Preserve host's
DEBUGCTLMSR_FREEZE_IN_SMM while running the guest"). Enable the quirk
by default for backwards compatibility (like all quirks); userspace
can disable it via KVM_CAP_DISABLE_QUIRKS2 for consistency with the
constraints on WRMSR(IA32_DEBUGCTL).

Note that the quirk only bypasses the consistency check. The vmcs02 bit is
still owned by the host, and PMCs are not frozen during virtualized SMM.
In particular, if a host administrator decides that PMCs should not be
frozen during physical SMM, then L1 has no say in the matter.

Fixes: 095686e6fcb4 ("KVM: nVMX: Check vmcs12->guest_ia32_debugctl on nested VM-Enter")
Cc: stable@vger.kernel.org
Signed-off-by: Jim Mattson <jmattson@google.com>
Link: https://patch.msgid.link/20260205231537.1278753-1-jmattson@google.com
[sean: tag for stable@, clean-up and fix goofs in the comment and docs]
Signed-off-by: Sean Christopherson <seanjc@google.com>
[Rename quirk. - Paolo]
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>

Documentation/virt/kvm/api.rst		diff \| blob \| blame \| history
arch/x86/include/asm/kvm_host.h		diff \| blob \| blame \| history
arch/x86/include/uapi/asm/kvm.h		diff \| blob \| blame \| history
arch/x86/kvm/vmx/nested.c		diff \| blob \| blame \| history