x86/hvm: Enable guest access to MSR_PKRS

author Andrew Cooper <andrew.cooper3@citrix.com>

Tue, 14 Dec 2021 16:51:28 +0000 (16:51 +0000)

committer Andrew Cooper <andrew.cooper3@citrix.com>

Fri, 20 Jan 2023 19:39:33 +0000 (19:39 +0000)
author Andrew Cooper <andrew.cooper3@citrix.com>
Tue, 14 Dec 2021 16:51:28 +0000 (16:51 +0000)
committer Andrew Cooper <andrew.cooper3@citrix.com>
Fri, 20 Jan 2023 19:39:33 +0000 (19:39 +0000)
diff --git a/xen/arch/x86/hvm/hvm.c b/xen/arch/x86/hvm/hvm.c

index 927a221660e88f8b9445234236805a44ca1821d3..86cab7aa2627dd06813441b3666cacedf7252c10 100644 (file)
--- a/xen/arch/x86/hvm/hvm.c
+++ b/xen/arch/x86/hvm/hvm.c
@@ -1333,6 +1333,7 @@ static int cf_check hvm_load_cpu_xsave_states(
  static const uint32_t msrs_to_send[] = {
      MSR_SPEC_CTRL,
      MSR_INTEL_MISC_FEATURES_ENABLES,
+    MSR_PKRS,
      MSR_IA32_BNDCFGS,
      MSR_IA32_XSS,
      MSR_VIRT_SPEC_CTRL,
@@ -1486,6 +1487,7 @@ static int cf_check hvm_load_cpu_msrs(struct domain *d, hvm_domain_context_t *h)
  
          case MSR_SPEC_CTRL:
          case MSR_INTEL_MISC_FEATURES_ENABLES:
+        case MSR_PKRS:
          case MSR_IA32_BNDCFGS:
          case MSR_IA32_XSS:
          case MSR_VIRT_SPEC_CTRL:
diff --git a/xen/arch/x86/hvm/vmx/vmx.c b/xen/arch/x86/hvm/vmx/vmx.c

index d8525d3d3d63543605ecf4d2c3c66bf54d3d2ed0..ade2a25ce7c20bb0220630b7b70ab0a13b1072e8 100644 (file)
--- a/xen/arch/x86/hvm/vmx/vmx.c
+++ b/xen/arch/x86/hvm/vmx/vmx.c
@@ -793,6 +793,11 @@ static void cf_check vmx_cpuid_policy_changed(struct vcpu *v)
      else
          vmx_set_msr_intercept(v, MSR_FLUSH_CMD, VMX_MSR_RW);
  
+    if ( cp->feat.pks )
+        vmx_clear_msr_intercept(v, MSR_PKRS, VMX_MSR_RW);
+    else
+        vmx_set_msr_intercept(v, MSR_PKRS, VMX_MSR_RW);
+
   out:
      vmx_vmcs_exit(v);
  
@@ -2582,6 +2587,7 @@ static uint64_t cf_check vmx_get_reg(struct vcpu *v, unsigned int reg)
  {
      const struct vcpu *curr = current;
      struct domain *d = v->domain;
+    const struct vcpu_msrs *msrs = v->arch.msrs;
      uint64_t val = 0;
      int rc;
  
@@ -2598,6 +2604,9 @@ static uint64_t cf_check vmx_get_reg(struct vcpu *v, unsigned int reg)
          }
          return val;
  
+    case MSR_PKRS:
+        return (v == curr) ? rdpkrs() : msrs->pkrs;
+
      case MSR_SHADOW_GS_BASE:
          if ( v != curr )
              return v->arch.hvm.vmx.shadow_gs;
@@ -2626,6 +2635,8 @@ static uint64_t cf_check vmx_get_reg(struct vcpu *v, unsigned int reg)
  
  static void cf_check vmx_set_reg(struct vcpu *v, unsigned int reg, uint64_t val)
  {
+    const struct vcpu *curr = current;
+    struct vcpu_msrs *msrs = v->arch.msrs;
      struct domain *d = v->domain;
      int rc;
  
@@ -2641,6 +2652,12 @@ static void cf_check vmx_set_reg(struct vcpu *v, unsigned int reg, uint64_t val)
              domain_crash(d);
          }
          return;
+
+    case MSR_PKRS:
+        msrs->pkrs = val;
+        if ( v == curr )
+            wrpkrs(val);
+        return;
      }
  
      /* Logic which maybe requires remote VMCS acquisition. */
diff --git a/xen/arch/x86/msr.c b/xen/arch/x86/msr.c

index 317b154d244daa288d84af27d1a31d42134126aa..7ddf0078c3a20ac2e4acf1d09292ba8d581aeac4 100644 (file)
--- a/xen/arch/x86/msr.c
+++ b/xen/arch/x86/msr.c
@@ -325,6 +325,11 @@ int guest_rdmsr(struct vcpu *v, uint32_t msr, uint64_t *val)
          *val = 0;
          break;
  
+    case MSR_PKRS:
+        if ( !cp->feat.pks )
+            goto gp_fault;
+        goto get_reg;
+
      case MSR_X2APIC_FIRST ... MSR_X2APIC_LAST:
          if ( !is_hvm_domain(d) || v != curr )
              goto gp_fault;
@@ -616,6 +621,11 @@ int guest_wrmsr(struct vcpu *v, uint32_t msr, uint64_t val)
              break;
          goto gp_fault;
  
+    case MSR_PKRS:
+        if ( !cp->feat.pks || val != (uint32_t)val )
+            goto gp_fault;
+        goto set_reg;
+
      case MSR_X2APIC_FIRST ... MSR_X2APIC_LAST:
          if ( !is_hvm_domain(d) || v != curr )
              goto gp_fault;
author	Andrew Cooper <andrew.cooper3@citrix.com>
	Tue, 14 Dec 2021 16:51:28 +0000 (16:51 +0000)
committer	Andrew Cooper <andrew.cooper3@citrix.com>
	Fri, 20 Jan 2023 19:39:33 +0000 (19:39 +0000)
xen/arch/x86/hvm/hvm.c		patch \| blob \| blame \| history
xen/arch/x86/hvm/vmx/vmx.c		patch \| blob \| blame \| history
xen/arch/x86/msr.c		patch \| blob \| blame \| history