KVM: nVMX: preserve SECONDARY_EXEC_DESC without UMIP

L1 might want to use SECONDARY_EXEC_DESC, so we must not clear the VMCS bit if UMIP is not being emulated. We must still set the bit when emulating UMIP as the feature can be passed to L2 where L0 will do the emulation and because L2 can change CR4 without a VM exit, we should clear the bit if UMIP is disabled. Fixes: 0367f205a3b7 ("KVM: vmx: add support for emulating UMIP") Reviewed-by: Paolo Bonzini <pbonzini@redhat.com> Signed-off-by: Radim Krčmář <rkrcmar@redhat.com>
author: Radim Krčmář <rkrcmar@redhat.com> 2018-01-31 18:12:50 +0100
committer: Paolo Bonzini <pbonzini@redhat.com> 2018-02-24 01:43:35 +0100
commit: 99158246208b82c0700d09a40d719bb56b32c607 (patch)
tree: 612cfc939f2a86c094ab3472eda085120b0bd135
parent: 0b2e9904c15963e715d33e5f3f1387f17d19333a (diff)
download: linux-99158246208b82c0700d09a40d719bb56b32c607.tar.bz2
1 files changed, 2 insertions, 1 deletions
diff --git a/arch/x86/kvm/vmx.c b/arch/x86/kvm/vmx.c
index f427723dc7db..2d2cf8c1f0f4 100644
--- a/arch/x86/kvm/vmx.c
+++ b/arch/x86/kvm/vmx.c
@@ -4485,7 +4485,8 @@ static int vmx_set_cr4(struct kvm_vcpu *vcpu, unsigned long cr4)
 		vmcs_set_bits(SECONDARY_VM_EXEC_CONTROL,
 			      SECONDARY_EXEC_DESC);
 		hw_cr4 &= ~X86_CR4_UMIP;
-	} else
+	} else if (!is_guest_mode(vcpu) ||
+	           !nested_cpu_has2(get_vmcs12(vcpu), SECONDARY_EXEC_DESC))
 		vmcs_clear_bits(SECONDARY_VM_EXEC_CONTROL,
 				SECONDARY_EXEC_DESC);
author	Radim Krčmář <rkrcmar@redhat.com>	2018-01-31 18:12:50 +0100
committer	Paolo Bonzini <pbonzini@redhat.com>	2018-02-24 01:43:35 +0100
commit	99158246208b82c0700d09a40d719bb56b32c607 (patch)
tree	612cfc939f2a86c094ab3472eda085120b0bd135
parent	0b2e9904c15963e715d33e5f3f1387f17d19333a (diff)
download	linux-99158246208b82c0700d09a40d719bb56b32c607.tar.bz2