KVM: x86: lapic: don't touch irr_pending in kvm_apic_update_apicv when inhibiting it

Maxim Levitsky · bonzini · commit 755c2bf87860 · 2022-02-08T13:30:49.000-05:00
kvm_apic_update_apicv is called when AVIC is still active, thus IRR bits
can be set by the CPU after it is called, and don't cause the irr_pending
to be set to true.

Also logic in avic_kick_target_vcpu doesn't expect a race with this
function so to make it simple, just keep irr_pending set to true and
let the next interrupt injection to the guest clear it.

Signed-off-by: Maxim Levitsky &lt;mlevitsk@redhat.com&gt;
Message-Id: &lt;20220207155447.840194-9-mlevitsk@redhat.com&gt;
Signed-off-by: Paolo Bonzini &lt;pbonzini@redhat.com&gt;
diff --git a/arch/x86/kvm/lapic.c b/arch/x86/kvm/lapic.c
@@ -2306,7 +2306,12 @@ void kvm_apic_update_apicv(struct kvm_vcpu *vcpu)
 		apic->irr_pending = true;
 		apic->isr_count = 1;
 	} else {
-		apic->irr_pending = (apic_search_irr(apic) != -1);
+		/*
+		 * Don't clear irr_pending, searching the IRR can race with
+		 * updates from the CPU as APICv is still active from hardware's
+		 * perspective.  The flag will be cleared as appropriate when
+		 * KVM injects the interrupt.
+		 */
 		apic->isr_count = count_vectors(apic->regs + APIC_ISR);
 	}
 }

Original file line number	Diff line number	Diff line change
`@@ -2306,7 +2306,12 @@ void kvm_apic_update_apicv(struct kvm_vcpu *vcpu)`
`2306`	`2306`	`apic->irr_pending = true;`
`2307`	`2307`	`apic->isr_count = 1;`
`2308`	`2308`	`} else {`
`2309`		`- apic->irr_pending = (apic_search_irr(apic) != -1);`
	`2309`	`+ /*`
	`2310`	`+ * Don't clear irr_pending, searching the IRR can race with`
	`2311`	`+ * updates from the CPU as APICv is still active from hardware's`
	`2312`	`+ * perspective. The flag will be cleared as appropriate when`
	`2313`	`+ * KVM injects the interrupt.`
	`2314`	`+ */`
`2310`	`2315`	`apic->isr_count = count_vectors(apic->regs + APIC_ISR);`
`2311`	`2316`	`}`
`2312`	`2317`	`}`