KVM: x86/speculation: Disable Fill buffer clear within guests

						 * VERW clears CPU fill buffer

						 * even on MDS_NO CPUs.

						 */

#define ARCH_CAP_FB_CLEAR_CTRL		BIT(18)	/*

						 * MSR_IA32_MCU_OPT_CTRL[FB_CLEAR_DIS]

						 * bit available to control VERW

						 * behavior.

						 */

#define MSR_IA32_FLUSH_CMD		0x0000010b

#define L1D_FLUSH			BIT(0)	/*

/* SRBDS support */

#define MSR_IA32_MCU_OPT_CTRL		0x00000123

#define RNGDS_MITG_DIS			BIT(0)

#define FB_CLEAR_DIS			BIT(3)	/* CPU Fill buffer clear disable */

#define MSR_IA32_SYSENTER_CS		0x00000174

#define MSR_IA32_SYSENTER_ESP		0x00000175

#define L1D_CACHE_ORDER 4

static void *vmx_l1d_flush_pages;

/* Control for disabling CPU Fill buffer clear */

static bool __read_mostly vmx_fb_clear_ctrl_available;

static int vmx_setup_l1d_flush(enum vmx_l1d_flush_state l1tf)

{

	struct page *page;

	 */

	u64 msr_ia32_feature_control;

	u64 msr_ia32_feature_control_valid_bits;

	u64 msr_ia32_mcu_opt_ctrl;

	bool disable_fb_clear;

};

enum segment_cache_field {

			: : "a" (&operand), "c" (ext) : "cc", "memory");

}

static void vmx_setup_fb_clear_ctrl(void)

{

	u64 msr;

	if (boot_cpu_has(X86_FEATURE_ARCH_CAPABILITIES) &&

	    !boot_cpu_has_bug(X86_BUG_MDS) &&

	    !boot_cpu_has_bug(X86_BUG_TAA)) {

		rdmsrl(MSR_IA32_ARCH_CAPABILITIES, msr);

		if (msr & ARCH_CAP_FB_CLEAR_CTRL)

			vmx_fb_clear_ctrl_available = true;

	}

}

static __always_inline void vmx_disable_fb_clear(struct vcpu_vmx *vmx)

{

	u64 msr;

	if (!vmx->disable_fb_clear)

		return;

	rdmsrl(MSR_IA32_MCU_OPT_CTRL, msr);

	msr |= FB_CLEAR_DIS;

	wrmsrl(MSR_IA32_MCU_OPT_CTRL, msr);

	/* Cache the MSR value to avoid reading it later */

	vmx->msr_ia32_mcu_opt_ctrl = msr;

}

static __always_inline void vmx_enable_fb_clear(struct vcpu_vmx *vmx)

{

	if (!vmx->disable_fb_clear)

		return;

	vmx->msr_ia32_mcu_opt_ctrl &= ~FB_CLEAR_DIS;

	wrmsrl(MSR_IA32_MCU_OPT_CTRL, vmx->msr_ia32_mcu_opt_ctrl);

}

static void vmx_update_fb_clear_dis(struct kvm_vcpu *vcpu, struct vcpu_vmx *vmx)

{

	vmx->disable_fb_clear = vmx_fb_clear_ctrl_available;

	/*

	 * If guest will not execute VERW, there is no need to set FB_CLEAR_DIS

	 * at VMEntry. Skip the MSR read/write when a guest has no use case to

	 * execute VERW.

	 */

	if ((vcpu->arch.arch_capabilities & ARCH_CAP_FB_CLEAR) ||

	   ((vcpu->arch.arch_capabilities & ARCH_CAP_MDS_NO) &&

	    (vcpu->arch.arch_capabilities & ARCH_CAP_TAA_NO) &&

	    (vcpu->arch.arch_capabilities & ARCH_CAP_PSDP_NO) &&

	    (vcpu->arch.arch_capabilities & ARCH_CAP_FBSDP_NO) &&

	    (vcpu->arch.arch_capabilities & ARCH_CAP_SBDR_SSDP_NO)))

		vmx->disable_fb_clear = false;

}

static struct shared_msr_entry *find_msr_entry(struct vcpu_vmx *vmx, u32 msr)

{

	int i;

			ret = kvm_set_msr_common(vcpu, msr_info);

	}

	/* FB_CLEAR may have changed, also update the FB_CLEAR_DIS behavior */

	if (msr_index == MSR_IA32_ARCH_CAPABILITIES)

		vmx_update_fb_clear_dis(vcpu, vmx);

	return ret;

}

	update_exception_bitmap(vcpu);

	vpid_sync_context(vmx->vpid);

	vmx_update_fb_clear_dis(vcpu, vmx);

}

/*

		 kvm_arch_has_assigned_device(vcpu->kvm))

		mds_clear_cpu_buffers();

	vmx_disable_fb_clear(vmx);

	asm(

		/* Store host registers */

		"push %%" _ASM_DX "; push %%" _ASM_BP ";"

#endif

	      );

	vmx_enable_fb_clear(vmx);

	/*

	 * We do not use IBRS in the kernel. If this vCPU has used the

	 * SPEC_CTRL MSR it may have left it on; save the value and

		}

	}

	vmx_setup_fb_clear_ctrl();

	for_each_possible_cpu(cpu) {

		INIT_LIST_HEAD(&per_cpu(loaded_vmcss_on_cpu, cpu));

		INIT_LIST_HEAD(&per_cpu(blocked_vcpu_on_cpu, cpu));

		spin_lock_init(&per_cpu(blocked_vcpu_on_cpu_lock, cpu));

	}

	/* KVM does not emulate MSR_IA32_TSX_CTRL.  */

	data &= ~ARCH_CAP_TSX_CTRL_MSR;

	/* Guests don't need to know "Fill buffer clear control" exists */

	data &= ~ARCH_CAP_FB_CLEAR_CTRL;

	return data;

}