• Paolo Bonzini's avatar
    KVM: x86: handle missing MPX in nested virtualization · 93c4adc7
    Paolo Bonzini authored
    When doing nested virtualization, we may be able to read BNDCFGS but
    still not be allowed to write to GUEST_BNDCFGS in the VMCS.  Guard
    writes to the field with vmx_mpx_supported(), and similarly hide the
    MSR from userspace if the processor does not support the field.
    
    We could work around this with the generic MSR save/load machinery,
    but there is only a limited number of MSR save/load slots and it is
    not really worthwhile to waste one for a scenario that should not
    happen except in the nested virtualization case.
    Signed-off-by: default avatarPaolo Bonzini <pbonzini@redhat.com>
    93c4adc7
vmx.c 252 KB