KVM: SVM: Mark VMCB_PERM_MAP as dirty on nested VMRUN

Mark the VMCB_PERM_MAP bit as dirty in nested_vmcb02_prepare_control() on every nested VMRUN. If L1 changes MSR interception (INTERCEPT_MSR_PROT) between two VMRUN instructions on the same L1 vCPU, the msrpm_base_pa in the associated vmcb02 will change, and the VMCB_PERM_MAP clean bit should be cleared. Fixes: 4bb170a5430b ("KVM: nSVM: do not mark all VMCB02 fields dirty on nested vmexit") Reported-by: Matteo Rizzo <matteorizzo@google.com> Cc: stable@vger.kernel.org Signed-off-by: Jim Mattson <jmattson@google.com> Link: https://lore.kernel.org/r/20250922162935.621409-2-jmattson@google.com Signed-off-by: Sean Christopherson <seanjc@google.com>
author: Jim Mattson <jmattson@google.com> 2025-09-22 09:29:22 -0700
committer: Sean Christopherson <seanjc@google.com> 2025-10-14 12:50:48 -0700
commit: 93c9e107386dbe1243287a5b14ceca894de372b9 (patch)
tree: 4d1e6f22700f669efbfcf079eaa3a99f4375ee38 /arch/x86/kvm/svm
parent: 3a8660878839faadb4f1a6dd72c3179c1df56787 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/arch/x86/kvm/svm/nested.c b/arch/x86/kvm/svm/nested.c
index a6443feab252..35cea27862c6 100644
--- a/arch/x86/kvm/svm/nested.c
+++ b/arch/x86/kvm/svm/nested.c
@@ -752,6 +752,7 @@ static void nested_vmcb02_prepare_control(struct vcpu_svm *svm,
 	vmcb02->control.nested_ctl = vmcb01->control.nested_ctl;
 	vmcb02->control.iopm_base_pa = vmcb01->control.iopm_base_pa;
 	vmcb02->control.msrpm_base_pa = vmcb01->control.msrpm_base_pa;
+	vmcb_mark_dirty(vmcb02, VMCB_PERM_MAP);
 
 	/*
 	 * Stash vmcb02's counter if the guest hasn't moved past the guilty
author	Jim Mattson <jmattson@google.com>	2025-09-22 09:29:22 -0700
committer	Sean Christopherson <seanjc@google.com>	2025-10-14 12:50:48 -0700
commit	93c9e107386dbe1243287a5b14ceca894de372b9 (patch)
tree	4d1e6f22700f669efbfcf079eaa3a99f4375ee38 /arch/x86/kvm/svm
parent	3a8660878839faadb4f1a6dd72c3179c1df56787 (diff)