Patch Series

Subject	Nested SVM fixes, cleanups, and hardening
Author	yosry.ahmed@linux.dev
Date	2026-01-15 01:12:47 +0000 UTC
Version	Version 1 Version 2 Version 4 Version 5
Cc	jmattson@google.com kvm@vger.kernel.org linux-kernel@vger.kernel.org pbonzini@redhat.com seanjc@google.com stable@vger.kernel.org yosry.ahmed@linux.dev

Patches (26)

Name	Content [All]
[PATCH v4 01/26] KVM: SVM: Switch svm_copy_lbrs() to a macro	[Body]
[PATCH v4 02/26] KVM: SVM: Add missing save/restore handling of LBR MSRs	[Body]
[PATCH v4 03/26] KVM: selftests: Add a test for LBR save/restore (ft. nested)	[Body]
[PATCH v4 04/26] KVM: nSVM: Always inject a #GP if mapping VMCB12 fails on nested VMRUN	[Body]
[PATCH v4 05/26] KVM: nSVM: Triple fault if mapping VMCB12 fails on nested #VMEXIT	[Body]
[PATCH v4 06/26] KVM: nSVM: Triple fault if restore host CR3 fails on nested #VMEXIT	[Body]
[PATCH v4 07/26] KVM: nSVM: Drop nested_vmcb_check_{save/control}() wrappers	[Body]
[PATCH v4 08/26] KVM: nSVM: Call enter_guest_mode() before switching to VMCB02	[Body]
[PATCH v4 09/26] KVM: nSVM: Make nested_svm_merge_msrpm() return an errno	[Body]
[PATCH v4 10/26] KVM: nSVM: Call nested_svm_merge_msrpm() from enter_svm_guest_mode()	[Body]
[PATCH v4 11/26] KVM: nSVM: Call nested_svm_init_mmu_context() before switching to VMCB02	[Body]
[PATCH v4 12/26] KVM: nSVM: Refactor minimal #VMEXIT handling out of nested_svm_vmexit()	[Body]
[PATCH v4 13/26] KVM: nSVM: Unify handling of VMRUN failures with proper cleanup	[Body]
[PATCH v4 14/26] KVM: nSVM: Clear EVENTINJ field in VMCB12 on nested #VMEXIT	[Body]
[PATCH v4 15/26] KVM: nSVM: Drop the non-architectural consistency check for NP_ENABLE	[Body]
[PATCH v4 16/26] KVM: nSVM: Add missing consistency check for nCR3 validity	[Body]
[PATCH v4 17/26] KVM: nSVM: Add missing consistency check for hCR0.PG and NP_ENABLE	[Body]
[PATCH v4 18/26] KVM: nSVM: Add missing consistency check for EFER, CR0, CR4, and CS	[Body]
[PATCH v4 19/26] KVM: nSVM: Add missing consistency check for event_inj	[Body]
[PATCH v4 20/26] KVM: SVM: Rename vmcb->nested_ctl to vmcb->misc_ctl	[Body]
[PATCH v4 21/26] KVM: SVM: Rename vmcb->virt_ext to vmcb->misc_ctl2	[Body]
[PATCH v4 22/26] KVM: SVM: Use BIT() and GENMASK() for definitions in svm.h	[Body]
[PATCH v4 23/26] KVM: nSVM: Cache all used fields from VMCB12	[Body]
[PATCH v4 24/26] KVM: nSVM: Restrict mapping VMCB12 on nested VMRUN	[Body]
[PATCH v4 25/26] KVM: nSVM: Sanitize control fields copied from VMCB12	[Body]
[PATCH v4 26/26] KVM: nSVM: Only copy NP_ENABLE from VMCB01's misc_ctl	[Body]

Session 2026-01-15

ID (for dev)	3be098dd-4ae8-439b-8e3c-1d6da38f80fd
Status	finished
Triaged	OK [Log]
Execution Log	[Link]

Test	Base	Patched	Verdict
[KASAN] Build Base	b775e489bec70895b7ef6b66927886bbac79598f [Config]		passed [Log]
[KASAN] Boot test: Base	b775e489bec70895b7ef6b66927886bbac79598f [Config]		passed [Log]
[KASAN] Build Patched		b775e489bec70895b7ef6b66927886bbac79598f [Config] [patched]	passed [Log]
[KASAN] Boot test: Patched		b775e489bec70895b7ef6b66927886bbac79598f [Config] [patched]	passed [Log]
[KASAN] Fuzzing	b775e489bec70895b7ef6b66927886bbac79598f [Config]	b775e489bec70895b7ef6b66927886bbac79598f [Config] [patched]	passed [Log] [Artifacts]