[google/syzkaller] f789f5: executor: x86: retire UEXIT_STOP_L2
1 view
Skip to first unread message
Alexander Potapenko
Nov 20, 2025, 4:24:00 AM11/20/25
to syzk...@googlegroups.com
Branch: refs/heads/gh-readonly-queue/master/pr-6463-26ee5237507419c1fa5dea5b2a84a0b7dcce9307
Home: https://github.com/google/syzkaller
Commit: f789f57f25de937cc56a2628ee6757af1ae60534
https://github.com/google/syzkaller/commit/f789f57f25de937cc56a2628ee6757af1ae60534
Author: Alexander Potapenko <gli...@google.com>
Date: 2025-11-20 (Thu, 20 Nov 2025)
Changed paths:
M executor/common_kvm_amd64_syzos.h
Log Message:
-----------
executor: x86: retire UEXIT_STOP_L2
It was useful initially for vendor-agnostic tests, but given that we
have guest_uexit_l2() right before it, we can save an extra L2-L1 exit.
Perhaps this should increase the probability of executing more complex
payloads (fewer KVM_RUN calls to reach the same point in L2 code).
Commit: ec988b2fb6c4aada0b3afcd9739ad27ec64b8249
https://github.com/google/syzkaller/commit/ec988b2fb6c4aada0b3afcd9739ad27ec64b8249
Author: Alexander Potapenko <gli...@google.com>
Date: 2025-11-20 (Thu, 20 Nov 2025)
Changed paths:
A sys/linux/test/amd64-syz_kvm_nested_create_vm-hlt
Log Message:
-----------
sys/linux/test: add amd64-syz_kvm_nested_create_vm-hlt
Basic SYZOS test for NV that ensures an L2 VM is correctly created
and executed.
Commit: 5c74d2f73618084fe35322dbb04bf713f7d177f2
https://github.com/google/syzkaller/commit/5c74d2f73618084fe35322dbb04bf713f7d177f2
Author: Alexander Potapenko <gli...@google.com>
Date: 2025-11-20 (Thu, 20 Nov 2025)
Changed paths:
M executor/common_kvm_amd64_syzos.h
M executor/kvm.h
M sys/linux/dev_kvm_amd64.txt
A sys/linux/test/amd64-syz_kvm_nested_vmresume
Log Message:
-----------
executor: sys/linux: implement SYZOS_API_NESTED_VMRESUME
Provide the SYZOS API command to resume L2 execution after a VM exit,
using VMRESUME on Intel and VMRUN on AMD.
For testing purpose, implement basic handling of the INVD instruction:
- enable INVD interception on AMD (set all bits in VMCB 00Ch);
- map EXIT_REASON_INVD and VMEXIT_INVD into SYZOS_NESTED_EXIT_REASON_INVD;
- advance L2 RIP to skip to the next instruction.
While at it, perform minor refactorings of L2 exit reason handling.
sys/linux/test/amd64-syz_kvm_nested_vmresume tests the new command by
executing two instructions, INVD and HLT, in the nested VM.
Compare: https://github.com/google/syzkaller/compare/f789f57f25de%5E...5c74d2f73618
To unsubscribe from these emails, change your notification settings at https://github.com/google/syzkaller/settings/notifications
Home: https://github.com/google/syzkaller
Commit: f789f57f25de937cc56a2628ee6757af1ae60534
https://github.com/google/syzkaller/commit/f789f57f25de937cc56a2628ee6757af1ae60534
Author: Alexander Potapenko <gli...@google.com>
Date: 2025-11-20 (Thu, 20 Nov 2025)
Changed paths:
M executor/common_kvm_amd64_syzos.h
Log Message:
-----------
executor: x86: retire UEXIT_STOP_L2
It was useful initially for vendor-agnostic tests, but given that we
have guest_uexit_l2() right before it, we can save an extra L2-L1 exit.
Perhaps this should increase the probability of executing more complex
payloads (fewer KVM_RUN calls to reach the same point in L2 code).
Commit: ec988b2fb6c4aada0b3afcd9739ad27ec64b8249
https://github.com/google/syzkaller/commit/ec988b2fb6c4aada0b3afcd9739ad27ec64b8249
Author: Alexander Potapenko <gli...@google.com>
Date: 2025-11-20 (Thu, 20 Nov 2025)
Changed paths:
A sys/linux/test/amd64-syz_kvm_nested_create_vm-hlt
Log Message:
-----------
sys/linux/test: add amd64-syz_kvm_nested_create_vm-hlt
Basic SYZOS test for NV that ensures an L2 VM is correctly created
and executed.
Commit: 5c74d2f73618084fe35322dbb04bf713f7d177f2
https://github.com/google/syzkaller/commit/5c74d2f73618084fe35322dbb04bf713f7d177f2
Author: Alexander Potapenko <gli...@google.com>
Date: 2025-11-20 (Thu, 20 Nov 2025)
Changed paths:
M executor/common_kvm_amd64_syzos.h
M executor/kvm.h
M sys/linux/dev_kvm_amd64.txt
A sys/linux/test/amd64-syz_kvm_nested_vmresume
Log Message:
-----------
executor: sys/linux: implement SYZOS_API_NESTED_VMRESUME
Provide the SYZOS API command to resume L2 execution after a VM exit,
using VMRESUME on Intel and VMRUN on AMD.
For testing purpose, implement basic handling of the INVD instruction:
- enable INVD interception on AMD (set all bits in VMCB 00Ch);
- map EXIT_REASON_INVD and VMEXIT_INVD into SYZOS_NESTED_EXIT_REASON_INVD;
- advance L2 RIP to skip to the next instruction.
While at it, perform minor refactorings of L2 exit reason handling.
sys/linux/test/amd64-syz_kvm_nested_vmresume tests the new command by
executing two instructions, INVD and HLT, in the nested VM.
Compare: https://github.com/google/syzkaller/compare/f789f57f25de%5E...5c74d2f73618
To unsubscribe from these emails, change your notification settings at https://github.com/google/syzkaller/settings/notifications
Alexander Potapenko
Nov 20, 2025, 4:36:24 AM11/20/25
to syzk...@googlegroups.com
Branch: refs/heads/master
Compare: https://github.com/google/syzkaller/compare/26ee52375074...5c74d2f73618
Reply all
Reply to author
Forward
0 new messages