KVM: x86: Formalize blocking of nested pending exceptions

static int svm_check_nested_events(struct kvm_vcpu *vcpu)

{

	struct vcpu_svm *svm = to_svm(vcpu);

	bool block_nested_events =

		kvm_event_needs_reinjection(vcpu) || svm->nested.nested_run_pending;

	struct kvm_lapic *apic = vcpu->arch.apic;

	struct vcpu_svm *svm = to_svm(vcpu);

	/*

	 * Only a pending nested run blocks a pending exception.  If there is a

	 * previously injected event, the pending exception occurred while said

	 * event was being delivered and thus needs to be handled.

	 */

	bool block_nested_exceptions = svm->nested.nested_run_pending;

	/*

	 * New events (not exceptions) are only recognized at instruction

	 * boundaries.  If an event needs reinjection, then KVM is handling a

	 * VM-Exit that occurred _during_ instruction execution; new events are

	 * blocked until the instruction completes.

	 */

	bool block_nested_events = block_nested_exceptions ||

				   kvm_event_needs_reinjection(vcpu);

	if (lapic_in_kernel(vcpu) &&

	    test_bit(KVM_APIC_INIT, &apic->pending_events)) {

	}

	if (vcpu->arch.exception.pending) {

		/*

		 * Only a pending nested run can block a pending exception.

		 * Otherwise an injected NMI/interrupt should either be

		 * lost or delivered to the nested hypervisor in the EXITINTINFO

		 * vmcb field, while delivering the pending exception.

		 */

		if (svm->nested.nested_run_pending)

		if (block_nested_exceptions)

                        return -EBUSY;

		if (!nested_exit_on_exception(svm))

			return 0;

static int vmx_check_nested_events(struct kvm_vcpu *vcpu)

{

	struct kvm_lapic *apic = vcpu->arch.apic;

	struct vcpu_vmx *vmx = to_vmx(vcpu);

	unsigned long exit_qual;

	bool block_nested_events =

	    vmx->nested.nested_run_pending || kvm_event_needs_reinjection(vcpu);

	struct kvm_lapic *apic = vcpu->arch.apic;

	/*

	 * Only a pending nested run blocks a pending exception.  If there is a

	 * previously injected event, the pending exception occurred while said

	 * event was being delivered and thus needs to be handled.

	 */

	bool block_nested_exceptions = vmx->nested.nested_run_pending;

	/*

	 * New events (not exceptions) are only recognized at instruction

	 * boundaries.  If an event needs reinjection, then KVM is handling a

	 * VM-Exit that occurred _during_ instruction execution; new events are

	 * blocked until the instruction completes.

	 */

	bool block_nested_events = block_nested_exceptions ||

				   kvm_event_needs_reinjection(vcpu);

	if (lapic_in_kernel(vcpu) &&

		test_bit(KVM_APIC_INIT, &apic->pending_events)) {

	 * for TSS T flag #DBs).  KVM also doesn't save/restore pending MTF

	 * across SMI/RSM as it should; that needs to be addressed in order to

	 * prioritize SMI over MTF and trap-like #DBs.

	 *

	 * Note that only a pending nested run can block a pending exception.

	 * Otherwise an injected NMI/interrupt should either be

	 * lost or delivered to the nested hypervisor in the IDT_VECTORING_INFO,

	 * while delivering the pending exception.

	 */

	if (vcpu->arch.exception.pending &&

	    !(vmx_get_pending_dbg_trap(vcpu) & ~DR6_BT)) {

		if (vmx->nested.nested_run_pending)

		if (block_nested_exceptions)

			return -EBUSY;

		if (!nested_vmx_check_exception(vcpu, &exit_qual))

			goto no_vmexit;

	}

	if (vcpu->arch.exception.pending) {

		if (vmx->nested.nested_run_pending)

		if (block_nested_exceptions)

			return -EBUSY;

		if (!nested_vmx_check_exception(vcpu, &exit_qual))

			goto no_vmexit;