On Tue, Nov 04, 2025 at 10:44:27AM -0800, Nicolin Chen wrote: > The hardware path is programmed with a RMR-ed sw_msi in the host > via VFIO's PCI IRQ, ignoring the gIOVA and vITS in the guest VM, > even if the vPCI is programmed with a wrong gIOVA that could not > be translated.
Yes > KVM would always get the IRQ from HW, since the HW is programmed > correctly. But if gIOVA->vITS is not mapped, i.e. gIOVA is given > incorrectly, it can't inject the IRQ. But this is a software interrupt, and I think it should still just ignore vMSI's address and assume it is mapped to a legal ITS page. There is just no way to validate it. Even SW MSI shouldn't fail because the vMSI has some weird IOVA in it that isn't mapped in the S2. That's wrong and is something the guest is permitted to do. Jason
