Avi Kivity <avi at redhat.com> writes: > There's no way to query whether vmx is enabled or disabled, AFAICT. So we have > to execute vmxoff and ignore possible #UDs. > > If we trust the exception handlers, there's no problem. Otherwise we need to > replace the current #UD handler with an iret (perhaps switching temporarily to > another IDT). Ugh. We already change the IDT on that code path so that may be a way to go. > The general kexec path also wants this fixed. It looks like someone hooked the reboot notifier which should be called on the normal kexec path. Eric
