Thank you Thomas. I missed what I think is your fundamental point regarding duplication created by this patch between CPU feature bits and KVM's consumption of the IA32_VMX_EPT_VPID_CAP MSR. Should all the features in this MSR be exposed via CPU feature bits and should KVM consume only from there rather than reading the MSR directly? There are 16 feature bits in the MSR per SDM Vol 3d section A.10.
