diff options
| author | Andy Honig <ahonig@google.com> | 2014-08-27 14:16:44 -0400 |
|---|---|---|
| committer | Paolo Bonzini <pbonzini@redhat.com> | 2014-10-24 07:21:08 -0400 |
| commit | 8b3c3104c3f4f706e99365c3e0d2aa61b95f969f (patch) | |
| tree | ccb686a3c75ce3b921a77038365752130b6ff589 /arch/x86/kvm | |
| parent | 854e8bb1aa06c578c2c9145fa6bfe3680ef63b23 (diff) | |
KVM: x86: Prevent host from panicking on shared MSR writes.
The previous patch blocked invalid writes directly when the MSR
is written. As a precaution, prevent future similar mistakes by
gracefulling handle GPs caused by writes to shared MSRs.
Cc: stable@vger.kernel.org
Signed-off-by: Andrew Honig <ahonig@google.com>
[Remove parts obsoleted by Nadav's patch. - Paolo]
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
Diffstat (limited to 'arch/x86/kvm')
| -rw-r--r-- | arch/x86/kvm/vmx.c | 7 | ||||
| -rw-r--r-- | arch/x86/kvm/x86.c | 11 |
2 files changed, 13 insertions, 5 deletions
diff --git a/arch/x86/kvm/vmx.c b/arch/x86/kvm/vmx.c index 148020a7dd98..7e2c098b59c9 100644 --- a/arch/x86/kvm/vmx.c +++ b/arch/x86/kvm/vmx.c | |||
| @@ -2659,12 +2659,15 @@ static int vmx_set_msr(struct kvm_vcpu *vcpu, struct msr_data *msr_info) | |||
| 2659 | default: | 2659 | default: |
| 2660 | msr = find_msr_entry(vmx, msr_index); | 2660 | msr = find_msr_entry(vmx, msr_index); |
| 2661 | if (msr) { | 2661 | if (msr) { |
| 2662 | u64 old_msr_data = msr->data; | ||
| 2662 | msr->data = data; | 2663 | msr->data = data; |
| 2663 | if (msr - vmx->guest_msrs < vmx->save_nmsrs) { | 2664 | if (msr - vmx->guest_msrs < vmx->save_nmsrs) { |
| 2664 | preempt_disable(); | 2665 | preempt_disable(); |
| 2665 | kvm_set_shared_msr(msr->index, msr->data, | 2666 | ret = kvm_set_shared_msr(msr->index, msr->data, |
| 2666 | msr->mask); | 2667 | msr->mask); |
| 2667 | preempt_enable(); | 2668 | preempt_enable(); |
| 2669 | if (ret) | ||
| 2670 | msr->data = old_msr_data; | ||
| 2668 | } | 2671 | } |
| 2669 | break; | 2672 | break; |
| 2670 | } | 2673 | } |
diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c index 5a7195573a32..0033df32a745 100644 --- a/arch/x86/kvm/x86.c +++ b/arch/x86/kvm/x86.c | |||
| @@ -229,20 +229,25 @@ static void kvm_shared_msr_cpu_online(void) | |||
| 229 | shared_msr_update(i, shared_msrs_global.msrs[i]); | 229 | shared_msr_update(i, shared_msrs_global.msrs[i]); |
| 230 | } | 230 | } |
| 231 | 231 | ||
| 232 | void kvm_set_shared_msr(unsigned slot, u64 value, u64 mask) | 232 | int kvm_set_shared_msr(unsigned slot, u64 value, u64 mask) |
| 233 | { | 233 | { |
| 234 | unsigned int cpu = smp_processor_id(); | 234 | unsigned int cpu = smp_processor_id(); |
| 235 | struct kvm_shared_msrs *smsr = per_cpu_ptr(shared_msrs, cpu); | 235 | struct kvm_shared_msrs *smsr = per_cpu_ptr(shared_msrs, cpu); |
| 236 | int err; | ||
| 236 | 237 | ||
| 237 | if (((value ^ smsr->values[slot].curr) & mask) == 0) | 238 | if (((value ^ smsr->values[slot].curr) & mask) == 0) |
| 238 | return; | 239 | return 0; |
| 239 | smsr->values[slot].curr = value; | 240 | smsr->values[slot].curr = value; |
| 240 | wrmsrl(shared_msrs_global.msrs[slot], value); | 241 | err = wrmsrl_safe(shared_msrs_global.msrs[slot], value); |
| 242 | if (err) | ||
| 243 | return 1; | ||
| 244 | |||
| 241 | if (!smsr->registered) { | 245 | if (!smsr->registered) { |
| 242 | smsr->urn.on_user_return = kvm_on_user_return; | 246 | smsr->urn.on_user_return = kvm_on_user_return; |
| 243 | user_return_notifier_register(&smsr->urn); | 247 | user_return_notifier_register(&smsr->urn); |
| 244 | smsr->registered = true; | 248 | smsr->registered = true; |
| 245 | } | 249 | } |
| 250 | return 0; | ||
| 246 | } | 251 | } |
| 247 | EXPORT_SYMBOL_GPL(kvm_set_shared_msr); | 252 | EXPORT_SYMBOL_GPL(kvm_set_shared_msr); |
| 248 | 253 | ||