Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-5.4 / 4566654bb9be9e8864df417bb72ceee5136b6a6a^! / . / arch / x86 / kvm / vmx.c
commit4566654bb9be9e8864df417bb72ceee5136b6a6a[log] [tgz]
authorNadav Amit <namit@cs.technion.ac.il>Thu Sep 18 22:39:44 2014 +0300
committerPaolo Bonzini <pbonzini@redhat.com>Wed Sep 24 14:07:52 2014 +0200
tree2ee30a47fda49fb967dbad7ce7c0158f6e1023e4
parent040c8dc8a5afa7364bb8bb5b1b76c30007d6be14 [diff] [blame]
KVM: vmx: Inject #GP on invalid PAT CR

Guest which sets the PAT CR to invalid value should get a #GP.  Currently, if
vmx supports loading PAT CR during entry, then the value is not checked.  This
patch makes the required check in that case.

Signed-off-by: Nadav Amit <namit@cs.technion.ac.il>
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>

diff --git a/arch/x86/kvm/vmx.c b/arch/x86/kvm/vmx.c
index ec389a6..06746c0 100644
--- a/arch/x86/kvm/vmx.c
+++ b/arch/x86/kvm/vmx.c

@@ -2626,6 +2626,8 @@
 		break;
 	case MSR_IA32_CR_PAT:
 		if (vmcs_config.vmentry_ctrl & VM_ENTRY_LOAD_IA32_PAT) {
+			if (!kvm_mtrr_valid(vcpu, MSR_IA32_CR_PAT, data))
+				return 1;
 			vmcs_write64(GUEST_IA32_PAT, data);
 			vcpu->arch.pat = data;
 			break;