git.baikalelectronics.ru Git - kernel.git/commit

author	Singh, Brijesh <brijesh.singh@amd.com>
	Fri, 15 Feb 2019 17:24:12 +0000 (17:24 +0000)
committer	Paolo Bonzini <pbonzini@redhat.com>
	Thu, 28 Mar 2019 16:27:17 +0000 (17:27 +0100)
commit	eead5a94dd20f13b5e9c13889cf62c537c33636e
tree	386f6c7d5eb8ec29d3c8992379f75938bc32c9b7	tree \| snapshot
parent	70f75c1064d57eb542028d50ed591eb59fa075da	commit \| diff

KVM: SVM: Workaround errata#1096 (insn_len maybe zero on SMAP violation)

Errata#1096:

On a nested data page fault when CR.SMAP=1 and the guest data read
generates a SMAP violation, GuestInstrBytes field of the VMCB on a
VMEXIT will incorrectly return 0h instead the correct guest
instruction bytes .

Recommend Workaround:

To determine what instruction the guest was executing the hypervisor
will have to decode the instruction at the instruction pointer.

The recommended workaround can not be implemented for the SEV
guest because guest memory is encrypted with the guest specific key,
and instruction decoder will not be able to decode the instruction
bytes. If we hit this errata in the SEV guest then log the message
and request a guest shutdown.

Reported-by: Venkatesh Srinivas <venkateshs@google.com>
Cc: Jim Mattson <jmattson@google.com>
Cc: Tom Lendacky <thomas.lendacky@amd.com>
Cc: Borislav Petkov <bp@alien8.de>
Cc: Joerg Roedel <joro@8bytes.org>
Cc: "Radim Krčmář" <rkrcmar@redhat.com>
Cc: Paolo Bonzini <pbonzini@redhat.com>
Signed-off-by: Brijesh Singh <brijesh.singh@amd.com>
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>

arch/x86/include/asm/kvm_host.h		diff \| blob \| history
arch/x86/kvm/mmu.c		diff \| blob \| history
arch/x86/kvm/svm.c		diff \| blob \| history
arch/x86/kvm/vmx/vmx.c		diff \| blob \| history