KVM: Introduce vcpu->wants_to_run

Introduce vcpu->wants_to_run to indicate when a vCPU is in its core run loop, i.e. when the vCPU is running the KVM_RUN ioctl and immediate_exit was not set. Replace all references to vcpu->run->immediate_exit with !vcpu->wants_to_run to avoid TOCTOU races with userspace. For example, a malicious userspace could invoked KVM_RUN with immediate_exit=true and then after KVM reads it to set wants_to_run=false, flip it to false. This would result in the vCPU running in KVM_RUN with wants_to_run=false. This wouldn't cause any real bugs today but is a dangerous landmine. Signed-off-by: David Matlack <dmatlack@google.com> Link: https://lore.kernel.org/r/20240503181734.1467938-2-dmatlack@google.com Signed-off-by: Sean Christopherson <seanjc@google.com>
author: David Matlack <dmatlack@google.com> 2024-05-03 11:17:32 -0700
committer: Sean Christopherson <seanjc@google.com> 2024-06-18 09:20:01 -0700
commit: a6816314af5749cd88944bfdceb270c627cdf348 (patch)
tree: e082018db936c3d3be6219608524d8a508b1c259 /arch/loongarch/kvm/vcpu.c
parent: 438a496b9041402736e164c8ebf1368599903958 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/arch/loongarch/kvm/vcpu.c b/arch/loongarch/kvm/vcpu.c
index 9e8030d45129..f27d2bf14dc0 100644
--- a/arch/loongarch/kvm/vcpu.c
+++ b/arch/loongarch/kvm/vcpu.c
@@ -1266,7 +1266,7 @@ int kvm_arch_vcpu_ioctl_run(struct kvm_vcpu *vcpu)
 			kvm_complete_iocsr_read(vcpu, run);
 	}
 
-	if (run->immediate_exit)
+	if (!vcpu->wants_to_run)
 		return r;
 
 	/* Clear exit_reason */
author	David Matlack <dmatlack@google.com>	2024-05-03 11:17:32 -0700
committer	Sean Christopherson <seanjc@google.com>	2024-06-18 09:20:01 -0700
commit	a6816314af5749cd88944bfdceb270c627cdf348 (patch)
tree	e082018db936c3d3be6219608524d8a508b1c259 /arch/loongarch/kvm/vcpu.c
parent	438a496b9041402736e164c8ebf1368599903958 (diff)