diff options
Diffstat (limited to 'arch/x86/kvm/vmx.c')
| -rw-r--r-- | arch/x86/kvm/vmx.c | 67 | 
1 files changed, 67 insertions, 0 deletions
| diff --git a/arch/x86/kvm/vmx.c b/arch/x86/kvm/vmx.c index 559a12b6184d..1689f433f3a0 100644 --- a/arch/x86/kvm/vmx.c +++ b/arch/x86/kvm/vmx.c @@ -1705,6 +1705,17 @@ static inline bool nested_cpu_has_vmwrite_any_field(struct kvm_vcpu *vcpu)  		MSR_IA32_VMX_MISC_VMWRITE_SHADOW_RO_FIELDS;  } +static inline bool nested_cpu_has_zero_length_injection(struct kvm_vcpu *vcpu) +{ +	return to_vmx(vcpu)->nested.msrs.misc_low & VMX_MISC_ZERO_LEN_INS; +} + +static inline bool nested_cpu_supports_monitor_trap_flag(struct kvm_vcpu *vcpu) +{ +	return to_vmx(vcpu)->nested.msrs.procbased_ctls_high & +			CPU_BASED_MONITOR_TRAP_FLAG; +} +  static inline bool nested_cpu_has(struct vmcs12 *vmcs12, u32 bit)  {  	return vmcs12->cpu_based_vm_exec_control & bit; @@ -11620,6 +11631,62 @@ static int check_vmentry_prereqs(struct kvm_vcpu *vcpu, struct vmcs12 *vmcs12)  	    !nested_cr3_valid(vcpu, vmcs12->host_cr3))  		return VMXERR_ENTRY_INVALID_HOST_STATE_FIELD; +	/* +	 * From the Intel SDM, volume 3: +	 * Fields relevant to VM-entry event injection must be set properly. +	 * These fields are the VM-entry interruption-information field, the +	 * VM-entry exception error code, and the VM-entry instruction length. +	 */ +	if (vmcs12->vm_entry_intr_info_field & INTR_INFO_VALID_MASK) { +		u32 intr_info = vmcs12->vm_entry_intr_info_field; +		u8 vector = intr_info & INTR_INFO_VECTOR_MASK; +		u32 intr_type = intr_info & INTR_INFO_INTR_TYPE_MASK; +		bool has_error_code = intr_info & INTR_INFO_DELIVER_CODE_MASK; +		bool should_have_error_code; +		bool urg = nested_cpu_has2(vmcs12, +					   SECONDARY_EXEC_UNRESTRICTED_GUEST); +		bool prot_mode = !urg || vmcs12->guest_cr0 & X86_CR0_PE; + +		/* VM-entry interruption-info field: interruption type */ +		if (intr_type == INTR_TYPE_RESERVED || +		    (intr_type == INTR_TYPE_OTHER_EVENT && +		     !nested_cpu_supports_monitor_trap_flag(vcpu))) +			return VMXERR_ENTRY_INVALID_CONTROL_FIELD; + +		/* VM-entry interruption-info field: vector */ +		if ((intr_type == INTR_TYPE_NMI_INTR && vector != NMI_VECTOR) || +		    (intr_type == INTR_TYPE_HARD_EXCEPTION && vector > 31) || +		    (intr_type == INTR_TYPE_OTHER_EVENT && vector != 0)) +			return VMXERR_ENTRY_INVALID_CONTROL_FIELD; + +		/* VM-entry interruption-info field: deliver error code */ +		should_have_error_code = +			intr_type == INTR_TYPE_HARD_EXCEPTION && prot_mode && +			x86_exception_has_error_code(vector); +		if (has_error_code != should_have_error_code) +			return VMXERR_ENTRY_INVALID_CONTROL_FIELD; + +		/* VM-entry exception error code */ +		if (has_error_code && +		    vmcs12->vm_entry_exception_error_code & GENMASK(31, 15)) +			return VMXERR_ENTRY_INVALID_CONTROL_FIELD; + +		/* VM-entry interruption-info field: reserved bits */ +		if (intr_info & INTR_INFO_RESVD_BITS_MASK) +			return VMXERR_ENTRY_INVALID_CONTROL_FIELD; + +		/* VM-entry instruction length */ +		switch (intr_type) { +		case INTR_TYPE_SOFT_EXCEPTION: +		case INTR_TYPE_SOFT_INTR: +		case INTR_TYPE_PRIV_SW_EXCEPTION: +			if ((vmcs12->vm_entry_instruction_len > 15) || +			    (vmcs12->vm_entry_instruction_len == 0 && +			     !nested_cpu_has_zero_length_injection(vcpu))) +				return VMXERR_ENTRY_INVALID_CONTROL_FIELD; +		} +	} +  	return 0;  } |