提交 2556e7fc 编写于 作者: J Jing Liu 提交者: Lin Wang

kvm: x86: Exclude unpermitted xfeatures at KVM_GET_SUPPORTED_CPUID

mainline inclusion
from mainline-v5.17-rc1
commit 445ecdf7
category: feature
bugzilla: https://gitee.com/openeuler/intel-kernel/issues/I5RQLJ
CVE: NA

Intel-SIG: commit 445ecdf7 kvm: x86: Exclude unpermitted xfeatures at KVM_GET_SUPPORTED_CPUID.

--------------------------------

KVM_GET_SUPPORTED_CPUID should not include any dynamic xstates in
CPUID[0xD] if they have not been requested with prctl. Otherwise
a process which directly passes KVM_GET_SUPPORTED_CPUID to
KVM_SET_CPUID2 would now fail even if it doesn't intend to use a
dynamically enabled feature. Userspace must know that prctl is
required and allocate >4K xstate buffer before setting any dynamic
bit.
Suggested-by: NPaolo Bonzini <pbonzini@redhat.com>
Signed-off-by: NJing Liu <jing2.liu@intel.com>
Signed-off-by: NYang Zhong <yang.zhong@intel.com>
Message-Id: <20220105123532.12586-5-yang.zhong@intel.com>
Signed-off-by: NPaolo Bonzini <pbonzini@redhat.com>
Signed-off-by: NLin Wang <lin.x.wang@intel.com>
上级 52cb3167
...@@ -1632,6 +1632,10 @@ userspace capabilities, and with user requirements (for example, the ...@@ -1632,6 +1632,10 @@ userspace capabilities, and with user requirements (for example, the
user may wish to constrain cpuid to emulate older hardware, or for user may wish to constrain cpuid to emulate older hardware, or for
feature consistency across a cluster). feature consistency across a cluster).
Dynamically-enabled feature bits need to be requested with
``arch_prctl()`` before calling this ioctl. Feature bits that have not
been requested are excluded from the result.
Note that certain capabilities, such as KVM_CAP_X86_DISABLE_EXITS, may Note that certain capabilities, such as KVM_CAP_X86_DISABLE_EXITS, may
expose cpuid features (e.g. MONITOR) which are not supported by kvm in expose cpuid features (e.g. MONITOR) which are not supported by kvm in
its default configuration. If userspace enables such capabilities, it its default configuration. If userspace enables such capabilities, it
......
...@@ -765,11 +765,13 @@ static inline int __do_cpuid_func(struct kvm_cpuid_array *array, u32 function) ...@@ -765,11 +765,13 @@ static inline int __do_cpuid_func(struct kvm_cpuid_array *array, u32 function)
goto out; goto out;
} }
break; break;
case 0xd: case 0xd: {
entry->eax &= supported_xcr0; u64 guest_perm = xstate_get_guest_group_perm();
entry->eax &= supported_xcr0 & guest_perm;
entry->ebx = xstate_required_size(supported_xcr0, false); entry->ebx = xstate_required_size(supported_xcr0, false);
entry->ecx = entry->ebx; entry->ecx = entry->ebx;
entry->edx &= supported_xcr0 >> 32; entry->edx &= (supported_xcr0 & guest_perm) >> 32;
if (!supported_xcr0) if (!supported_xcr0)
break; break;
...@@ -816,6 +818,7 @@ static inline int __do_cpuid_func(struct kvm_cpuid_array *array, u32 function) ...@@ -816,6 +818,7 @@ static inline int __do_cpuid_func(struct kvm_cpuid_array *array, u32 function)
entry->edx = 0; entry->edx = 0;
} }
break; break;
}
case 0x12: case 0x12:
/* Intel SGX */ /* Intel SGX */
if (!kvm_cpu_cap_has(X86_FEATURE_SGX)) { if (!kvm_cpu_cap_has(X86_FEATURE_SGX)) {
......
Markdown is supported
0% .
You are about to add 0 people to the discussion. Proceed with caution.
先完成此消息的编辑!
想要评论请 注册