| commit | f438349efb8247cd0c1d453a4131b1f801bf5691 | |
| author | Avi Kivity <avi@redhat.com> | |
| Thu, 26 Mar 2009 23:05:03 +0000 (26 23:05 +0000) | ||
| committer | Chris Wright <chrisw@sous-sol.org> | |
| Thu, 2 Apr 2009 20:55:16 +0000 (2 13:55 -0700) | ||
| tree | 789bbee8daa22298cbc017056cb1c367366085cb | treesnapshot (tar.gz zip) |
| parent | a9620fdcb8dab4d05f5677110c54b74e7ce1d621 | commitdiff |
KVM: VMX: Don't allow uninhibited access to EFER on i386
upstream commit: 16175a796d061833aacfbd9672235f2d2725df65
vmx_set_msr() does not allow i386 guests to touch EFER, but they can still
do so through the default: label in the switch. If they set EFER_LME, they
can oops the host.
Fix by having EFER access through the normal channel (which will check for
EFER_LME) even on i386.
Reported-and-tested-by: Benjamin Gilbert <bgilbert@cs.cmu.edu>
Cc: stable@kernel.org
Signed-off-by: Avi Kivity <avi@redhat.com>
Signed-off-by: Chris Wright <chrisw@sous-sol.org>
upstream commit: 16175a796d061833aacfbd9672235f2d2725df65
vmx_set_msr() does not allow i386 guests to touch EFER, but they can still
do so through the default: label in the switch. If they set EFER_LME, they
can oops the host.
Fix by having EFER access through the normal channel (which will check for
EFER_LME) even on i386.
Reported-and-tested-by: Benjamin Gilbert <bgilbert@cs.cmu.edu>
Cc: stable@kernel.org
Signed-off-by: Avi Kivity <avi@redhat.com>
Signed-off-by: Chris Wright <chrisw@sous-sol.org>
| arch/x86/kvm/vmx.c | diffblobblamehistory |