[PATCH 5.15 3/5] KVM: s390: Return error on SIDA memop on normal guest

9 Feb 2022

From: Janis Schoetterl-Glausch scgl@linux.ibm.com
commit 2c212e1baedcd782b2535a3f86bc491977677c0e upstream.
Refuse SIDA memops on guests which are not protected.
For normal guests, the secure instruction data address designation,
which determines the location we access, is not under control of KVM.
Fixes: 19e122776886 (KVM: S390: protvirt: Introduce instruction data area bounce buffer)
Signed-off-by: Janis Schoetterl-Glausch scgl@linux.ibm.com
Cc: stable@vger.kernel.org
Signed-off-by: Christian Borntraeger borntraeger@linux.ibm.com
Signed-off-by: Greg Kroah-Hartman gregkh@linuxfoundation.org
---
 arch/s390/kvm/kvm-s390.c |    2 ++
 1 file changed, 2 insertions(+)

--- a/arch/s390/kvm/kvm-s390.c
+++ b/arch/s390/kvm/kvm-s390.c
@@ -4708,6 +4708,8 @@ static long kvm_s390_guest_sida_op(struc
    	return -EINVAL;
    if (mop->size + mop->sida_offset > sida_size(vcpu->arch.sie_block))
    	return -E2BIG;
+	if (!kvm_s390_pv_cpu_is_protected(vcpu))
+		return -EINVAL;
switch (mop->op) {
    case KVM_S390_MEMOP_SIDA_READ:

    

2025

2024

2023

2022

2021

2020

2019

2018

2017

[PATCH 5.15 3/5] KVM: s390: Return error on SIDA memop on normal guest