KVM: s390: Fixes for 5.3
- prevent a user triggerable oops in the migration code - do not leak kernel stack content -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (GNU/Linux) iQIcBAABAgAGBQJdejosAAoJEBF7vIC1phx8ZcYP/09WMmcbOexGvopqyMzIWgAv xpSHAW0+mGriu9b41OwkxBsMG3MxUzk86b3zL0r5eaigWXSuE2NU0OhScqF9ehMX pTtoeSzFJsPFwGQrOKIhpgcNzOJ+YfVqTDlf5dxq9uSNYF32suuz0Dw4P9PdFJOg k8prJXiKu+bL21TcbhWsAAP7Gb5/DA26p4d5KM3wJe351Af9lrLrDF2z+pKe9fbY v0vMcH3tJoBOOTYUSJeptEWU9OlYljMrJN7kkmXCEC8yklwoXPDNgAC8Yg2SfqYM xNKVkX/rY97cn1Dq0LpAvEjMDYvu7KbOM1qQE9A67gRLIjuGJnDyEa+j/iB/tOrz BMmTdut44XRaVZVdDL+d2pg3LKI+1+UV4XTwpD4g1tSpYLar3dJVb9mq00OzdCAg TsK+pQYTSZig+H4ubtikgm9pFGKOB2Jsp2+FoC7jYxhYQWyj4syBkSoaaUdY0LvE /Du3NY3RaG4yi2K2XV0yjBVAjpXxYMWqvzJYTC9XlrEQJ5nAmiefTgxZmcg4ZCMw 0YVRigG7vz8oKpVRl/6smGd/U+qTNZN4cXnFgUr71yONiIxsSndUZ/Yledtf+KQR uzPfvIwYpRzwqVnXkkFb+PNxvJVftCbe2rRI4D549VsbmEJmSadjiB5aW1Rj3fMN 47ZjXZmmGETR8BtQEM37 =LxGy -----END PGP SIGNATURE----- Merge tag 'kvm-s390-master-5.3-1' of git://git.kernel.org/pub/scm/linux/kernel/git/kvms390/linux into kvm-master KVM: s390: Fixes for 5.3 - prevent a user triggerable oops in the migration code - do not leak kernel stack content
This commit is contained in:
commit
a9c20bb020
@ -1961,6 +1961,16 @@ int s390int_to_s390irq(struct kvm_s390_interrupt *s390int,
|
|||||||
case KVM_S390_MCHK:
|
case KVM_S390_MCHK:
|
||||||
irq->u.mchk.mcic = s390int->parm64;
|
irq->u.mchk.mcic = s390int->parm64;
|
||||||
break;
|
break;
|
||||||
|
case KVM_S390_INT_PFAULT_INIT:
|
||||||
|
irq->u.ext.ext_params = s390int->parm;
|
||||||
|
irq->u.ext.ext_params2 = s390int->parm64;
|
||||||
|
break;
|
||||||
|
case KVM_S390_RESTART:
|
||||||
|
case KVM_S390_INT_CLOCK_COMP:
|
||||||
|
case KVM_S390_INT_CPU_TIMER:
|
||||||
|
break;
|
||||||
|
default:
|
||||||
|
return -EINVAL;
|
||||||
}
|
}
|
||||||
return 0;
|
return 0;
|
||||||
}
|
}
|
||||||
|
@ -1018,6 +1018,8 @@ static int kvm_s390_vm_start_migration(struct kvm *kvm)
|
|||||||
/* mark all the pages in active slots as dirty */
|
/* mark all the pages in active slots as dirty */
|
||||||
for (slotnr = 0; slotnr < slots->used_slots; slotnr++) {
|
for (slotnr = 0; slotnr < slots->used_slots; slotnr++) {
|
||||||
ms = slots->memslots + slotnr;
|
ms = slots->memslots + slotnr;
|
||||||
|
if (!ms->dirty_bitmap)
|
||||||
|
return -EINVAL;
|
||||||
/*
|
/*
|
||||||
* The second half of the bitmap is only used on x86,
|
* The second half of the bitmap is only used on x86,
|
||||||
* and would be wasted otherwise, so we put it to good
|
* and would be wasted otherwise, so we put it to good
|
||||||
@ -4323,7 +4325,7 @@ long kvm_arch_vcpu_async_ioctl(struct file *filp,
|
|||||||
}
|
}
|
||||||
case KVM_S390_INTERRUPT: {
|
case KVM_S390_INTERRUPT: {
|
||||||
struct kvm_s390_interrupt s390int;
|
struct kvm_s390_interrupt s390int;
|
||||||
struct kvm_s390_irq s390irq;
|
struct kvm_s390_irq s390irq = {};
|
||||||
|
|
||||||
if (copy_from_user(&s390int, argp, sizeof(s390int)))
|
if (copy_from_user(&s390int, argp, sizeof(s390int)))
|
||||||
return -EFAULT;
|
return -EFAULT;
|
||||||
|
Loading…
x
Reference in New Issue
Block a user