iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
753,968 Commits 104 Branches 1,843 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Liran Alon 2307af1c4b KVM: VMX: Mark VMXArea with revision_id of physical CPU even when eVMCS enabled 
When eVMCS is enabled, all VMCS allocated to be used by KVM are marked
with revision_id of KVM_EVMCS_VERSION instead of revision_id reported
by MSR_IA32_VMX_BASIC.

However, even though not explictly documented by TLFS, VMXArea passed
as VMXON argument should still be marked with revision_id reported by
physical CPU.

This issue was found by the following setup:
* L0 = KVM which expose eVMCS to it's L1 guest.
* L1 = KVM which consume eVMCS reported by L0.
This setup caused the following to occur:
1) L1 execute hardware_enable().
2) hardware_enable() calls kvm_cpu_vmxon() to execute VMXON.
3) L0 intercept L1 VMXON and execute handle_vmon() which notes
vmxarea->revision_id != VMCS12_REVISION and therefore fails with
nested_vmx_failInvalid() which sets RFLAGS.CF.
4) L1 kvm_cpu_vmxon() don't check RFLAGS.CF for failure and therefore
hardware_enable() continues as usual.
5) L1 hardware_enable() then calls ept_sync_global() which executes
INVEPT.
6) L0 intercept INVEPT and execute handle_invept() which notes
!vmx->nested.vmxon and thus raise a #UD to L1.
7) Raised #UD caused L1 to panic.

Reviewed-by: Krish Sadhukhan <krish.sadhukhan@oracle.com>
Cc: stable@vger.kernel.org
Fixes: 773e8a0425c923bc02668a2d6534a5ef5a43cc69
Signed-off-by: Liran Alon <liran.alon@oracle.com>
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
2018-07-18 11:31:28 +02:00
arch
KVM: VMX: Mark VMXArea with revision_id of physical CPU even when eVMCS enabled
2018-07-18 11:31:28 +02:00
block
blk-mq: fix sysfs inflight counter
2018-04-26 09:02:01 -06:00
certs
certs/blacklist_nohashes.c: fix const confusion in certs blacklist
2018-02-21 15:35:43 -08:00
crypto
crypto: drbg - set freed buffers to NULL
2018-04-21 00:57:00 +08:00
Documentation
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
2018-05-25 19:54:42 -07:00
drivers
ARM: SoC fixes for 4.17-rc
2018-05-26 14:05:16 -07:00
firmware
kbuild: remove all dummy assignments to obj-
2017-11-18 11:46:06 +09:00
fs
proc: fix smaps and meminfo alignment
2018-05-25 18:12:11 -07:00
include
Merge branch 'sched-urgent-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
2018-05-26 13:10:16 -07:00
init
init/main.c: include <linux/mem_encrypt.h>
2018-05-25 18:12:11 -07:00
ipc
ipc/shm: fix shmat() nil address after round-down when remapping
2018-05-25 18:12:11 -07:00
kernel
Merge branch 'sched-urgent-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
2018-05-26 13:10:16 -07:00
lib
idr: fix invalid ptr dereference on item delete
2018-05-25 18:12:10 -07:00
LICENSES
LICENSES: Add MPL-1.1 license
2018-01-06 10:59:44 -07:00
mm
kasan: fix memory hotplug during boot
2018-05-25 18:12:11 -07:00
net
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
2018-05-25 19:54:42 -07:00
samples
x86/cpufeature: Guard asm_volatile_goto usage for BPF compilation
2018-05-13 21:49:14 +02:00
scripts
checkpatch: fix macro argument precedence test
2018-05-25 18:12:11 -07:00
security
Merge branch 'fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2018-05-21 11:54:57 -07:00
sound
ALSA: hda - Fix runtime PM
2018-05-24 20:16:47 +02:00
tools
Merge branch 'akpm' (patches from Andrew)
2018-05-25 20:24:28 -07:00
usr
kbuild: rename built-in.o to built-in.a
2018-03-26 02:01:19 +09:00
virt
KVM: irqfd: fix race between EPOLLHUP and irq_bypass_register_consumer
2018-07-18 11:31:27 +02:00
.clang-format
clang-format: add configuration file
2018-04-11 10:28:35 -07:00
.cocciconfig
scripts: add Linux .cocciconfig for coccinelle
2016-07-22 12:13:39 +02:00
.get_maintainer.ignore
.gitattributes
.gitattributes: set git diff driver for C source code files
2016-10-07 18:46:30 -07:00
.gitignore
Kbuild updates for v4.17 (2nd)
2018-04-15 17:21:30 -07:00
.mailmap
Merge candidates for 4.17 merge window
2018-04-06 17:35:43 -07:00
COPYING
COPYING: use the new text with points to the license files
2018-03-23 12:41:45 -06:00
CREDITS
MAINTAINERS/CREDITS: Drop METAG ARCHITECTURE
2018-03-05 16:34:24 +00:00
Kbuild
Kbuild updates for v4.15
2017-11-17 17:45:29 -08:00
Kconfig
License cleanup: add SPDX GPL-2.0 license identifier to files with no license
2017-11-02 11:10:55 +01:00
MAINTAINERS
Merge branch 'akpm' (patches from Andrew)
2018-05-25 20:24:28 -07:00
Makefile
Linux 4.17-rc7
2018-05-27 13:01:47 -07:00
README
Docs: Added a pointer to the formatted docs to README
2018-03-21 09:02:53 -06:00

README 

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the Restructured Text markup notation.
See Documentation/00-INDEX for a list of what is contained in each file.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.
Description
No description provided
Readme 5.7 GiB
Languages
C 97.6%
Assembly 1%
Shell 0.5%
Python 0.3%
Makefile 0.3%