KVM: PPC: Book3S HV: Only accept host PVR value for guest PVR

Since the guest can read the machine's PVR (Processor Version Register) directly and see the real value, we should disallow userspace from setting any value for the guest's PVR other than the real host value. Therefore this makes kvm_arch_vcpu_set_sregs_hv() check the supplied PVR value and return an error if it is different from the host value, which has been put into vcpu->arch.pvr at vcpu creation time. Signed-off-by: Paul Mackerras <paulus@samba.org>
author: Paul Mackerras <paulus@samba.org> 2014-01-17 18:28:00 +1100
committer: Eli Qiao <taget@linux.vnet.ibm.com> 2014-01-22 10:26:25 +0800
commit: b52b39568e87e7fe2c98359a65dedb8979a27730 (patch)
tree: 10383c192f9c6a0ce70070ced77bbfa0afab9d71
parent: 9351b0a12c818b12351954db9e98983b28d539fc (diff)
download: powerkvm-b52b39568e87e7fe2c98359a65dedb8979a27730.tar.gz
1 files changed, 3 insertions, 1 deletions
diff --git a/arch/powerpc/kvm/book3s_hv.c b/arch/powerpc/kvm/book3s_hv.c
index 884c1fb1b00c71..03b96f6621b2ce 100644
--- a/arch/powerpc/kvm/book3s_hv.c
+++ b/arch/powerpc/kvm/book3s_hv.c
@@ -891,7 +891,9 @@ static int kvm_arch_vcpu_ioctl_set_sregs_hv(struct kvm_vcpu *vcpu,
 {
 	int i, j;
 
-	kvmppc_set_pvr_hv(vcpu, sregs->pvr);
+	/* Only accept the same PVR as the host's, since we can't spoof it */
+	if (sregs->pvr != vcpu->arch.pvr)
+		return -EINVAL;
 
 	j = 0;
 	for (i = 0; i < vcpu->arch.slb_nr; i++) {
author	Paul Mackerras <paulus@samba.org>	2014-01-17 18:28:00 +1100
committer	Eli Qiao <taget@linux.vnet.ibm.com>	2014-01-22 10:26:25 +0800
commit	b52b39568e87e7fe2c98359a65dedb8979a27730 (patch)
tree	10383c192f9c6a0ce70070ced77bbfa0afab9d71
parent	9351b0a12c818b12351954db9e98983b28d539fc (diff)
download	powerkvm-b52b39568e87e7fe2c98359a65dedb8979a27730.tar.gz