Commit 0a629563 authored Apr 02, 2019 by Sean Christopherson Committed by Paolo Bonzini Apr 16, 2019

KVM: x86: Inject #GP if guest attempts to set unsupported EFER bits



EFER.LME and EFER.NX are considered reserved if their respective feature
bits are not advertised to the guest.

Signed-off-by: Sean Christopherson <sean.j.christopherson@intel.com>
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>

parent 11988499

arch/x86/kvm/x86.c

+7 −0

Original line number	Diff line number	Diff line
		@@ -1266,6 +1266,13 @@ static bool __kvm_valid_efer(struct kvm_vcpu *vcpu, u64 efer)
		if (efer & EFER_SVME && !guest_cpuid_has(vcpu, X86_FEATURE_SVM))
		return false;

		if (efer & (EFER_LME \| EFER_LMA) &&
		!guest_cpuid_has(vcpu, X86_FEATURE_LM))
		return false;

		if (efer & EFER_NX && !guest_cpuid_has(vcpu, X86_FEATURE_NX))
		return false;

		return true;

		}