KVM: arm64: Reject shared table walks in the hyp code (5e806c58) · Commits · EulixOS / Software / Kernel

arch/arm64/include/asm/kvm_pgtable.h

+15 −2

Original line number	Diff line number	Diff line
		@@ -229,7 +229,18 @@ static inline kvm_pte_t kvm_dereference_pteref(struct kvm_pgtable_walker walke
		return pteref;
		}

		static inline void kvm_pgtable_walk_begin(struct kvm_pgtable_walker *walker) {}
		static inline int kvm_pgtable_walk_begin(struct kvm_pgtable_walker *walker)
		{
		/*
		* Due to the lack of RCU (or a similar protection scheme), only
		* non-shared table walkers are allowed in the hypervisor.
		*/
		if (walker->flags & KVM_PGTABLE_WALK_SHARED)
		return -EPERM;

		return 0;
		}

		static inline void kvm_pgtable_walk_end(struct kvm_pgtable_walker *walker) {}

		static inline bool kvm_pgtable_walk_lock_held(void)
		@@ -247,10 +258,12 @@ static inline kvm_pte_t kvm_dereference_pteref(struct kvm_pgtable_walker walke
		return rcu_dereference_check(pteref, !(walker->flags & KVM_PGTABLE_WALK_SHARED));
		}

		static inline void kvm_pgtable_walk_begin(struct kvm_pgtable_walker *walker)
		static inline int kvm_pgtable_walk_begin(struct kvm_pgtable_walker *walker)
		{
		if (walker->flags & KVM_PGTABLE_WALK_SHARED)
		rcu_read_lock();

		return 0;
		}

		static inline void kvm_pgtable_walk_end(struct kvm_pgtable_walker *walker)

+4 −1

Original line number	Diff line number	Diff line
		@@ -289,7 +289,10 @@ int kvm_pgtable_walk(struct kvm_pgtable *pgt, u64 addr, u64 size,
		};
		int r;

		kvm_pgtable_walk_begin(walker);
		r = kvm_pgtable_walk_begin(walker);
		if (r)
		return r;

		r = _kvm_pgtable_walk(pgt, &walk_data);
		kvm_pgtable_walk_end(walker);