Commit a6192d40 authored by Liran Alon's avatar Liran Alon Committed by Paolo Bonzini
Browse files

KVM: nVMX: Fail VMLAUNCH and VMRESUME on shadow VMCS 



Signed-off-by: default avatarLiran Alon <liran.alon@oracle.com>
Signed-off-by: default avatarJim Mattson <jmattson@google.com>
Signed-off-by: default avatarPaolo Bonzini <pbonzini@redhat.com>
parent fa97d7db

arch/x86/kvm/vmx.c

+11 −0
Original line number Diff line number Diff line
@@ -11876,6 +11876,17 @@ static int nested_vmx_run(struct kvm_vcpu *vcpu, bool launch) 


	vmcs12 = get_vmcs12(vcpu);



	/*

	 * Can't VMLAUNCH or VMRESUME a shadow VMCS. Despite the fact

	 * that there *is* a valid VMCS pointer, RFLAGS.CF is set

	 * rather than RFLAGS.ZF, and no error number is stored to the

	 * VM-instruction error field.

	 */

	if (vmcs12->hdr.shadow_vmcs) {

		nested_vmx_failInvalid(vcpu);

		goto out;

	}



	if (enable_shadow_vmcs)

		copy_shadow_to_vmcs12(vmx);