]> xenbits.xensource.com Git - people/dwmw2/xen.git/commitdiff
projects / people / dwmw2 / xen.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 86a2e13)
x86/svm: Fix handling of ICEBP intercepts
authorAndrew Cooper <andrew.cooper3@citrix.com>
Tue, 4 Jun 2019 13:37:18 +0000 (15:37 +0200)
committerJan Beulich <jbeulich@suse.com>
Tue, 4 Jun 2019 13:37:18 +0000 (15:37 +0200)
c/s 9338a37d "x86/svm: implement debug events" added support for introspecting
ICEBP debug exceptions, but didn't account for the fact that
svm_get_insn_len() (previously __get_instruction_length) can fail and may
already have raised #GP with the guest.

If svm_get_insn_len() fails, return back to guest context rather than
continuing and mistaking a trap-style VMExit for a fault-style one.

Spotted by Coverity.

Signed-off-by: Andrew Cooper <andrew.cooper3@citrix.com>
Reviewed-by: Razvan Cojocaru <rcojocaru@bitdefender.com>
Acked-by: Brian Woods <brian.woods@amd.com>
master commit: 1495b4ff9b4af2b9c0f12cdb6491082cecf34f86
master date: 2019-05-13 10:35:37 +0100

xen/arch/x86/hvm/svm/svm.c patch | blob | blame | history

diff --git a/xen/arch/x86/hvm/svm/svm.c b/xen/arch/x86/hvm/svm/svm.c
index 23d72e81e38d1ea3538cd1bb50c73bcd6d9352d3..ec9fb763af77c4145f43e69bdb3eb5c7cbd0aceb 100644 (file)
--- a/xen/arch/x86/hvm/svm/svm.c
+++ b/xen/arch/x86/hvm/svm/svm.c
@@ -2757,6 +2757,9 @@ void svm_vmexit_handler(struct cpu_user_regs *regs)
             {
                 trap_type = X86_EVENTTYPE_PRI_SW_EXCEPTION;
                 inst_len = svm_get_insn_len(v, INSTR_ICEBP);
+
+                if ( !inst_len )
+                    break;
             }
 
             rc = hvm_monitor_debug(regs->rip,
Unnamed repository; edit this file 'description' to name the repository.