x86emul: add memory operand low bits checks for ENQCMD{,S}

author Jan Beulich <jbeulich@suse.com>

Wed, 27 Jul 2022 07:21:59 +0000 (09:21 +0200)

committer Jan Beulich <jbeulich@suse.com>

Wed, 27 Jul 2022 07:21:59 +0000 (09:21 +0200)
author Jan Beulich <jbeulich@suse.com>
Wed, 27 Jul 2022 07:21:59 +0000 (09:21 +0200)
committer Jan Beulich <jbeulich@suse.com>
Wed, 27 Jul 2022 07:21:59 +0000 (09:21 +0200)
diff --git a/xen/arch/x86/x86_emulate/x86_emulate.c b/xen/arch/x86/x86_emulate/x86_emulate.c

index e3667cb1a3d35d3f1ee5eeb19822380e3325978d..441086ea861d1c60e17f4f497163283c9b2a577a 100644 (file)
--- a/xen/arch/x86/x86_emulate/x86_emulate.c
+++ b/xen/arch/x86/x86_emulate/x86_emulate.c
@@ -10499,6 +10499,7 @@ x86_emulate(
              goto done;
          if ( vex.pfx == vex_f2 ) /* enqcmd */
          {
+            generate_exception_if(mmvalp->data32[0], EXC_GP, 0);
              fail_if(!ops->read_msr);
              if ( (rc = ops->read_msr(MSR_PASID, &msr_val,
                                       ctxt)) != X86EMUL_OKAY )
@@ -10506,7 +10507,8 @@ x86_emulate(
              generate_exception_if(!(msr_val & PASID_VALID), EXC_GP, 0);
              mmvalp->data32[0] = MASK_EXTR(msr_val, PASID_PASID_MASK);
          }
-        mmvalp->data32[0] &= ~0x7ff00000;
+        else
+            generate_exception_if(mmvalp->data32[0] & 0x7ff00000, EXC_GP, 0);
          state->blk = blk_enqcmd;
          if ( (rc = ops->blk(x86_seg_es, src.val, mmvalp, 64, &_regs.eflags,
                              state, ctxt)) != X86EMUL_OKAY )
author	Jan Beulich <jbeulich@suse.com>
	Wed, 27 Jul 2022 07:21:59 +0000 (09:21 +0200)
committer	Jan Beulich <jbeulich@suse.com>
	Wed, 27 Jul 2022 07:21:59 +0000 (09:21 +0200)