Skip to content
Snippets Groups Projects
Commit c4fd1958 authored by Vitaly Kuznetsov's avatar Vitaly Kuznetsov Committed by Yongqiang Liu
Browse files

KVM: x86: Forbid VMM to set SYNIC/STIMER MSRs when SynIC wasn't activated 

stable inclusion
from stable-v4.19.238
commit 2f4835b5188f3b73b2b048a761ae2553e845b027
category: bugfix
bugzilla: https://gitee.com/src-openeuler/kernel/issues/I5EI1I


CVE: CVE-2022-2153

--------------------------------

commit b1e34d325397a33d97d845e312d7cf2a8b646b44 upstream.

Setting non-zero values to SYNIC/STIMER MSRs activates certain features,
this should not happen when KVM_CAP_HYPERV_SYNIC{,2} was not activated.

Note, it would've been better to forbid writing anything to SYNIC/STIMER
MSRs, including zeroes, however, at least QEMU tries clearing
HV_X64_MSR_STIMER0_CONFIG without SynIC. HV_X64_MSR_EOM MSR is somewhat
'special' as writing zero there triggers an action, this also should not
happen when SynIC wasn't activated.

Signed-off-by: default avatarVitaly Kuznetsov <vkuznets@redhat.com>
Message-Id: <20220325132140.25650-4-vkuznets@redhat.com>
Cc: stable@vger.kernel.org
Signed-off-by: default avatarPaolo Bonzini <pbonzini@redhat.com>
Signed-off-by: default avatarGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: default avatarChenXiaoSong <chenxiaosong2@huawei.com>
Reviewed-by: default avatarJason Yan <yanaijie@huawei.com>
Reviewed-by: default avatarXiu Jianfeng <xiujianfeng@huawei.com>
Signed-off-by: default avatarYongqiang Liu <liuyongqiang13@huawei.com>
parent 4d0a545b
No related branches found
No related tags found
Show whitespace changes
Inline Side-by-side
Showing
with 16 additions and 1 deletion
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment