KVM: Provide x86_emulate_ctxt callback to get current cpl
Signed-off-by: Gleb Natapov <gleb@redhat.com> Signed-off-by: Marcelo Tosatti <mtosatti@redhat.com>
This commit is contained in:
Gleb Natapov
Avi Kivity
parent
93a152be5a
commit
9c5372445c
|
|
@ -110,6 +110,7 @@ struct x86_emulate_ops {
|
||||||
struct kvm_vcpu *vcpu);
|
struct kvm_vcpu *vcpu);
|
||||||
ulong (*get_cr)(int cr, struct kvm_vcpu *vcpu);
|
ulong (*get_cr)(int cr, struct kvm_vcpu *vcpu);
|
||||||
void (*set_cr)(int cr, ulong val, struct kvm_vcpu *vcpu);
|
void (*set_cr)(int cr, ulong val, struct kvm_vcpu *vcpu);
|
||||||
|
int (*cpl)(struct kvm_vcpu *vcpu);
|
||||||
};
|
};
|
||||||
|
|
||||||
/* Type, address-of, and value of an instruction's operand. */
|
/* Type, address-of, and value of an instruction's operand. */
|
||||||
|
|
|
||||||
|
|
@ -1257,7 +1257,7 @@ static int emulate_popf(struct x86_emulate_ctxt *ctxt,
|
||||||
int rc;
|
int rc;
|
||||||
unsigned long val, change_mask;
|
unsigned long val, change_mask;
|
||||||
int iopl = (ctxt->eflags & X86_EFLAGS_IOPL) >> IOPL_SHIFT;
|
int iopl = (ctxt->eflags & X86_EFLAGS_IOPL) >> IOPL_SHIFT;
|
||||||
int cpl = kvm_x86_ops->get_cpl(ctxt->vcpu);
|
int cpl = ops->cpl(ctxt->vcpu);
|
||||||
|
|
||||||
rc = emulate_pop(ctxt, ops, &val, len);
|
rc = emulate_pop(ctxt, ops, &val, len);
|
||||||
if (rc != X86EMUL_CONTINUE)
|
if (rc != X86EMUL_CONTINUE)
|
||||||
|
|
@ -1758,7 +1758,8 @@ emulate_sysexit(struct x86_emulate_ctxt *ctxt)
|
||||||
return X86EMUL_CONTINUE;
|
return X86EMUL_CONTINUE;
|
||||||
}
|
}
|
||||||
|
|
||||||
static bool emulator_bad_iopl(struct x86_emulate_ctxt *ctxt)
|
static bool emulator_bad_iopl(struct x86_emulate_ctxt *ctxt,
|
||||||
|
struct x86_emulate_ops *ops)
|
||||||
{
|
{
|
||||||
int iopl;
|
int iopl;
|
||||||
if (ctxt->mode == X86EMUL_MODE_REAL)
|
if (ctxt->mode == X86EMUL_MODE_REAL)
|
||||||
|
|
@ -1766,7 +1767,7 @@ static bool emulator_bad_iopl(struct x86_emulate_ctxt *ctxt)
|
||||||
if (ctxt->mode == X86EMUL_MODE_VM86)
|
if (ctxt->mode == X86EMUL_MODE_VM86)
|
||||||
return true;
|
return true;
|
||||||
iopl = (ctxt->eflags & X86_EFLAGS_IOPL) >> IOPL_SHIFT;
|
iopl = (ctxt->eflags & X86_EFLAGS_IOPL) >> IOPL_SHIFT;
|
||||||
return kvm_x86_ops->get_cpl(ctxt->vcpu) > iopl;
|
return ops->cpl(ctxt->vcpu) > iopl;
|
||||||
}
|
}
|
||||||
|
|
||||||
static bool emulator_io_port_access_allowed(struct x86_emulate_ctxt *ctxt,
|
static bool emulator_io_port_access_allowed(struct x86_emulate_ctxt *ctxt,
|
||||||
|
|
@ -1803,7 +1804,7 @@ static bool emulator_io_permited(struct x86_emulate_ctxt *ctxt,
|
||||||
struct x86_emulate_ops *ops,
|
struct x86_emulate_ops *ops,
|
||||||
u16 port, u16 len)
|
u16 port, u16 len)
|
||||||
{
|
{
|
||||||
if (emulator_bad_iopl(ctxt))
|
if (emulator_bad_iopl(ctxt, ops))
|
||||||
if (!emulator_io_port_access_allowed(ctxt, ops, port, len))
|
if (!emulator_io_port_access_allowed(ctxt, ops, port, len))
|
||||||
return false;
|
return false;
|
||||||
return true;
|
return true;
|
||||||
|
|
@ -1842,7 +1843,7 @@ x86_emulate_insn(struct x86_emulate_ctxt *ctxt, struct x86_emulate_ops *ops)
|
||||||
}
|
}
|
||||||
|
|
||||||
/* Privileged instruction can be executed only in CPL=0 */
|
/* Privileged instruction can be executed only in CPL=0 */
|
||||||
if ((c->d & Priv) && kvm_x86_ops->get_cpl(ctxt->vcpu)) {
|
if ((c->d & Priv) && ops->cpl(ctxt->vcpu)) {
|
||||||
kvm_inject_gp(ctxt->vcpu, 0);
|
kvm_inject_gp(ctxt->vcpu, 0);
|
||||||
goto done;
|
goto done;
|
||||||
}
|
}
|
||||||
|
|
@ -2378,7 +2379,7 @@ special_insn:
|
||||||
c->dst.type = OP_NONE; /* Disable writeback. */
|
c->dst.type = OP_NONE; /* Disable writeback. */
|
||||||
break;
|
break;
|
||||||
case 0xfa: /* cli */
|
case 0xfa: /* cli */
|
||||||
if (emulator_bad_iopl(ctxt))
|
if (emulator_bad_iopl(ctxt, ops))
|
||||||
kvm_inject_gp(ctxt->vcpu, 0);
|
kvm_inject_gp(ctxt->vcpu, 0);
|
||||||
else {
|
else {
|
||||||
ctxt->eflags &= ~X86_EFLAGS_IF;
|
ctxt->eflags &= ~X86_EFLAGS_IF;
|
||||||
|
|
@ -2386,7 +2387,7 @@ special_insn:
|
||||||
}
|
}
|
||||||
break;
|
break;
|
||||||
case 0xfb: /* sti */
|
case 0xfb: /* sti */
|
||||||
if (emulator_bad_iopl(ctxt))
|
if (emulator_bad_iopl(ctxt, ops))
|
||||||
kvm_inject_gp(ctxt->vcpu, 0);
|
kvm_inject_gp(ctxt->vcpu, 0);
|
||||||
else {
|
else {
|
||||||
toggle_interruptibility(ctxt, KVM_X86_SHADOW_INT_STI);
|
toggle_interruptibility(ctxt, KVM_X86_SHADOW_INT_STI);
|
||||||
|
|
|
||||||
|
|
@ -3479,6 +3479,11 @@ static void emulator_set_cr(int cr, unsigned long val, struct kvm_vcpu *vcpu)
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
static int emulator_get_cpl(struct kvm_vcpu *vcpu)
|
||||||
|
{
|
||||||
|
return kvm_x86_ops->get_cpl(vcpu);
|
||||||
|
}
|
||||||
|
|
||||||
static struct x86_emulate_ops emulate_ops = {
|
static struct x86_emulate_ops emulate_ops = {
|
||||||
.read_std = kvm_read_guest_virt_system,
|
.read_std = kvm_read_guest_virt_system,
|
||||||
.fetch = kvm_fetch_guest_virt,
|
.fetch = kvm_fetch_guest_virt,
|
||||||
|
|
@ -3487,6 +3492,7 @@ static struct x86_emulate_ops emulate_ops = {
|
||||||
.cmpxchg_emulated = emulator_cmpxchg_emulated,
|
.cmpxchg_emulated = emulator_cmpxchg_emulated,
|
||||||
.get_cr = emulator_get_cr,
|
.get_cr = emulator_get_cr,
|
||||||
.set_cr = emulator_set_cr,
|
.set_cr = emulator_set_cr,
|
||||||
|
.cpl = emulator_get_cpl,
|
||||||
};
|
};
|
||||||
|
|
||||||
static void cache_all_regs(struct kvm_vcpu *vcpu)
|
static void cache_all_regs(struct kvm_vcpu *vcpu)
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue