Skip to content

Commit 1342d35

Browse files
avikivityLinus Torvalds
avikivity
authored and
Linus Torvalds
committed
[PATCH] KVM: MMU: Load the pae pdptrs on cr3 change like the processor does
In pae mode, a load of cr3 loads the four third-level page table entries in addition to cr3 itself. Signed-off-by: Avi Kivity <avi@qumranet.com> Acked-by: Ingo Molnar <mingo@elte.hu> Signed-off-by: Andrew Morton <akpm@osdl.org> Signed-off-by: Linus Torvalds <torvalds@osdl.org>
1 parent 6bcbd6a commit 1342d35

File tree

2 files changed

+20
-10
lines changed

2 files changed

+20
-10
lines changed

drivers/kvm/kvm.h

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -185,6 +185,7 @@ struct kvm_vcpu {
185185
unsigned long cr3;
186186
unsigned long cr4;
187187
unsigned long cr8;
188+
u64 pdptrs[4]; /* pae */
188189
u64 shadow_efer;
189190
u64 apic_base;
190191
int nmsrs;

drivers/kvm/kvm_main.c

Lines changed: 19 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -298,31 +298,41 @@ static void inject_gp(struct kvm_vcpu *vcpu)
298298
kvm_arch_ops->inject_gp(vcpu, 0);
299299
}
300300

301-
static int pdptrs_have_reserved_bits_set(struct kvm_vcpu *vcpu,
302-
unsigned long cr3)
301+
/*
302+
* Load the pae pdptrs. Return true is they are all valid.
303+
*/
304+
static int load_pdptrs(struct kvm_vcpu *vcpu, unsigned long cr3)
303305
{
304306
gfn_t pdpt_gfn = cr3 >> PAGE_SHIFT;
305-
unsigned offset = (cr3 & (PAGE_SIZE-1)) >> 5;
307+
unsigned offset = ((cr3 & (PAGE_SIZE-1)) >> 5) << 2;
306308
int i;
307309
u64 pdpte;
308310
u64 *pdpt;
311+
int ret;
309312
struct kvm_memory_slot *memslot;
310313

311314
spin_lock(&vcpu->kvm->lock);
312315
memslot = gfn_to_memslot(vcpu->kvm, pdpt_gfn);
313316
/* FIXME: !memslot - emulate? 0xff? */
314317
pdpt = kmap_atomic(gfn_to_page(memslot, pdpt_gfn), KM_USER0);
315318

319+
ret = 1;
316320
for (i = 0; i < 4; ++i) {
317321
pdpte = pdpt[offset + i];
318-
if ((pdpte & 1) && (pdpte & 0xfffffff0000001e6ull))
319-
break;
322+
if ((pdpte & 1) && (pdpte & 0xfffffff0000001e6ull)) {
323+
ret = 0;
324+
goto out;
325+
}
320326
}
321327

328+
for (i = 0; i < 4; ++i)
329+
vcpu->pdptrs[i] = pdpt[offset + i];
330+
331+
out:
322332
kunmap_atomic(pdpt, KM_USER0);
323333
spin_unlock(&vcpu->kvm->lock);
324334

325-
return i != 4;
335+
return ret;
326336
}
327337

328338
void set_cr0(struct kvm_vcpu *vcpu, unsigned long cr0)
@@ -368,8 +378,7 @@ void set_cr0(struct kvm_vcpu *vcpu, unsigned long cr0)
368378
}
369379
} else
370380
#endif
371-
if (is_pae(vcpu) &&
372-
pdptrs_have_reserved_bits_set(vcpu, vcpu->cr3)) {
381+
if (is_pae(vcpu) && !load_pdptrs(vcpu, vcpu->cr3)) {
373382
printk(KERN_DEBUG "set_cr0: #GP, pdptrs "
374383
"reserved bits\n");
375384
inject_gp(vcpu);
@@ -411,7 +420,7 @@ void set_cr4(struct kvm_vcpu *vcpu, unsigned long cr4)
411420
return;
412421
}
413422
} else if (is_paging(vcpu) && !is_pae(vcpu) && (cr4 & CR4_PAE_MASK)
414-
&& pdptrs_have_reserved_bits_set(vcpu, vcpu->cr3)) {
423+
&& !load_pdptrs(vcpu, vcpu->cr3)) {
415424
printk(KERN_DEBUG "set_cr4: #GP, pdptrs reserved bits\n");
416425
inject_gp(vcpu);
417426
}
@@ -443,7 +452,7 @@ void set_cr3(struct kvm_vcpu *vcpu, unsigned long cr3)
443452
return;
444453
}
445454
if (is_paging(vcpu) && is_pae(vcpu) &&
446-
pdptrs_have_reserved_bits_set(vcpu, cr3)) {
455+
!load_pdptrs(vcpu, cr3)) {
447456
printk(KERN_DEBUG "set_cr3: #GP, pdptrs "
448457
"reserved bits\n");
449458
inject_gp(vcpu);

0 commit comments

Comments
 (0)