Merge tag 'v5.1-rc3' into devel

Linux 5.1-rc3
author: Linus Walleij <linus.walleij@linaro.org> 2019-04-08 13:03:09 +0200
committer: Linus Walleij <linus.walleij@linaro.org> 2019-04-08 13:03:09 +0200
commit: 26af34079f1d8299932303cfd2b376b9cf55a35c (patch)
tree: f1a9824855fae569aa51c2109a5929715143093d /arch/x86/kvm/vmx/nested.c
parent: 27157af66324d529b43231c12b5d1e1a3e9fa620 (diff)
parent: 79a3aaa7b82e3106be97842dedfd8429248896e6 (diff)
1 files changed, 5 insertions, 0 deletions
diff --git a/arch/x86/kvm/vmx/nested.c b/arch/x86/kvm/vmx/nested.c
index f24a2c225070..153e539c29c9 100644
--- a/arch/x86/kvm/vmx/nested.c
+++ b/arch/x86/kvm/vmx/nested.c
@@ -2585,6 +2585,11 @@ static int nested_check_host_control_regs(struct kvm_vcpu *vcpu,
 	    !nested_host_cr4_valid(vcpu, vmcs12->host_cr4) ||
 	    !nested_cr3_valid(vcpu, vmcs12->host_cr3))
 		return -EINVAL;
+
+	if (is_noncanonical_address(vmcs12->host_ia32_sysenter_esp, vcpu) ||
+	    is_noncanonical_address(vmcs12->host_ia32_sysenter_eip, vcpu))
+		return -EINVAL;
+
 	/*
 	 * If the load IA32_EFER VM-exit control is 1, bits reserved in the
 	 * IA32_EFER MSR must be 0 in the field for that register. In addition,
author	Linus Walleij <linus.walleij@linaro.org>	2019-04-08 13:03:09 +0200
committer	Linus Walleij <linus.walleij@linaro.org>	2019-04-08 13:03:09 +0200
commit	26af34079f1d8299932303cfd2b376b9cf55a35c (patch)
tree	f1a9824855fae569aa51c2109a5929715143093d /arch/x86/kvm/vmx/nested.c
parent	27157af66324d529b43231c12b5d1e1a3e9fa620 (diff)
parent	79a3aaa7b82e3106be97842dedfd8429248896e6 (diff)