Merge tag 'for-linus' of git://git.kernel.org/pub/scm/virt/kvm/kvm

Pull KVM fixes from Radim Krčmář: "Four fixes for bugs found by syzkaller on x86, all for stable" * tag 'for-linus' of git://git.kernel.org/pub/scm/virt/kvm/kvm: KVM: x86: check for pic and ioapic presence before use KVM: x86: fix out-of-bounds accesses of rtc_eoi map KVM: x86: drop error recovery in em_jmp_far and em_ret_far KVM: x86: fix out-of-bounds access in lapic
author: Linus Torvalds <torvalds@linux-foundation.org> 2016-11-26 12:18:59 -0800
committer: Linus Torvalds <torvalds@linux-foundation.org> 2016-11-26 12:18:59 -0800
commit: fc13ca191ee2ae5f379e2933cdff523c3b4fffc9 (patch)
tree: b62beebc6b8160c57c241c6288cdfe35f9c5e122 /arch/x86/kvm/irq_comm.c
parent: 39c1573748166b348117d6bf161ceffce90e734f (diff)
parent: df492896e6dfb44fd1154f5402428d8e52705081 (diff)
download: linux-fc13ca191ee2ae5f379e2933cdff523c3b4fffc9.tar.bz2
1 files changed, 13 insertions, 0 deletions
diff --git a/arch/x86/kvm/irq_comm.c b/arch/x86/kvm/irq_comm.c
index 4da03030d5a7..6c0191615f23 100644
--- a/arch/x86/kvm/irq_comm.c
+++ b/arch/x86/kvm/irq_comm.c
@@ -41,6 +41,15 @@ static int kvm_set_pic_irq(struct kvm_kernel_irq_routing_entry *e,
 			   bool line_status)
 {
 	struct kvm_pic *pic = pic_irqchip(kvm);
+
+	/*
+	 * XXX: rejecting pic routes when pic isn't in use would be better,
+	 * but the default routing table is installed while kvm->arch.vpic is
+	 * NULL and KVM_CREATE_IRQCHIP can race with KVM_IRQ_LINE.
+	 */
+	if (!pic)
+		return -1;
+
 	return kvm_pic_set_irq(pic, e->irqchip.pin, irq_source_id, level);
 }
 
@@ -49,6 +58,10 @@ static int kvm_set_ioapic_irq(struct kvm_kernel_irq_routing_entry *e,
 			      bool line_status)
 {
 	struct kvm_ioapic *ioapic = kvm->arch.vioapic;
+
+	if (!ioapic)
+		return -1;
+
 	return kvm_ioapic_set_irq(ioapic, e->irqchip.pin, irq_source_id, level,
 				line_status);
 }
author	Linus Torvalds <torvalds@linux-foundation.org>	2016-11-26 12:18:59 -0800
committer	Linus Torvalds <torvalds@linux-foundation.org>	2016-11-26 12:18:59 -0800
commit	fc13ca191ee2ae5f379e2933cdff523c3b4fffc9 (patch)
tree	b62beebc6b8160c57c241c6288cdfe35f9c5e122 /arch/x86/kvm/irq_comm.c
parent	39c1573748166b348117d6bf161ceffce90e734f (diff)
parent	df492896e6dfb44fd1154f5402428d8e52705081 (diff)
download	linux-fc13ca191ee2ae5f379e2933cdff523c3b4fffc9.tar.bz2