diff options
author | Nadav Amit <namit@cs.technion.ac.il> | 2015-01-26 09:32:26 +0200 |
---|---|---|
committer | Paolo Bonzini <pbonzini@redhat.com> | 2015-01-26 12:15:18 +0100 |
commit | bac155310be35e0fa64b066d47625d2a12a75122 (patch) | |
tree | 14dd9f7eae1b56432132c6d89c30eeb4b9f846b6 /arch/x86/kvm/emulate.c | |
parent | 2b42fce6954d1730edaf479d02378703e7b821cb (diff) | |
download | op-kernel-dev-bac155310be35e0fa64b066d47625d2a12a75122.zip op-kernel-dev-bac155310be35e0fa64b066d47625d2a12a75122.tar.gz |
KVM: x86: 32-bit wraparound read/write not emulated correctly
If we got a wraparound of 32-bit operand, and the limit is 0xffffffff, read and
writes should be successful. It just needs to be done in two segments.
Signed-off-by: Nadav Amit <namit@cs.technion.ac.il>
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
Diffstat (limited to 'arch/x86/kvm/emulate.c')
-rw-r--r-- | arch/x86/kvm/emulate.c | 10 |
1 files changed, 7 insertions, 3 deletions
diff --git a/arch/x86/kvm/emulate.c b/arch/x86/kvm/emulate.c index 997c9eb..c3b0757 100644 --- a/arch/x86/kvm/emulate.c +++ b/arch/x86/kvm/emulate.c @@ -684,9 +684,13 @@ static __always_inline int __linearize(struct x86_emulate_ctxt *ctxt, } if (addr.ea > lim) goto bad; - *max_size = min_t(u64, ~0u, (u64)lim + 1 - addr.ea); - if (size > *max_size) - goto bad; + if (lim == 0xffffffff) + *max_size = ~0u; + else { + *max_size = (u64)lim + 1 - addr.ea; + if (size > *max_size) + goto bad; + } la &= (u32)-1; break; } |