[xen staging-4.10] libxc/restore: Fix REC_TYPE_X86_PV_VCPU_XSAVE data auditing (take 2)

commit b922c4431df33ed5b724e53c3f3348e470ddd349
Author:     Andrew Cooper <andrew.cooper3@xxxxxxxxxx>
AuthorDate: Tue Feb 4 20:29:38 2020 +0000
Commit:     Ian Jackson <ian.jackson@xxxxxxxxxxxxx>
CommitDate: Tue May 5 15:49:24 2020 +0100

    libxc/restore: Fix REC_TYPE_X86_PV_VCPU_XSAVE data auditing (take 2)
    It turns out that a bug (since forever) in Xen causes XSAVE records to have
    non-architectural behaviour on xsave-capable hardware, when a PV guest has 
    touched the state.
    In such a case, the data record returned from Xen is 2*uint64_t, both 
    the (illegitimate) state of %xcr0 and %xcr0_accum being 0.
    Adjust the bound in handle_x86_pv_vcpu_blob() to cope with this.
    Fixes: 2a62c22715b "libxc/restore: Fix data auditing in 
    Reported-by: Igor Druzhinin <igor.druzhinin@xxxxxxxxxx>
    Signed-off-by: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>
    Acked-by: Wei Liu <wl@xxxxxxx>
    (cherry picked from commit 0729830cc425a8ff27a3137e87b93768ae3c853c)
    (cherry picked from commit d2aecd86c4481291b260869c47cf0a9a02321564)
    (cherry picked from commit e43fc14ec58329813af876ed3b30899a04d65a08)
    (cherry picked from commit 7dd2ac39e40f0afe1cc6d879bfe65cbf19520cab)
 tools/libxc/xc_sr_restore_x86_pv.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/tools/libxc/xc_sr_restore_x86_pv.c 
index 9d4c611bd5..406ed60019 100644
--- a/tools/libxc/xc_sr_restore_x86_pv.c
+++ b/tools/libxc/xc_sr_restore_x86_pv.c
@@ -824,10 +824,10 @@ static int handle_x86_pv_vcpu_blob(struct xc_sr_context 
-        if ( blobsz < 128 )
+        if ( blobsz < 16 )
             ERROR("%s record too short: min %zu, got %u",
-                  rec_name, sizeof(*vhdr) + 128, rec->length);
+                  rec_name, sizeof(*vhdr) + 16, rec->length);
             goto out;
generated by git-patchbot for /home/xen/git/xen.git#staging-4.10



