[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[PATCH] AMD/IOMMU: avoid UB in guest CR3 retrieval

To: "xen-devel@xxxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxxx>
From: Jan Beulich <jbeulich@xxxxxxxx>
Date: Thu, 19 Nov 2020 16:58:57 +0100
Cc: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, Paul Durrant <paul@xxxxxxx>
Delivery-date: Thu, 19 Nov 2020 15:59:02 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

Found by looking for patterns similar to the one Julien did spot in
pci_vtd_quirks(). (Not that it matters much here, considering the code
is dead right now.)

Fixes: 3a7947b69011 ("amd-iommu: use a bitfield for DTE")
Signed-off-by: Jan Beulich <jbeulich@xxxxxxxx>

--- a/xen/drivers/passthrough/amd/iommu_guest.c
+++ b/xen/drivers/passthrough/amd/iommu_guest.c
@@ -70,7 +70,8 @@ static void guest_iommu_disable(struct g
 
 static uint64_t get_guest_cr3_from_dte(struct amd_iommu_dte *dte)
 {
-    return ((dte->gcr3_trp_51_31 << 31) | (dte->gcr3_trp_30_15 << 15) |
+    return (((uint64_t)dte->gcr3_trp_51_31 << 31) |
+            (dte->gcr3_trp_30_15 << 15) |
             (dte->gcr3_trp_14_12 << 12)) >> PAGE_SHIFT;
 }

Follow-Ups:
- Re: [PATCH] AMD/IOMMU: avoid UB in guest CR3 retrieval
  - From: Andrew Cooper

Prev by Date: [PATCH] x86/Intel: avoid UB with NMI watchdog on family 15 CPUs
Next by Date: RE: [PATCH 03/10] viridian: introduce a per-cpu hypercall_vpmask and accessor functions...
Previous by thread: [PATCH] x86/Intel: avoid UB with NMI watchdog on family 15 CPUs
Next by thread: Re: [PATCH] AMD/IOMMU: avoid UB in guest CR3 retrieval
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.