KVM: x86: Mask off reserved bit from #DB exception payload

KVM defines the #DB payload as compatible with the 'pending debug exceptions' field under VMX, not DR6. Mask off bit 12 when applying the payload to DR6, as it is reserved on DR6 but not the 'pending debug exceptions' field. Fixes: f10c729ff965 ("kvm: vmx: Defer setting of DR6 until #DB delivery") Signed-off-by: Oliver Upton <oupton@google.com> Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
author: Oliver Upton <oupton@google.com> 2020-02-07 02:36:04 -0800
committer: Paolo Bonzini <pbonzini@redhat.com> 2020-02-12 12:34:09 +0100
commit: 307f1cfa269657c63cfe2c932386fcc24684d9dd (patch)
tree: a4f9f25d765671602fc6c28db0333348eb47fa9c /arch/x86
parent: 1f03b2bcd0d7cad4af107339cdef80ed377fe2a8 (diff)
1 files changed, 8 insertions, 0 deletions
diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c
index fbabb2f06273..95b753dab207 100644
--- a/arch/x86/kvm/x86.c
+++ b/arch/x86/kvm/x86.c
@@ -438,6 +438,14 @@ void kvm_deliver_exception_payload(struct kvm_vcpu *vcpu)
 		 * for #DB exceptions under VMX.
 		 */
 		vcpu->arch.dr6 ^= payload & DR6_RTM;
+
+		/*
+		 * The #DB payload is defined as compatible with the 'pending
+		 * debug exceptions' field under VMX, not DR6. While bit 12 is
+		 * defined in the 'pending debug exceptions' field (enabled
+		 * breakpoint), it is reserved and must be zero in DR6.
+		 */
+		vcpu->arch.dr6 &= ~BIT(12);
 		break;
 	case PF_VECTOR:
 		vcpu->arch.cr2 = payload;
author	Oliver Upton <oupton@google.com>	2020-02-07 02:36:04 -0800
committer	Paolo Bonzini <pbonzini@redhat.com>	2020-02-12 12:34:09 +0100
commit	307f1cfa269657c63cfe2c932386fcc24684d9dd (patch)
tree	a4f9f25d765671602fc6c28db0333348eb47fa9c /arch/x86
parent	1f03b2bcd0d7cad4af107339cdef80ed377fe2a8 (diff)