From: bugzilla-daemon@bugzilla.kernel.org
To: kvm@vger.kernel.org
Subject: [Bug 203923] Running a nested freedos on AMD Athlon i686-pae results in NULL pointer dereference in L0 (kvm_mmu_load)
Date: Sat, 22 Jun 2019 22:49:19 +0000 [thread overview]
Message-ID: <bug-203923-28872-edfITTzMT5@https.bugzilla.kernel.org/> (raw)
In-Reply-To: <bug-203923-28872@https.bugzilla.kernel.org/>
https://bugzilla.kernel.org/show_bug.cgi?id=203923
--- Comment #7 from Jiri Palecek (jpalecek@web.de) ---
Created attachment 283393
--> https://bugzilla.kernel.org/attachment.cgi?id=283393&action=edit
Patch that fixes this problem on my system
So, I had a look around the code and found that SVM initialized the nested
vcpus in such a way that ->arch.mmu points to ->arch.guest_mmu. The code in
mmu.c then uses ->arch.mmu->pae_root which crashes.
This patch really takes the path of the least resistance. If they want to have
pae_root allocated even for guest_mmu, let them have it and just allocate it.
Maybe if this is specific to AMD the whole business should be in svm.c though?
Or do it lazily only when actually doing the nesting?
The patch fixes 5.1 kernel on my machine, kvm guest start and the nested guest
start as well. However, in 5.2 there will probably be more problems ahead
because I got a different error there (kvm_spurious_fault in L1).
What are your thoughts on this?
--
You are receiving this mail because:
You are watching the assignee of the bug.
next prev parent reply other threads:[~2019-06-22 22:49 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-06-18 15:01 [Bug 203923] New: Running a nested freedos results in NULL pointer dereference in L0 (kvm_mmu_load) bugzilla-daemon
2019-06-18 15:03 ` [Bug 203923] Running a nested freedos on AMD Athlon i686-pae " bugzilla-daemon
2019-06-20 10:19 ` bugzilla-daemon
2019-06-20 13:57 ` bugzilla-daemon
2019-06-20 22:14 ` bugzilla-daemon
2019-06-22 22:49 ` bugzilla-daemon [this message]
2020-04-01 4:39 ` bugzilla-daemon
2020-04-01 17:09 ` bugzilla-daemon
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=bug-203923-28872-edfITTzMT5@https.bugzilla.kernel.org/ \
--to=bugzilla-daemon@bugzilla.kernel.org \
--cc=kvm@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).