[PATCH 08/10] target/i386/tcg: check for correct busy state before switc

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[PATCH 08/10] target/i386/tcg: check for correct busy state before switc

From:	Paolo Bonzini
Subject:	[PATCH 08/10] target/i386/tcg: check for correct busy state before switching to a new task
Date:	Wed, 10 Jul 2024 08:29:18 +0200

This step is listed in the Intel manual: "Checks that the new task is available
(call, jump, exception, or interrupt) or busy (IRET return)".

The AMD manual lists the same operation under the "Preventing recursion"
paragraph of "12.3.4 Nesting Tasks", though it is not clear if the processor
checks the busy bit in the IRET case.

Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
---
 target/i386/tcg/seg_helper.c | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/target/i386/tcg/seg_helper.c b/target/i386/tcg/seg_helper.c
index 1430f477c43..25af9d4a4ec 100644
--- a/target/i386/tcg/seg_helper.c
+++ b/target/i386/tcg/seg_helper.c
@@ -306,6 +306,11 @@ static int switch_tss_ra(CPUX86State *env, int 
tss_selector,
         old_tss_limit_max = 43;
     }
 
+    /* new TSS must be busy iff the source is an IRET instruction  */
+    if (!!(e2 & DESC_TSS_BUSY_MASK) != (source == SWITCH_TSS_IRET)) {
+        raise_exception_err_ra(env, EXCP0A_TSS, tss_selector & 0xfffc, 
retaddr);
+    }
+
     /* read all the registers from the new TSS */
     if (type & 8) {
         /* 32 bit */
-- 
2.45.2

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [PATCH 02/10] target/i386/tcg: Allow IRET from user mode to user mode with SMAP, (continued)
- [PATCH 01/10] target/i386/tcg: Remove SEG_ADDL, Paolo Bonzini, 2024/07/10
- [PATCH 03/10] target/i386/tcg: use PUSHL/PUSHW for error code, Paolo Bonzini, 2024/07/10
  - Re: [PATCH 03/10] target/i386/tcg: use PUSHL/PUSHW for error code, Richard Henderson, 2024/07/10
- [PATCH 04/10] target/i386/tcg: Reorg push/pop within seg_helper.c, Paolo Bonzini, 2024/07/10
- [PATCH 05/10] target/i386/tcg: Introduce x86_mmu_index_{kernel_,}pl, Paolo Bonzini, 2024/07/10
- [PATCH 06/10] target/i386/tcg: Compute MMU index once, Paolo Bonzini, 2024/07/10
  - Re: [PATCH 06/10] target/i386/tcg: Compute MMU index once, Richard Henderson, 2024/07/10
- [PATCH 07/10] target/i386/tcg: Use DPL-level accesses for interrupts and call gates, Paolo Bonzini, 2024/07/10
  - Re: [PATCH 07/10] target/i386/tcg: Use DPL-level accesses for interrupts and call gates, Richard Henderson, 2024/07/10
- [PATCH 08/10] target/i386/tcg: check for correct busy state before switching to a new task, Paolo Bonzini <=
  - Re: [PATCH 08/10] target/i386/tcg: check for correct busy state before switching to a new task, Richard Henderson, 2024/07/10
- [PATCH 09/10] target/i386/tcg: use X86Access for TSS access, Paolo Bonzini, 2024/07/10
  - Re: [PATCH 09/10] target/i386/tcg: use X86Access for TSS access, Richard Henderson, 2024/07/10
    - Re: [PATCH 09/10] target/i386/tcg: use X86Access for TSS access, Paolo Bonzini, 2024/07/10
    - Re: [PATCH 09/10] target/i386/tcg: use X86Access for TSS access, Paolo Bonzini, 2024/07/11
    - Re: [PATCH 09/10] target/i386/tcg: use X86Access for TSS access, Richard Henderson, 2024/07/11
- [PATCH 10/10] target/i386/tcg: save current task state before loading new one, Paolo Bonzini, 2024/07/10
  - Re: [PATCH 10/10] target/i386/tcg: save current task state before loading new one, Richard Henderson, 2024/07/10
- Re: [PATCH 00/10] target/i386/tcg: fixes for seg_helper.c, Robert Henry, 2024/07/10
  - Re: [PATCH 00/10] target/i386/tcg: fixes for seg_helper.c, Paolo Bonzini, 2024/07/10

Prev by Date: [PATCH 07/10] target/i386/tcg: Use DPL-level accesses for interrupts and call gates
Next by Date: [PATCH 09/10] target/i386/tcg: use X86Access for TSS access
Previous by thread: Re: [PATCH 07/10] target/i386/tcg: Use DPL-level accesses for interrupts and call gates
Next by thread: Re: [PATCH 08/10] target/i386/tcg: check for correct busy state before switching to a new task
Index(es):
- Date
- Thread