Commit b97bd69e authored by Huacai Chen's avatar Huacai Chen
Browse files

LoongArch: KVM: Handle the case that EIOINTC's coremap is empty 



EIOINTC's coremap in eiointc_update_sw_coremap() can be empty, currently
we get a cpuid with -1 in this case, but we actually need 0 because it's
similar as the case that cpuid >= 4.

This fix an out-of-bounds access to kvm_arch::phyid_map::phys_map[].

Cc: <stable@vger.kernel.org>
Fixes: 3956a52b ("LoongArch: KVM: Add EIOINTC read and write functions")
Reported-by: default avatarAurelien Jarno <aurel32@debian.org>
Link: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1131431


Signed-off-by: default avatarHuacai Chen <chenhuacai@loongson.cn>
parent 2db06c15

arch/loongarch/kvm/intc/eiointc.c

+1 −1
Original line number Diff line number Diff line
@@ -83,7 +83,7 @@ static inline void eiointc_update_sw_coremap(struct loongarch_eiointc *s, 


		if (!(s->status & BIT(EIOINTC_ENABLE_CPU_ENCODE))) {

			cpuid = ffs(cpuid) - 1;

			cpuid = (cpuid >= 4) ? 0 : cpuid;

			cpuid = ((cpuid < 0) || (cpuid >= 4)) ? 0 : cpuid;

		}



		vcpu = kvm_get_vcpu_by_cpuid(s->kvm, cpuid);