In the Linux kernel, the following vulnerabilities have been resolved: KVM: s390 – Fixed an issue with validity checks when gisa is disabled. This issue occurs when gisa is disabled either by using the kernel parameter “kvm.use_gisa=0” or by setting the related sysfs attribute to N (echo N >/sys/module/kvm/parameters/use_gisa). The validity check issue is caused by an invalid value in the gisa designation within the SIE control block. This occurs because the uninitialized gisa value is passed to the virt_to_phys() function before being written to the gisa designation. To fix this issue, we return 0 from the kvm_s390_get_gisa_desc() function if the gisa value is 0. The kvm_s390_get_gisa_desc() function is used to determine which gisa designation to set in the SIE control block. A value of 0 in the gisa designation disables the use of gisa. This issue becomes apparent in the host kernel whenever a new KVM guest attempts to start. The error message is “KVM: Unhandled validity check 0x1011”. WARNING: CPU: 0 PID: 781237 at arch/s390/kvm/intercept.c:101 kvm_handle_sie_intercept+0x42e/0x4d0 [kvm]. Modules linked in: vhost_net, tap, tun, xt, CHECKSUM, xt_MASQUERADE, xt_conntrack, ipt_REJECT, xt_tcpudp, nft_compat, x_tables, nf_nat_tftp, nf_conntrack_tftp, vfiopci_core, irqbypass, vhost_vsock, vmw_vsock_virtio_transport_common, vsock, vhost, vhost_iotlb, kvm, nft_fib_inet, nft_fib_ipv4, nft_fib_ipv6, nft_fib, nft_reject_inet, NF_reject_ipv4, NF_reject_ipv6, nft_reject, nft_ct, nft_chain_nat, NF_nat, NF_conntrack, NF_defrag_ipv6, NF_defrag_ipv4, ip_set, NF_tables, sunrpc, mlx5_ib, ib_uverbs, ib_core, mlx5_core, uvdevice, s390_trng, adm_sch, vfio_ccw, zcrypt_cex4, mdev, vfio_iommu_type1, vfio_sch_fq_codel, DRM, i2c_core, loop, drm_panel_orientation_quirks, configfs, NFnetlink, lcs, ctcm, fsm, dm_service_time, ghash_s390, prng, chacha_s390, libchacha, aes_s390, des_s390, libdes, sha3_512_s390, sha3_256_s390, sha512_s390, sha256_s390, sha1_s390, sha_common, dm_mirror, dm_region_hash, dm_log, zfcp, scsi_transport_fc, scsi_dh_rdac, scsi_dh_emc, scsi_dh_alua, pkey, zcrypt, dm_multipath, rng_core, autofs4. [Last unloaded: vfiopci] CPU: 0 PID: 781237 Comm: CPU 0/KVM Not tainted 6.10.0-08682-gcad9f11498ea #6 Hardware name: IBM 3931 A01 701 (LPAR) Krnl PSW: 0704c00180000000 000003d93deb0122 (kvm_handle_sie_intercept+0x432/0x4d0 [kvm]) R:0 T:1 IO:1 EX:1 Key:0 M:1 W:0 P:0 AS:3 CC:0 PM:0 RI:0 EA:3 Krnl GPRS: 000003d900000027 000003d900000023 0000000000000028 000002cd00000000 000002d063a00900 00000359c6daf708 00000000000bebb5 0000000000001eff 000002cfd82e9000 000002cfd80bc000 0000000000001011 000003d93deda412 000003ff8962df98 000003d93de77ce0 000003d93deb011e 00000359c6daf960 Krnl Code: 000003d93deb0112: c020fffe7259 larl %r2,000003d93de7e5c4 000003d93deb0118: c0e53fa8beac brasl %r14,000003d9bd3c7e70 #000003d93deb011e: af000000 mc 0,0 >000003d93deb0122: a728ffea lhi %r2,-22 000003d93deb0126: a7f4fe24 brc 15,000003d93deafd6e 000003d93deb012a: 9101f0b0 tm 176(%r15),1 000003d93deb012e: a774fe48 brc 7,000003d93deafdbe 000003d93deb0132: 40a0f0ae sth %r10,174(%r15) Call Trace: [<000003d93deb0122>] kvm_handle_sie_intercept+0x432/0x4d0 [kvm] ([<000003d93deb011e>] kvm_handle_sie_intercept+0x42e/0x4d0 [kvm]) [<000003d93deacc10>] vcpu_post_run+0x1d0/0x3b0 [kvm] [<000003d93edeaceda>] __vcpu_run+0xea/0x2d0 [kvm] [<000003d93dead9da>] kvm_arch_vcpu_ioctl_run+0x16a/0x430 [kvm] [<000003d93de93ee0>] kvm_vcpu_ioctl+0x190/0x7c0 [kvm] [<000003d9bd728b4e>] vfs_ioctl+0x2e/0x70 [<000003d9bd72a092>] __s390x_sys_ioctl+0xc2/0xd0 [<000003d9be0e9222>] __do_syscall+0x1f2/0x2e0 [<000003d9be0f9a90>] system_call+0x70/0x98 Last Breaking-Event-Address: [<000003d9bd3c7f58>] __warn_printk+0xe8/0xf0

Query Builder