From 9bfc04f9ef6802fff0fc77130ff345a541783363 Mon Sep 17 00:00:00 2001
From: Janosch Frank <frankja@linux.ibm.com>
Date: Wed, 4 Mar 2020 06:42:31 -0500
Subject: [PATCH 1/4] pc-bios: s390x: Save iplb location in lowcore

The POP states that for a list directed IPL the IPLB is stored into
memory by the machine loader and its address is stored at offset 0x14
of the lowcore.

ZIPL currently uses the address in offset 0x14 to access the IPLB and
acquire flags about secure boot. If the IPLB address points into
memory which has an unsupported mix of flags set, ZIPL will panic
instead of booting the OS.

As the lowcore can have quite a high entropy for a guest that did drop
out of protected mode (i.e. rebooted) we encountered the ZIPL panic
quite often.

Signed-off-by: Janosch Frank <frankja@linux.ibm.com>
Tested-by: Marc Hartmayer <mhartmay@linux.ibm.com>
Message-Id: <20200304114231.23493-19-frankja@linux.ibm.com>
Reviewed-by: Christian Borntraeger <borntraeger@de.ibm.com>
Reviewed-by: David Hildenbrand <david@redhat.com>
Signed-off-by: Christian Borntraeger <borntraeger@de.ibm.com>
---
 pc-bios/s390-ccw/jump2ipl.c  |  1 +
 pc-bios/s390-ccw/main.c      |  8 +++++++-
 pc-bios/s390-ccw/netmain.c   |  1 +
 pc-bios/s390-ccw/s390-arch.h | 10 ++++++++--
 pc-bios/s390-ccw/s390-ccw.h  |  1 +
 5 files changed, 18 insertions(+), 3 deletions(-)

diff --git a/pc-bios/s390-ccw/jump2ipl.c b/pc-bios/s390-ccw/jump2ipl.c
index da13c43cc0..4eba2510b0 100644
--- a/pc-bios/s390-ccw/jump2ipl.c
+++ b/pc-bios/s390-ccw/jump2ipl.c
@@ -35,6 +35,7 @@ void jump_to_IPL_code(uint64_t address)
 {
     /* store the subsystem information _after_ the bootmap was loaded */
     write_subsystem_identification();
+    write_iplb_location();
 
     /* prevent unknown IPL types in the guest */
     if (iplb.pbt == S390_IPL_TYPE_QEMU_SCSI) {
diff --git a/pc-bios/s390-ccw/main.c b/pc-bios/s390-ccw/main.c
index a21b386280..4e65b411e1 100644
--- a/pc-bios/s390-ccw/main.c
+++ b/pc-bios/s390-ccw/main.c
@@ -9,6 +9,7 @@
  */
 
 #include "libc.h"
+#include "helper.h"
 #include "s390-arch.h"
 #include "s390-ccw.h"
 #include "cio.h"
@@ -22,7 +23,7 @@ QemuIplParameters qipl;
 IplParameterBlock iplb __attribute__((__aligned__(PAGE_SIZE)));
 static bool have_iplb;
 static uint16_t cutype;
-LowCore const *lowcore; /* Yes, this *is* a pointer to address 0 */
+LowCore *lowcore; /* Yes, this *is* a pointer to address 0 */
 
 #define LOADPARM_PROMPT "PROMPT  "
 #define LOADPARM_EMPTY  "        "
@@ -42,6 +43,11 @@ void write_subsystem_identification(void)
     *zeroes = 0;
 }
 
+void write_iplb_location(void)
+{
+    lowcore->ptr_iplb = ptr2u32(&iplb);
+}
+
 void panic(const char *string)
 {
     sclp_print(string);
diff --git a/pc-bios/s390-ccw/netmain.c b/pc-bios/s390-ccw/netmain.c
index f2dcc01e27..309ffa30d9 100644
--- a/pc-bios/s390-ccw/netmain.c
+++ b/pc-bios/s390-ccw/netmain.c
@@ -40,6 +40,7 @@
 #define DEFAULT_TFTP_RETRIES 20
 
 extern char _start[];
+void write_iplb_location(void) {}
 
 #define KERNEL_ADDR             ((void *)0L)
 #define KERNEL_MAX_SIZE         ((long)_start)
diff --git a/pc-bios/s390-ccw/s390-arch.h b/pc-bios/s390-ccw/s390-arch.h
index 504fc7c2f0..5f36361c02 100644
--- a/pc-bios/s390-ccw/s390-arch.h
+++ b/pc-bios/s390-ccw/s390-arch.h
@@ -36,7 +36,13 @@ typedef struct LowCore {
     /* prefix area: defined by architecture */
     PSWLegacy       ipl_psw;                  /* 0x000 */
     uint32_t        ccw1[2];                  /* 0x008 */
-    uint32_t        ccw2[2];                  /* 0x010 */
+    union {
+        uint32_t        ccw2[2];                  /* 0x010 */
+        struct {
+            uint32_t reserved10;
+            uint32_t ptr_iplb;
+        };
+    };
     uint8_t         pad1[0x80 - 0x18];        /* 0x018 */
     uint32_t        ext_params;               /* 0x080 */
     uint16_t        cpu_addr;                 /* 0x084 */
@@ -85,7 +91,7 @@ typedef struct LowCore {
     PSW             io_new_psw;               /* 0x1f0 */
 } __attribute__((packed, aligned(8192))) LowCore;
 
-extern LowCore const *lowcore;
+extern LowCore *lowcore;
 
 static inline void set_prefix(uint32_t address)
 {
diff --git a/pc-bios/s390-ccw/s390-ccw.h b/pc-bios/s390-ccw/s390-ccw.h
index 11bce7d73c..21f27e7990 100644
--- a/pc-bios/s390-ccw/s390-ccw.h
+++ b/pc-bios/s390-ccw/s390-ccw.h
@@ -57,6 +57,7 @@ void consume_io_int(void);
 /* main.c */
 void panic(const char *string);
 void write_subsystem_identification(void);
+void write_iplb_location(void);
 extern char stack[PAGE_SIZE * 8] __attribute__((__aligned__(PAGE_SIZE)));
 unsigned int get_loadparm_index(void);
 

From 73987ee5102ff646a62c4f4e5b89a1949b9fdbc9 Mon Sep 17 00:00:00 2001
From: Christian Borntraeger <borntraeger@de.ibm.com>
Date: Thu, 5 Mar 2020 18:00:52 +0100
Subject: [PATCH 2/4] s390x/bios: rebuild s390-ccw.img

contains 98df96d4edae ("pc-bios: s390x: Save iplb location in lowcore")

Signed-off-by: Christian Borntraeger <borntraeger@de.ibm.com>
---
 pc-bios/s390-ccw.img | Bin 42608 -> 42608 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)

diff --git a/pc-bios/s390-ccw.img b/pc-bios/s390-ccw.img
index 91cdee4436ad828fe6cb664cfac270a21f2bde70..b9da9d8ecb10faa484a9a524a202f1f69cb59ad6 100644
GIT binary patch
delta 8340
zcmZ8n3tZII@;_&JEKgZrdB1j99wI0Uvb<Jc*B9gyUx|;@G))BYi3%!<Nond$WYo&c
z(Cck|lx<?BrL~oH%dGsHmZhn;)l#{37sIqv_CGVLb^m`pAAii5`Ocg<bIzGF=b-b1
z!g)f`9IsHG+@N{ecbDLwmv_B+$t2ZZY<=hXG4*w;eqNhWJ1+mjfR`L|FF}r?Ua`JE
z*c997SGmVanMbX6U3&W!Awp)-H_g|s62e?=*9b95oC<QjqY|e)oyS!w#%zOV&n!6)
zhIr=5+0f*fl@J?}Xk91<S?h(gHV6;vLf6lvYnnuO#cnw5IWPD$Vw%Lg3e6Nj-0scr
zsFy)*hIL*Eas#~PH7wrLg9O2w4|@tXwSkNbSj<M05b167A8PG%)loaF5hi&X2hXr(
zVwX)K?xESF4wCAwb7#*G-7SNxlw2TM?t6$UN<&MxSn?7{f|KF0x6ZQ6Y;F|hEWJ1*
z^ui=?P%+jR>><^4(^?>eHBB@UTK#v_-p|_o+3o_SM=-tI8pTK-yB_<k`2QANn;%+q
zsG5cF+@w$iI5esN(QIvkZA#x!O%Bam<lFHxI@zHj+M(A3h;T#+L`4bv;YOilKORFr
zs=4o6?z>2dKX#{3ct#R;OceT{2z(Sme2V0cQ0{Xox;P8xT0`?Yp$P*$---*yZWChE
za_HkbO1HK`W8?WT4s+<8t-=#AA;dGO^vn<Y3HJNeg}%jsU+B7l4tz$|M&5&BKdr@L
zzv6Or-L-ZKL9Qs3?e9A)L=yHn1ub#NivC8f2F=2DI#bihRr5m9be(Iz=$t8%>?egN
znnzkB8+nL(IPB11!_%R{?(mBct(#*_68_~XjoM*K=}-yJ_KO`p!c*Bvszu}2tQ{Ts
zk8>^>M&9@>u*}aY>mbR$&R}zBn$g^;Ue51Sg1RZ1=Fm9pBFSNEj&#q$hTqInoVOh+
z=PuOO3$fuBIOV@o+F)2fntTbC1PsP)a4g_ei}4JNCy+<k=T)X(qYg{n<)|cLte&H`
z@dK7^!wB#~4}6hPyBHOOsIiV#iak=kjNi@pXNc~zis?qySWg=Fe?#0hY+HnJ6AR}v
zu#9Q<>R8IaAJ2H46dgX+rmn4oFg7q^0;7#gk0H9`2}XauNpu7tb`4`WF$4}^Y!+in
z7(0xyZ#h&QB{14Q80xykTS{0S%h(jA!x@{**mdaczz2(Cj#H0|;}P6pcU=_}+veH0
z$2iTzUFM{c8rfp45W)6VlufobVgPQLZO$F1yqr54g*9LFd$8NQ>?TAEGn-8U!h=Rg
z9n1{U`aglzG%N{(jX^nz^*7;oP}+o#+UGdW;^cO^T=zIr6|N>X19&AGpJRG5xm;XB
zF5f#7IToFsMV!I~Ealv2T*vevM)E?tXNO@bZO=FCQ!tDQ>$9R{(`uW*1Qld`S7@xO
zTz?SO2>;dpi?CItlZ(Nwij&oFK~*BlAU-%v_J*?HIGF@9f~(_OZj@_nCj6%<H`_#e
zv`~mZiW)_%<svwPjq(G?2+8Y>P6*+j%Z`4<w7z{0p@~z}hX!-^?-kKD)8TNjf_N?K
zU~|X>ISFotq&%A6MJj&hSe=un-x;F&TxP|=7z2(_{&mLvlX3Hz{(x~O8JB0>=5pZ~
zaGK?tpeD3b4uylE221Jcxx%0EbJ5oOB+p;V?U{_7$n;dUHIHolarR-Pgz)7!=X3o1
zIQ|9SFrN8+IR1awt({%<4@0wIw?ku#6yb!5NeD@VS?aKa!K~Ar`Y3RZF_HVjMUDNv
z0Nd1Y@=Z9RE|KHlo;o>nAZtHKi%}jW<ll-QCoEGY!xQ+8gN<QjA?q&TR^EXbqSc*Y
zmR*8h!lFXICe`RpUdOj6$u2t%(cxbuutPq-vJ0CD<8y=P!h7Vx@6*61qPHv{3ziJF
zFqBR+7w^;DZyA4pbsuMXAL|}v-6RZaDYbJyVp%KW@|oVkI7}tjhYE3P8TSUu)-jGV
zh7YHiLd+yCm*UPn_$DGPf#=AF=P3U+EASi@@*Lec3-OUg3!n8qMlzI-=>`X7;12PC
zbh+;A#d+a`kvoWGsf>G`X)WWh{y^OGh~p%bo6E9L#?>;-i?}eBaVrtmn`CQitWhS>
zvIjcDLey(HB2iCq#Q#p>X%)~Fsg<9CCMqp7o6JOwVrf3jM^ze3j2de>Onl{Y*4+Z*
za-Vaf!OFZQvXS>9(+xxy;Nj(R-R{Kr9ip}YST>jFe2%k{(?mfX<1QgCgmHK<VjmNU
z&ijGsM~N<&ZoiU&22WteFEg-;g=GvJ%5+}_j$ng_U{Z9t423n(MHb!(ksEn&Tw~pM
z!h7FkT~4Cjw^-Mcb*s>sGkCb!F!N#Jm^zBkkqcShMz|c_|K8__&ULaa-v9Z$|8LX&
z-^yqDE6y^Jluw6r!EDUj<<?%pgLVMcOI;M#H7V4=8l8J;^ulVy3?JdT$J|J0h{=;{
z;9$%n!J+Kf5Y**EbBzF1Y-;Ho?s^ChV>#0UiOwHG=--Z@8>iUa2`tNJ+!Us>8E0nP
zE@+62u@o~uhB1XqhcPCJF>5zT+hW{Xo6+VM#LwaL%G-nSk%afU&-ehwFW4k(ix6M`
zrw`p2(@vP&-<ZC_x}A)lphtyTRG9Qop|>0KH7lHA1@1WSJS+5rvN&y2GxOUR!)J`w
z>lD^!!{Mp8K8mt-u*ZcfR^NcLaS5Z!TZD5T<Ef%bV~VqM4j#AY{$$)K{~$}f>$yFa
zt#T;5Mi8Bcp>w%z{S$Fkmc_%Mcx}SJ_(-N<@f3LVBo9_oalRJ+rMKwRiq)&2HNGHt
zE9+lG?hevl{VZIMPmm+QFCi@|i;ibUIkG+R*lxul+M6*37?O~H)qizDl&peh5>hP(
z$U9Fi`3)DCb|<JUY+YjM;@LP6Be{_DvtMRJJ<*2mm}Y+NN<w#DceFNEiVegMQ%CJU
zEzVcjPcf2DcEguUk0T4YSln1p?W;|qaVmoOaLKM_z$4tnNv8WTcqDgm7$>w3wX-W&
zW?<Z1rZX9bD-Uh{194**hlvme$jQ!dhG|}vxmW@suHS|~4eD9Q+0MY}*;B~|!x^|7
zak}<5oaOE+Id?bCQ$7{0hRg7a=6PQ=&coh^GqlPJc4~Vmp1A?1wIfQGkYNw@#=wQA
z$8h#~5*hyWV>HY;E$a!!nOTPW1a*u|W9mlSn^2uNR(=e}5;Nsv(3z-}Lm*sdpo0>n
z#f%)zbUsYd8I`@5j(}EOYQ*nkP0>W(kk_%l9|)bZ1up0k6;FQyiX@#p0VzqN<PNA$
zN>C<}>doh&HA!dTm95~_lM}&a1S<zIW)T`gG+yNBM#4v+UPWzrgHYK$nf{q*+JR`5
zu1@<fP8<l&uE_n^-cIsN+`6duKWsgh>Cf#N3o3rkie?0^V&Ekf9%Ufs3i&qCy+2`G
zPsEL6+zH0*W*KjP$!AmV{fvu3Tmj<_F>Vv%cu~vsOm9P+#dXump=rhI4Z@?C&9?%{
z$5QV-th$8xd_$1)aX-71N{34LU<HJ3?L5=2!(X25Iw3@ovg1Js&i6A)<vEYwN^;-Q
zFg_h0l5-uu(#q<8z@dS{l=N}i+XtYor(K0NwU62dptU5vhpjjqA>J*w2_NhYdDL4D
z*9kHf_rF{j?BT<n-NM`89n{CVyJPKNH@)8X;aG}Jo`<U`)3A^ok{TzmR!f~Om2fh3
zco=3T*GJ^7y&Qu(nmpQj6mq&}sQ>exdk`$(O|bW6SlB&Nz6?9NPY&w%b3o|O-eC}u
zmZckN-Q()AMhY3W-Fi$!QF<cRvOmYv<U==wy?U6DW{|sKYnn!}=MKDwzkYGSrL;)J
zp6}t0v=KT3@3>|m_P>VfXR7-eZ%x2Uf0KNijh%;@9;NbgIM`z-UJX6dPb;#!!T0Ga
z!|t1dokv>)-ZU||T?YEzI0*AIMj`l<jOnr#GJ2-Uo-n$nQO<$po_!Ujf5GXV-^qW&
zzFuYoIeQu9KFG+-lCQ#~%v5a{nYhRKU61)4=~wWkA+1&yuV4LKcr{ZOh{X&_R+4Y}
zS@2D!F8LgDstzl}yUZPd^*Y{45%oAm`v}GOjZYz79}#r~pB;SudUjBD;XIHOufO^@
zxgDzYvkmd2dG{_^>JiQKEuwpQ68&$kJ9z$(S5l$uBK?xlZQZhtO1y=i$bMUD@tf#v
zZ^avzSKDj7hs&Z$nmamjiYly8Qj}|K8Dz4kvPEcwHQilLSS#`OI4Nk}iYDR=US>=Q
z<QwiPvCwz9t{sQM+_&W9HfQcASz1Y~J6ud;EMwY43OzVoT|I~+=Y*KTg~lB&CNdfr
z$DQ{u5`A?CtjT}Gq9yuv7wKnU(SY<FwxwiD4eq{QsGSnXvg?fFc-&?u(|%>#c*MO&
zvSdt+XyY5A(?4hWB++RX88;AdqZxOFWgqgTCj+w%Dji`UD_zZYm^$>h$>%to;=vn8
zGUgvdasEliQUPhsKWUtQu13Muf=3ngKR{=}Joz5XD69<pnr0}y1?NN7SHk(iJY}+7
z;Jq~)qK*CJHJD^HDGF~vtFbUL-9sIMFGY9o8Xqs_;!W4ex*l-T*gNbjMs%yg)M~=@
z(_L8X&6phKKw+Quh}i$5wb1n#Y4sQneTrfgx(hJAC^HJPq09ACLO;=3Y?Z===W-E^
zQ}+(+D9Q}n*uK7_+?`6U+<^;4%jIF1Sge)%p`o}SVkz!$1+ETnbGdWBS?}a?t%nA_
zEFObrR#HhRuDI%wMe&QT>>nwju_i|U9h#H)Y~;{%xHFhs+|go6mQF}9jle@`iD_EN
zv(~%!@1Ub{@d1ZQi_co`Cukcn1?<3eDi@EpF7)s<tDK+WJ<yIx5C@dF8|gz2=zS1v
zPQ|*nuUQv`X%pY5D0yn=DGOh%2rn0BLxVX&PJzv4tsDV|%x^>lQxty9!CtyE#kECh
zCp7d;QY`ubcJ?h$^0DNoh0A?+%O&t!zkc!)IMuI8s-U=kS=pj?eo@g2kvhUW!lZim
zx>-)In;{S1A}O+|e7@fdLa!(gs_j#7QY-QOq#QjfgD?AQWga;Dr%7A}16CM(acpP*
z8iVtadknP^$iK>bd_P0lDU!@MTIwO?XE-^)EWdz|ffEu&(|9_vn4iUTI?rz*(f`^G
z>jq{eWH8^C_{n#e_Fzm1W9s1iz+_nhiqhd0tf=r_`?f>1zl|4LkU9hxqypcsR**&_
z2g&&cTjKrT<o%GytIUb-xm|oePX3YY0JeFLB)&&&C$Jt~$B_OT+vB3wxe6CJpZR?g
z@dQSpg@M^j*D(-ZmXN;yf!nyfncG#2!wLmuT&*WAYzry-SfPA{SQnSHT^RJZlt;ic
zWRwz%PnYY$mbNWJ{>LLU5=%ea*>r@S-%Cccm!P4%Nd5#z%1bBv614p%=40uI^d+L>
z{zLS6zHw@8%s-7QD*Z28w@(l*>Ke;FVf__M+gblB*3X5hBR;@0Drw|7i$8I$UnQyL
zTc&>`I<|x8a}_vTj#DI-0f;-zxU)=u$vC_NBd$N<c3WS>qq7b(d8g|Ye5YOSG~r4*
zDMV5lo&lO~{hhBlU*i+oj6NTTY{BnJXc$$6*Wl};(q%G)kJia}C>%XpPKPz4Q{}hF
zNmN9hWL5yAj7cerxJ><B`+)jRxWF_Yd@;v~{yq!)4kK9v2m9LVj62OZE736r8Hdk3
zW3)<o*_R7{ha+RG@-2Ac(aGb|80pOx_?7b-R~0cq#Q$!QxzX8LZgcK5H9L1W8gX}N
zt;gI4bVL9lu3lqJAEq5dN8e=4aS%K9-I&jqzYO=WM|-3Q76JJFA3}d0h{%JRV^d`>
zh^`nepM_Z!Yw_{$w~7@q0G5nf8u2yh{aiyc%~U0iq!|3h$H@<&`}k3E7c3jEmCv_r
z8(%ABB&a7^<Q3S6-~FI|%pxtY5x+w~J;@@YU?YBi0`+8zY=e#XZ3Oic3%=}a#BVgH
zAGgS#VdLXV<v~zQeGv<&JyW&v1voKvH@fCCU5mNtg=sI!u}lv{ejLnuVl%#Tk}Q$i
zrPDj*UFb7oC7wg}85a38n4TOf7r+Zo8s$vT&xwX#o>Za*RdqN7%rwZaz&0~R*+8i_
z{5>#LhC@Aaw<A|8n-OJ%z)F>z!Kg?^jX~5jSq^inV&MHsZ%iIj77S8^2NOd%lpz9H
z5iod`2}5ymezcDwmDpjY!9FJzj?c<N%fuF?%(fsq915!pY*dQ|3AV4QM9xKrHHxsw
z=*M78nRBZmVDfBVMVJ;Eswc=B#PHYRpDx&r`aE*O;e4eQN~=Q^>U|IJept#jRL8-p
z*~M}e^M07^hcA-^?wW1DXKwwR7#LpTEkige)ind;ImE>%RpegiadamRI%<kB`uaIq
z`6Qz9V0|TaVW43^^E_{bItft|Wcz=OEA)E~Oz7?hASKQuS^8{lF&<BUjX!j_8>jgb
z7sLTLFs}sOtce8w`F?mBO<52F9yOVYkmWRqKC*^<3#n#bF3wZS4Aj=j7&a9m-RA#I
zm|!RJ2Ftx})=_3{Vb&HmYcsQ+Wmc)1HI`Yq%!(rxsA`qCBWPZ7YUkjIZkrha@7DUs
zi!f{{#=O>mf6PRlzZqvkP1>p{D2avgMM3f&Oj%SSKZDjqT6qYzEHOgRvLHq9YPhsq
zqX=FM`o$A)&Na(olsu2Yy}-6?kV18r<*Mr_kA?gtCDMu(9xPSWX0$Vymt_RpU*adn
zupf=}ISN$@J6BcbC&So<mby~;9XqGC_7}X;gFbx#H^?oFo?P#TJB)_XSZ|OMnfC?q
z2D63E`aBu_rv)BfkQYj(;T|KGIL_T(e=szaT!Dkp;^MU}8;p<8t&7}Y`Iy4etvhoA
zc(`kb6L^=08@QiY6PUG~$GmHKo@~M(Xd!cP9K<(_#XL<>;vod8-D*pT1+E5fT-&x~
zMu=G&qzL$(2T)b#s|dKtBWSkhFd7Fea}w$(jh*IWOi{};Kh=0oCi>VX(6>>SP{Diy
zr8)(d7^k^p@-Ak~KcJ~GS-FVm^<Zn%Ndug29H(T<$A&`Aik%@f*RdePzx9=CoCny9
z5w5RDh{{For&!Biu~^>h+-Y5cH^(WIc-j)5GD<8FC#}qqLD0OiR_ejKsUWk8dO5`}
zx#CHt`;s}&5k!A@2#*|ox(~p2SZv#%rYX)cfN_b06a0*MDwcIPfq&S7Wr>s8{`mfd
zI%}|<!tE|@Kh+QaT#USx%)=)H#4N$~0&c&<ZT!ni*9`ZyIX@eFdGLcbdRKn7ue;@^
z)xaywQQ-6Rq_$a4=lZuDYCaIyc4Awi#Q!nS=6uEKi3{X~oxMVyE_W+D{2f`*c6R3r
G@_zvyx^(XV

delta 8170
zcmZ`;30&0W*8aaEGRPvs&agN$tRg5Ny92VgfJ=$tzM^Ki;F`O}U}BkCDkr_!P34+3
zrIjRRX=da#Tdudr)NAQ&kzBzV3zKr0d(Jaz_xrxz=kM3>{LgvL@^0r{avak+j_KBS
z(s^hb%<pt4(eQ6e$y?tSsKAw1|9X8#i*DuDiN4MOp7z<92QTDNx^9W?*<)0v+bVxb
z+x<298T(CVO2c_g^Usyv&i`&OXj)-lgIUwYX~%sX2MpSAH^*lN12}Uj%q>;*p@D8$
zs*tMPQcdapQTBOSfBO<m*(<en_Ib{WVq0JqzV1Uh;Wo#wg*nyQtr6yO4KW_3VeK>2
zC|cXzq=wS#?H}xv|C1>ErtNprx&TcUCw;7NVxmxYtJh?Et8=k@2MwWd?$!Z4?8zLm
zT8q5rHs&MIMjt}38o?bk@sht?usV8=mwTH%U5948Xbiv8kM7a7g2KWotuQr3JE^5;
z1sXRh-X6{o;+?<Pb2QDKpj8Pwa3NdofwepQt^p2!r;mVrfj<yjbO@Zqb|XA^G^B7o
zhW{POx!N91GxZjqMNQ_}n&#HPKSPZ4qTZAr%hAfkQ_qj#busWI;KvYQE+TZ*^S=g%
zrgKA^hboSw^XW<F^m*ztGJ6~k%e%@WZI;m;UBTTv*Z!)eHPmTZ*<|wWP!?T0!d!>Z
zv3fS8IBGRF=J<=Oz>orY&~|#F!{UHB==OQetDM-U;_aaysiUVQl84IaymQmus%esn
zUf=w)W40C}DULcyCp_(HDlPL`oKf3kUe8TD-p%o~K@<DDvL>^mL5pdsTOaCbdQDVe
zx#LEY!SO2Fr)XMD7<KVps?O3Y-U;esYV;nUHdBPpE4ExD=7Z75-6Z|s^ST7g--Toz
z;S`^hZ)*#5Tkp*-pUq%B4^|nohBwtplNogY{{;9?3eH^!Tm=goEP60+D}UQGYXg*X
zLCglO0C75qaVOg~YS%pM)puSLsr5B5MuVLQJQVC9VEb;=u6Z+eHMj(QA8;+e`QY{x
z?(N^34A=6hp<}XX8gvoh1p^0z7X)4-b@Ywo-b(Tf*RN@);^v&E2YtiU5}M{aR1KmA
zUyIiep4#Sy0!>?=LoL4PTu&&<kTANwd6wfe4@fJAOB9zq>czb`R;INQc)ZAajzcJ8
z=y2|rX<%-Jwp6fn8E}6v`+@03uNW-)GY#cz`wM+;F#4?cGuEwtQ>!6by+omYk?MKM
z^vhTCXn|jX8c($>DWyYx6*@9fl7E<vyr{(As;*MCe^y$x#PP~R{11Rrns;hC%||48
zNfP<y#Svk31^a`w<sz$jmwxgetyWY2fVg2f31Z@T2IdQZPYTZEslbNoxM^s34)-hb
zJ_c_h@Q2{>Okmzp`&OruYv2j!SJKgdVwFc712b${t7dCn;Lm1XC=S{C@I3|Gfxr{t
zYXW>l-0Kug>wxadMz?yRTXT+r4|y)S^(If>J4@{SG+FxEhLcU^x=;->BHZL3MTY}}
z@?7oeEHQFiI12H2emR|goMrovrh;p{3SE))t^7BI*I*;}!`~<{C||9lAwjVLC^_Me
zO66DYi-%{X(%PV8HJA?aZ$D}YD(U%*H?OwsyohUEMc{F7yV0!G>@;ikM6RkK&RbZG
zoa!>CG$pJR8_9JkNy~ntxxrtU3PtYmE7E-u_^RL@yqcZP-|bW$l4hIy|9Tw(uMfy>
z;KY*4(!s}G_!|uTCj7kte^Yo^isd^Kdyz*ic%8v}0ldxN4PhQ?e&#m~=OZ}5wIE{k
zd!S_WSP5bQbqh@}VT?U6#@QF)3}f5_WBhvrEeN&Ro`&2iezLi8u+IzxOcy_GKl8X?
z?Pt!1E*`w6fGyye!8^k|)RRp1%{~Ian+%La(8C+NkC~Syx-~D@jRia;asPKr);uF-
z#wRc)F9~^4H4QUbR4XkqCIs+`XKfj@*)n3&htgi-aNBDl*FS52O*7bAZ=>jC9EYr0
zd}N`a`bxn$k0Y6E?#*}QJL3>|vju0P*Y(rDn+jeG^Zdcv3EmjNS^oqc2Hwzy^GV!W
z5_k)Uo1iQKF%P&1M4nbo=Z#ymFDy~z)48xb+cwdLK8LAt8MggI;(imh*ks(V3(jtZ
z?QTwn*O#M?%Og+ViM%ba{XE#$!9D@@X9Q<{4~%M(jcRg3s>zGkBeyw9w3sMaU^!!X
zdoHzi)7r_p;nT+*>DSc{Nr2T{sKbL)Z#os8#ihGrL_fcLBr=e>*!@-~(UgdI+Y1Oa
z5NXc<?u)ehfUR-Z<MN%3)#RQHUMYCp!Alk1Z!JxAb&qQsL>_$HxQExzJ8bzSEO|7z
zW5QvHlbU-FECa>T_S+X5Roy~1*u)0^gaH<sdpj6-h;jSdz_$?UosC-E0_HEdpIQz$
z&BDpN0DK<&AHm<o{Q1lucb{(o=PU374&wuXvyQ>wDXNXM7^@(!2MPO8`!}R_pDv<r
zB6Gv~g~;)&sgy&y6|Q%@%Evu-p+0S-lujm9K&73GHq`z0<9Y48EV{Ip;c_@!q9fW5
z7M#W1$zABhJUet9In(tu-5opl@9vsZ{N2T;qjin~S7pumk_UbSxEQkbT_v?uhk0n%
z@PCP}HA<H{`Ko$q>y(rFiA1>molFz4TJ<)*|0O(@)zs{))9mlLN~}ztRh2Z+lu$PI
zzuH*msJ++5RTBy=X054!9j)&bQ>qnN*jkRgS<YX?d&ZMBn&TB|t6QC91GGytX`|^|
zQ@rgvNH&1`Ik2lZu0~dU_ypuuHHJrQo-n#|?(As^*q;JJp7|Kq-I{8vrn)9xP@r);
zTcK8Ve*;V$He6-GZKQa}<PvY=t_awuRZV0vHpcFM0l6PSGywMkxky5^%Gp0xzPqo0
zE(5$~;AHT+fp?jCL&2K`9SUv6N5Gi<nPK4dI(gsWXed!>Gf+|7^l<17;)l$OZr<%E
zb&Y!FW*+ryIsayypuU#B@GSe*5~)(@mZh8SDL&pr4K9939JWIi861uAAY}U>9Cl!b
zsGO<mpeuxq*CF$)z&(Wb>vcL3HC(+-5z)!&X&M-9QHyA1bVfiXv`>JEYVzwc+81rr
zcY=I0wMECP%VdrT;uBJ4OqA|P9gT{KR&7)nQx^YubCl+$`Rw=5c>QsZ{+vvipzB6)
znC>t5mowBB6Fqo{q@=@&O4kG9ijw98=KxzqiPTSS6vbklf@`0;D!6;3=+s5QX<QH3
z>))s%Hq@44g2Gjm;(-4F(q|y8WM@yo84g{pV@f&-ka`C^-k90h9OgYF-^n-N<2C3w
z5C_G+m$n_evCPW>uL-)58$rYzR_lPD1+ia~xz>QI1bQNk4-M=JTV5K<vswf;t`%x7
z*9oUy-(=7{_^ifhysT(UoGB=WXGb}&w>|LbF7u>!6K#s?>eJZVN8=^bU~oE}N2xK+
zly(IXOuW9;3cq$9@P4WJ14o<d@P6$$u4DS<?;KNHb1&^GMZ`y|V^k17$@CT?>9jPy
zN{{8!qb7dr`}uBIt7)%4NQdJms{z!x^Pr$#xeNX-z8Xq-EP6{$yDrn(&Pjm|oht+s
zouT-Yj&)8}KhUkt<9&a)-xzM-F1~ssq(*PB?{wa=hiWS5Z}uaaQHql!-u*o;OdfI>
z*)@g^C1mi`r8U8<+Z98>UCa?b_u8-1HglrE{5Kr8@@lOU*zWXDm%(1KSXApZZO>_X
zvr7m!@o1M~^&WLhd_cWLV-ip3Qtwdrq!mF|3;i7L*JykL<w<ZSLw>LRL7yd+F}YLM
z$!aoHca2vg>GiHwzIa^fTBIxVp`>nK^Ci?hxsXXE$yT+Ms*_XICfb)AZ}Afsx3D#&
zOatDAB5Zf<n<?dVCpp@O&qB;vAuUZAMcq=O^Zo_NbZ*akkQVag;X}wKaCaY+zTDkf
zWHxv-r7(=q-?`h<BELk>ri7TzHnCP)&plYRze=+RqZ!8vIaQ==p(80XGWv<fn>Qsw
zG9O16Ul-i9Rd5TAGZ<Kw<yY(PNYwnQ`bSdVS86_;O^c$wX&Y4}qj;5C@0LDD87Iq_
z%0`t}Z8s{d)LfS&9`iO*MTXI96_3r2_?}MdGj8gOCC-(ORFnC(T2o(=Ri=uc6HyzE
zCrOKd3&fxcO3|f1xbY}<alCai566?FCBO*Og?A#S^U?)6m)+0CcPBp4-4XjFt|g4y
z1Sjy4X3id7V?W7v9G}rycLh9*{0$_Tz)PBWTbXwVycqCK2~PYNxKVJz7vQaC-VpHk
zO^p2=#w9F?D=&W>1o1r(7w}~&1(zv@=B95IO)OHnfhv=@6Bej438*rc#!_p}Fx}D)
zG_c1Ub%hS~nCkO)8H~hdc{Qpf8!6qIr61g&@wIv!&9(MYU(-HofzE27HfxX2F3v!I
ze!FSYV(gu?*}P2bV%x<@{d3cTPH>OD*i=wkz*D8OW@}i_v*`t@$!*Rk`5#vEoMT}%
zj9(a-A`6p|hZe(AbSQ7KW2G4}9cWKpvhh`Ez=cV@wA!9_r8!xfC)()q^haK@Pj&OU
zYo)FlbRm~Adp^#a(B7UF^(~$1nWOAv$PZEx6qi4g*V(fCV)XzW$zPyb<VU#$VY)?;
zG@>9@wNPcjVD$+#7EH=tX}@{9jdN2Azi%>FMrbh~m@HLXBe(N3R12T9&uiDA(BSxl
zubd5B=eXrjn;E}*7jLDxh4E@1y-*k}j|hb!#&O)PP=0qZH1ds?u^CLYa4r2*XyI%O
zMZ1*`H53IY2c0U4(Jkyiw~BJ~r=-zM`zg2AYy2{Cp;s^U3w7x|UFFiI-X-1(L-;kt
zAm^_52k1&~lj=*JeZrX-*T<qJQAwW!#Us~exiN!tJB{dOiSGE`6@7j$^6ne1ny7Q%
zLiH(4>pR+HlYrM!rDx;10w<!Ey9oZ_JpI@=)ifOP4kC}mqQ2G+9343CQ+jc%veKyH
zLF!A|S!}X>CUVDa@Nu4WU`j?|L>({j49Ar>_FLioPW+8&8ucdZ2zDqcj%Nf%t%dw4
zo@3Ztqj;xd|2FV&pmHn*4=dgASQHbtLhvMr(?P`b)PZM~sE6yPm3*Yr|5eoA9jwnB
zFhQx;>G^?WdYtRO{kHy>fnT-@2;>tLFD`kcI{ULYv7Dt-rFrTc1r9EbO&9Ct3y|*u
z{$6n8cY@ENg_hT;YH*l246C>KD5$uZHaCF!0jNvpz~B$n99s6!nPQxqu3QqW`76<0
zIVU*c2f=4v<d&gJj3`7`PJnj;ywAb=CwQx9Ygwd<rGsTF)o>~rlBj}c=8$OBk-7~X
zq$be0A@TgwIde#qF0=t652_p*R}#u^%TDLz55<$|8({1k;RghNGoPaei7w<ObZ>yy
z2y7P|{t9>#sAZ@{FPB#}Kb8WA*?D(7IBdLW2$=4|jNmgdN5ZZg<`n$(0qQY4+>|Bw
z(q(Wy2W}D^b`G2^G;jEO>LW@SVN~(de?+|ML{%dP@x#&K5o`Dc`{2ms%7Yq5F3mtO
zy*Sf#sc<?kPDOs0EEgw@FkJHvO||!Mw()CS8vo}f+Q>sxHL6VQpcA7kit2wGHD9Sf
zsu*MAgGLMgzDX5hZE7jC@NWrKjI(j4w(##csu*umyQzhLmr+HzP2Q;ZH<&6W*m$kA
zOjxS+(3FXr)yq^qImF9i@6BtN0~((r$D|OlPO9Mslux$sI(AIjtjd6kp!@s7FREmG
zcf$AP$$zLD^xPvW)By^8)TWlx^N$W!v&iwNRXt3#OT>H3?+;6T3N51trwma45UGzp
z$E*}-@PWb%DxDHY1ykG8=$Xm7;4MNR(^OBjmJNbgk)b9+_RLhzc7vH-H#3a(PAygg
zsdh$)R{*;zhAS&M<^)suW9hnJpZlr@L=|)ks_oMXx$ny7gwdU8dez9X2#T7X#evG_
zm~}x*K}ug>p)aNdy1dhO(>=MA2+_SFUsWKFZL>P)f=1s>E|%8K@YMx%<ACfUk_u)9
zQ%gl3zD(542-hRAz|$-Zr&%*n)J~RK_?RcG(=+<0N06uVhKo6rH3O7M!bs0)fs%b-
zM|yMSX!S2}rMU)?1{_6NC9~woSh{T6EKjbv(q#>^GWc#)J||r7vNwa7K09AsWT{1+
zLPMpa0(c7CqXqErb34s*^3@p72K-5j_%E6li$|-kSQ6%;HcBe~hwn07L+HQwUjAw(
z)Kl(em9F#e>@rJ+Jmh`=zuO4VB4WRmKgIm)IVYS<^W6F1d2ew2Hi5ed+?9Wdd(rpv
zEUNpT0wZ`y;CayO`D=KCm5wdsjzxDH&QST{U`k(*p=R9Ipvw$nC}n8`y}H1cuYm6^
z$mccQxajV1`t7BpW&L%2)hr63L6seJevgr(GMHvpy3>w@`8;1ladV-k>caB=I>U|o
zOv8oy%=L@%`Q5*9kww+8KP#<U;;S>rL=V>wkdzIBIk^EU3X)Jr{5YvdYF^w|orDxC
z$oB~I`s;i*vB)9|S3X8SUnW+*#cWlk{6#|Bmbxp2rX5~d%xhK}g--AI8YeM8J&sJ*
zE%W55E~$6SfZ#R@Vq5|)XWY2yk9+dEcT^7GD#YJjfjlcmOEjM?cN?fDRhg-(z#dfT
zDK!CIG*(&eTOfZQ1N<z!FGcHp9$~4gQ@pREG3WyCACdeeTeR{c@2Xj*9a4u+;7!zn
zFVc+hF5*5&@JF8XLRGYh-#%ELAtlZu3^-Y^JF4%I%XGFXRzFwdN4_GD<<Y!!l9rFu
z&xd3KtzEvO|Eyqs|K$HaS88_b6;oZJ>;K{vnjNPZHEJ=8ZZVScm+0dde*$S+>3V(z
zTf`T>a;|n)>X$rWReZ$Tw<4A2$)y$Zd997B&arKhXvgt<>yBg3@gi~LRw(krw|J++
z>%BMHb+~m?6(0jw^JO%jx*0dmx>j)S)UC~iuPC&UpCH(81bl_V*C{^UION+4FZ_o;
z=kGWK_WA>aqrD8X`SJA53Xo1hc96dx!#5rh4)5jfM_iY)?Cu)=x&G1<E6dw?TFmu7
ztjzMFij|@Dp&Rz{xpGT+{jsf4ivK@+y<?l*O@-3)JG%K-x4CTZ{S7UxKfU95^&im8
BISv2-


From 0a01e082a428b921e48b5314881b1f23a7b0fe50 Mon Sep 17 00:00:00 2001
From: Halil Pasic <pasic@linux.ibm.com>
Date: Mon, 9 Mar 2020 14:32:23 +0100
Subject: [PATCH 3/4] s390/ipl: sync back loadparm

We expose loadparm as a r/w machine property, but if loadparm is set by
the guest via DIAG 308, we don't update the property. Having a
disconnect between the guest view and the QEMU property is not nice in
itself, but things get even worse for SCSI, where under certain
circumstances (see 789b5a401b "s390: Ensure IPL from SCSI works as
expected" for details) we call s390_gen_initial_iplb() on resets
effectively overwriting the guest/user supplied loadparm with the stale
value.

Signed-off-by: Halil Pasic <pasic@linux.ibm.com>
Fixes: 7104bae9de ("hw/s390x: provide loadparm property for the machine")
Reported-by: Marc Hartmayer <mhartmay@linux.ibm.com>
Reviewed-by: Janosch Frank <frankja@linux.ibm.com>
Reviewed-by: Viktor Mihajlovski <mihajlov@linux.ibm.com>
Tested-by: Marc Hartmayer <mhartmay@linux.ibm.com>
Reviewed-by: David Hildenbrand <david@redhat.com>
Message-Id: <20200309133223.100491-1-pasic@linux.ibm.com>
[borntraeger@de.ibm.com: use reverse xmas tree]
Signed-off-by: Christian Borntraeger <borntraeger@de.ibm.com>
---
 hw/s390x/ipl.c | 25 +++++++++++++++++++++++++
 1 file changed, 25 insertions(+)

diff --git a/hw/s390x/ipl.c b/hw/s390x/ipl.c
index 9c1ecd423c..b81942e1e6 100644
--- a/hw/s390x/ipl.c
+++ b/hw/s390x/ipl.c
@@ -538,6 +538,30 @@ static bool is_virtio_scsi_device(IplParameterBlock *iplb)
     return is_virtio_ccw_device_of_type(iplb, VIRTIO_ID_SCSI);
 }
 
+static void update_machine_ipl_properties(IplParameterBlock *iplb)
+{
+    Object *machine = qdev_get_machine();
+    Error *err = NULL;
+
+    /* Sync loadparm */
+    if (iplb->flags & DIAG308_FLAGS_LP_VALID) {
+        uint8_t *ebcdic_loadparm = iplb->loadparm;
+        char ascii_loadparm[8];
+        int i;
+
+        for (i = 0; i < 8 && ebcdic_loadparm[i]; i++) {
+            ascii_loadparm[i] = ebcdic2ascii[(uint8_t) ebcdic_loadparm[i]];
+        }
+        ascii_loadparm[i] = 0;
+        object_property_set_str(machine, ascii_loadparm, "loadparm", &err);
+    } else {
+        object_property_set_str(machine, "", "loadparm", &err);
+    }
+    if (err) {
+        warn_report_err(err);
+    }
+}
+
 void s390_ipl_update_diag308(IplParameterBlock *iplb)
 {
     S390IPLState *ipl = get_ipl_device();
@@ -545,6 +569,7 @@ void s390_ipl_update_diag308(IplParameterBlock *iplb)
     ipl->iplb = *iplb;
     ipl->iplb_valid = true;
     ipl->netboot = is_virtio_net_device(iplb);
+    update_machine_ipl_properties(iplb);
 }
 
 IplParameterBlock *s390_ipl_get_iplb(void)

From 94c21436e5a89143f8b9cb4d089d1a2f3f4fd377 Mon Sep 17 00:00:00 2001
From: Janosch Frank <frankja@linux.ibm.com>
Date: Tue, 10 Mar 2020 05:09:50 -0400
Subject: [PATCH 4/4] s390x: ipl: Consolidate iplb validity check into one
 function

It's nicer to just call one function than calling a function for each
possible iplb type.

Signed-off-by: Janosch Frank <frankja@linux.ibm.com>
Reviewed-by: David Hildenbrand <david@redhat.com>
Message-Id: <20200310090950.61172-1-frankja@linux.ibm.com>
Reviewed-by: Christian Borntraeger <borntraeger@de.ibm.com>
Signed-off-by: Christian Borntraeger <borntraeger@de.ibm.com>
---
 hw/s390x/ipl.h      | 18 +++++++++---------
 target/s390x/diag.c |  2 +-
 2 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/hw/s390x/ipl.h b/hw/s390x/ipl.h
index d4813105db..3e44abe1c6 100644
--- a/hw/s390x/ipl.h
+++ b/hw/s390x/ipl.h
@@ -173,16 +173,16 @@ static inline bool iplb_valid_len(IplParameterBlock *iplb)
     return be32_to_cpu(iplb->len) <= sizeof(IplParameterBlock);
 }
 
-static inline bool iplb_valid_ccw(IplParameterBlock *iplb)
+static inline bool iplb_valid(IplParameterBlock *iplb)
 {
-    return be32_to_cpu(iplb->len) >= S390_IPLB_MIN_CCW_LEN &&
-           iplb->pbt == S390_IPL_TYPE_CCW;
-}
-
-static inline bool iplb_valid_fcp(IplParameterBlock *iplb)
-{
-    return be32_to_cpu(iplb->len) >= S390_IPLB_MIN_FCP_LEN &&
-           iplb->pbt == S390_IPL_TYPE_FCP;
+    switch (iplb->pbt) {
+    case S390_IPL_TYPE_FCP:
+        return be32_to_cpu(iplb->len) >= S390_IPLB_MIN_FCP_LEN;
+    case S390_IPL_TYPE_CCW:
+        return be32_to_cpu(iplb->len) >= S390_IPLB_MIN_CCW_LEN;
+    default:
+        return false;
+    }
 }
 
 #endif
diff --git a/target/s390x/diag.c b/target/s390x/diag.c
index b5aec06d6b..54e5670b3f 100644
--- a/target/s390x/diag.c
+++ b/target/s390x/diag.c
@@ -117,7 +117,7 @@ void handle_diag_308(CPUS390XState *env, uint64_t r1, uint64_t r3, uintptr_t ra)
 
         cpu_physical_memory_read(addr, iplb, be32_to_cpu(iplb->len));
 
-        if (!iplb_valid_ccw(iplb) && !iplb_valid_fcp(iplb)) {
+        if (!iplb_valid(iplb)) {
             env->regs[r1 + 1] = DIAG_308_RC_INVALID;
             goto out;
         }