projects / platform / kernel / linux-starfive.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9756bba) | patch
KVM: VMX: Prevent RSB underflow before vmenter
authorJosh Poimboeuf <jpoimboe@kernel.org>
Tue, 14 Jun 2022 21:16:16 +0000 (23:16 +0200)
committerBorislav Petkov <bp@suse.de>
Mon, 27 Jun 2022 08:34:00 +0000 (10:34 +0200)
commit07853adc29a058c5fd143c14e5ac528448a72ed9
tree6336e1982537e7d9db862efcaa66157bf400b1cetree | snapshot
parent9756bba28470722dacb79ffce554336dd1f6a6cdcommit | diff
KVM: VMX: Prevent RSB underflow before vmenter

On VMX, there are some balanced returns between the time the guest's
SPEC_CTRL value is written, and the vmenter.

Balanced returns (matched by a preceding call) are usually ok, but it's
at least theoretically possible an NMI with a deep call stack could
empty the RSB before one of the returns.

For maximum paranoia, don't allow *any* returns (balanced or otherwise)
between the SPEC_CTRL write and the vmenter.

  [ bp: Fix 32-bit build. ]

Signed-off-by: Josh Poimboeuf <jpoimboe@kernel.org>
Signed-off-by: Peter Zijlstra (Intel) <peterz@infradead.org>
Signed-off-by: Borislav Petkov <bp@suse.de>
arch/x86/kernel/asm-offsets.c diff | blob | history
arch/x86/kernel/cpu/bugs.c diff | blob | history
arch/x86/kvm/vmx/capabilities.h diff | blob | history
arch/x86/kvm/vmx/vmenter.S diff | blob | history
arch/x86/kvm/vmx/vmx.c diff | blob | history
arch/x86/kvm/vmx/vmx.h diff | blob | history
arch/x86/kvm/vmx/vmx_ops.h diff | blob | history
Domain: System / Kernel;