iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
linux/arch
History
Michael Kelley 50015dbdec x86/hyperv: Block root partition functionality in a Confidential VM 
[ Upstream commit f8acb24aaf89fc46cd953229462ea8abe31b395f ]

Hyper-V should never specify a VM that is a Confidential VM and also
running in the root partition.  Nonetheless, explicitly block such a
combination to guard against a compromised Hyper-V maliciously trying to
exploit root partition functionality in a Confidential VM to expose
Confidential VM secrets. No known bug is being fixed, but the attack
surface for Confidential VMs on Hyper-V is reduced.

Signed-off-by: Michael Kelley <mikelley@microsoft.com>
Link: https://lore.kernel.org/r/1678894453-95392-1-git-send-email-mikelley@microsoft.com
Signed-off-by: Wei Liu <wei.liu@kernel.org>
Signed-off-by: Sasha Levin <sashal@kernel.org>
2023-05-11 23:00:15 +09:00
..
alpha
alpha: fix R_ALPHA_LITERAL reloc for large modules
2023-03-17 08:49:01 +01:00
arc
arc: iounmap() arg is volatile
2022-11-03 23:59:15 +09:00
arm
ARM: dts: rockchip: fix a typo error for rk3288 spdif node
2023-04-26 13:51:46 +02:00
arm64
KVM: arm64: Fix buffer overflow in kvm_arm_set_fw_reg()
2023-05-01 08:23:23 +09:00
csky
kprobes: treewide: Cleanup the error messages for kprobes
2023-02-22 12:57:00 +01:00
h8300
h8300: Fix build errors from do_exit() to make_task_dead() transition
2023-02-01 08:27:21 +01:00
hexagon
hexagon: Fix function name in die()
2023-02-01 08:27:20 +01:00
ia64
genirq: Add and use an irq_data_update_affinity helper
2023-03-11 13:57:31 +01:00
m68k
m68k: Only force 030 bus error if PC not in exception table
2023-03-30 12:47:53 +02:00
microblaze
exit: Add and use make_task_dead.
2023-02-01 08:27:20 +01:00
mips
MIPS: Define RUNTIME_DISCARD_EXIT in LD script
2023-04-26 13:51:53 +02:00
nds32
exit: Add and use make_task_dead.
2023-02-01 08:27:20 +01:00
nios2
exit: Add and use make_task_dead.
2023-02-01 08:27:20 +01:00
openrisc
exit: Add and use make_task_dead.
2023-02-01 08:27:20 +01:00
parisc
genirq: Add and use an irq_data_update_affinity helper
2023-03-11 13:57:31 +01:00
powerpc
powerpc/papr_scm: Update the NUMA distance table for the target node
2023-04-20 12:13:56 +02:00
riscv
riscv: No need to relocate the dtb as it lies in the fixmap region
2023-05-01 08:23:24 +09:00
s390
s390/ptrace: fix PTRACE_GET_LAST_BREAK error handling
2023-04-26 13:51:50 +02:00
sh
sh: sanitize the flags on sigreturn
2023-03-30 12:47:54 +02:00
sparc
sparc: allow PM configs for sparc32 COMPILE_TEST
2023-03-10 09:39:33 +01:00
um
UML: define RUNTIME_DISCARD_EXIT
2023-03-17 08:49:04 +01:00
x86
x86/hyperv: Block root partition functionality in a Confidential VM
2023-05-11 23:00:15 +09:00
xtensa
xtensa: fix KASAN report for show_stack
2023-04-05 11:25:00 +02:00
.gitignore
Kconfig
arch: make TRACE_IRQFLAGS_NMI_SUPPORT generic
2022-08-17 14:23:00 +02:00