iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
linux/arch/x86/kvm
History
Pawan Gupta da06c60d1d KVM: x86/speculation: Disable Fill buffer clear within guests 
commit 027bbb884be006b05d9c577d6401686053aa789e upstream

The enumeration of MD_CLEAR in CPUID(EAX=7,ECX=0).EDX{bit 10} is not an
accurate indicator on all CPUs of whether the VERW instruction will
overwrite fill buffers. FB_CLEAR enumeration in
IA32_ARCH_CAPABILITIES{bit 17} covers the case of CPUs that are not
vulnerable to MDS/TAA, indicating that microcode does overwrite fill
buffers.

Guests running in VMM environments may not be aware of all the
capabilities/vulnerabilities of the host CPU. Specifically, a guest may
apply MDS/TAA mitigations when a virtual CPU is enumerated as vulnerable
to MDS/TAA even when the physical CPU is not. On CPUs that enumerate
FB_CLEAR_CTRL the VMM may set FB_CLEAR_DIS to skip overwriting of fill
buffers by the VERW instruction. This is done by setting FB_CLEAR_DIS
during VMENTER and resetting on VMEXIT. For guests that enumerate
FB_CLEAR (explicitly asking for fill buffer clear capability) the VMM
will not use FB_CLEAR_DIS.

Irrespective of guest state, host overwrites CPU buffers before VMENTER
to protect itself from an MMIO capable guest, as part of mitigation for
MMIO Stale Data vulnerabilities.

Signed-off-by: Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
Signed-off-by: Borislav Petkov <bp@suse.de>
Signed-off-by: Thomas Gleixner <tglx@linutronix.de>
[cascardo: arch/x86/kvm/vmx.c has been split and context adjustment at
 vmx_vcpu_run]
[cascardo: moved functions so they are after struct vcpu_vmx definition]
[cascardo: fb_clear is disabled/enabled around __vmx_vcpu_run]
[cascardo: conflict context fixups]
Signed-off-by: Thadeu Lima de Souza Cascardo <cascardo@canonical.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2022-06-16 13:00:52 +02:00
..
assigned-dev.c
KVM: x86: use list_for_each_entry*
2016-02-23 15:40:54 +01:00
assigned-dev.h
cpuid.c
kvm: x86/cpuid: Only provide CPUID leaf 0xA if host has architectural PMU
2022-05-12 12:14:58 +02:00
cpuid.h
x86/bugs: Add AMD's SPEC_CTRL MSR usage
2019-05-14 19:19:33 +02:00
debugfs.c
kvm: x86: export TSC information to user-space
2016-09-16 16:57:48 +02:00
emulate.c
KVM: x86/emulator: Defer not-present segment check in __load_segment_descriptor()
2022-04-20 09:06:35 +02:00
hyperv.c
KVM: x86: Forbid VMM to set SYNIC/STIMER MSRs when SynIC wasn't activated
2022-04-20 09:06:41 +02:00
hyperv.h
KVM: x86: Hyper-V tsc page setup
2016-09-20 09:26:20 +02:00
i8254.c
kthread: kthread worker API cleanup
2016-10-11 15:06:33 -07:00
i8254.h
KVM: i8254: turn kvm_kpit_state.reinject into atomic_t
2016-03-04 09:30:25 +01:00
i8259.c
KVM: x86: clean/fix memory barriers in irqchip_in_kernel
2015-07-30 16:02:56 +02:00
ioapic.c
Revert "x86/kvm: fix vcpu-id indexed array sizes"
2021-11-12 13:18:01 +01:00
ioapic.h
Revert "x86/kvm: fix vcpu-id indexed array sizes"
2021-11-12 13:18:01 +01:00
iommu.c
- ARM: GICv3 ITS emulation and various fixes. Removal of the old
2016-08-02 16:11:27 -04:00
irq_comm.c
KVM: x86: don't notify userspace IOAPIC on edge-triggered interrupt EOI
2020-02-28 15:42:49 +01:00
irq.c
x86/kvm: Audit and remove any unnecessary uses of module.h
2016-07-14 15:07:00 +02:00
irq.h
KVM: Move kvm_setup_default/empty_irq_routing declaration in arch specific header
2016-07-22 18:52:00 +01:00
Kconfig
KVM: add X86_LOCAL_APIC dependency
2018-02-25 11:05:54 +01:00
kvm_cache_regs.h
KVM, pkeys: add pkeys support for permission_fault
2016-03-22 16:23:37 +01:00
lapic.c
KVM: x86: Fix emulation in writing cr8
2022-04-20 09:06:35 +02:00
lapic.h
KVM: x86: flush pending lapic jump label updates on module unload
2017-01-19 20:17:59 +01:00
Makefile
kvm: add stubs for arch specific debugfs support
2016-09-16 16:57:47 +02:00
mmu_audit.c
kvm: rename pfn_t to kvm_pfn_t
2016-01-15 17:56:32 -08:00
mmu.c
KVM: x86/mmu: Treat NX as used (not reserved) for all !TDP shadow MMUs
2021-09-03 09:44:40 +02:00
mmu.h
kvm: x86: mmu: Recovery of shattered NX large pages
2019-11-16 10:29:57 +01:00
mmutrace.h
KVM: x86: fix incorrect comparison in trace event
2020-10-01 20:40:08 +02:00
mtrr.c
KVM: x86: Protect MSR-based index computations in fixed_msr_to_seg_unit() from Spectre-v1/L1TF attacks
2020-02-14 16:31:04 -05:00
page_track.c
KVM: x86: cleanup the page tracking SRCU instance
2017-03-31 10:31:45 +02:00
paging_tmpl.h
KVM: X86: MMU: Use the correct inherited permissions to get shadow page
2022-01-29 10:15:58 +01:00
pmu_amd.c
KVM: x86/svm: Clear reserved bits written to PerfEvtSeln MSRs
2022-04-20 09:06:41 +02:00
pmu_intel.c
KVM: x86/pmu: Fix HW_REF_CPU_CYCLES event pseudo-encoding in intel_arch_events[]
2021-02-03 23:19:50 +01:00
pmu.c
KVM: x86/pmu: Use AMD64_RAW_EVENT_MASK for PERF_TYPE_RAW
2022-02-23 11:56:41 +01:00
pmu.h
KVM: x86: Protect MSR-based index computations in pmu.h from Spectre-v1/L1TF attacks
2020-02-14 16:31:04 -05:00
svm.c
KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653)
2021-08-26 08:37:25 -04:00
trace.h
KVM: x86: avoid misreporting level-triggered irqs as edge-triggered in tracing
2019-05-16 19:43:42 +02:00
tss.h
vmx.c
KVM: x86/speculation: Disable Fill buffer clear within guests
2022-06-16 13:00:52 +02:00
x86.c
KVM: x86/speculation: Disable Fill buffer clear within guests
2022-06-16 13:00:52 +02:00
x86.h
KVM: x86: pass kvm_vcpu to kvm_read_guest_virt and kvm_write_guest_virt_system
2018-06-16 09:52:33 +02:00