Re: [PATCH v2 01/13] KVM: x86: Protect x86_decode_insn from Spectre-v1/L1TF attacks

From: Jim Mattson
Date: Mon Jan 06 2020 - 15:16:14 EST

Next message: Jim Mattson: "Re: [PATCH v2 02/13] KVM: x86: Protect kvm_hv_msr_[get|set]_crash_data() from Spectre-v1/L1TF attacks"
Previous message: Konstantin Ryabitsev: "Re: [RFC] tools lib traceevent: How to do library versioning being in the Linux kernel source?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Dec 11, 2019 at 12:48 PM Marios Pomonis <pomonis@xxxxxxxxxx> wrote:
>
> This fixes a Spectre-v1/L1TF vulnerability in x86_decode_insn().
> kvm_emulate_instruction() (an ancestor of x86_decode_insn()) is an exported
> symbol, so KVM should treat it conservatively from a security perspective.
>
> Fixes: commit 045a282ca415 ("KVM: emulator: implement fninit, fnstsw, fnstcw")
>
> Signed-off-by: Nick Finco <nifi@xxxxxxxxxx>
> Signed-off-by: Marios Pomonis <pomonis@xxxxxxxxxx>
> Reviewed-by: Andrew Honig <ahonig@xxxxxxxxxx>
> Cc: stable@xxxxxxxxxxxxxxx

Reviewed-by: Jim Mattson <jmattson@xxxxxxxxxx>

Next message: Jim Mattson: "Re: [PATCH v2 02/13] KVM: x86: Protect kvm_hv_msr_[get|set]_crash_data() from Spectre-v1/L1TF attacks"
Previous message: Konstantin Ryabitsev: "Re: [RFC] tools lib traceevent: How to do library versioning being in the Linux kernel source?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]