KVM: x86: Protect ioapic_read_indirect() from Spectre-v1/L1TF attacks - linux-dev - Linux kernel development work

diff options

author	Marios Pomonis <pomonis@google.com>	2019-12-11 12:47:44 -0800
committer	Paolo Bonzini <pbonzini@redhat.com>	2020-01-27 19:59:37 +0100
commit	8c86405f606ca8508b8d9280680166ca26723695 (patch)
tree	a3fc20dae498c896b5c0bafe3cd36fdc68e16bc0 /tools/perf/scripts/python/export-to-postgresql.py
parent	KVM: x86: Refactor picdev_write() to prevent Spectre-v1/L1TF attacks (diff)
download	linux-dev-8c86405f606ca8508b8d9280680166ca26723695.tar.xz linux-dev-8c86405f606ca8508b8d9280680166ca26723695.zip

KVM: x86: Protect ioapic_read_indirect() from Spectre-v1/L1TF attacks

This fixes a Spectre-v1/L1TF vulnerability in ioapic_read_indirect(). This function contains index computations based on the (attacker-controlled) IOREGSEL register. Fixes: a2c118bfab8b ("KVM: Fix bounds checking in ioapic indirect register reads (CVE-2013-1798)") Signed-off-by: Nick Finco <nifi@google.com> Signed-off-by: Marios Pomonis <pomonis@google.com> Reviewed-by: Andrew Honig <ahonig@google.com> Cc: stable@vger.kernel.org Reviewed-by: Jim Mattson <jmattson@google.com> Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>

Diffstat (limited to 'tools/perf/scripts/python/export-to-postgresql.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: