Re: [PATCH v2 12/13] KVM: x86: Protect DR-based index computations from Spectre-v1/L1TF attacks

6 Jan 2020


      On Wed, Dec 11, 2019 at 12:49 PM Marios Pomonis pomonis@google.com wrote:
...
This fixes a Spectre-v1/L1TF vulnerability in __kvm_set_dr() and
kvm_get_dr().
Both kvm_get_dr() and kvm_set_dr() (a wrapper of __kvm_set_dr()) are
exported symbols so KVM should tream them conservatively from a security
perspective.
Fixes: commit 020df0794f57 ("KVM: move DR register access handling into generic code")
Signed-off-by: Nick Finco nifi@google.com
Signed-off-by: Marios Pomonis pomonis@google.com
Reviewed-by: Andrew Honig ahonig@google.com
Cc: stable@vger.kernel.org
Reviewed-by: Jim Mattson jmattson@google.com

2024

2023

2022

2021

2020

2019

2018

2017

Re: [PATCH v2 12/13] KVM: x86: Protect DR-based index computations from Spectre-v1/L1TF attacks