git.proxmox.com Git - mirror

author	Konrad Rzeszutek Wilk <konrad.wilk@oracle.com>
	Mon, 21 May 2018 21:54:24 +0000 (22:54 +0100)
committer	Michael Roth <mdroth@linux.vnet.ibm.com>
	Wed, 11 Jul 2018 16:48:20 +0000 (11:48 -0500)
commit	3129ddb9436fc059d9163a24b227a30ab694c282
tree	88d6e388f694caecd204810e9086358289a2748d	tree
parent	8a302f42a5f84d89c4590022e55b1b61621b7f79	commit \| diff

i386: Define the Virt SSBD MSR and handling of it (CVE-2018-3639)

"Some AMD processors only support a non-architectural means of enabling
speculative store bypass disable (SSBD). To allow a simplified view of
this to a guest, an architectural definition has been created through a new
CPUID bit, 0x80000008_EBX[25], and a new MSR, 0xc001011f. With this, a
hypervisor can virtualize the existence of this definition and provide an
architectural method for using SSBD to a guest.

Add the new CPUID feature, the new MSR and update the existing SSBD
support to use this MSR when present." (from x86/speculation: Add virtualized
speculative store bypass disable support in Linux).

Signed-off-by: Konrad Rzeszutek Wilk <konrad.wilk@oracle.com>
Reviewed-by: Daniel P. Berrangé <berrange@redhat.com>
Signed-off-by: Daniel P. Berrangé <berrange@redhat.com>
Message-Id: <20180521215424.13520-4-berrange@redhat.com>
Signed-off-by: Eduardo Habkost <ehabkost@redhat.com>
(cherry picked from commit cfeea0c021db6234c154dbc723730e81553924ff)
Signed-off-by: Michael Roth <mdroth@linux.vnet.ibm.com>

target/i386/cpu.h		diff \| blob \| blame \| history
target/i386/kvm.c		diff \| blob \| blame \| history
target/i386/machine.c		diff \| blob \| blame \| history