git.proxmox.com Git - mirror_ubuntu-bionic-kernel.git/commit

author	Paolo Bonzini <pbonzini@redhat.com>
	Mon, 2 Jul 2018 11:07:14 +0000 (13:07 +0200)
committer	Stefan Bader <stefan.bader@canonical.com>
	Wed, 8 Aug 2018 12:08:07 +0000 (14:08 +0200)
commit	f0ace387064d45f0fd1478ff470dc8162db3b4b3
tree	23c1ae5ee890dc36a76c4620f1549200505e91f5	tree
parent	8e494dea309656eda7e1a9020b385c269eb13453	commit \| diff

x86/KVM/VMX: Add L1D flush logic

Add the logic for flushing L1D on VMENTER. The flush depends on the static
key being enabled and the new l1tf_flush_l1d flag being set.

The flags is set:
- Always, if the flush module parameter is 'always'

- Conditionally at:
   - Entry to vcpu_run(), i.e. after executing user space

   - From the sched_in notifier, i.e. when switching to a vCPU thread.

   - From vmexit handlers which are considered unsafe, i.e. where
     sensitive data can be brought into L1D:

     - The emulator, which could be a good target for other speculative
       execution-based threats,

     - The MMU, which can bring host page tables in the L1 cache.

     - External interrupts

     - Nested operations that require the MMU (see above). That is
       vmptrld, vmptrst, vmclear,vmwrite,vmread.

     - When handling invept,invvpid

[ tglx: Split out from combo patch and reduced to a single flag ]

Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
Signed-off-by: Konrad Rzeszutek Wilk <konrad.wilk@oracle.com>
Signed-off-by: Thomas Gleixner <tglx@linutronix.de>
CVE-2018-3620
CVE-2018-3646

[tyhicks: Backported around context changes]
Signed-off-by: Tyler Hicks <tyhicks@canonical.com>
Signed-off-by: Stefan Bader <stefan.bader@canonical.com>

arch/x86/include/asm/kvm_host.h		diff \| blob \| blame \| history
arch/x86/kvm/mmu.c		diff \| blob \| blame \| history
arch/x86/kvm/vmx.c		diff \| blob \| blame \| history
arch/x86/kvm/x86.c		diff \| blob \| blame \| history