| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 06 Sep 2010 15:14:22 +0300 From: Avi Kivity <avi@...hat.com> To: Andre Przywara <andre.przywara@....com> CC: "kvm@...r.kernel.org" <kvm@...r.kernel.org>, Linux-kernel <linux-kernel@...r.kernel.org> Subject: Re: [PATCH 3/4] x86: Fix allowed CPUID bits for KVM guests On 09/06/2010 03:05 PM, Andre Przywara wrote: > >> >> Did we really enable "sse5" before xsave? That looks broken, but I >> guess no real harm if xsave itself is not enabled. > Yes. It somehow slipped through when you introduced the other feature > flags to KVM. I also think this is not a serious problem. > BTW: I realized that AES is currently denied. Reading the manual I see > that it operates on SSE registers, so it should be safe to be passed > through. The only drawback is that it would change the visible CPUID > on CPUs that already have AES, whereas earlier KVM versions did hide it. This code doesn't directly affect a guest's cpuid, it merely tells host userspace which cpuid bits are supported by kvm. It's perfectly fine to add bits as we add support, in fact this interface is what makes migration work across cpus with different capabilities. > This could become a problem with migration. But if you agree, I'd > integrate this flag in the v2 series. Shouldn't be a problem - please do. -- error compiling committee.c: too many arguments to function -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists