| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <YKuhBmTVUYMvLhXE@kroah.com> Date: Mon, 24 May 2021 14:50:14 +0200 From: Greg KH <gregkh@...uxfoundation.org> To: Joerg Roedel <jroedel@...e.de> Cc: linux-kernel@...r.kernel.org, stable-commits@...r.kernel.org Subject: Re: [PATCH stable-5.10,5.11,5.12] x86/boot/compressed/64: Check SEV encryption in the 32-bit boot-path On Tue, May 18, 2021 at 01:40:18PM +0200, Joerg Roedel wrote: > On Tue, May 18, 2021 at 01:39:02PM +0200, Joerg Roedel wrote: > > [ Upstream commit fef81c86262879d4b1176ef51a834c15b805ebb9 ] > > > > Check whether the hypervisor reported the correct C-bit when running > > as an SEV guest. Using a wrong C-bit position could be used to leak > > sensitive data from the guest to the hypervisor. > > > > Signed-off-by: Joerg Roedel <jroedel@...e.de> > > Signed-off-by: Borislav Petkov <bp@...e.de> > > Link: https://lkml.kernel.org/r/20210312123824.306-8-joro@8bytes.org > > --- > > arch/x86/boot/compressed/head_64.S | 85 ++++++++++++++++++++++++++++++ > > 1 file changed, 85 insertions(+) > > This is compile-tested now for 5.10, 5.11 and 5.12. With 5.12 I also did > a boot-test using the 32-bit boot-path and verified it still works as > expected. Now queued up, thanks. greg k-h
Powered by blists - more mailing lists