lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Date:   Sun, 31 Jul 2022 12:23:12 +0200
From:   Borislav Petkov <bp@...e.de>
To:     Linus Torvalds <torvalds@...ux-foundation.org>
Cc:     x86-ml <x86@...nel.org>, lkml <linux-kernel@...r.kernel.org>
Subject: [GIT PULL] x86/urgent for 5.19

Hi Linus,

please pull a couple more last minute x86 urgent fixes for 5.19.

Thx.

---

The following changes since commit e0dccc3b76fb35bb257b4118367a883073d7390e:

  Linux 5.19-rc8 (2022-07-24 13:26:27 -0700)

are available in the Git repository at:

  git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git tags/x86_urgent_for_v5.19

for you to fetch changes up to ea304a8b89fd0d6cf94ee30cb139dc23d9f1a62f:

  docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (2022-07-29 20:47:07 +0200)

----------------------------------------------------------------
- Update the mitigations= kernel param documentation

- Check the IBPB feature flag before enabling IBPB in firmware calls
because cloud vendors' fantasy when it comes to creating guest
configurations is unlimited

- Unexport sev_es_ghcb_hv_call() before 5.19 releases now that HyperV
doesn't need it anymore

- Remove dead CONFIG_* items

----------------------------------------------------------------
Borislav Petkov (1):
      Revert "x86/sev: Expose sev_es_ghcb_hv_call() for use by HyperV"

Eiichi Tsukata (1):
      docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed

Lukas Bulwahn (1):
      x86/configs: Update configs in x86_debug.config

Thadeu Lima de Souza Cascardo (1):
      x86/bugs: Do not enable IBPB at firmware entry when IBPB is not available

 Documentation/admin-guide/kernel-parameters.txt |  2 ++
 arch/x86/include/asm/sev.h                      |  7 +------
 arch/x86/kernel/cpu/bugs.c                      |  1 +
 arch/x86/kernel/sev-shared.c                    | 25 +++++++++----------------
 arch/x86/kernel/sev.c                           | 17 ++++++++---------
 kernel/configs/x86_debug.config                 |  3 +--
 6 files changed, 22 insertions(+), 33 deletions(-)

-- 
Regards/Gruss,
    Boris.

SUSE Software Solutions Germany GmbH
GF: Ivo Totev, Andrew Myers, Andrew McDonald, Martje Boudien Moerman
(HRB 36809, AG Nürnberg)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ