KVM: x86: Protect x86_decode_insn from Spectre-v1/L1TF attacks (db929cc5) · Commits · Mirrors / git.kernel.org / pub_scm_linux_kernel_git_stable_linux

Commit db929cc5 authored Dec 11, 2019 by

Marios Pomonis Committed by Ben Hutchings May 22, 2020

KVM: x86: Protect x86_decode_insn from Spectre-v1/L1TF attacks

commit 3c9053a2 upstream.

This fixes a Spectre-v1/L1TF vulnerability in x86_decode_insn().
kvm_emulate_instruction() (an ancestor of x86_decode_insn()) is an exported
symbol, so KVM should treat it conservatively from a security perspective.

Fixes: 045a282c

 ("KVM: emulator: implement fninit, fnstsw, fnstcw")

Signed-off-by: Nick Finco <nifi@google.com>
Signed-off-by: Marios Pomonis <pomonis@google.com>
Reviewed-by: Andrew Honig <ahonig@google.com>
Reviewed-by: Jim Mattson <jmattson@google.com>
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
[bwh: Backported to 3.16: Add #include <linux/nospec.h>]
Signed-off-by: Ben Hutchings <ben@decadent.org.uk>

parent d9dc0fd7

Hide whitespace changes

Inline Side-by-side

Please register or to comment