MIRRORS/linux-yocto
1
0
Fork 0
mirror of git://git.yoctoproject.org/linux-yocto.git synced 2025-10-22 15:03:53 +02:00
Code Issues Actions Packages Projects Releases Wiki Activity
c30b4019ea
linux-yocto/arch
History
Thijs Raymakers 31a0ad2f60 KVM: x86: use array_index_nospec with indices that come from guest 
commit c87bd4dd43a624109c3cc42d843138378a7f4548 upstream.

min and dest_id are guest-controlled indices. Using array_index_nospec()
after the bounds checks clamps these values to mitigate speculative execution
side-channels.

Signed-off-by: Thijs Raymakers <thijs@raymakers.nl>
Cc: stable@vger.kernel.org
Cc: Sean Christopherson <seanjc@google.com>
Cc: Paolo Bonzini <pbonzini@redhat.com>
Cc: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Fixes: 715062970f ("KVM: X86: Implement PV sched yield hypercall")
Fixes: bdf7ffc899 ("KVM: LAPIC: Fix pv ipis out-of-bounds access")
Fixes: 4180bf1b65 ("KVM: X86: Implement "send IPI" hypercall")
Link: https://lore.kernel.org/r/20250804064405.4802-1-thijs@raymakers.nl
Signed-off-by: Sean Christopherson <seanjc@google.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2025-09-04 14:41:43 +02:00
..
alpha alpha/elf: Fix misc/setarch test of util-linux by removing 32bit support 2025-04-10 14:30:49 +02:00
arc ARC: build: Try to guess GCC variant of cross compiler 2025-01-09 13:25:05 +01:00
arm ARM: 9448/1: Use an absolute path to unified.h in KBUILD_AFLAGS 2025-08-28 16:22:54 +02:00
arm64 mm/ptdump: take the memory hotplug lock inside ptdump_walk_pgd() 2025-08-28 16:22:55 +02:00
c6x
csky csky, hexagon: fix broken sys_sync_file_range 2024-07-05 09:12:54 +02:00
h8300
hexagon hexagon: Fix unbalanced spinlock in die() 2025-03-13 12:46:59 +01:00
ia64 efi: ia64: move IA64-only declarations to new asm/efi.h header 2024-07-18 13:05:50 +02:00
m68k m68k: Fix lost column on framebuffer debug console 2025-08-28 16:22:48 +02:00
microblaze microblaze: don't treat zero reserved memory regions as error 2024-10-17 15:07:35 +02:00
mips lib/crypto: mips/chacha: Fix clang build and remove unneeded byteswap 2025-08-28 16:22:49 +02:00
nds32
nios2 nios2: force update_mmu_cache on spurious tlb-permission--related pagefaults 2025-06-27 11:04:17 +01:00
openrisc openrisc: Call setup_memory() earlier in the init sequence 2024-09-04 13:17:38 +02:00
parisc parisc: Makefile: fix a typo in palo.conf 2025-08-28 16:22:48 +02:00
powerpc powerpc/kvm: Fix ifdef to remove build warning 2025-09-04 14:41:42 +02:00
riscv riscv: Avoid fortify warning in syscall_get_arguments() 2025-05-02 07:41:02 +02:00
s390 s390/hypfs: Enable limited access during lockdown 2025-08-28 16:22:59 +02:00
sh sh: Do not use hyphen in exported variable name 2025-08-28 16:22:35 +02:00
sparc sparc/mm: disable preemption in lazy mmu mode 2025-05-02 07:40:56 +02:00
um um: vector: Reduce stack usage in vector_eth_configure() 2025-07-17 18:27:59 +02:00
x86 KVM: x86: use array_index_nospec with indices that come from guest 2025-09-04 14:41:43 +02:00
xtensa
.gitignore
Kconfig cpu: Re-enable CPU mitigations by default for !X86 architectures 2024-05-02 16:23:44 +02:00