git.ipfire.org Git - thirdparty/kernel/stable.git/commit

author	Joerg Roedel <jroedel@suse.de>
	Wed, 21 Jun 2023 15:42:42 +0000 (17:42 +0200)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Wed, 25 Oct 2023 09:58:55 +0000 (11:58 +0200)
commit	5c2c01be809db49ad744158e4c6284213da6513a
tree	cae34543ab294939a5b7332a854931769b7b4cdf	tree
parent	6797c6d09e50e7ddb1c0f8282ccfb3f1c4d63270	commit \| diff

x86/sev: Check IOBM for IOIO exceptions from user-space

Upstream commit: b9cb9c45583b911e0db71d09caa6b56469eb2bdf

Check the IO permission bitmap (if present) before emulating IOIO #VC
exceptions for user-space. These permissions are checked by hardware
already before the #VC is raised, but due to the VC-handler decoding
race it needs to be checked again in software.

Fixes: 25189d08e516 ("x86/sev-es: Add support for handling IOIO exceptions")
Reported-by: Tom Dohrmann <erbse.13@gmx.de>
Signed-off-by: Joerg Roedel <jroedel@suse.de>
Signed-off-by: Borislav Petkov (AMD) <bp@alien8.de>
Tested-by: Tom Dohrmann <erbse.13@gmx.de>
Cc: <stable@kernel.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

arch/x86/boot/compressed/sev.c		diff \| blob \| blame \| history
arch/x86/kernel/sev-shared.c		diff \| blob \| blame \| history
arch/x86/kernel/sev.c		diff \| blob \| blame \| history