]> git.ipfire.org Git - thirdparty/kernel/stable.git/commit
projects / thirdparty / kernel / stable.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0296c90) | patch
x86/boot/compressed/64: Check SEV encryption in the 32-bit boot-path
authorJoerg Roedel <jroedel@suse.de>
Fri, 12 Mar 2021 12:38:23 +0000 (13:38 +0100)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Wed, 26 May 2021 10:06:57 +0000 (12:06 +0200)
commitd28aa3c157363f23a476d3bea87335f1ac016a67
tree8b1566852770f38ac139e5a926dc2bb840c70acbtree | snapshot
parent0296c9057adee577bf53f7e91f6b1178e23aeb44commit | diff
x86/boot/compressed/64: Check SEV encryption in the 32-bit boot-path

commit fef81c86262879d4b1176ef51a834c15b805ebb9 upstream.

Check whether the hypervisor reported the correct C-bit when running
as an SEV guest. Using a wrong C-bit position could be used to leak
sensitive data from the guest to the hypervisor.

Signed-off-by: Joerg Roedel <jroedel@suse.de>
Signed-off-by: Borislav Petkov <bp@suse.de>
Link: https://lkml.kernel.org/r/20210312123824.306-8-joro@8bytes.org
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
arch/x86/boot/compressed/head_64.S diff | blob | blame | history
Mirror https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git