Gitiles
Code Review Sign In
review.shift-gmbh.com / SHIFTPHONES / kernel / common / d28aa3c157363f23a476d3bea87335f1ac016a67
commitd28aa3c157363f23a476d3bea87335f1ac016a67[log] [tgz]
authorJoerg Roedel <jroedel@suse.de>Fri Mar 12 13:38:23 2021 +0100
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>Wed May 26 12:06:57 2021 +0200
tree8b1566852770f38ac139e5a926dc2bb840c70acb
parent0296c9057adee577bf53f7e91f6b1178e23aeb44 [diff]
x86/boot/compressed/64: Check SEV encryption in the 32-bit boot-path

commit fef81c86262879d4b1176ef51a834c15b805ebb9 upstream.

Check whether the hypervisor reported the correct C-bit when running
as an SEV guest. Using a wrong C-bit position could be used to leak
sensitive data from the guest to the hypervisor.

Signed-off-by: Joerg Roedel <jroedel@suse.de>
Signed-off-by: Borislav Petkov <bp@suse.de>
Link: https://lkml.kernel.org/r/20210312123824.306-8-joro@8bytes.org
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
1 file changed
tree: 8b1566852770f38ac139e5a926dc2bb840c70acb
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. LICENSES/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .clang-format
  24. .cocciconfig
  25. .get_maintainer.ignore
  26. .gitattributes
  27. .gitignore
  28. .mailmap
  29. COPYING
  30. CREDITS
  31. Kbuild
  32. Kconfig
  33. MAINTAINERS
  34. Makefile
  35. README