mirrors/linux
2
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git synced 2026-05-26 02:32:45 -04:00
Code Issues Packages Projects Releases Wiki Activity
1,397,032 Commits 1 Branch 932 Tags
e6ff1d61de51ec5fe94c5fb79544a93f494104eb
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Sean Christopherson e6ff1d61de KVM: VMX: Handle MMIO Stale Data in VM-Enter assembly via ALTERNATIVES_2 
Rework the handling of the MMIO Stale Data mitigation to clear CPU buffers
immediately prior to VM-Enter, i.e. in the same location that KVM emits a
VERW for unconditional (at runtime) clearing.  Co-locating the code and
using a single ALTERNATIVES_2 makes it more obvious how VMX mitigates the
various vulnerabilities.

Deliberately order the alternatives as:

 0. Do nothing
 1. Clear if vCPU can access MMIO
 2. Clear always

since the last alternative wins in ALTERNATIVES_2(), i.e. so that KVM will
honor the strictest mitigation (always clear CPU buffers) if multiple
mitigations are selected.  E.g. even if the kernel chooses to mitigate
MMIO Stale Data via X86_FEATURE_CLEAR_CPU_BUF_VM_MMIO, another mitigation
may enable X86_FEATURE_CLEAR_CPU_BUF_VM, and that other thing needs to win.

Note, decoupling the MMIO mitigation from the L1TF mitigation also fixes
a mostly-benign flaw where KVM wouldn't do any clearing/flushing if the
L1TF mitigation is configured to conditionally flush the L1D, and the MMIO
mitigation but not any other "clear CPU buffers" mitigation is enabled.
For that specific scenario, KVM would skip clearing CPU buffers for the
MMIO mitigation even though the kernel requested a clear on every VM-Enter.

Note #2, the flaw goes back to the introduction of the MDS mitigation.  The
MDS mitigation was inadvertently fixed by commit 43fb862de8 ("KVM/VMX:
Move VERW closer to VMentry for MDS mitigation"), but previous kernels
that flush CPU buffers in vmx_vcpu_enter_exit() are affected (though it's
unlikely the flaw is meaningfully exploitable even older kernels).

Fixes: 650b68a062 ("x86/kvm/vmx: Add MDS protection when L1D Flush is not active")
Suggested-by: Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
Reviewed-by: Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
Reviewed-by: Brendan Jackman <jackmanb@google.com>
Link: https://patch.msgid.link/20251113233746.1703361-6-seanjc@google.com
Signed-off-by: Sean Christopherson <seanjc@google.com>
2025-11-18 16:22:42 -08:00
arch
KVM: VMX: Handle MMIO Stale Data in VM-Enter assembly via ALTERNATIVES_2
2025-11-18 16:22:42 -08:00
block
Merge tag 'block-6.18-20251016' of git://git.kernel.org/pub/scm/linux/kernel/git/axboe/linux
2025-10-17 08:31:26 -07:00
certs
sign-file,extract-cert: use pkcs11 provider for OPENSSL MAJOR >= 3
2024-09-20 19:52:48 +03:00
crypto
Merge tag 'v6.18-p3' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6
2025-10-10 08:56:16 -07:00
Documentation
Merge tag 'rust-rustfmt' of git://git.kernel.org/pub/scm/linux/kernel/git/ojeda/linux
2025-10-18 10:05:13 -10:00
drivers
Merge tag 'tpmdd-next-v6.18-rc2' of git://git.kernel.org/pub/scm/linux/kernel/git/jarkko/linux-tpmdd
2025-10-18 08:38:28 -10:00
fs
Merge tag 'exfat-for-6.18-rc2' of git://git.kernel.org/pub/scm/linux/kernel/git/linkinjeon/exfat
2025-10-18 07:23:59 -10:00
include
Merge tag 'hid-for-linus-2025101701' of git://git.kernel.org/pub/scm/linux/kernel/git/hid/hid
2025-10-18 08:18:18 -10:00
init
Merge tag 'printk-for-6.18' of git://git.kernel.org/pub/scm/linux/kernel/git/printk/linux
2025-10-04 11:13:11 -07:00
io_uring
io_uring/rw: check for NULL io_br_sel when putting a buffer
2025-10-15 13:38:53 -06:00
ipc
Merge tag 'namespace-6.18-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/vfs/vfs
2025-09-29 11:20:29 -07:00
kernel
Merge tag 'sched_urgent_for_v6.18_rc2' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
2025-10-19 04:59:43 -10:00
lib
lib/test_kho: use kho_preserve_vmalloc instead of storing addresses in fdt
2025-10-07 13:48:56 -07:00
LICENSES
LICENSES: Replace the obsolete address of the FSF in the GFDL-1.2
2025-07-24 11:15:39 +02:00
mm
slab: reset slab->obj_ext when freeing and it is OBJEXTS_ALLOC_FAIL
2025-10-16 15:16:45 +02:00
net
Merge tag 'bpf-fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf
2025-10-18 08:00:43 -10:00
rust
rust: bitmap: fix formatting
2025-10-17 13:02:22 +02:00
samples
Merge tag 'char-misc-6.18-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/char-misc
2025-10-04 16:26:32 -07:00
scripts
Merge tag 'kbuild-fixes-6.18-1' of git://git.kernel.org/pub/scm/linux/kernel/git/kbuild/linux
2025-10-11 15:47:12 -07:00
security
Merge tag 'integrity-v6.18' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-integrity
2025-10-05 10:48:33 -07:00
sound
ALSA: hda/realtek: Fix mute led for HP Omen 17-cb0xxx
2025-10-17 16:37:21 +02:00
tools
Merge tag 'hid-for-linus-2025101701' of git://git.kernel.org/pub/scm/linux/kernel/git/hid/hid
2025-10-18 08:18:18 -10:00
usr
gen_init_cpio: Ignore fsync() returning EINVAL on pipes
2025-10-07 09:53:05 -07:00
virt
Merge tag 'kvm-x86-fixes-6.18-rc2' of https://github.com/kvm-x86/linux into HEAD
2025-10-18 10:25:43 +02:00
.clang-format
memblock: drop for_each_free_mem_pfn_range_in_zone_from()
2025-09-14 08:49:03 +03:00
.clippy.toml
rust: clean Rust 1.88.0's warning about clippy::disallowed_macros configuration
2025-05-07 00:11:47 +02:00
.cocciconfig
scripts: add Linux .cocciconfig for coccinelle
2016-07-22 12:13:39 +02:00
.editorconfig
.editorconfig: remove trim_trailing_whitespace option
2024-06-13 16:47:52 +02:00
.get_maintainer.ignore
MAINTAINERS: remove Alyssa Rosenzweig
2025-09-18 21:17:31 +02:00
.gitattributes
.gitattributes: set diff driver for Rust source code files
2023-05-31 17:48:25 +02:00
.gitignore
.gitignore: ignore compile_commands.json globally
2025-08-12 15:53:55 -07:00
.mailmap
Merge tag 'net-6.18-rc2' of git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2025-10-16 09:41:21 -07:00
.pylintrc
tools: docs: parse-headers.py: move it from sphinx dir
2025-08-29 15:54:42 -06:00
.rustfmt.toml
rust: add .rustfmt.toml
2022-09-28 09:02:20 +02:00
COPYING
COPYING: state that all contributions really are covered by this file
2020-02-10 13:32:20 -08:00
CREDITS
Merge tag 'usb-6.18-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb
2025-10-04 16:07:08 -07:00
Kbuild
sched: Make migrate_{en,dis}able() inline
2025-09-25 09:57:16 +02:00
Kconfig
io_uring: Rename KConfig to Kconfig
2025-02-19 14:53:27 -07:00
MAINTAINERS
Merge tag 'net-6.18-rc2' of git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2025-10-16 09:41:21 -07:00
Makefile
Linux 6.18-rc2
2025-10-19 15:19:16 -10:00
README
README: Fix spelling
2024-03-18 03:36:32 -06:00

README 

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the reStructuredText markup notation.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.
Description
No description provided
Readme 3.5 GiB
Languages
C 97%
Assembly 1%
Shell 0.6%
Rust 0.5%
Python 0.4%
Other 0.3%