x86/xen: remove hypercall page

The hypercall page is no longer needed. It can be removed, as from the Xen perspective it is optional. But, from Linux's perspective, it removes naked RET instructions that escape the speculative protections that Call Depth Tracking and/or Untrain Ret are trying to achieve. This is part of XSA-466 / CVE-2024-53241. Reported-by: Andrew Cooper <[email protected]> Signed-off-by: Juergen Gross <[email protected]> Reviewed-by: Andrew Cooper <[email protected]> Reviewed-by: Jan Beulich <[email protected]>
author: Juergen Gross <[email protected]> 2024-10-17 15:27:31 +0200
committer: Juergen Gross <[email protected]> 2024-12-17 08:23:42 +0100
commit: 7fa0da5373685e7ed249af3fa317ab1e1ba8b0a6 (patch)
tree: fd857217441f169e495b8f32663340f0341ff134 /arch/x86/xen/enlighten_pvh.c
parent: b1c2cb86f4a7861480ad54bb9a58df3cbebf8e92 (diff)
1 files changed, 0 insertions, 7 deletions
diff --git a/arch/x86/xen/enlighten_pvh.c b/arch/x86/xen/enlighten_pvh.c
index bf68c329fc01..0e3d930bcb89 100644
--- a/arch/x86/xen/enlighten_pvh.c
+++ b/arch/x86/xen/enlighten_pvh.c
@@ -129,17 +129,10 @@ static void __init pvh_arch_setup(void)
 
 void __init xen_pvh_init(struct boot_params *boot_params)
 {
-	u32 msr;
-	u64 pfn;
-
 	xen_pvh = 1;
 	xen_domain_type = XEN_HVM_DOMAIN;
 	xen_start_flags = pvh_start_info.flags;
 
-	msr = cpuid_ebx(xen_cpuid_base() + 2);
-	pfn = __pa(hypercall_page);
-	wrmsr_safe(msr, (u32)pfn, (u32)(pfn >> 32));
-
 	x86_init.oem.arch_setup = pvh_arch_setup;
 	x86_init.oem.banner = xen_banner;
author	Juergen Gross <[email protected]>	2024-10-17 15:27:31 +0200
committer	Juergen Gross <[email protected]>	2024-12-17 08:23:42 +0100
commit	7fa0da5373685e7ed249af3fa317ab1e1ba8b0a6 (patch)
tree	fd857217441f169e495b8f32663340f0341ff134 /arch/x86/xen/enlighten_pvh.c
parent	b1c2cb86f4a7861480ad54bb9a58df3cbebf8e92 (diff)