KVM: arm64: Disable privileged hypercalls after pKVM finalisation - blaster4385/linux-IllusionX - Linux kernel with personal config changes for arch linux

diff options

author	Will Deacon <[email protected]>	2021-10-08 14:58:39 +0100
committer	Marc Zyngier <[email protected]>	2021-10-11 09:07:29 +0100
commit	057bed206f70d624c2eacb43ec56551950a26832 (patch)
tree	9235e4f01dd66c8959d657d5c366d9f866bb5440 /tools/perf/util/trace-event-scripting.c
parent	07036cffe17ec07e8fb630d86f8ea21832d9e57d (diff)

KVM: arm64: Disable privileged hypercalls after pKVM finalisation

After pKVM has been 'finalised' using the __pkvm_prot_finalize hypercall, the calling CPU will have a Stage-2 translation enabled to prevent access to memory pages owned by EL2. Although this forms a significant part of the process to deprivilege the host kernel, we also need to ensure that the hypercall interface is reduced so that the EL2 code cannot, for example, be re-initialised using a new set of vectors. Re-order the hypercalls so that only a suffix remains available after finalisation of pKVM. Cc: Marc Zyngier <[email protected]> Cc: Quentin Perret <[email protected]> Signed-off-by: Will Deacon <[email protected]> Signed-off-by: Marc Zyngier <[email protected]> Link: https://lore.kernel.org/r/[email protected]

Diffstat (limited to 'tools/perf/util/trace-event-scripting.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: