KVM: SEV-ES: Prevent MSR access post VMSA encryption - blaster4385/linux-IllusionX - Linux kernel with personal config changes for arch linux

diff options

author	Nikunj A Dadhania <[email protected]>	2024-05-31 04:46:42 +0000
committer	Paolo Bonzini <[email protected]>	2024-06-03 13:06:48 -0400
commit	27bd5fdc24c0d5d1306f968ef24105c4577242b0 (patch)
tree	db4b43259cfb6ee57fbdaf6feaa0151437b7f4c8 /tools/perf/util/trace-event-scripting.c
parent	b4bd556467477420ee3a91fbcba73c579669edc6 (diff)

KVM: SEV-ES: Prevent MSR access post VMSA encryption

KVM currently allows userspace to read/write MSRs even after the VMSA is encrypted. This can cause unintentional issues if MSR access has side- effects. For ex, while migrating a guest, userspace could attempt to migrate MSR_IA32_DEBUGCTLMSR and end up unintentionally disabling LBRV on the target. Fix this by preventing access to those MSRs which are context switched via the VMSA, once the VMSA is encrypted. Suggested-by: Sean Christopherson <[email protected]> Signed-off-by: Nikunj A Dadhania <[email protected]> Signed-off-by: Ravi Bangoria <[email protected]> Message-ID: <[email protected]> Signed-off-by: Paolo Bonzini <[email protected]>

Diffstat (limited to 'tools/perf/util/trace-event-scripting.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: