www.infradead.org Git - users/jedix/linux-maple.git/commit

author	Paolo Bonzini <pbonzini@redhat.com>
	Sun, 5 Aug 2018 14:07:47 +0000 (16:07 +0200)
committer	Konrad Rzeszutek Wilk <konrad.wilk@oracle.com>
	Sat, 11 Aug 2018 00:44:52 +0000 (20:44 -0400)
commit	9eea496bc3aae090718ec32b4ab296ba4b75fe07
tree	030829afc90d610f7f277b4974bd3f7608243933	tree
parent	9f88dd47938b1922e0150e68e715ee289c806945	commit \| diff

KVM: VMX: Tell the nested hypervisor to skip L1D flush on vmentry

When nested virtualization is in use, VMENTER operations from the nested
hypervisor into the nested guest will always be processed by the bare metal
hypervisor, and KVM's "conditional cache flushes" mode in particular does a
flush on nested vmentry. Therefore, include the "skip L1D flush on
vmentry" bit in KVM's suggested ARCH_CAPABILITIES setting.

Add the relevant Documentation.

Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
Signed-off-by: Thomas Gleixner <tglx@linutronix.de>
Orabug: 28220674
CVE: CVE-2018-3646

(cherry picked from commit 5b76a3cff011df2dcb6186c965a2e4d809a05ad4)

Signed-off-by: Mihai Carabas <mihai.carabas@oracle.com>
Reviewed-by: Darren Kenny <darren.kenny@oracle.com>
Reviewed-by: Boris Ostrovsky <boris.ostrovsky@oracle.com>
Conflicts:
arch/x86/kvm/vmx.c
Contextual: we did not have "if(boot_cpu_has(X86_FEATURE_ARCH_CAPABILITIES))"

Documentation/admin-guide/l1tf.rst		diff \| blob \| history
arch/x86/include/asm/kvm_host.h		diff \| blob \| history
arch/x86/kvm/vmx.c		diff \| blob \| history
arch/x86/kvm/x86.c		diff \| blob \| history