d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
9dae4c97a0
freebsd-dev/sys/amd64/vmm/intel
History
Konstantin Belousov c30578feeb Provide part of the mitigation for L1TF-VMM. 
On the guest entry in bhyve, flush L1 data cache, using either L1D
flush command MSR if available, or by reading enough uninteresting
data to fill whole cache.

Flush is automatically enabled on CPUs which do not report RDCL_NO,
and can be disabled with the hw.vmm.l1d_flush tunable/kenv.

Security:	CVE-2018-3646
Reviewed by:	emaste. jhb, Tony Luck <tony.luck@intel.com>
Sponsored by:	The FreeBSD Foundation
2018-08-14 17:29:41 +00:00
..
ept.c sys/amd64: further adoption of SPDX licensing ID tags. 2017-11-27 15:03:07 +00:00
ept.h sys/amd64: further adoption of SPDX licensing ID tags. 2017-11-27 15:03:07 +00:00
vmcs.c Provide further mitigation against CVE-2017-5715 by flushing the 2018-02-12 14:45:27 +00:00
vmcs.h sys/amd64: further adoption of SPDX licensing ID tags. 2017-11-27 15:03:07 +00:00
vmx_controls.h sys/amd64: further adoption of SPDX licensing ID tags. 2017-11-27 15:03:07 +00:00
vmx_cpufunc.h sys/amd64: further adoption of SPDX licensing ID tags. 2017-11-27 15:03:07 +00:00
vmx_genassym.c Provide part of the mitigation for L1TF-VMM. 2018-08-14 17:29:41 +00:00
vmx_msr.c sys/amd64: further adoption of SPDX licensing ID tags. 2017-11-27 15:03:07 +00:00
vmx_msr.h sys/amd64: further adoption of SPDX licensing ID tags. 2017-11-27 15:03:07 +00:00
vmx_support.S Provide part of the mitigation for L1TF-VMM. 2018-08-14 17:29:41 +00:00
vmx.c Provide part of the mitigation for L1TF-VMM. 2018-08-14 17:29:41 +00:00
vmx.h Provide further mitigation against CVE-2017-5715 by flushing the 2018-02-12 14:45:27 +00:00
vtd.c sys/amd64: further adoption of SPDX licensing ID tags. 2017-11-27 15:03:07 +00:00