OSDN Git Service

(root) / tomoyo / tomoyo-test1.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9589a38) | patch
KVM: arm64: Protect the .hyp sections from the host
authorQuentin Perret <qperret@google.com>
Fri, 19 Mar 2021 10:01:46 +0000 (10:01 +0000)
committerMarc Zyngier <maz@kernel.org>
Fri, 19 Mar 2021 12:02:19 +0000 (12:02 +0000)
commit90134ac9cabb69972d0a509bf08e108a73442184
tree77d5e0f6a188232498265cc24eeea935c6442de2tree | snapshot
parent9589a38cdfeba0889590e6ef4627b439034d456ccommit | diff
KVM: arm64: Protect the .hyp sections from the host

When KVM runs in nVHE protected mode, use the host stage 2 to unmap the
hypervisor sections by marking them as owned by the hypervisor itself.
The long-term goal is to ensure the EL2 code can remain robust
regardless of the host's state, so this starts by making sure the host
cannot e.g. write to the .hyp sections directly.

Acked-by: Will Deacon <will@kernel.org>
Signed-off-by: Quentin Perret <qperret@google.com>
Signed-off-by: Marc Zyngier <maz@kernel.org>
Link: https://lore.kernel.org/r/20210319100146.1149909-39-qperret@google.com
arch/arm64/include/asm/kvm_asm.h diff | blob | history
arch/arm64/kvm/arm.c diff | blob | history
arch/arm64/kvm/hyp/include/nvhe/mem_protect.h diff | blob | history
arch/arm64/kvm/hyp/nvhe/hyp-main.c diff | blob | history
arch/arm64/kvm/hyp/nvhe/mem_protect.c diff | blob | history
This is a test repository.
About OSDN
Find Software
Develop Software
Help