KVM: arm64: Defer EL2 stage-1 mapping on share - kernel

diff options

author	Quentin Perret <[email protected]>	2025-04-16 15:26:46 +0000
committer	Marc Zyngier <[email protected]>	2025-04-28 08:23:46 +0000
commit	48d848882395a6a42ff1bb685082c79791d4e753 (patch)
tree	f2046a22327aead24e47ba3ff468dc0a4b23ecf7 /rust/helpers/task.c
parent	KVM: arm64: Move hyp state to hyp_vmemmap (diff)
download	kernel-48d848882395a6a42ff1bb685082c79791d4e753.tar.gz kernel-48d848882395a6a42ff1bb685082c79791d4e753.zip

KVM: arm64: Defer EL2 stage-1 mapping on share

We currently blindly map into EL2 stage-1 *any* page passed to the __pkvm_host_share_hyp() HVC. This is less than ideal from a security perspective as it makes exploitation of potential hypervisor gadgets easier than it should be. But interestingly, pKVM should never need to access SHARED_BORROWED pages that it hasn't previously pinned, so there is no need to map the page before that. Reviewed-by: Marc Zyngier <[email protected]> Signed-off-by: Quentin Perret <[email protected]> Link: https://lore.kernel.org/r/[email protected] Signed-off-by: Marc Zyngier <[email protected]>

Diffstat (limited to 'rust/helpers/task.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: