From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail.linutronix.de (146.0.238.70:993) by crypto-ml.lab.linutronix.de with IMAP4-SSL for ; 02 Jul 2018 16:22:22 -0000 Received: from userp2130.oracle.com ([156.151.31.86]) by Galois.linutronix.de with esmtps (TLS1.2:RSA_AES_256_CBC_SHA256:256) (Exim 4.80) (envelope-from ) id 1fa1am-0006ka-8s for speck@linutronix.de; Mon, 02 Jul 2018 18:22:20 +0200 Received: from pps.filterd (userp2130.oracle.com [127.0.0.1]) by userp2130.oracle.com (8.16.0.22/8.16.0.22) with SMTP id w62GDihF090913 for ; Mon, 2 Jul 2018 16:22:13 GMT Received: from aserv0022.oracle.com (aserv0022.oracle.com [141.146.126.234]) by userp2130.oracle.com with ESMTP id 2jx19sn88x-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK) for ; Mon, 02 Jul 2018 16:22:13 +0000 Received: from userv0121.oracle.com (userv0121.oracle.com [156.151.31.72]) by aserv0022.oracle.com (8.14.4/8.14.4) with ESMTP id w62GMCDY024128 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK) for ; Mon, 2 Jul 2018 16:22:12 GMT Received: from abhmp0007.oracle.com (abhmp0007.oracle.com [141.146.116.13]) by userv0121.oracle.com (8.14.4/8.13.8) with ESMTP id w62GMC99012751 for ; Mon, 2 Jul 2018 16:22:12 GMT Date: Mon, 2 Jul 2018 12:22:11 -0400 From: Konrad Rzeszutek Wilk Subject: [MODERATED] Re: [patch V5 01/10] KVM magic # 1 Message-ID: <20180702162211.GC17137@char.US.ORACLE.com> References: <20180702154426.910579106@linutronix.de> <20180702160528.567252129@linutronix.de> MIME-Version: 1.0 In-Reply-To: <20180702160528.567252129@linutronix.de> Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit To: speck@linutronix.de List-ID: On Mon, Jul 02, 2018 at 05:44:27PM +0200, speck for Thomas Gleixner wrote: > From: Konrad Rzeszutek Wilk konrad.wilk@oracle.com > > commit 75e236a35266617b8c80ec3f5f98f6c81e326c5b upstream > > If the L1TF CPU bug is present we allow the KVM module to be loaded > as the major of users that use Linux and KVM have trusted guests > and do not want a broken setup. > > Cloud vendors are the ones that are uncomfortable with CVE 2018-3615 s/3615/3620/ .. while the patch has the right number. (3615 is for the SGX code change).