[PATCH v3 hyperv-next 3/4] Drivers: hv: vmbus: Enforce 'VMBus version >=... | linux-hyperv

[PATCH v3 hyperv-next 0/4] Drivers: hv: vmbus: Restrict devices and configurations on 'isolated' guests · "Andrea Parri (Microsoft)" <parri.andrea@gmail.com> · 2021-02-01
[PATCH v3 hyperv-next 4/4] hv_netvsc: Restrict configurations on isolated guests · "Andrea Parri (Microsoft)" <parri.andrea@gmail.com> · 2021-02-01
RE: [PATCH v3 hyperv-next 4/4] hv_netvsc: Restrict configurations on isolated guests · Michael Kelley <hidden> · 2021-02-01
[PATCH v3 hyperv-next 3/4] Drivers: hv: vmbus: Enforce 'VMBus version >= 5.2' on isolated guests · "Andrea Parri (Microsoft)" <parri.andrea@gmail.com> · 2021-02-01
RE: [PATCH v3 hyperv-next 3/4] Drivers: hv: vmbus: Enforce 'VMBus version >= 5.2' on isolated guests · Michael Kelley <hidden> · 2021-02-01
[PATCH v3 hyperv-next 2/4] Drivers: hv: vmbus: Restrict vmbus_devices on isolated guests · "Andrea Parri (Microsoft)" <parri.andrea@gmail.com> · 2021-02-01
RE: [PATCH v3 hyperv-next 2/4] Drivers: hv: vmbus: Restrict vmbus_devices on isolated guests · Michael Kelley <hidden> · 2021-02-01
[PATCH v3 hyperv-next 1/4] x86/hyperv: Load/save the Isolation Configuration leaf · "Andrea Parri (Microsoft)" <parri.andrea@gmail.com> · 2021-02-01
RE: [PATCH v3 hyperv-next 1/4] x86/hyperv: Load/save the Isolation Configuration leaf · Michael Kelley <hidden> · 2021-02-01
Re: [PATCH v3 hyperv-next 0/4] Drivers: hv: vmbus: Restrict devices and configurations on 'isolated' guests · Wei Liu <wei.liu@kernel.org> · 2021-02-01

STALE1952d LANDED

Revisions (3)

2021-01-19 v1 [diff vs current]
2021-01-26 v2 [diff vs current]
2021-02-01 v3 current

[PATCH v3 hyperv-next 3/4] Drivers: hv: vmbus: Enforce 'VMBus version >= 5.2' on isolated guests

From: "Andrea Parri (Microsoft)" <parri.andrea@gmail.com>
Date: 2021-02-01 15:33:24
Also in: lkml
Subsystem: hyper-v/azure core and drivers, the rest · Maintainers: "K. Y. Srinivasan", Haiyang Zhang, Wei Liu, Dexuan Cui, Long Li, Linus Torvalds

Restrict the protocol version(s) that will be negotiated with the host
to be 5.2 or greater if the guest is running isolated.  This reduces the
footprint of the code that will be exercised by Confidential VMs and
hence the exposure to bugs and vulnerabilities.

Signed-off-by: Andrea Parri (Microsoft) <parri.andrea@gmail.com>
---
 drivers/hv/connection.c | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/drivers/hv/connection.c b/drivers/hv/connection.c
index 11170d9a2e1a5..c83612cddb995 100644
--- a/drivers/hv/connection.c
+++ b/drivers/hv/connection.c

@@ -244,6 +244,13 @@ int vmbus_connect(void)
 			break;
 	}
 
+	if (hv_is_isolation_supported() && version < VERSION_WIN10_V5_2) {
+		pr_err("Invalid VMBus version %d.%d (expected >= %d.%d) from the host supporting isolation\n",
+		       version >> 16, version & 0xFFFF, VERSION_WIN10_V5_2 >> 16, VERSION_WIN10_V5_2 & 0xFFFF);
+		ret = -EINVAL;
+		goto cleanup;
+	}
+
 	vmbus_proto_version = version;
 	pr_info("Vmbus version:%d.%d\n",
 		version >> 16, version & 0xFFFF);

-- 
2.25.1

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help