On Mon, Nov 15, 2021 at 07:15:07PM +0000, Sean Christopherson wrote: > It creates a new attack surface, e.g. if the guest mishandles the #VC and does > PVALIDATE on memory that it previously accepted, then userspace can attack the > guest by accessing guest private memory to coerce the guest into consuming corrupted > data. If a guest can be tricked into a double PVALIDATE or otherwise misbehaves on a #VC exception, then it is a guest bug and needs to be fixed there. It is a core requirement to the #VC handler that it can not be tricked that way. Regards, -- Jörg Rödel jroedel@xxxxxxx SUSE Software Solutions Germany GmbH Maxfeldstr. 5 90409 Nürnberg Germany (HRB 36809, AG Nürnberg) Geschäftsführer: Ivo Totev
