acrn-hypervisor

Go to file

Yonghua Huang 3164f3976a hv: Mitigation for CPU MDS vulnerabilities. Microarchitectural Data Sampling (MDS) is a hardware vulnerability which allows unprivileged speculative access to data which is available in various CPU internal buffers. 1. Mitigation on ACRN: 1) Microcode update is required. 2) Clear CPU internal buffers (store buffer, load buffer and load port) if current CPU is affected by MDS, when VM entry to avoid any information leakage to guest thru above buffers. 3) Mitigation is not needed if ARCH_CAP_MDS_NO bit (bit5) is set in IA32_ARCH_CAPABILITIES MSR (10AH), in this case, current processor is no affected by MDS vulnerability, in other cases mitigation for MDS is required. 2. Methods to clear CPU buffers (microcode update is required): 1) L1D cache flush 2) VERW instruction Either of above operations will trigger clearing all CPU internal buffers if this CPU is affected by MDS. Above mechnism is enumerated by: CPUID.(EAX=7H, ECX=0):EDX[MD_CLEAR=10]. 3. Mitigation details on ACRN: if (processor is affected by MDS) if (processor is not affected by L1TF OR L1D flush is not launched on VM Entry) execute VERW instruction when VM entry. endif endif 4. Referrence: Deep Dive: Intel Analysis of Microarchitectural Data Sampling https://software.intel.com/security-software-guidance/insights/ deep-dive-intel-analysis-microarchitectural-data-sampling Deep Dive: CPUID Enumeration and Architectural MSRs https://software.intel.com/security-software-guidance/insights/ deep-dive-cpuid-enumeration-and-architectural-msrs Tracked-On: #3317 Signed-off-by: Yonghua Huang <yonghua.huang@intel.com> Reviewed-by: Anthony Xu <anthony.xu@intel.com> Reviewed-by: Jason CJ Chen <jason.cj.chen@intel.com>		2019-07-05 15:17:27 +08:00
devicemodel	DM: virtio-i2c: add dsdt info	2019-07-05 10:20:21 +08:00
doc	doc:add more description about application constraints	2019-07-01 12:15:13 -07:00
efi-stub	Clean up MISRA C violation	2019-05-09 16:33:44 +08:00
hypervisor	hv: Mitigation for CPU MDS vulnerabilities.	2019-07-05 15:17:27 +08:00
scripts	kconfig: update .config on missed or conflicting symbol values	2019-01-23 13:02:39 +08:00
tools	tools: add check to verify that running with root privileges	2019-07-02 08:47:03 +08:00
.checkpatch.conf	checkpatch: fix the line limit back to 120	2018-10-29 14:10:22 +08:00
.gitignore	devicemodel: Makefile: clean up/refactor some code	2018-10-30 14:25:51 +08:00
CODEOWNERS	devops: update CODEOWNERS for tools/acrn-crashlog	2018-05-23 17:10:51 +08:00
LICENSE	Create LICENSE (#168 )	2018-05-15 18:03:33 +08:00
Makefile	acrn-dm: enable debug option for acrn-dm	2019-04-16 15:24:25 +08:00
README.rst	doc: add security advisory section in ACRN introduction website	2019-04-18 05:27:07 -07:00
VERSION	version: 1.2-unstable	2019-06-28 11:09:28 +08:00

README.rst

Project ACRN Embedded Hypervisor
################################

The open source project ACRN defines a device hypervisor reference stack
and an architecture for running multiple software subsystems, managed
securely, on a consolidated system by means of a virtual machine
manager. It also defines a reference framework implementation for
virtual device emulation, called the "ACRN Device Model".

The ACRN Hypervisor is a Type 1 reference hypervisor stack, running
directly on the bare-metal hardware, and is suitable for a variety of
IoT and embedded device solutions. The ACRN hypervisor addresses the
gap that currently exists between datacenter hypervisors, and hard
partitioning hypervisors. The ACRN hypervisor architecture partitions
the system into different functional domains, with carefully selected
guest OS sharing optimizations for IoT and embedded devices.

.. start_include_here

Community Support
*****************

The Project ACRN Developer Community includes developers from member
organizations and the general community all joining in the development of
software within the project. Members contribute and discuss ideas,
submit bugs and bug fixes. They also help those in need
through the community's forums such as mailing lists and IRC channels. Anyone
can join the developer community and the community is always willing to help
its members and the User Community to get the most out of Project ACRN.

Welcome to the project ARCN community!

We're now holding weekly Technical Community Meetings and encourage you
to call in and learn more about the project. Meeting information is on
the `TCM Meeting page`_ in our `ACRN wiki <https://wiki.projectacrn.org/>`_.

.. _TCM Meeting page:
https://github.com/projectacrn/acrn-hypervisor/wiki/ACRN-Committee-and-Working-Group-Meetings#technical-community-meetings

Resources
*********

Here's a quick summary of resources to find your way around the Project
ACRN support systems:

* **Project ACRN Website**: The https://projectacrn.org website is the
central source of information about the project. On this site, you'll
find background and current information about the project as well as
relevant links to project material. For a quick start, refer to the
`Introduction`_ and `Getting Started Guide`_.

* **Source Code in GitHub**: Project ACRN source code is maintained on a
public GitHub repository at https://github.com/projectacrn/acrn-hypervisor.
You'll find information about getting access to the repository and how to
contribute to the project in this `Contribution Guide`_ document.

* **Documentation**: Project technical documentation is developed
along with the project's code, and can be found at
https://projectacrn.github.io. Additional documentation is maintained in
the `Project ACRN GitHub wiki`_.

* **Issue Reporting and Tracking**: Requirements and Issue tracking is done in
the Github issues system: https://github.com/projectacrn/acrn-hypervisor/issues.
You can browse through the reported issues and submit issues of your own.

* **Reporting a Potential Security Vulnerability**: If you have discovered potential
security vulnerability in ACRN, please send an e-mail to secure@intel.com. For issues
related to Intel Products, please visit https://security-center.intel.com.

It is important to include the following details:

- The projects and versions affected
- Detailed description of the vulnerability
- Information on known exploits

Vulnerability information is extremely sensitive. Please encrypt all security vulnerability
reports using our `PGP key`_.

A member of the Intel Product Security Team will review your e-mail and contact you to
to collaborate on resolving the issue. For more information on how Intel works to resolve
security issues, see: `vulnerability handling guidelines`_.

* **Mailing List**: The `Project ACRN Development mailing list`_ is perhaps the most convenient
way to track developer discussions and to ask your own support questions to
the project ACRN community. There are also specific `ACRN mailing list
subgroups`_ for builds, users, and Technical
Steering Committee notes, for example.
You can read through the message archives to follow
past posts and discussions, a good thing to do to discover more about the
project.

.. _Introduction: https://projectacrn.github.io/latest/introduction/
.. _Getting Started Guide: https://projectacrn.github.io/latest/getting_started/
.. _Contribution Guide: https://projectacrn.github.io/latest/contribute.html
.. _Project ACRN GitHub wiki: https://github.com/projectacrn/acrn-hypervisor/wiki
.. _PGP Key: https://www.intel.com/content/www/us/en/security-center/pgp-public-key.html
.. _vulnerability handling guidelines:
https://www.intel.com/content/www/us/en/security-center/vulnerability-handling-guidelines.html
.. _Project ACRN Development mailing list: https://lists.projectacrn.org/g/acrn-dev
.. _ACRN mailing list subgroups: https://lists.projectacrn.org/g/main/subgroups