Re: [PATCH 00/16] x86/microcode/AMD: Improve container verification
From: Pavel Machek
Date: Sun Nov 25 2018 - 04:50:36 EST
On Wed 2018-11-07 18:02:02, Borislav Petkov wrote:
> From: Borislav Petkov <bp@xxxxxxx>
>
> Hi all,
>
> this is work which got started by Maciej a while ago. I have finally had
> the time to redo all the ideas properly, split it in self-contained,
> logical chunks and test it.
>
> Reveiew and comments are appreciated.
Unfortunately, this is not too useful cover letter. It does not tell
us what the goals if the series are, for example :-(.
Pavel
> Thx.
>
> Borislav Petkov (11):
> x86/microcode/AMD: Move verify_patch_size() up in the file
> x86/microcode/AMD: Clean up per-family patch size checks
> x86/microcode/AMD: Cleanup verify_patch_size() more
> x86/microcode/AMD: Concentrate patch verification
> x86/microcode/AMD: Simplify patch family detection
> x86/microcode/AMD: Move patch family check to verify_patch()
> x86/microcode/AMD: Move chipset-specific check into verify_patch()
> x86/microcode/AMD: Change verify_patch()'s return value
> x86/microcode/AMD: Convert early parser to the new verification routines
> x86/microcode/AMD: Fix container size's type
> x86/microcode/AMD: Update copyright
>
> Maciej S. Szmigiero (5):
> x86/microcode/AMD: Subtract SECTION_HDR_SIZE from file leftover length
> x86/microcode/AMD: Add microcode container verification
> x86/microcode/AMD: Check microcode container data in the late loader
> x86/microcode/AMD: Convert CPU equivalence table variable into a struct
> x86/microcode/AMD: Check the equivalence table size when scanning it
>
> arch/x86/kernel/cpu/microcode/amd.c | 469 ++++++++++++++++++----------
> 1 file changed, 307 insertions(+), 162 deletions(-)
>
--
(english) http://www.livejournal.com/~pavelmachek
(cesky, pictures) http://atrey.karlin.mff.cuni.cz/~pavel/picture/horses/blog.html
Attachment:
signature.asc
Description: Digital signature