Industry News

Linux 6.3-rc3 enhances security mechanisms to protect AMD processors from SEV attacks

Update time : 2023-03-21 12:01:17

On March 20th, before the official arrival of Linux 6.3-rc3, this version released a change on Sunday, adding a restriction mechanism to protect virtual machine managers from potential malicious Secure Encrypted Virtualization (SEV) clients, aimed at protecting AMD security processors from overloading due to malicious VM requests.

Google engineer Dionna Glaze has been committed to providing "throttling awareness" support for AMD SEV clients, and this Linux kernel code has currently been approved by AMD Linux engineers. Dionna Glaze explained:
"A potentially malicious SEV client can continuously attack the hypervisor using this driver to send requests, thereby affecting or significantly impeding other clients from making requests to the security processor. After all, this is a shared platform resource. Therefore, we allow and encourage hosts to restrict such requests from clients."
Due to the security implications of this change, these AMD SEV patches appeared as part of x86/Emergency Requests prior to the release of Linux 6.3-rc3 because the code was ready and exceeded the usual kernel merge window.
Of course, these AMD SEV patches are also marked as candidates for backward migration to the stable kernel family to further help AMD security processors defend against malicious VM users who are overloaded with such requests.
It is worth mentioning that some time ago, it was also discovered that after enabling fTPM (Firmware Based Trusted Platform Module) on the Ruilong processor, it can cause intermittent stuck issues in Win10, Win11, and various Linux distributions. Currently, Linux kernel maintenance members have backported the fixes in Linux 6.3-rc2 to Linux 6.1.19 and Linux 6.2.6 to fix this issue.
However, this patch only disables hardware random number generators on fTPM versions that are known to have this error, and has not completely fixed this stuck issue. Therefore, IT Home recommends that you upgrade to the latest version as soon as possible.

Previous : TSMC plans to raise foundry prices again in the second half of this year, and some analysts say it should be a misinformation

Next : Infineon launches AIROC™ CYW43022 Wi-Fi 5 and Bluetooth® 2-in-1 with 65% lower power consumption and significantly longer battery life in IoT applicat

How many chips does a car need?

Sep .19.2024

Automotive chips can be divided into four types according to their functions: control (MCU and AI chips), power, sensors, and others (such as memory). The market is monopolized by international giants. The automotive chips people often talk about refer to

Position and Function of Main Automotive Sensors

Sep .18.2024

The function of the air flow sensor is to convert the amount of air inhaled into the engine into an electrical signal and provide it to the electronic control unit (ECU). It is the main basis for determining the basic fuel injection volume. Vane type: The

Chip: The increasingly intelligent electronic brain

Sep .14.2024

In this era of rapid technological development, we often marvel at how mobile phones can run various application software smoothly, how online classes can be free of lag and achieve zero latency, and how the functions of electronic devices are becoming mo

LDA100 Optocoupler: Outstanding Performance, Wide Applications

Sep .13.2024

In terms of characteristics, LDA100 is outstanding. It offers AC and DC input versions for optional selection, enabling it to work stably in different power supply environments. The small 6-pin DIP package not only saves space but also facilitates install

About Us

About Us What we do Quality People

Products

CHIP/IC Active devices Passive device Components OTHER

China electronic components supplier----Wah Luen Shing Electronic.----www.wlschip.com

Leave a message