Description of problem: #ANBZ 6132 is the fix on CVE-2023-4155, the pr for #ANBZ 6132 contains only one upstream commit "KVM: SEV: only access GHCB fields once". Actually, the fix code on CVE-2023-4155 consists of 3 commits: 1."KVM: SEV: snapshot the GHCB before accessing it" 2."KVM: SEV: only access GHCB fields once" 3."KVM: SEV: remove ghcb variable declarations" The commit "KVM: SEV: only access GHCB fields once" depends on "KVM: SEV: snapshot the GHCB before accessing it". The CSV2 guest will boot fail if lack the commit "KVM: SEV: snapshot the GHCB before accessing it". Version-Release number of selected component (if applicable): How reproducible: Steps to Reproduce: 1. 2. 3. Actual results: Expected results: Additional info:
The PR Link: https://gitee.com/anolis/cloud-kernel/pulls/2516