> -----Original Message-----
> From: Andrea Parri (Microsoft) <parri.and...@gmail.com>
> Sent: Tuesday, January 26, 2021 6:57 AM
> To: linux-kernel@vger.kernel.org
> Cc: KY Srinivasan <k...@microsoft.com>; Haiyang Zhang
> <haiya...@microsoft.com>; Stephen Hemminger
> <sthem...@microsoft.com>; Wei Liu <wei....@kernel.org>; Michael Kelley
> <mikel...@microsoft.com>; linux-hyp...@vger.kernel.org; Tianyu Lan
> <tianyu....@microsoft.com>; Saruhan Karademir
> <skar...@microsoft.com>; Juan Vazquez <juv...@microsoft.com>; Andrea
> Parri (Microsoft) <parri.and...@gmail.com>; Jakub Kicinski
> <k...@kernel.org>; David S. Miller <da...@davemloft.net>;
> net...@vger.kernel.org
> Subject: [PATCH v2 4/4] hv_netvsc: Restrict configurations on isolated guests
>
> Restrict the NVSP protocol version(s) that will be negotiated with the host to
> be NVSP_PROTOCOL_VERSION_61 or greater if the guest is running isolated.
> Moreover, do not advertise the SR-IOV capability and ignore
> NVSP_MSG_4_TYPE_SEND_VF_ASSOCIATION messages in isolated guests,
> which are not supposed to support SR-IOV. This reduces the footprint of the
> code that will be exercised by Confidential VMs and hence the exposure to
> bugs and vulnerabilities.
>
> Signed-off-by: Andrea Parri (Microsoft) <parri.and...@gmail.com>
> Acked-by: Jakub Kicinski <k...@kernel.org>
> Cc: "David S. Miller" <da...@davemloft.net>
> Cc: Jakub Kicinski <k...@kernel.org>
> Cc: net...@vger.kernel.org
Reviewed-by: Haiyang Zhang <haiya...@microsoft.com>
Thanks.
