Re: [PATCH v3 10/13] x86/retpoline/pvops: Convert assembler indirect jumps

From: Andrew Cooper
Date: Thu Jan 04 2018 - 10:49:16 EST

Next message: Chen-Yu Tsai: "Re: [PATCH v2 09/12] drm/sun4i: backend: Add a custom atomic_check for the frontend"
Previous message: Chen-Yu Tsai: "Re: [PATCH v2 08/12] drm/sun4i: backend: Wire in the frontend"
In reply to: Woodhouse, David: "Re: [PATCH v3 10/13] x86/retpoline/pvops: Convert assembler indirect jumps"
Next in thread: Juergen Gross: "Re: [PATCH v3 10/13] x86/retpoline/pvops: Convert assembler indirect jumps"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 04/01/18 15:02, Juergen Gross wrote:
> On 04/01/18 15:37, David Woodhouse wrote:
>> Convert pvops invocations to use non-speculative call sequences, when
>> CONFIG_RETPOLINE is enabled.
>>
>> There is scope for future optimisation here â once the pvops methods are
>> actually set, we could just turn the damn things into *direct* jumps.
>> But this is perfectly sufficient for now, without that added complexity.
> I don't see the need to modify the pvops calls.
>
> All indirect calls are replaced by either direct calls or other code
> long before any user code is active.
>
> For modules the replacements are in place before the module is being
> used.

When booting virtualised, sibling hyperthreads can arrange VM-to-VM SP2
attacks.

One mitigation though is to consider if there is any interesting data to
leak that early during boot.

~Andrew

Next message: Chen-Yu Tsai: "Re: [PATCH v2 09/12] drm/sun4i: backend: Add a custom atomic_check for the frontend"
Previous message: Chen-Yu Tsai: "Re: [PATCH v2 08/12] drm/sun4i: backend: Wire in the frontend"
In reply to: Woodhouse, David: "Re: [PATCH v3 10/13] x86/retpoline/pvops: Convert assembler indirect jumps"
Next in thread: Juergen Gross: "Re: [PATCH v3 10/13] x86/retpoline/pvops: Convert assembler indirect jumps"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]