Re: Avoid speculative indirect calls in kernel

From: Andi Kleen
Date: Wed Jan 03 2018 - 19:40:40 EST

Next message: Tim Mouraveiko: "Bricked x86 CPU with software?"
Previous message: Linus Torvalds: "Re: [RFC PATCH] asm/generic: introduce if_nospec and nospec_barrier"
In reply to: Alan Cox: "Re: Avoid speculative indirect calls in kernel"
Next in thread: Woodhouse, David: "Re: Avoid speculative indirect calls in kernel"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> So you say, that we finally need a perl interpreter in the kernel to do
> alternative patching?

I don't think perl or objtool makes sense. That would be just incredibly
fragile because compilers can reorder and mix code.

It could be done with a gcc change I suppose. That should be reliable.

But that would need to be developed first. We don't have it right now.

As the first step a compile time approach should be sufficient.
We can add a CONFIG option so people can chose at compile time.

Then later we can investigate run time patching.

-Andi

Next message: Tim Mouraveiko: "Bricked x86 CPU with software?"
Previous message: Linus Torvalds: "Re: [RFC PATCH] asm/generic: introduce if_nospec and nospec_barrier"
In reply to: Alan Cox: "Re: Avoid speculative indirect calls in kernel"
Next in thread: Woodhouse, David: "Re: Avoid speculative indirect calls in kernel"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]