Re: [RFC 04/10] x86/mm: Only flush indirect branches when switching into non dumpable process

From: Woodhouse, David
Date: Sun Jan 21 2018 - 17:23:40 EST

Next message: Linus Torvalds: "Re: [RFC 09/10] x86/enter: Create macros to restrict/unrestrict Indirect Branch Speculation"
Previous message: Arnd Bergmann: "[PATCH] ASoC: intel: clean up CONFIG_SND_SST_IPC handling"
In reply to: Arjan van de Ven: "Re: [RFC 04/10] x86/mm: Only flush indirect branches when switching into non dumpable process"
Next in thread: KarimAllah Ahmed: "[RFC 03/10] x86/speculation: Use Indirect Branch Prediction Barrier in context switch"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, 2018-01-21 at 17:21 +0100, Ingo Molnar wrote:
>
> Because putting something like this into an ELF flag raises the question of who isÂ
> allowed to set the flag - does a user-compiled binary count? If yes then it wouldÂ
> be a trivial thing for local exploits to set the flag and turn off the barrier.

You can only allow *yourself* to be exploited that way. The flag says,
"I'm OK, you don't need to protect me".

Attachment: smime.p7s
Description: S/MIME cryptographic signature

Next message: Linus Torvalds: "Re: [RFC 09/10] x86/enter: Create macros to restrict/unrestrict Indirect Branch Speculation"
Previous message: Arnd Bergmann: "[PATCH] ASoC: intel: clean up CONFIG_SND_SST_IPC handling"
In reply to: Arjan van de Ven: "Re: [RFC 04/10] x86/mm: Only flush indirect branches when switching into non dumpable process"
Next in thread: KarimAllah Ahmed: "[RFC 03/10] x86/speculation: Use Indirect Branch Prediction Barrier in context switch"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]