Re: [RFC 09/10] x86/enter: Create macros to restrict/unrestrict Indirect Branch Speculation

From: Borislav Petkov
Date: Sat Jan 27 2018 - 03:21:49 EST

Next message: Thomas Gleixner: "Re: [lkp-robot] [x86/kasan] def0e7b54d: Kernel_panic-not_syncing:memblock_virt_alloc_try_nid:Failed_to_allocate#by tes_align=#nid=#from=#max_addr="
Previous message: Jia-Ju Bai: "[PATCH v2] block: paride: on26: Replace mdelay with msleep in on26_test_port"
In reply to: David Woodhouse: "Re: [RFC 09/10] x86/enter: Create macros to restrict/unrestrict Indirect Branch Speculation"
Next in thread: David Woodhouse: "Re: [RFC 09/10] x86/enter: Create macros to restrict/unrestrict Indirect Branch Speculation"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Jan 26, 2018 at 09:19:09AM -0800, Linus Torvalds wrote:
> But did we do that "disable stuffing with SMEP"? I'm not seeing it. In
> my tree, it's only conditional on X86_FEATURE_RETPOLINE.

Or rather, enable stuffing on !SMEP:

+ if ((!boot_cpu_has(X86_FEATURE_PTI) &&
+ !boot_cpu_has(X86_FEATURE_SMEP)) || is_skylake_era()) {
+ setup_force_cpu_cap(X86_FEATURE_RSB_CTXSW);
+ pr_info("Filling RSB on context switch\n");
+ }

Should be

c995efd5a740 ("x86/retpoline: Fill RSB on context switch for affected CPUs")

in your tree.

--
Regards/Gruss,
Boris.

SUSE Linux GmbH, GF: Felix ImendÃrffer, Jane Smithard, Graham Norton, HRB 21284 (AG NÃrnberg)
--

Next message: Thomas Gleixner: "Re: [lkp-robot] [x86/kasan] def0e7b54d: Kernel_panic-not_syncing:memblock_virt_alloc_try_nid:Failed_to_allocate#by tes_align=#nid=#from=#max_addr="
Previous message: Jia-Ju Bai: "[PATCH v2] block: paride: on26: Replace mdelay with msleep in on26_test_port"
In reply to: David Woodhouse: "Re: [RFC 09/10] x86/enter: Create macros to restrict/unrestrict Indirect Branch Speculation"
Next in thread: David Woodhouse: "Re: [RFC 09/10] x86/enter: Create macros to restrict/unrestrict Indirect Branch Speculation"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]