Re: [tip:x86/pti] x86/speculation: Use IBRS if available before calling into firmware

From: Peter Zijlstra
Date: Mon Feb 12 2018 - 06:51:01 EST

Next message: Peter Zijlstra: "Re: [RFC PATCH 4/7] kconfig: support new special property shell="
Previous message: Mark Brown: "Re: [PATCH v3] ASoC: use DEFINE_SHOW_ATTRIBUTE() to decrease code duplication"
In reply to: Ingo Molnar: "Re: [tip:x86/pti] x86/speculation: Use IBRS if available before calling into firmware"
Next in thread: David Woodhouse: "Re: [tip:x86/pti] x86/speculation: Use IBRS if available before calling into firmware"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Feb 12, 2018 at 11:22:11AM +0100, Ingo Molnar wrote:
> > +static inline void firmware_restrict_branch_speculation_start(void)
> > +{
> > + alternative_msr_write(MSR_IA32_SPEC_CTRL, SPEC_CTRL_IBRS,
> > + X86_FEATURE_USE_IBRS_FW);
> > +}
> > +
> > +static inline void firmware_restrict_branch_speculation_end(void)
> > +{
> > + alternative_msr_write(MSR_IA32_SPEC_CTRL, 0,
> > + X86_FEATURE_USE_IBRS_FW);
>
> BTW., there's a detail that only occurred to me today, this enabling/disabling
> sequence is not NMI safe, and it might be called from NMI context:

Wait, we're doing firmware from NMI? That sounds like a _REALLY_ bad
idea.

Next message: Peter Zijlstra: "Re: [RFC PATCH 4/7] kconfig: support new special property shell="
Previous message: Mark Brown: "Re: [PATCH v3] ASoC: use DEFINE_SHOW_ATTRIBUTE() to decrease code duplication"
In reply to: Ingo Molnar: "Re: [tip:x86/pti] x86/speculation: Use IBRS if available before calling into firmware"
Next in thread: David Woodhouse: "Re: [tip:x86/pti] x86/speculation: Use IBRS if available before calling into firmware"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]