Re: [PATCH 1/4] x86/speculation: Use IBRS if available before calling into firmware
From: David Woodhouse
Date: Wed Feb 14 2018 - 11:11:39 EST
On Wed, 2018-02-14 at 10:07 -0600, Tom Lendacky wrote:
> Shouldn't these writes to the MSR be just for the IBRS bit? The spec
> also defines the STIBP bit for this MSR, and if that bit had been set by
> BIOS for example, these writes will clear it. And who knows what future
> bits may be defined and how they'll be used.
We don't use STIBP. If one day we do decide to set it in userspace for
"sensitive" processes, if we're done having the debate about what those
are, then that seems unlikely to conflict what what this code is doing
anyway, as we would presumably *clear* it again on the way back into
the kernel.
I certainly don't want to add a read/modify/write cycle here just to
cope with some hypothetical future use case for STIBP, when there would
be better ways to cope.Attachment:
smime.p7s
Description: S/MIME cryptographic signature