Re: [PATCH v2 3/4] x86/bugs: KVM: Add support for SRSO_MSR_FIX

From: Borislav Petkov
Date: Wed Jan 08 2025 - 14:15:27 EST

Next message: Nicolas Dufresne: "Re: [PATCH 0/7] Raspberry Pi HEVC decoder driver"
Previous message: Daniel Almeida: "Re: [PATCH v8 2/2] rust: add dma coherent allocator abstraction."
In reply to: Jim Mattson: "Re: [PATCH v2 3/4] x86/bugs: KVM: Add support for SRSO_MSR_FIX"
Next in thread: Jim Mattson: "Re: [PATCH v2 3/4] x86/bugs: KVM: Add support for SRSO_MSR_FIX"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Jan 08, 2025 at 10:37:57AM -0800, Jim Mattson wrote:
> Surely, IBPB-on-VMexit is worse for performance than safe-RET?!?

We don't need safe-RET with SRSO_USER_KERNEL_NO=1. And there's no safe-RET for
virt only. So IBPB-on-VMEXIT is the next best thing. The good thing is, those
machines have BpSpecReduce too so you won't be doing IBPB-on-VMEXIT either but
what we're talking about here - BpSpecReduce.

--
Regards/Gruss,
Boris.

https://people.kernel.org/tglx/notes-about-netiquette

Next message: Nicolas Dufresne: "Re: [PATCH 0/7] Raspberry Pi HEVC decoder driver"
Previous message: Daniel Almeida: "Re: [PATCH v8 2/2] rust: add dma coherent allocator abstraction."
In reply to: Jim Mattson: "Re: [PATCH v2 3/4] x86/bugs: KVM: Add support for SRSO_MSR_FIX"
Next in thread: Jim Mattson: "Re: [PATCH v2 3/4] x86/bugs: KVM: Add support for SRSO_MSR_FIX"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]