On 09/01/2018 21:57, Jim Mattson wrote: > Before VM-entry, don't we need to flush the BHB and the RSB to avoid > revealing KASLR information to the guest? (Thanks to Liran for > pointing this out.) I don't know how you flush the BHB? As to the RSB, that would also be part of generic Linux code so I've not included it yet in this series which was mostly about the new MSRs and CPUID bits. Paolo