Re: [RFC 04/10] x86/mm: Only flush indirect branches when switching into non dumpable process

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Re: [RFC 04/10] x86/mm: Only flush indirect branches when switching into non dumpable process
From: "Woodhouse, David" <dwmw@xxxxxxxxxxxx>
Date: Sun, 21 Jan 2018 22:20:13 +0000
Cc: KarimAllah Ahmed <karahmed@xxxxxxxxx>, <linux-kernel@xxxxxxxxxxxxxxx>, Andi Kleen <ak@xxxxxxxxxxxxxxx>, Andrea Arcangeli <aarcange@xxxxxxxxxx>, "Andy Lutomirski" <luto@xxxxxxxxxx>, Arjan van de Ven <arjan@xxxxxxxxxxxxxxx>, "Ashok Raj" <ashok.raj@xxxxxxxxx>, Asit Mallick <asit.k.mallick@xxxxxxxxx>, "Borislav Petkov" <bp@xxxxxxx>, Dan Williams <dan.j.williams@xxxxxxxxx>, Dave Hansen <dave.hansen@xxxxxxxxx>, Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>, "H . Peter Anvin" <hpa@xxxxxxxxx>, Ingo Molnar <mingo@xxxxxxxxxx>, Janakarajan Natarajan <Janakarajan.Natarajan@xxxxxxx>, Joerg Roedel <joro@xxxxxxxxxx>, Jun Nakajima <jun.nakajima@xxxxxxxxx>, Laura Abbott <labbott@xxxxxxxxxx>, Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>, Masami Hiramatsu <mhiramat@xxxxxxxxxx>, Paolo Bonzini <pbonzini@xxxxxxxxxx>, Radim Krčmář <rkrcmar@xxxxxxxxxx>, Thomas Gleixner <tglx@xxxxxxxxxxxxx>, Tim Chen <tim.c.chen@xxxxxxxxxxxxxxx>, Tom Lendacky <thomas.lendacky@xxxxxxx>, <kvm@xxxxxxxxxxxxxxx>, <x86@xxxxxxxxxx>, "Dave Hansen" <dave@xxxxxxxx>
In-reply-to: <20180121162142.yh366un2blsyiud4@gmail.com>
Organization: Amazon
References: <1516476182-5153-1-git-send-email-karahmed@amazon.de> <1516476182-5153-5-git-send-email-karahmed@amazon.de> <20180121112224.GH2269@hirez.programming.kicks-ass.net> <20180121162142.yh366un2blsyiud4@gmail.com>

On Sun, 2018-01-21 at 17:21 +0100, Ingo Molnar wrote:
> 
> Because putting something like this into an ELF flag raises the question of who is 
> allowed to set the flag - does a user-compiled binary count? If yes then it would 
> be a trivial thing for local exploits to set the flag and turn off the barrier.

You can only allow *yourself* to be exploited that way. The flag says,
"I'm OK, you don't need to protect me".

Attachment: smime.p7s
Description: S/MIME cryptographic signature

References:
- [RFC 00/10] Speculation Control feature support
  - From: KarimAllah Ahmed
- [RFC 04/10] x86/mm: Only flush indirect branches when switching into non dumpable process
  - From: KarimAllah Ahmed
- Re: [RFC 04/10] x86/mm: Only flush indirect branches when switching into non dumpable process
  - From: Peter Zijlstra
- Re: [RFC 04/10] x86/mm: Only flush indirect branches when switching into non dumpable process
  - From: Ingo Molnar

Prev by Date: Re: [RFC 09/10] x86/enter: Create macros to restrict/unrestrict Indirect Branch Speculation
Next by Date: Re: [RFC 09/10] x86/enter: Create macros to restrict/unrestrict Indirect Branch Speculation
Previous by thread: Re: [RFC 04/10] x86/mm: Only flush indirect branches when switching into non dumpable process
Next by thread: Re: [RFC 04/10] x86/mm: Only flush indirect branches when switching into non dumpable process
Index(es):
- Date
- Thread

[Index of Archives] [KVM ARM] [KVM ia64] [KVM ppc] [Virtualization Tools] [Spice Development] [Libvirt] [Libvirt Users] [Linux USB Devel] [Linux Audio Users] [Yosemite Questions] [Linux Kernel] [Linux SCSI] [XFree86]