On Wed, 2019-07-31 at 12:54 -0500, Gustavo A. R. Silva wrote: > sl is controlled by user-space, hence leading to a potential > exploitation of the Spectre variant 1 vulnerability. > > Fix this by sanitizing sl before using it to index ibp->sl_to_sc. > > Notice that given that speculation windows are large, the policy is > to kill the speculation on the first load and not worry if it can be > completed with a dependent load/store [1]. > > [1] > https://lore.kernel.org/lkml/20180423164740.GY17484@xxxxxxxxxxxxxx/ > > Cc: stable@xxxxxxxxxxxxxxx > Signed-off-by: Gustavo A. R. Silva <gustavo@xxxxxxxxxxxxxx> > --- Thanks, applied to for-rc. -- Doug Ledford <dledford@xxxxxxxxxx> GPG KeyID: B826A3330E572FDD Fingerprint = AE6B 1BDA 122B 23B4 265B 1274 B826 A333 0E57 2FDD
Attachment:
signature.asc
Description: This is a digitally signed message part
