Re: [PATCH 06/18] x86, barrier: stop speculation for failed access_ok

From: Thomas Gleixner
Date: Sun Jan 07 2018 - 05:09:21 EST

Next message: Mauro Carvalho Chehab: "Re: [PATCH v3 1/1] runchecks: Generalize make C={1,2} to support multiple checkers"
Previous message: Krzysztof Kozlowski: "Re: [PATCH] ARM: dts: exynos: fix RTC interrupt for exynos5410"
In reply to: Alexei Starovoitov: "Re: [PATCH 06/18] x86, barrier: stop speculation for failed access_ok"
Next in thread: Alexei Starovoitov: "Re: [PATCH 06/18] x86, barrier: stop speculation for failed access_ok"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sat, 6 Jan 2018, Alexei Starovoitov wrote:
> which clearly states that bpf_tail_call() was used in the attack.
> Yet none of the intel nor arm patches address speculation in
> this bpf helper!
> It means that:
> - gpz didn't share neither exploit nor the detailed description
> of the POC with cpu vendors until now
> - coverity rules used to find all these places in the kernel
> failed to find bpf_tail_call
> - cpu vendors were speculating what variant 1 can actually do

You forgot to mention that there might be other attacks than the public POC
which are not covered by a simple AND ....

Thanks,

tglx

Next message: Mauro Carvalho Chehab: "Re: [PATCH v3 1/1] runchecks: Generalize make C={1,2} to support multiple checkers"
Previous message: Krzysztof Kozlowski: "Re: [PATCH] ARM: dts: exynos: fix RTC interrupt for exynos5410"
In reply to: Alexei Starovoitov: "Re: [PATCH 06/18] x86, barrier: stop speculation for failed access_ok"
Next in thread: Alexei Starovoitov: "Re: [PATCH 06/18] x86, barrier: stop speculation for failed access_ok"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]