Re: Improve retpoline for Skylake

From: David Woodhouse
Date: Mon Jan 15 2018 - 13:08:12 EST

Next message: David Miller: "Re: [PATCH 3/5] pktgen: Add behavior flag names array - pkt_flag_names"
Previous message: Shannon Nelson: "Re: [PATCH net-next v3] xfrm: Add ESN support for IPSec HW offload"
In reply to: Andy Lutomirski: "Re: Improve retpoline for Skylake"
Next in thread: Andy Lutomirski: "Re: Improve retpoline for Skylake"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 2018-01-15 at 10:06 -0800, Andy Lutomirski wrote:
>
> > Refill or not, you are aware that a correctly timed SMI in a leaf
> > function will cause the next ret to speculate into userspace, because
> > there is guaranteed peturbance in the RSB?Â (On the expectation that the
> > SMM handler isn't entirely devoid of function calls).
>
> Couldn't firmware fillÂthe RSB with a some known safe address, maybe
> even 0, and then immediately do RSM?

Why don't we just unconditionally declare that *all* firmware that uses
SMI for anything at all is broken?

Attachment: smime.p7s
Description: S/MIME cryptographic signature

Next message: David Miller: "Re: [PATCH 3/5] pktgen: Add behavior flag names array - pkt_flag_names"
Previous message: Shannon Nelson: "Re: [PATCH net-next v3] xfrm: Add ESN support for IPSec HW offload"
In reply to: Andy Lutomirski: "Re: Improve retpoline for Skylake"
Next in thread: Andy Lutomirski: "Re: Improve retpoline for Skylake"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]