Re: [PATCH 2/2] x86/speculation: Provide application property based STIBP protection

From: Peter Zijlstra
Date: Thu Sep 20 2018 - 04:01:12 EST

Next message: Rafael J. Wysocki: "Re: [PATCH V2 08/12] cpufreq: mvebu: Remove OPPs using dev_pm_opp_remove()"
Previous message: Peter Zijlstra: "Re: [PATCH 2/2] x86/speculation: Provide application property based STIBP protection"
In reply to: Tim Chen: "Re: [PATCH 2/2] x86/speculation: Provide application property based STIBP protection"
Next in thread: Tim Chen: "Re: [PATCH 2/2] x86/speculation: Provide application property based STIBP protection"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Sep 19, 2018 at 02:35:30PM -0700, Tim Chen wrote:
> This patch provides an application property based spectre_v2
> protection with STIBP against attack from another app from
> a sibling hyper-thread. For security sensitive non-dumpable
> app, STIBP will be turned on before switching to it for Intel
> processors vulnerable to spectre_v2.

Why does that non dumpable thing make sense? Why not use the same
prctl() we already use for SSBD?

Next message: Rafael J. Wysocki: "Re: [PATCH V2 08/12] cpufreq: mvebu: Remove OPPs using dev_pm_opp_remove()"
Previous message: Peter Zijlstra: "Re: [PATCH 2/2] x86/speculation: Provide application property based STIBP protection"
In reply to: Tim Chen: "Re: [PATCH 2/2] x86/speculation: Provide application property based STIBP protection"
Next in thread: Tim Chen: "Re: [PATCH 2/2] x86/speculation: Provide application property based STIBP protection"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]