Re: [Patch v5 11/16] x86/speculation: Add Spectre v2 app to app protection modes

From: Dave Hansen
Date: Mon Nov 19 2018 - 18:39:22 EST

Next message: kbuild test robot: "Re: [PATCH v1 2/2] signal: add procfd_signal() syscall"
Previous message: kbuild test robot: "Re: [PATCH v1 2/2] signal: add procfd_signal() syscall"
In reply to: Tim Chen: "Re: [Patch v5 11/16] x86/speculation: Add Spectre v2 app to app protection modes"
Next in thread: Jiri Kosina: "Re: [Patch v5 11/16] x86/speculation: Add Spectre v2 app to app protection modes"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 11/19/18 3:01 PM, Thomas Gleixner wrote:
>> Yes, it wouldn't make sense for having just one of those if a task
>> is worried about attack from user space.
>>
>> I'll document it.
> What? IBPB makes tons of sense even without STIBP.

I'm lost. :)

I don't think anyone is talking about using STIBP *everywhere* that IBPB
is in-use.

We're just guessing that, if anybody is paranoid enough to ask for IBPB,
*and* they have SMT, they almost certainly want STIBP too.

Next message: kbuild test robot: "Re: [PATCH v1 2/2] signal: add procfd_signal() syscall"
Previous message: kbuild test robot: "Re: [PATCH v1 2/2] signal: add procfd_signal() syscall"
In reply to: Tim Chen: "Re: [Patch v5 11/16] x86/speculation: Add Spectre v2 app to app protection modes"
Next in thread: Jiri Kosina: "Re: [Patch v5 11/16] x86/speculation: Add Spectre v2 app to app protection modes"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]