Re: [PATCH] x86/cpu: Enable STIBP if Automatic IBRS is enabled

From: Jim Mattson
Date: Thu Jul 20 2023 - 16:59:48 EST

Next message: Matthew Brost: "Re: [PATCH v5] Documentation/gpu: Add a VM_BIND async draft document"
Previous message: Michael S. Tsirkin: "Re: [PATCH net-next v4 2/2] virtio-net: add cond_resched() to the command waiting loop"
In reply to: Kim Phillips: "[PATCH] x86/cpu: Enable STIBP if Automatic IBRS is enabled"
Next in thread: Kim Phillips: "Re: [PATCH] x86/cpu: Enable STIBP if Automatic IBRS is enabled"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Jul 20, 2023 at 12:48 PM Kim Phillips <kim.phillips@xxxxxxx> wrote:
>
> Unlike Intel's Enhanced IBRS feature, AMD's Automatic IBRS does not
> provide protection to processes running at CPL3/user mode [1].
>
> Explicitly enable STIBP to protect against cross-thread CPL3
> branch target injections on systems with Automatic IBRS enabled.

Is there any performance penalty to enabling STIBP + AUTOIBRS, aside
from the lost sharing? Or does this just effectively tag the branch
prediction information with thread ID?

Next message: Matthew Brost: "Re: [PATCH v5] Documentation/gpu: Add a VM_BIND async draft document"
Previous message: Michael S. Tsirkin: "Re: [PATCH net-next v4 2/2] virtio-net: add cond_resched() to the command waiting loop"
In reply to: Kim Phillips: "[PATCH] x86/cpu: Enable STIBP if Automatic IBRS is enabled"
Next in thread: Kim Phillips: "Re: [PATCH] x86/cpu: Enable STIBP if Automatic IBRS is enabled"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]