Re: [PATCH] x86/cpu: Enable STIBP if Automatic IBRS is enabled

From: Kim Phillips
Date: Thu Jul 20 2023 - 17:53:43 EST

Next message: pr-tracker-bot: "Re: [GIT PULL] Networking for v6.5-rc3"
Previous message: Hyeonggon Yoo: "Re: [RFC PATCH v2 00/21] mm/zsmalloc: Split zsdesc from struct page"
In reply to: Jim Mattson: "Re: [PATCH] x86/cpu: Enable STIBP if Automatic IBRS is enabled"
Next in thread: tip-bot2 for Kim Phillips: "[tip: x86/urgent] x86/cpu: Enable STIBP on AMD if Automatic IBRS is enabled"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 7/20/23 3:58 PM, Jim Mattson wrote:

On Thu, Jul 20, 2023 at 12:48 PM Kim Phillips <kim.phillips@xxxxxxx> wrote:

Unlike Intel's Enhanced IBRS feature, AMD's Automatic IBRS does not
provide protection to processes running at CPL3/user mode [1].

Explicitly enable STIBP to protect against cross-thread CPL3
branch target injections on systems with Automatic IBRS enabled.

Is there any performance penalty to enabling STIBP + AUTOIBRS, aside
from the lost sharing?

Not to my knowledge.

Or does this just effectively tag the branch
prediction information with thread ID?

I don't know the implementation, but AFAIK, AUTOIBRS and STIBP
are independent of each other.

Thanks,

Kim

Next message: pr-tracker-bot: "Re: [GIT PULL] Networking for v6.5-rc3"
Previous message: Hyeonggon Yoo: "Re: [RFC PATCH v2 00/21] mm/zsmalloc: Split zsdesc from struct page"
In reply to: Jim Mattson: "Re: [PATCH] x86/cpu: Enable STIBP if Automatic IBRS is enabled"
Next in thread: tip-bot2 for Kim Phillips: "[tip: x86/urgent] x86/cpu: Enable STIBP on AMD if Automatic IBRS is enabled"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]