projects / xen.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b1a1df3) | patch
x86/spec-ctrl: Mitigate IBPB not flushing the RSB/RAS
authorAndrew Cooper <andrew.cooper3@citrix.com>
Tue, 14 Jun 2022 15:18:36 +0000 (16:18 +0100)
committerAndrew Cooper <andrew.cooper3@citrix.com>
Fri, 4 Nov 2022 13:20:27 +0000 (13:20 +0000)
commitc1e196ab490b47ce42037c2fef8184a19d96922b
tree36d0a995963d7e442462804c6c3e0e4c2c138740tree | snapshot
parentb1a1df345aaf359f305d6d041e571929c9252645commit | diff
x86/spec-ctrl: Mitigate IBPB not flushing the RSB/RAS

Introduce spec_ctrl_new_guest_context() to encapsulate all logic pertaining to
using MSR_PRED_CMD for a new guest context, even if it only has one user
presently.

Introduce X86_BUG_IBPB_NO_RET, and use it extend spec_ctrl_new_guest_context()
with a manual fixup for hardware which mis-implements IBPB.

This is part of XSA-422 / CVE-2022-23824.

Signed-off-by: Andrew Cooper <andrew.cooper3@citrix.com>
Acked-by: Jan Beulich <jbeulich@suse.com>
(cherry picked from commit 2b27967fb89d7904a1571a2fb963b1c9cac548db)
xen/arch/x86/asm-macros.c diff | blob | history
xen/arch/x86/domain.c diff | blob | history
xen/arch/x86/spec_ctrl.c diff | blob | history
xen/include/asm-x86/cpufeatures.h diff | blob | history
xen/include/asm-x86/spec_ctrl.h diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.